spaceraccoon / npm-scan
An extensible, heuristic-based vulnerability scanning tool for installed npm packages
☆50Updated 3 years ago
Alternatives and similar repositories for npm-scan:
Users that are interested in npm-scan are comparing it to the libraries listed below
- Scan secrets from Continuous Integration Build Logs☆52Updated 5 years ago
- List of special metadata IPs used in cloud services☆11Updated 5 years ago
- Automate common Chrome Debug Protocol tasks to help debug web applications from the command-line and actively monitor and intercept HTTP …☆73Updated 3 years ago
- A zoo for malicious NPM packages☆20Updated 2 years ago
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆44Updated 7 months ago
- Use burp's JS static code analysis on code from your local system.☆42Updated 8 years ago
- ☆16Updated 6 years ago
- Proof-of-concept CORS exploitation tool.☆35Updated 5 years ago
- Manual JavaScript Linting is a Bug☆49Updated 3 years ago
- Reverse engineers GQL Schema and generates template payloads☆46Updated 5 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- Reclaim control of your Burp Suite Repeater tabs with this powerful extension☆67Updated 3 years ago
- Slide Decks and Supporting Content of talks given for Bugcrowd☆17Updated 5 years ago
- Detect exposed API keys on GitHub commits.☆34Updated 2 years ago
- Burp Suite extension to track vulnerability assessment progress☆59Updated 4 years ago
- XXRF Shots - Useful for testing SSRF vulnerability☆74Updated 2 years ago
- ☆52Updated 8 months ago
- Extract relative urls from a heap snapshot☆85Updated 3 years ago
- OAuth Security Cheatsheet☆39Updated 10 years ago
- Simple wrapper for meg that sieves through meg's output for you.☆60Updated 5 years ago
- ☆39Updated last year
- Nodejs application intentionally vulnerable to SSRF☆41Updated last year
- Rules for detecting security issues in Angular 1.x☆29Updated last year
- Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.☆64Updated 5 years ago
- a shared short domain for XSS and other hacks☆31Updated 2 years ago
- TSLint rules for Angular☆18Updated 6 years ago
- ☆70Updated 3 years ago
- Clickjacking PoC Generator☆35Updated 4 years ago
- A Burp extension to show the Collaborator client in a tab☆36Updated 2 years ago
- AWS Security Checks☆36Updated 7 years ago