uber-archive / paranoid-requestLinks
An SSRF-preventing wrapper around Node's request module
☆26Updated 7 years ago
Alternatives and similar repositories for paranoid-request
Users that are interested in paranoid-request are comparing it to the libraries listed below
Sorting:
- This repo gives an overview of some GCP metadata API attack and defend patterns☆77Updated 5 years ago
- An SSRF-preventing wrapper around Python's requests library. Advocate is no longer maintained, please fork and rename if you would like t…☆95Updated 2 years ago
- A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…☆141Updated last year
- Use burp's JS static code analysis on code from your local system.☆42Updated 9 years ago
- An extensible, heuristic-based vulnerability scanning tool for installed npm packages☆50Updated 4 years ago
- Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website☆139Updated 5 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 7 years ago
- SSRF Protection Library for PHP - http://safecurl.fin1te.net☆73Updated 2 years ago
- Content-Security-Policy report aggregator/analyzer☆54Updated 5 years ago
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆42Updated last year
- Automatically exported from code.google.com/p/mustache-security☆23Updated 10 years ago
- A Burp Plugin for Detecting Weaknesses in Content Security Policies☆168Updated 2 years ago
- A Chrome extension static analysis tool to help aide in security reviews.☆161Updated 2 years ago
- ☆57Updated 5 years ago
- AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.☆56Updated 3 years ago
- An example of obtaining RCE via Redis and CSRF☆76Updated 9 years ago
- ☆16Updated 7 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆104Updated 6 years ago
- umbrella config to achieve scanjs-like functionality through eslint☆87Updated 4 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆65Updated 2 years ago
- The databases, API's and managers behind https://websecweekly.org☆50Updated 10 years ago
- PrOfESSOS is our open source implementation for fully automated Evaluation-as-a-Service for SSO. PrOfESSOS introduces a generic approach …☆28Updated 2 years ago
- A dashboard for interesting DOM tricks/techniques.☆35Updated 5 years ago
- RegEx Denial of Service (ReDos) Scanner☆180Updated 8 years ago
- ☆32Updated 10 years ago
- Automate common Chrome Debug Protocol tasks to help debug web applications from the command-line and actively monitor and intercept HTTP …☆73Updated 4 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆35Updated 6 years ago
- A Firefox extension and WebSocket handler that checks S3/Google/Azure buckets while your browse.☆37Updated 5 years ago
- Jaqen - Simple DNS rebinding☆75Updated 7 years ago
- Security Payload Unit Test Repository (SPUTR)☆86Updated 2 years ago