uber-archive / paranoid-requestLinks
An SSRF-preventing wrapper around Node's request module
☆26Updated 7 years ago
Alternatives and similar repositories for paranoid-request
Users that are interested in paranoid-request are comparing it to the libraries listed below
Sorting:
- An SSRF-preventing wrapper around Python's requests library. Advocate is no longer maintained, please fork and rename if you would like t…☆95Updated 2 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆78Updated 5 years ago
- An extensible, heuristic-based vulnerability scanning tool for installed npm packages☆50Updated 4 years ago
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆42Updated last year
- Use burp's JS static code analysis on code from your local system.☆42Updated 9 years ago
- A dashboard for interesting DOM tricks/techniques.☆35Updated 5 years ago
- AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.☆57Updated 3 years ago
- rules for scanjs functionality☆28Updated 4 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 7 years ago
- A Burp Plugin for Detecting Weaknesses in Content Security Policies☆166Updated 2 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆66Updated 2 years ago
- A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…☆142Updated last year
- The databases, API's and managers behind https://websecweekly.org☆50Updated 10 years ago
- ☆32Updated 10 years ago
- Automate common Chrome Debug Protocol tasks to help debug web applications from the command-line and actively monitor and intercept HTTP …☆73Updated 4 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆35Updated 6 years ago
- Automatically exported from code.google.com/p/mustache-security☆23Updated 10 years ago
- Content-Security-Policy report aggregator/analyzer☆54Updated 5 years ago
- An example of obtaining RCE via Redis and CSRF☆76Updated 9 years ago
- [DEPRECATED] Static analysis tool for javascript code.☆427Updated 4 years ago
- SSRF Protection Library for PHP - http://safecurl.fin1te.net☆73Updated 2 years ago
- PrOfESSOS is our open source implementation for fully automated Evaluation-as-a-Service for SSO. PrOfESSOS introduces a generic approach …☆29Updated 3 years ago
- RegEx Denial of Service (ReDos) Scanner☆181Updated 8 years ago
- Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website☆139Updated 5 years ago
- A JavaScript clickjacking PoC generator☆24Updated 6 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆104Updated 7 years ago
- Security Payload Unit Test Repository (SPUTR)☆86Updated 2 years ago
- a javascript static security analysis tool☆590Updated 10 years ago
- XSS in pastebin.com and reddit.com via unsanitized markdown output☆88Updated 7 years ago
- A Chrome extension static analysis tool to help aide in security reviews.☆162Updated 2 years ago