uber-archive / paranoid-request
An SSRF-preventing wrapper around Node's request module
☆26Updated 6 years ago
Related projects ⓘ
Alternatives and complementary repositories for paranoid-request
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆42Updated 4 months ago
- rules for scanjs functionality☆28Updated 3 years ago
- An SSRF-preventing wrapper around Python's requests library. Advocate is no longer maintained, please fork and rename if you would like t…☆92Updated last year
- Automatically exported from code.google.com/p/mustache-security☆23Updated 9 years ago
- Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website☆136Updated 4 years ago
- An extensible, heuristic-based vulnerability scanning tool for installed npm packages☆50Updated 3 years ago
- Use burp's JS static code analysis on code from your local system.☆42Updated 7 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆36Updated 5 years ago
- A dashboard for interesting DOM tricks/techniques.☆36Updated 3 years ago
- Nodejs application intentionally vulnerable to SSRF☆41Updated last year
- This repo gives an overview of some GCP metadata API attack and defend patterns☆76Updated 4 years ago
- ☆32Updated 9 years ago
- An example of obtaining RCE via Redis and CSRF☆77Updated 8 years ago
- Automate common Chrome Debug Protocol tasks to help debug web applications from the command-line and actively monitor and intercept HTTP …☆73Updated 3 years ago
- A JavaScript clickjacking PoC generator☆22Updated 5 years ago
- Popcorn - the JSON fuzzer☆22Updated 10 years ago
- An extended Node.js runtime with additional security mechanisms built-in. Protects your Node.js applications from injection attacks such …☆31Updated 3 years ago
- An example of high-QPS requesting Burp Intruder style on AWS Lambda via self-invocation.☆22Updated 6 years ago
- Simple wrapper for meg that sieves through meg's output for you.☆60Updated 5 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆102Updated 5 years ago
- Highlight Burp proxy requests made by different browsers☆30Updated 7 years ago
- Burp Suite extension to help make Graphql request more readable☆30Updated 6 years ago
- DNS server limitation mapper☆25Updated 6 years ago
- [DEPRECATED] Static analysis tool for javascript code.☆429Updated 3 years ago
- A Chrome extension static analysis tool to help aide in security reviews.☆147Updated last year
- Content-Security-Policy report aggregator/analyzer☆54Updated 4 years ago
- ☆61Updated 7 years ago
- Immunio's XSS Fuzzer tool☆25Updated 8 years ago
- Discussion area for security aspects of ECMAScript☆64Updated 6 years ago
- Static analysis tool for javascript code based. Scanjs uses Esprima to convert sources to AST, then walks AST looking for patterns.☆54Updated 10 years ago