uber-archive / paranoid-requestLinks
An SSRF-preventing wrapper around Node's request module
☆26Updated 7 years ago
Alternatives and similar repositories for paranoid-request
Users that are interested in paranoid-request are comparing it to the libraries listed below
Sorting:
- A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…☆141Updated last year
- An extensible, heuristic-based vulnerability scanning tool for installed npm packages☆50Updated 4 years ago
- A Chrome extension static analysis tool to help aide in security reviews.☆156Updated 2 years ago
- Use burp's JS static code analysis on code from your local system.☆42Updated 8 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆77Updated 5 years ago
- An SSRF-preventing wrapper around Python's requests library. Advocate is no longer maintained, please fork and rename if you would like t…☆95Updated 2 years ago
- rules for scanjs functionality☆28Updated 4 years ago
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆42Updated last year
- Automate common Chrome Debug Protocol tasks to help debug web applications from the command-line and actively monitor and intercept HTTP …☆73Updated 4 years ago
- Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website☆138Updated 5 years ago
- An example of obtaining RCE via Redis and CSRF☆76Updated 8 years ago
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆102Updated 6 years ago
- A Burp Plugin for Detecting Weaknesses in Content Security Policies☆168Updated 2 years ago
- a javascript static security analysis tool☆590Updated 10 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 6 years ago
- AutoTriageBot automatically verifies, deduplicates, and suggests payouts for incoming HackerOne reports.☆56Updated 3 years ago
- Jaqen - Simple DNS rebinding☆75Updated 7 years ago
- A very simple bridge for performing Flash HTTP requests with JavaScript☆80Updated 10 years ago
- umbrella config to achieve scanjs-like functionality through eslint☆88Updated 4 years ago
- A deliberately vulnerable modern day app with lots of DOM related bugs☆35Updated 6 years ago
- Burp Suite extension to help make Graphql request more readable☆33Updated 7 years ago
- AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…☆83Updated 5 years ago
- Go static analysis tool that checks for security issues using an AST.☆29Updated 6 years ago
- Nodejs application intentionally vulnerable to SSRF☆42Updated 2 years ago
- Simple wrapper for meg that sieves through meg's output for you.☆60Updated 5 years ago
- SSRF Protection Library for PHP - http://safecurl.fin1te.net☆73Updated 2 years ago
- Chrome < 62 uxss exploit (CVE-2017-5124)☆161Updated 7 years ago
- Archaeologit scans the history of a user's GitHub repositories for a given pattern to find sensitive things.☆143Updated 7 years ago
- A dashboard for interesting DOM tricks/techniques.☆35Updated 4 years ago
- XSS in pastebin.com and reddit.com via unsanitized markdown output☆87Updated 7 years ago