wspr-ncsu / mininode
Mininode is a CLI tool to reduce the attack surface of the Node.js applications by using static analysis.
☆22Updated last year
Related projects: ⓘ
- Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…☆18Updated 3 years ago
- PoC: Python package static and dynamic analysis to detect environment variable stealing☆10Updated 3 years ago
- Open YARA scan- and search engine☆15Updated last year
- ☆28Updated this week
- mesh-kridik is an open-source security checker that performs various security checks on a Kubernetes cluster with istio service mesh and …☆25Updated 2 weeks ago
- Pythonize Intruder Payload☆13Updated 3 years ago
- Extract endpoints from specific Git repository for fuzzing☆21Updated 3 years ago
- Swiftly search FDNS datasets from Rapid7 Open Data☆21Updated last year
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆19Updated last year
- Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool☆25Updated 2 years ago
- A collection of my public security advisories.☆22Updated 3 months ago
- Interactsh deployment to AWS EC2 Instance with Terraform☆11Updated 2 years ago
- A wrapper around jq, to help you parse jq output!☆30Updated 4 years ago
- Tools for auditing WAFS☆18Updated 2 years ago
- Anti-Takeover is a sub domain monitoring tool for (blue/purple) team / internal security team which uses cloud flare. Currently Anti-Take…☆12Updated 4 years ago
- Jumpstart multiple WebSocket servers quickly☆25Updated 2 years ago
- An auto-scoring capture-the-flag game focusing on TOCTOU vulnerabilities☆18Updated 3 years ago
- Automated privilege escalation of the world's most popular Docker images.☆62Updated 11 months ago
- Fork of https://github.com/PortSwigger/param-miner for header smuggling research☆12Updated 2 years ago
- Automatic tool using for crawling code to find low-hang fruit vulnerabilities - Based on OWASP Secure Code Review Guide☆20Updated 4 years ago
- Piper Burp Suite Extender plugin☆13Updated 2 years ago
- Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass☆18Updated 3 years ago
- ☆13Updated 11 months ago
- Signatures for wraith used to detect secrets across various sources☆15Updated 2 years ago
- ZAP plugin demonstrating custom view for WebSocket messages.☆13Updated 2 years ago
- Python support package to parse IP and host inputs from network based tooling☆10Updated 11 months ago
- Standardizing Security Titles☆13Updated last year
- multiple password 'asher using Python’s hashlib☆15Updated 3 years ago
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆20Updated 2 months ago
- OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently☆11Updated 3 years ago