wspr-ncsu / mininode
Mininode is a CLI tool to reduce the attack surface of the Node.js applications by using static analysis.
☆22Updated last year
Alternatives and similar repositories for mininode:
Users that are interested in mininode are comparing it to the libraries listed below
- An HTTP Response fuzzer to find Vulnerabilities in Security Scanners☆26Updated 7 months ago
- Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…☆18Updated 3 years ago
- PoC: Python package static and dynamic analysis to detect environment variable stealing☆10Updated 3 years ago
- A wrapper around jq, to help you parse jq output!☆30Updated 4 years ago
- A tool to reverse engineer and inspect the RPM and APT databases to list all the packages along with executables, service and versions.☆16Updated this week
- Anti-Takeover is a sub domain monitoring tool for (blue/purple) team / internal security team which uses cloud flare. Currently Anti-Take…☆12Updated 4 years ago
- Swiftly search FDNS datasets from Rapid7 Open Data☆21Updated 2 years ago
- Interactsh deployment to AWS EC2 Instance with Terraform☆11Updated 3 years ago
- Abusing Cloudflare Workers to establish persistence and exfiltrate sensitive data at the edge.☆12Updated 2 years ago
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆37Updated 4 years ago
- Documentation of Semgrep: a fast, open-source, static analysis tool.☆38Updated this week
- The official repository of ICSME'23 paper "Exploring Security Commits in Python"☆16Updated last year
- Notify is a helper utility written in Go that allows you to post output to multiple platforms.☆15Updated 2 years ago
- An auto-scoring capture-the-flag game focusing on TOCTOU vulnerabilities☆19Updated 4 years ago
- FACT is a tool to collect, process and visualise forensic data from clusters of machines running in the cloud or on-premise.☆18Updated 4 months ago
- A Burp extension for generic extraction and reuse of data within HTTP requests and responses.☆8Updated 2 years ago
- Open YARA scan- and search engine☆20Updated 3 weeks ago
- mesh-kridik is an open-source security checker that performs various security checks on a Kubernetes cluster with istio service mesh and …☆26Updated last month
- Docker container for running OWASP WebGoat.NET application☆11Updated 6 years ago
- *Unofficial* lgtm.com CLI — Use at your own risk. Also don't add more than 3K projects to "My projects" list.☆13Updated 2 years ago
- A Simple command line tool that helps checking web applications to identify insecure deserialization vulnerabilities.☆24Updated 5 years ago
- ☆23Updated 11 months ago
- A collection of Metasploit plugins I have written for various reasons.☆15Updated 4 years ago
- This novel black-box web vulnerability scanner attempts to infer the state machine of the web application.☆19Updated 4 years ago
- ☆14Updated last year
- TLD records archive. Revisiting the original TLDR project by mandatoryprogrammer, on the hunt for more root nameserver changes.☆11Updated 2 years ago
- Proof of concept for an anti-phishing browser plugin, working by comparing pages screenshots with perceptual hashing algorithms.☆11Updated 2 years ago