wspr-ncsu / mininode
Mininode is a CLI tool to reduce the attack surface of the Node.js applications by using static analysis.
☆21Updated last year
Alternatives and similar repositories for mininode:
Users that are interested in mininode are comparing it to the libraries listed below
- An HTTP Response fuzzer to find Vulnerabilities in Security Scanners☆26Updated 9 months ago
- Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…☆18Updated 4 years ago
- Reference architecture and proof of concept implementation for supply chain security gateway☆23Updated 2 years ago
- PoC: Python package static and dynamic analysis to detect environment variable stealing☆10Updated 4 years ago
- Dependency Combobulator☆93Updated last year
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆21Updated last year
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆22Updated 3 weeks ago
- Tools for auditing WAFS☆19Updated 3 years ago
- Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool☆25Updated 3 years ago
- Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass☆18Updated 3 years ago
- Interactsh deployment to AWS EC2 Instance with Terraform☆12Updated 3 years ago
- Mitigate security concerns of Dependency Confusion supply chain security risks☆46Updated 2 years ago
- A tool to reverse engineer and inspect the RPM and APT databases to list all the packages along with executables, service and versions.☆16Updated 2 months ago
- ☆30Updated 11 months ago
- Proof of concept for an anti-phishing browser plugin, working by comparing pages screenshots with perceptual hashing algorithms.☆11Updated 2 years ago
- A collection of my Semgrep rules☆48Updated last year
- HTTP Desync Attack☆28Updated 4 years ago
- First iteration of ML based Feedback WAF☆58Updated last year
- A curated list of argument injection vectors☆40Updated 2 months ago
- A collection of python apps and shell scripts to email an xlsx spreadsheet of new vulnerabilities in the NIST CVE database and their asso…☆12Updated 4 years ago
- ☆44Updated 3 years ago
- Docker image for reconftw, a simple script intended to perform a full recon on an objective with multiple subdomains☆10Updated 3 years ago
- ☆10Updated 3 years ago
- OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently☆12Updated 4 years ago
- Maturity Model Collaborative project☆14Updated 2 years ago
- Make exploiting race conditions in web applications highly efficient and ease-of-use.☆23Updated 10 months ago
- ☆23Updated last year
- Swiftly search FDNS datasets from Rapid7 Open Data☆21Updated 2 years ago
- ☆31Updated 2 years ago
- An example of a mis-configured Rails application release under MIT license.☆20Updated 2 years ago