ajinabraham/Node.Js-Security-Course

Stars
313
Rank 133,714 (Top 3 %)
Language
JavaScript
License
GNU General Publi...
Created over 9 years ago
Updated almost 4 years ago

ajinabraham/Node.Js-Security-Course

ajinabraham

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Contents for Node.Js Security Course

Node.Js-Security-Course

Contents for Node.Js Security Course

https://opsecx.com/index.php/product/node-js-security-pentesting-and-exploitation/

nodejsscan

nodejsscan is a static security code scanner for Node.js applications.

CMSScan

CMS Scanner: Scan Wordpress, Drupal, Joomla, vBulletin websites for Security issues

OWASP-Xenotix-XSS-Exploit-Framework

OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.

Xenotix-Python-Keylogger

Xenotix Python Keylogger for Windows.

njsscan

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

Droid-Application-Fuzz-Framework

Android application fuzzing framework with fuzzers and crash monitor.

WebAppSec

Web Application Security

Static-DOM-XSS-Scanner

Static DOM XSS Scanner is a Static Analysis tool written in python that will iterate through all the JavaScript and HTML files under the given directory and will list out all the possible sources and sinks that may cause DOM XSS. At the end of the scan, the tool will generate an HTML report.

libsast

Generic SAST Library

Xenotix-APK-Reverser

Xenotix APK Reverser is an OpenSource Android Application Package (APK) decompiler and disassembler powered by dex2jar, baksmali and jd-core.

aws_security_tools

Scripts and tools for AWS Pentest

PoC

Proof of Concepts, Exploits

Xenotix-xBOT

Xenotix xBOT is a Cross Platform PoC Bot that abuse certain Google Services to implement it's C&C

njsscan-action

nodejsscan Github Action

WhatsApp-AutoClean

WhatsApp AutoClean is an android app that removes all WhatsApp media (images, videos, sound etc) and hide them from being shown in Gallery

tizen-security

Tools made for Tizen Security Analysis

Exploit-Research-Ported

Exploit Research & Development - Ported Exploits

package_scan

PoC: Python package static and dynamic analysis to detect environment variable stealing

node.js-simple-https-server

A simple HTTPS server that uses self signed certificate. Useful for PoC purposes

JSComm-API-Hooker

Tool to hook all communication APIs including XHR/XHR2, WebSockets, Web Workers, PostMessage and Server Sent Events

bad_python_extract

A vulnerable web application written in Python Flask to demonstrate insecure file extraction

Android-SSL-Certificate-Pinning

A sample android application implementing Moxie's Certificate Pinning Library

Vulnerable_Tornado_App

An intentionally vulnerable web application written in Python using Tornado

OpSec-Firefox-Addon-Exploit-Suite

OpSec Firefox Addon Exploit Suite is a POC application that demonstrate various flaws in the Firefox Add-on Security Model.

OAuth-Request-Crafter

OAuth Request Crafter

poc-rogue

python-hash-calculator

Python Hash Calculator

simple-php-browser-detection

Simple PHP script to get browser details.

SafeDOM

A failed attempt to prevent DOM XSS.

YouPlay

Media Server that dumps youtube playlist into mp3

ctf

Google-Voice-on-Zenwatch-3-button

Google Voice on ZenWatch 3 crown button

codeql-uboot

NoSQLi-Vulnerable-App

NoSQLi Vulnerable App

PebbleWatch-LocateMe

Pebble App that Locates You