Gamma Ray Logo

Gamma Ray

0
Free
Visit Website

Gamma Ray is a software that helps developers to look for vulnerabilities on their Node.js applications. Its pluggable infrastructure makes it very easy to write an integration with several vulnerabilities databases. To get it, run: $> go get github.com/nearform/gammaray. Once finished, you should have the gammaray binary in your GOPATH/bin folder. Usage: Gammaray comes as a single binary, so you only need to run it passing your project as an argument: $> gammaray <path-to-your-node-app>. Gammaray supports flags like -path, -image, -log-level, and -ignore-list. By providing the path to a JSON file with CVE/CWE ignore array, you can customize the vulnerabilities to be ignored. After running, all the vulnerabilities affecting your packages will be displayed. Contributing: As a developer, clone the repository, start hacking, and PRs are welcome! $> mkd

FEATURES

ALTERNATIVES

A hybrid mobile app for Android that intentionally contains vulnerabilities for testing and education

Web server scanner for identifying security vulnerabilities.

A tool that detects dangling DNS records in a multi-cloud environment to prevent subdomain takeovers.

Powerful PowerShell script for identifying missing software patches for local privilege escalation vulnerabilities.

A vulnerable web site in NodeJS for testing security source code analyzers.

A virtual machine with numerous security vulnerabilities for testing exploits with Metasploit.

Compares target's patch levels against Microsoft vulnerability database and detects missing patches.

A JavaScript scanner built in PHP for scraping URLs and other information.