Gamma Ray Logo

Gamma Ray

0
Free
Visit Website

Gamma Ray is a software that helps developers to look for vulnerabilities on their Node.js applications. Its pluggable infrastructure makes it very easy to write an integration with several vulnerabilities databases. To get it, run: $> go get github.com/nearform/gammaray. Once finished, you should have the gammaray binary in your GOPATH/bin folder. Usage: Gammaray comes as a single binary, so you only need to run it passing your project as an argument: $> gammaray <path-to-your-node-app>. Gammaray supports flags like -path, -image, -log-level, and -ignore-list. By providing the path to a JSON file with CVE/CWE ignore array, you can customize the vulnerabilities to be ignored. After running, all the vulnerabilities affecting your packages will be displayed. Contributing: As a developer, clone the repository, start hacking, and PRs are welcome! $> mkd

FEATURES

ALTERNATIVES

A vulnerable web site in NodeJS for testing security source code analyzers.

Automate software supply chain security by blocking malicious open source components

XGuardian XARA Security Scanner for OSX with URL scheme, Bundle ID, and keychain hijack checks.

NoSQLMap is a Python tool for auditing and automating injection attacks on NoSQL databases.

A Capture The Flag (CTF) platform for testing computer security skills

Vulnerable web application for beginners in penetration testing.

A tool for scanning Adobe Experience Manager instances for potential security vulnerabilities

OCaml bindings to the YARA scanning engine for integrating YARA scanning capabilities into OCaml projects