Hijagger
This tool checks every maintainer from every package in the NPM and Python Pypi registry for unregistered domains or unregistered MX records on those domains. Download the package index first! This can take a long time as the server is extremely slow (takes more than 30 mins): wget https://skimdb.npmjs.com/registry/_all_docs After this simply run the tool with ./hijagger npm. To see all options use the --help switch. The output is automatically saved to output.txt too. This tool will most probably run multiple days due to the high number of packages. To easily find the tool's output, you can use the following command: grep -i 'package' output.txt | less
FEATURES
ALTERNATIVES
A hosted web application security testing tool that enables security researchers to register, activate their accounts, and scan web applications for vulnerabilities.
A free and open-source tool for identifying vulnerabilities in Joomla-based websites.
Script to find exploits for vulnerable software packages on Linux systems using an exploit database.
An open-source tool for finding security vulnerabilities, compliance issues, and infrastructure misconfigurations in infrastructure-as-code
All-in-one vulnerability intelligence platform for prioritizing remediation efforts and driving security strategies.
Tool to identify and understand code-injection vulnerabilities in Windows 7 UAC whitelist system.
Python-based extension for integrating a Yara scanner into Burp Suite for on-demand website scans based on custom rules.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.