Joi Security Logo

Joi Security

0
Free
Visit Website

This project provides a CLI for offensive and defensive security assessments on the Joi validator library. The goal is to ensure that a given Joi validation schema can resist against known security attacks such as SQL injections, path traversal, and SSRF attempts. To get started, install the latest joi-security CLI tool using NPM: npm install -g joi-security. Create a sample JavaScript file containing the Joi schema for login validation and scan the file using the joi-security scan command. The joi-security CLI includes a wide range of attacks like XSS, SQL injections, NoSQL injections, RCE, LFI, Overflow, SSRF, suspicious IP addresses, homograph attacks on domains & email addresses.

FEATURES

ALTERNATIVES

CobaltBus enables Cobalt Strike C2 traffic via Azure Servicebus for enhanced covert operations.

Customize Empire's GET request URIs, user agent, and headers for evading detection and masquerading as other applications.

Collection of penetration testing scripts for AWS with a focus on reconnaissance.

A cross-platform tool for creating malicious MS Office documents with hidden VBA macros and anti-analysis features.

Kali Linux is a specialized Linux distribution for cybersecurity professionals, focusing on penetration testing and security auditing.

A PowerShell toolkit for attacking Azure environments

A powerful tool for extracting passwords and performing various Windows security operations.

Automatic SSRF fuzzer and exploitation tool