The Node.js Bug Bounty Program is a program managed through the HackerOne platform, aiming to identify and fix security vulnerabilities in the Node.js ecosystem. The program is led by a team of experts, including @fraxken, @marco-ippolito, @mdawson, @RafaelGSS, and @ulisesGascon, with the goal of making Node.js a more secure platform. The program is currently working on several initiatives, including the Permission Model, Automating Security Release Process, and Assessment against best practices. For more information, please visit the program's page on HackerOne.
A vulnerability assessment and management tool that uses patented technology to accurately identify vulnerabilities and prioritize them by risk.
SecurityVulnerability.io simplifies the process of collecting, enriching, and presenting vulnerability information for both human and machine consumption.
A disclosure of a bug found in Twitter's Vine and the process of procuring the source code.
A BloodHoundAD Report Engine for Security Teams to identify Active Directory security vulnerabilities and harden common configuration vulnerabilities and oversights.
A collection of 132 exploits added to Packet Storm in April 2024
A tool that uses NLP and ML to identify potential software vulnerabilities from git commit messages
SSLyze is a fast and powerful SSL/TLS scanning tool and Python library with a focus on speed, reliability, and ease of integration.
A LinkedIn reconnaissance tool for gathering information about companies and individuals on the platform.
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.