Node.js Bug Bounty Program
The Node.js Bug Bounty Program is a program managed through the HackerOne platform, aiming to identify and fix security vulnerabilities in the Node.js ecosystem. The program is led by a team of experts, including @fraxken, @marco-ippolito, @mdawson, @RafaelGSS, and @ulisesGascon, with the goal of making Node.js a more secure platform. The program is currently working on several initiatives, including the Permission Model, Automating Security Release Process, and Assessment against best practices. For more information, please visit the program's page on HackerOne.
FEATURES
ALTERNATIVES
Automate OSINT for threat intelligence and attack surface mapping with SpiderFoot.
An Open Source supply chain security and auditing tool that tracks projects and dependencies, monitoring for vulnerabilities and issues.
Pac-resolver, a popular NPM package with 3 million weekly downloads, has a severe remote code execution flaw.
Next-generation Linux exploit suggester with improved features for finding privilege escalation vulnerabilities.
An extensible, heuristic-based vulnerability scanning tool for installed npm packages.
SecurityVulnerability.io simplifies the process of collecting, enriching, and presenting vulnerability information for both human and machine consumption.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
RoboShadow
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.