npm-zoo
npm-zoo is a zoo for malicious NPM packages, a curated list of known malicious NPM packages, allowing you to easily identify and avoid them. It provides a comprehensive list of known malicious NPM packages, along with information on how to identify and avoid them. npm-zoo is a valuable resource for developers, security researchers, and anyone looking to ensure the security of their projects and dependencies.
FEATURES
SIMILAR TOOLS
A LinkedIn reconnaissance tool for gathering information about companies and individuals on the platform.
All-in-one vulnerability intelligence platform for prioritizing remediation efforts and driving security strategies.
Simple script to check a domain's email protections and identify vulnerabilities.
FullHunt is a next-generation attack surface security platform that enables companies to discover, monitor, and secure their external attack surfaces.
Crt.sh is a website that allows users to search for SSL/TLS certificates of a targeted domain, providing transparency into certificate logs.
Amass by OWASP performs comprehensive attack surface mapping and asset discovery.
LeakIX is a red-team search engine that indexes mis-configurations and vulnerabilities online.
Automate OSINT for threat intelligence and attack surface mapping with SpiderFoot.
PINNED
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.