Phylum Logo

Phylum

0
Free
Visit Website

NPM has made great strides in improving the security of the ecosystem, but despite this, malicious packages like Phylum continue to be published, with the latest discovery of 137 malicious NPM packages on January 29, 2023. The malware payload in the postinstall script gathers system information and sends it to a remote server.

FEATURES

ALTERNATIVES

Binary analysis and management framework for organizing malware and exploit samples.

A Burp Suite plugin for automatically adding XSS and SQL payload to fuzz

Collection of malware persistence information and techniques

A cheat sheet for default credentials to aid in penetration testing and vulnerability assessment

A Python-based tool for detecting XSS vulnerabilities

A collection of YARA rules for public use, built from intelligence profiles and file work.

Cybersecurity tool merging DarunGrim's analysis algorithms, currently in internal testing for official release.

One stop shop for decompiling Android apps with a focus on regenerating R references.

PINNED