Sabotage: Code added to popular NPM package wiped files in Russia and Belarus Logo

Sabotage: Code added to popular NPM package wiped files in Russia and Belarus

0
Free
Visit Website

A developer has been caught adding malicious code to a popular open-source package that wiped files on computers located in Russia and Belarus as part of a protest that has enraged many users and raised concerns about the safety of free and open source software. The application, node-ipc, adds remote interprocess communication and neural networking capabilities to other open source code libraries. As a dependency, node-ipc is automatically downloaded and incorporated into other libraries, including ones like Vue.js CLI, which has more than 1 million weekly downloads. A deliberate and dangerous act Two weeks ago, the node-ipc author pushed a new version of the library that sabotaged computers in Russia and Belarus, the countries invading Ukraine and pro

FEATURES

ALTERNATIVES

A binary analysis and management framework for organizing and analyzing malware and exploit samples, and creating plugins.

A portable version of XSSHunter.com for finding and exploiting Cross-Site Scripting (XSS) vulnerabilities.

A PowerShell obfuscation detection framework designed to highlight the limitations of signature-based detection and provide a scalable means of detecting known and unknown obfuscation techniques.

A better version of my xssfinder tool that scans for different types of XSS on a list of URLs.

A deserialization payload generator for .NET formatters

Microservice for scanning files with Yara

Fernflower is an analytical decompiler for Java with command-line options and support for external classes.

A tool for finding and exploiting SQL injection vulnerabilities in web applications

PINNED