Vulnerable Node
A vulnerable web site in NodeJS for testing security source code analyzers.
Vuldroid is a Vulnerable Android Application made with security issues in order to demonstrate how they can occur in code. Vulnerabilities Covered: * Code Execution via Malicious App * Steal Files via Webview using XHR request * Steal Files using Fileprovider via Intents * Steal Password ResetTokens/MagicLoginLinks * Webview Xss via Exported Activity * Webview Xss via DeepLink Intent * Sniffing Between Two Applications * Reading User Email via Broadcasts To Get started: * Install the APK from the repository and play around * Find the areas where you think this can be exploited Note: If you want to use your own firebase project for authentication, clone the repo and remove the google-services.json and add your project one.
A vulnerable web site in NodeJS for testing security source code analyzers.
A community website for API security news, vulnerabilities, and best practices
Automate the search for Exploits and Vulnerabilities in important databases.
A tool to run YARA rules against node_module folders to identify suspicious scripts
A series of small test cases designed to exercise different parts of a static security analyzer
An open source project for static analysis of vulnerabilities in application containers