FFmpeg prebuilt binaries for NW.js / Chromium

bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.

Content released at NorthSec 2018 for my talk on prototype pollution

GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment

Dynamic analysis framework for JavaScript

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

An Eleventy starter project built to be fast

Available for legacy purposes. New users please see Jalangi2 https://github.com/Samsung/jalangi2

A Node.js vulnerability finding tool.

Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded

An experimental distributed JWT token cracker built using Node.js and ZeroMQ