17 Discord malware packages found in NPM repository
17 Discord malware packages found in NPM repository click here to read full Article Read More on latest Security Updates
Tagged: Repository
Keyhacks – A Repository Which Shows Quick Ways In Which API Keys Leaked By A Bug Bounty Program Can Be Checked To See If They'Re Valid
KeyHacks shows ways in which particular API keys found on a Bug Bounty Program can be used, to check if they are valid. @Gwen001 has scripted the entire process available here and it can...
Go-shellcode – a repository of Windows Shellcode runners and supporting utilities
go-shellcode is a repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls or techniques. The available Shellcode runners include: CreateFiber CreateProcess CreateProcessWithPipe CreateRemoteThread CreateRemoteThreadNative CreateThread CreateThreadNative...
Go-Shellcode – A Repository Of Windows Shellcode Runners And Supporting Utilities
go-shellcode is a repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls or techniques. The available Shellcode runners include: CreateFiber CreateProcess CreateProcessWithPipe CreateRemoteThread CreateRemoteThreadNative CreateThread...
Several Malicious Typosquatted Python Libraries Found On PyPI Repository
As many as eight Python packages that were downloaded more than 30,000 times have been removed from the PyPI portal for containing malicious code, once again highlighting how software package repositories are evolving into...
Python team fixes bug that allowed takeover of PyPI repository
The Python security team has fixed today three vulnerabilities impacting the Python Package Index (PyPI), including one that could have allowed a threat actor to take full control over the portal. click here to...
Eight Malicious Typosquatted Python Libraries with Over 30,000 Downloads Found On PyPI Repository
The packages could be abused to execute remote code, amass system information, steal credit card information and passwords auto-saved in browsers, and even steal Discord authentication tokens. click here to read full Article Read...
Gitls – Enumerate Git Repository URL From List Of URL / User / Org
Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline This tool is available when the repository, such as github, is included in the bugbounty scope. Sometimes specified as...
Code Scanning a GitHub Repository using GitHub Advanced Security within an Azure DevOps Pipeline by Kevin Alwell
GitHub Superior Safety now supports the capacity to evaluate your code for semantic vulnerabilities from inside your 3rd-occasion CI pipelines. Earlier, this ability was available completely with GitHub Steps. In this post, I will...
OpenEDR – Open EDR Public Repository
We at OpenEDR believe in creating a cybersecurity platform with its source code openly available to public, where products and services can be provisioned and managed together. EDR is our starting point. OpenEDR is...
GitDorker – A Tool To Scrape Secrets From GitHub Through Usage Of A Large Repository Of Dorks
GitDorker is a device that utilizes the GitHub Lookup API and an intensive list of GitHub dorks that I have compiled from many sources to deliver an overview of delicate facts stored on github...