Search Results for "command injection"
Sort By:
Showing 71 open source projects for "command injection"
View related business solutions-
Our Free Plans just got better! | Auth0 by OktaYou asked, we delivered! Auth0 is excited to expand our Free and Paid plans to include more options so you can focus on building, deploying, and scaling applications without having to worry about your secuirty. Auth0 now, thank yourself later.
-
Free CRM Software With Something for EveryoneThink CRM software is just about contact management? Think again. HubSpot CRM has free tools for everyone on your team, and it’s 100% free. Here’s how our free CRM solution makes your job easier.
-
1
sqlmap
Automatic SQL injection and database takeover tool
sqlmap is a powerful, feature-filled, open source penetration testing tool. It makes detecting and exploiting SQL injection flaws and taking over the database servers an automated process. sqlmap comes with a great range of features that along with its powerful detection engine make it the ultimate penetration tester. It offers full support for MySQL, Oracle, PostgreSQL, Microsoft SQL Server, Microsoft Access, IBM DB2, SQLite, Firebird, and many other database management systems. It also... -
2
Nativefier
Make any web page a desktop application
Tired of having to search through numerous open tabs on your browser just to view a web page that you regularly view? Make things easier and more convenient for yourself with Nativefier! Nativefier is a command-line tool that easily creates a desktop app for any web site with minimal configuration. It creates an Electron (which uses Chromium under the hood) based native wrapper in an OS executable (.app, .exe, etc) for use on Windows, macOS and Linux. Using Nativefier is absurdly simple. Just... -
3
SafeLine
Serve as a reverse proxy to protect your web services from attacks
SafeLine is a self-hosted WAF(Web Application Firewall) to protect your web apps from attacks and exploits. A web application firewall helps protect web apps by filtering and monitoring HTTP traffic between a web application and the Internet. It typically protects web apps from attacks such as SQL injection, XSS, code injection, os command injection, CRLF injection, LDAP injection, XPath injection, RCE, XXE, SSRF, path traversal, backdoor, brute force, HTTP-flood, bot abuse, among others... -
4
Nativefier
Make any web page a desktop application
Nativefier is a command-line tool designed to create a desktop app for any web site with minimal configuration. Apps are wrapped by Electron (using Chromium under the hood) in an OS executable (.app, .exe, etc) for use on Windows, macOS and Linux. Nativefier will try to determine the app name, and well as lots of other options. If desired, these options can be overwritten. For example, to override the name, nativefier --name 'My Medium App' 'medium.com' Read the API documentation or run... -
Manage printing in a cost-efficient and eco-friendly way with Gelato.The world's largest print on demand network with 140+ production partners across 32 countries. Gelato offers end-to-end design, production and logistics for individuals looking to start their own business today!
-
5
Laravel Installer
The Laravel application installer
Laravel is a web application framework with expressive, elegant syntax. A web framework provides a structure and starting point for creating your application, allowing you to focus on creating something amazing while we sweat the details. Laravel strives to provide an amazing developer experience while providing powerful features such as thorough dependency injection, an expressive database abstraction layer, queues, and scheduled jobs, unit and integration testing, and more -
6
Slim
PHP micro framework that helps you quickly write web applications
We recommend you install the Slim Framework with the Composer dependency manager. The easiest way to start working with Slim is to create a project using Slim-Skeleton as a base by running a bash command. Slim provides a fast and powerful router that maps route callbacks to specific HTTP request methods and URIs. It supports parameters and pattern matching. Build your application with concentric middleware to tweak the HTTP request and response objects around your Slim app. Slim supports any... -
7
garak
Developers and anyone seeking an LLM solution to scan for vulnerabilit
garak checks if an LLM can be made to fail in a way we don't want. garak probes for hallucination, data leakage, prompt injection, misinformation, toxicity generation, jailbreaks, and many other weaknesses. garak's a free tool, we love developing it and are always interested in adding functionality to support applications. garak is a command-line tool, it's developed in Linux and OSX. Just grab it from PyPI and you should be good to go. The standard pip version of garak is updated periodically... -
8
NoneBot
Asynchronous multi-platform robot framework written in Python
Use NB-CLI to quickly build your own robot. Plug-in development, modular management. Supports multiple platforms and multiple incident response methods. Asynchronous priority development to improve operational efficiency. Simple and clear dependency injection system, built-in dependency functions reduce user code. NoneBot2 is a modern, cross-platform, and extensible Python chatbot framework. It is based on Python's type annotations and asynchronous features, and can provide convenient... -
9
Nativefier Desktop
Make any web page a desktop application
Nativefier is a command-line tool to easily create a “desktop app” for any web site with minimal fuss. Apps are wrapped by Electron (which uses Chromium under the hood) in an OS executable (.app, .exe, etc) usable on Windows, macOS and Linux. -
Bright Data - All in One Platform for Proxies and Web ScrapingBright Data offers the highest quality proxies with automated session management, IP rotation, and advanced web unlocking technology. Enjoy reliable, fast performance with easy integration, a user-friendly dashboard, and enterprise-grade scaling. Powered by ethically-sourced residential IPs for seamless web scraping.
-
10
Micronaut
Micronaut Application Framework
... you can build message-driven applications, command-line applications, HTTP servers, and more whilst for Microservices in particular Micronaut also provides distributed configuration. This is achieved by pre-computing the framework infrastructure at compilation time which reduces the logic required at runtime for the application to work. Compatible with Java, Groovy, and Kotlin, with Scala on the roadmap. -
11
AngularFire
The official Angular library for Firebase
.... AngularFire dynamically imports much of Firebase, reducing time to load your app. Get your Angular application deployed on Firebase Hosting with a single command. Zero-effort Angular Router awareness in Google Analytics. Guard your Angular routes with built-in Firebase Authentication checks. -
12
Bank Vaults
K8s operator, Go client with automatic token renewal
The Vault Swiss Army knife, which makes enterprise-grade security attainable on Kubernetes. It has many 'blades' that cut through the security problem: the Bank-Vaults operator provides automation; a Go client with automatic token renewal that provides dynamic secret generation, multiple unseal options, and more; a CLI tool to initialize, unseal and configure Vault with authentication methods and secret engines; and direct secret injection into Pods to reduce the attack surface. Automates... -
13
AWS X-Ray SDK for Go
AWS X-Ray SDK for the Go programming language
AWS X-Ray recommends using AWS Distro for OpenTelemetry (ADOT) to instrument your application instead of this X-Ray SDK due to its wider range of features and instrumentations. See the AWS X-Ray docs on Working with Go for more help with choosing between ADOT and X-Ray SDK. Install the SDK using the following command (The SDK's non-testing dependencies will be installed): Use go get to retrieve the SDK to add it to your GOPATH workspace. X-Ray Go SDK will by default generate no-op trace... -
14
Activiti
Light-weight workflow and business process management pltaform
Helping businesses solve automation challenges in distributed, highly-scalable and cost effective infrastructures. Activiti is the leading lightweight, java-centric open-source BPMN engine supporting real-world process automation needs. Activiti Cloud is now the new generation of business automation platform offering a set of cloud native building blocks designed to run on distributed infrastructures. Inmutable, scalable & pain free Process & Decision Runtimes designed to integrate with your... -
15
CerberusCMS5
Cerberus Content Management System
Cerberus Content Management System is a dynamic, secure and infinitely expandable CMS designed after a Unix-Like model. It is a custom written Web Application Framework ( W.A.F. ) with a consistent and custom written Pre-Hyper-Text-Post-Processor Programming Code Framework ( P.C.F. ). This Web Application Software Project' aim is to be the fastest and most secure Web Application Framework, Web Application Programming Code Framework, Text, Voice and Video Communications Platform and Content... -
16
waymap
Waymap is a fast and optimized web vulnerability scanner built for pen
Waymap - Web Vulnerability Scanner Current Version: 1.3.1 Author: Trix Cyrus Contributions: Yash (0day-Yash) & Jennin (@JeninSutradhar) Copyright: © 2024 Trixsec Org Maintained: Yes What is Waymap? Waymap is a fast and optimized And Automated web vulnerability scanner designed for penetration testers. It effectively identifies vulnerabilities by testing against a variety of payloads. -
17
cerberuscms2
Cerberus Content Management System
Cerberus Content Management System is a dynamic, secure and infinitely expandable CMS designed after a Unix-Like model. It is a custom written Web Application Framework ( W.A.F. ) with a consistent and custom written Pre-Hyper-Text-Post-Processor Programming Code Framework ( P.C.F. ). This Web Application Software Project' aim is to be the fastest and most secure Web Application Framework, Web Application Programming Code Framework, Text, Voice and Video Communications Platform and Content... -
18
KumoMTA
The first Open-Source high-performance MTA for high-volume senders
KumoMTA is an Open-Source, enterprise-grade email message transfer agent (MTA) software for sending high-volume, business-critical emails. KumoMTA is typically chosen by high-volume email users looking to replace PowerMTA, Momentum, or traditional Open Source MTAs. KumoMTA offers high-performance message relay to the tune of millions of messages per hour per server, combined with extreme flexibility and configurability through its use of a Lua scripting engine for configuration and... -
19
Secure Protocol Format
Generic binary protocol library that prevents injection attacks
... delimiters. The Distinguished Encoding Rules, or DER, of the ASN.1 standard follows this approach; however, the DER specification includes numerous constraints and its implementation involves some complexity. The Secure Protocol Format, or SPF, was created as a simplified version of DER. Thus, SPF prevents command injection attacks by guaranteeing that the interpretation of data cannot change during transfer. -
20
Swoft
PHP Microservice full Coroutine framework
... three years of accumulation and direction exploration, Swoft has made Swoft the Spring Cloud in the PHP world, which is the best choice for PHP's high-performance framework and microservices management. Built-in high-performance network server(HTTP/Websocket/RPC/TCP). Flexible componentization. Flexible annotation function. Diversified command terminal(Console). Powerful Aspect-Oriented Programming. Perfect Container management, Dependency Injection (DI). Flexible event mechanism. -
21
FireCX
Open source OWASP penetration testing tool written in Python 3
FireCX is an open source OWASP penetration testing tool written in Python 3, that can speed up the the process of finding common PHP vulnerabilities in PHP code, i.e. command injection, local/remote file inclusion and SQL injection. -
22
OfficeFloor
inversion of coupling control
OfficeFloor provides inversion of coupling control, with its: - dependency injection - continuation injection - thread injection For more information visit the OfficeFloor web site ( http://officefloor.net ) -
23
PHPCorrector
XSS and SQLi vulnerabilities corrrector for PHP web applications
PHPCorrector is a tool that scans your PHP code to find Cross-Site Scripting (XSS) and SQL Injection (SQLi) vulnerabilities. When a vulnerability is found, it is corrected automatically. -
24
Python Taint
Static Analysis Tool for Detecting Security Vulnerabilities in Python
Static analysis of Python web applications based on theoretical foundations (Control flow graphs, fixed point, dataflow analysis) Detect command injection, SSRF, SQL injection, XSS, directory traveral etc. A lot of customization is possible. For functions from builtins or libraries, e.g. url_for or os.path.join, use the -m option to specify whether or not they return tainted values given tainted inputs, by default this file is used. -
25
Mist Browser
Mist. Browse and use Ðapps on the Ethereum network.
... package to create pure static files. For development we start the interface with a Meteor server for auto-reload etc. Client binaries (e.g. geth) specified in clientBinaries.json will be checked during every startup and downloaded if out-of-date, binaries are stored in the config folder. You can pass command-line options directly to Geth by prefixing them with --node- in the command-line invocation.