Showing 88 open source projects for "command injection"

View related business solutions
  • Our Free Plans just got better! | Auth0 Icon
    Our Free Plans just got better! | Auth0

    With up to 25k MAUs and unlimited Okta connections, our Free Plan lets you focus on what you do best—building great apps.

    You asked, we delivered! Auth0 is excited to expand our Free and Paid plans to include more options so you can focus on building, deploying, and scaling applications without having to worry about your security. Auth0 now, thank yourself later.
    Try free now
  • $300 Free Credits for Your Google Cloud Projects Icon
    $300 Free Credits for Your Google Cloud Projects

    Start building on Google Cloud with $300 in free credits. No commitment, no credit card required until you're ready to scale.

    Launch your next project with $300 in free Google Cloud credits—no strings attached. Test, build, and deploy without risk. Use your credits across the entire Google Cloud platform to find what works best for your needs. After your credits are used, continue with always-free tier services. Only pay when you're ready to scale. Sign up in minutes and start exploring.
    Start Free Trial
  • 1
    Codex-5.5-codex-instruct-5.5

    Codex-5.5-codex-instruct-5.5

    Prompt-injection utility aimed at modifying how Codex CLI behaves

    Codex-5.5-codex-instruct-5.5 is a high-risk prompt-injection utility aimed at modifying how Codex CLI behaves. The repository presents itself as an early command-line version of a jailbreak-style tool for injecting unrestricted-mode instructions. It claims to use an official configuration mechanism rather than binary modification, network interception, or process tampering. The project includes a Python script, an examples folder, assets, a README, and an MIT license. ...
    Downloads: 12 This Week
    Last Update:
    See Project
  • 2
    SafeLine

    SafeLine

    Serve as a reverse proxy to protect your web services from attacks

    ...A web application firewall helps protect web apps by filtering and monitoring HTTP traffic between a web application and the Internet. It typically protects web apps from attacks such as SQL injection, XSS, code injection, os command injection, CRLF injection, LDAP injection, XPath injection, RCE, XXE, SSRF, path traversal, backdoor, brute force, HTTP-flood, bot abuse, among others. By deploying a WAF in front of a web application, a shield is placed between the web application and the Internet. While a proxy server protects a client machine’s identity by using an intermediary, a WAF is a type of reverse-proxy, protecting the server from exposure by having clients pass through the WAF before reaching the server. ...
    Downloads: 0 This Week
    Last Update:
    See Project
  • 3
    Symfony FrameworkBundle

    Symfony FrameworkBundle

    Provides a tight integration between Symfony components

    Symfony Framework Bundle is the core bundle of the Symfony PHP framework, providing the essential components and configuration needed to build robust web applications. It integrates various Symfony components, such as routing, templating, and dependency injection, into a cohesive structure. This bundle serves as the foundation for Symfony applications and enables developers to efficiently manage routes, templates, services, and more.
    Downloads: 6 This Week
    Last Update:
    See Project
  • 4
    sqlmap

    sqlmap

    Automatic SQL injection and database takeover tool

    sqlmap is a powerful, feature-filled, open source penetration testing tool. It makes detecting and exploiting SQL injection flaws and taking over the database servers an automated process. sqlmap comes with a great range of features that along with its powerful detection engine make it the ultimate penetration tester. It offers full support for MySQL, Oracle, PostgreSQL, Microsoft SQL Server, Microsoft Access, IBM DB2, SQLite, Firebird, and many other database management systems. It also...
    Downloads: 12 This Week
    Last Update:
    See Project
  • Build Agents and Models on One Platform Icon
    Build Agents and Models on One Platform

    Everything you need to build production-ready agents and models. Access 200+ Google and third-party AI models and tools.

    Gemini Enterprise Agent Platform is Google Cloud's comprehensive platform for developers to build, scale, govern, and optimize agents and models. Choose from Google's most advanced models and third-party models like Anthropic's Claude Model Family.
    Try It Free
  • 5
    dovi_tool

    dovi_tool

    dovi_tool is a CLI tool combining multiple utilities

    dovi_tool is a command-line utility written in Rust that provides a comprehensive set of tools for working with Dolby Vision metadata in video streams. It is designed to analyze, edit, and generate dynamic metadata used in high dynamic range video formats. The tool allows users to extract, inject, and modify RPU data, which controls how Dolby Vision content is displayed on compatible devices. It also supports demuxing and muxing HEVC streams, enabling manipulation of enhancement layers and...
    Downloads: 35 This Week
    Last Update:
    See Project
  • 6
    tirith

    tirith

    Your browser catches homograph attacks

    Tirith is a terminal security guardrail that inspects what you paste or run in your shell and blocks or warns on suspicious patterns before execution, addressing an area where terminals traditionally provide almost no protection. It targets real-world attack classes like Unicode homograph URLs (lookalike domains), terminal injection tricks (ANSI escape sequences and bidi overrides), and “pipe-to-shell” installation patterns such as curl | bash that attackers frequently abuse. The project emphasizes local-only analysis with no telemetry and no background daemons, so it can run offline and keep sensitive command context on-device. It integrates into popular shells via hooks (zsh, bash, fish, and PowerShell), including paste-aware protections so hidden characters or malicious rewrites get caught at the moment they enter the terminal.
    Downloads: 5 This Week
    Last Update:
    See Project
  • 7
    NoneBot

    NoneBot

    Asynchronous multi-platform robot framework written in Python

    ...NoneBot2 provides an easy-to-use, interactive command-line tool -- nb-cli, making it easier to get started with NoneBot2 for the first time. The plug-in system is the core of NoneBot2, through which the modularization and function expansion of the robot can be realized, which is convenient for maintenance and management.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 8
    Nunu

    Nunu

    A CLI tool for building Go applications

    Nunu is a CLI scaffolding tool for building Go applications; it aggregates and encapsulates popular Go ecosystem libraries to provide a modular, high‑performance, extensible foundation, complete with documentation and test support. Nunu is a scaffolding tool for building Go applications. Its name comes from a game character in League of Legends, a little boy riding on the shoulders of a Yeti. Just like Nunu, this project stands on the shoulders of giants, as it is built upon a combination of...
    Downloads: 8 This Week
    Last Update:
    See Project
  • 9
    Sec-Context

    Sec-Context

    AI Code Security Anti-Patterns distilled from 150+ sources

    ...It compiles insights from over 150 industry and academic sources into structured reference documents that outline real-world security problems such as hardcoded secrets, SQL injection, cross-site scripting, command injection, weak password storage, and other frequent issues that occur when code is auto-generated without context of best practices. Each anti-pattern is paired with a secure coding alternative and explanation, offering educational value for both humans and automated review agents designed to flag or correct unsafe patterns.
    Downloads: 0 This Week
    Last Update:
    See Project
  • Fully Managed MySQL, PostgreSQL, and SQL Server Icon
    Fully Managed MySQL, PostgreSQL, and SQL Server

    Automatic backups, patching, replication, and failover. Focus on your app, not your database.

    Cloud SQL handles your database ops end to end, so you can focus on your app.
    Try Free
  • 10
    Slim

    Slim

    PHP micro framework that helps you quickly write web applications

    ...Slim supports dependency injection so you have complete control of your external tools. Use any Container-Interop container. Before you can get up and running with Slim you will need to choose a PSR-7 implementation that best fits your application.
    Downloads: 3 This Week
    Last Update:
    See Project
  • 11
    papermill

    papermill

    Parameterize, execute, and analyze notebooks

    papermill is a Python library and command-line tool that transforms Jupyter Notebooks into repeatable, parameterized workflows by allowing users to define editable parameters within notebooks and then programmatically execute them with different inputs. Instead of manually opening and running a notebook inside JupyterLab or Notebook every time, Papermill lets you inject new values into a specially tagged parameters cell and execute the entire notebook automatically via a script or automation...
    Downloads: 3 This Week
    Last Update:
    See Project
  • 12
    Laravel Installer

    Laravel Installer

    The Laravel application installer

    Laravel is a web application framework with expressive, elegant syntax. A web framework provides a structure and starting point for creating your application, allowing you to focus on creating something amazing while we sweat the details. Laravel strives to provide an amazing developer experience while providing powerful features such as thorough dependency injection, an expressive database abstraction layer, queues, and scheduled jobs, unit and integration testing, and more. There are a...
    Downloads: 22 This Week
    Last Update:
    See Project
  • 13
    garak

    garak

    The LLM vulnerability scanner

    garak checks if an LLM can be made to fail in a way we don't want. garak probes for hallucination, data leakage, prompt injection, misinformation, toxicity generation, jailbreaks, and many other weaknesses. garak's a free tool, we love developing it and are always interested in adding functionality to support applications. garak is a command-line tool, it's developed in Linux and OSX. Just grab it from PyPI and you should be good to go. The standard pip version of garak is updated periodically. garak has its own dependencies, you can to install garak in its own Conda environment. garak needs to know what model to scan, and by default, it'll try all the probes it knows on that model, using the vulnerability detectors recommended by each probe. ...
    Downloads: 5 This Week
    Last Update:
    See Project
  • 14
    Squel

    Squel

    SQL query string builder for Javascript

    Squel is a JavaScript library for fluent and safe SQL query string building, usable both in Node.js environments and in the browser. Works in Node.js and in the browser. Supports the standard SQL queries: SELECT, UPDATE, INSERT, and DELETE. Supports non-standard commands for popular DB engines such as MySQL. Supports parameterized queries for safe value escaping. It can be customized to build any query or command of your choosing. Uses method chaining for ease of use.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 15
    AWS X-Ray SDK for Go

    AWS X-Ray SDK for Go

    AWS X-Ray SDK for the Go programming language

    AWS X-Ray recommends using AWS Distro for OpenTelemetry (ADOT) to instrument your application instead of this X-Ray SDK due to its wider range of features and instrumentations. See the AWS X-Ray docs on Working with Go for more help with choosing between ADOT and X-Ray SDK. Install the SDK using the following command (The SDK's non-testing dependencies will be installed): Use go get to retrieve the SDK to add it to your GOPATH workspace. X-Ray Go SDK will by default generate no-op trace and segment id for unsampled requests and secure random trace and entity id for sampled requests. If customer wants to enable generating secure random trace and entity id for all the (sampled/unsampled) requests (this is applicable for trace id injection into logs use case) then they achieve that by setting AWS_XRAY_NOOP_ID environment variable as False.
    Downloads: 11 This Week
    Last Update:
    See Project
  • 16
    Micronaut

    Micronaut

    Micronaut Application Framework

    Micronaut is a modern, JVM-based, full-stack Java framework designed for building modular, easily testable JVM applications with support for Java, Kotlin, and the Groovy language. Micronaut is developed by the creators of the Grails framework and takes inspiration from lessons learned over the years building real-world applications from monoliths to microservices using Spring, Spring Boot, and Grails. Micronaut aims to provide all the tools necessary to build JVM applications. With Micronaut...
    Downloads: 1 This Week
    Last Update:
    See Project
  • 17
    Claude Code Security Reviewer

    Claude Code Security Reviewer

    An AI-powered security review GitHub Action using Claude

    The claude-code-security-review repository implements a GitHub Action that uses Claude (via the Anthropic API) to perform semantic security audits of code changes in pull requests. Rather than relying purely on pattern matching or static analysis, this action feeds diffs and surrounding context to Claude to reason about potential vulnerabilities (e.g. injection, misconfigurations, secrets exposure, etc). When a PR is opened, the action analyzes only the changed files (diff-aware scanning),...
    Downloads: 1 This Week
    Last Update:
    See Project
  • 18
    SafeClaw

    SafeClaw

    Chat with it via text and voice

    SafeClaw is an open-source, entirely local alternative to cloud-based AI assistants like OpenClaw, enabling users to build a personal assistant that runs on their own machine without incurring API usage charges or exposing data to third-party services. It emphasizes privacy and predictability by using traditional programming, rule-based intent parsing, and established machine learning tools rather than large language models, meaning there are no per-token API costs and deterministic...
    Downloads: 0 This Week
    Last Update:
    See Project
  • 19

    waymap

    Waymap is a fast and optimized web vulnerability scanner

    ...Waymap is a fast and optimized And Automated web vulnerability scanner designed for penetration testers. It effectively identifies vulnerabilities by testing against a variety of payloads. Features Overview Latest Update v5.2.1 New Sql Injection Scanning Module High Accuracy And Less False Positive Access it using: --scan sqli v5.3.1 Added Boolean Based Sqli Testing (OWN LOGIC) High Accuracy, Can Give False Positive Sometimes Access it using: --scan sqli Waymap Features Vulnerability Scanning Modules: SQL Injection (SQLi) Command Injection Server-Side Template Injection (SSTI) Cross-Site Scripting (XSS) with filter bypass payload testing Local File Inclusion (LFI) Open Redirect Carriage Return and Line Feed (CRLF) Cross-Origin Resource Sharing (CORS) Critical and High-Risk Scan Profiles using CVE exploits (32 CVEs: WordPress - 19, Drupal - 4, Joomla - 7, Generic/Others - 2)
    Downloads: 3 This Week
    Last Update:
    See Project
  • 20

    Secure Protocol Format

    Generic binary protocol library that prevents injection attacks

    ...In addition to delimiting data by length, it also affords programmers the ability to use text for describing data, just like tags are used in HTML and XML. Thus, SPF provides a simple and practical approach to preventing command injection attacks while allowing text to describe data.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 21
    Emod Mouse Macro Windows 11

    Emod Mouse Macro Windows 11

    Light weight mouse and keyboard macro recording machine for windows 11

    Emod Mouse Macro stands out as a premier, free solution for recording keyboard and mouse sequences. Unlike traditional macro tools that force you to manually input X and Y coordinates and tedious command strings, Emod Mouse Macro offers a more intuitive approach by capturing your actual movements, clicks, and keystrokes in real time. Beyond its advanced recording capabilities, Emod Mouse Macro provides the flexibility to save your custom scripts, allowing you to build a library and load...
    Downloads: 7 This Week
    Last Update:
    See Project
  • 22
    banana-php

    banana-php

    A balanced, adaptable PHP framework for all skill levels.

    BANANA-PHP (Balanced Adaptable Next-Generation Advanced Nimble Architecture) is a flexible PHP framework designed for developers of all experience levels. It combines beginner-friendly simplicity with professional-grade features like: Smart Routing: Auto-configured with override options. BananaORM: Intuitive database management. Built-in Security: CSRF, XSS, and SQL injection protection. Skill-Adaptive Modes: Switch between beginner, intermediate, and advanced syntax. Perfect...
    Downloads: 0 This Week
    Last Update:
    See Project
  • 23
    yt-dlite

    yt-dlite

    Video\Audio downloader from infinity sites &CONVERTER, include 4K

    Yt-dlite is an advanced desktop browser supporting 10M+ sites for professionals and thousands for regular users. This revolutionary platform offers unprecedented features including custom JavaScript injection and user-defined downloading engines. The sophisticated interface combines advanced content acquisition with elegant design, pre-loaded with yt-dlp, aria2c, and proprietary engines enabling unlimited concurrent downloads. Users can capture videos, documents, and media from any...
    Downloads: 14 This Week
    Last Update:
    See Project
  • 24
    CerberusCMS5

    CerberusCMS5

    Cerberus Content Management System

    Cerberus Content Management System is a dynamic, secure and infinitely expandable CMS designed after a Unix-Like model. It is a custom written Web Application Framework ( W.A.F. ) with a consistent and custom written Pre-Hyper-Text-Post-Processor Programming Code Framework ( P.C.F. ). This Web Application Software Project' aim is to be the fastest and most secure Web Application Framework, Web Application Programming Code Framework, Text, Voice and Video Communications Platform and Content...
    Downloads: 19 This Week
    Last Update:
    See Project
  • 25
    Cerberus Content Management System 6

    Cerberus Content Management System 6

    Cerberus Content Management System

    Cerberus Content Management System is a dynamic, secure and infinitely expandable CMS designed after a Unix-Like model complete with a Unix-Like Kernel File named: Cerberus. It is a custom written Web Application Framework ( W.A.F. ) with a consistent and custom written Pre-Hyper-Text-Post-Processor Programming Code Framework ( P.C.F. ). This Web Application Software Project' aim is to be the fastest and most secure Web Application Framework, Web Application Programming Code Framework, Text,...
    Downloads: 26 This Week
    Last Update:
    See Project
  • Previous
  • You're on page 1
  • 2
  • 3
  • 4
  • Next