GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → digitalcoyote → Nugetdefense

digitalcoyote / Nugetdefense

Licence: mit
An MSBuildTask that checks for known vulnerabilities. Inspired by OWASP SafeNuGet.

Labels

dotnetvulnerabilityscanning

Projects that are alternatives of or similar to Nugetdefense

Command Injection Payload List
🎯 Command Injection Payload List
Stars: ✭ 658 (+1395.45%)
Mutual labels:  vulnerability
Sqliv
massive SQL injection vulnerability scanner
Stars: ✭ 840 (+1809.09%)
Mutual labels:  scanning
Cve 2017 0065
Exploiting Edge's read:// urlhandler
Stars: ✭ 15 (-65.91%)
Mutual labels:  vulnerability
Openscap
NIST Certified SCAP 1.2 toolkit
Stars: ✭ 750 (+1604.55%)
Mutual labels:  scanning
Cve 2020 10199 cve 2020 10204
CVE-2020-10199、CVE-2020-10204漏洞一键检测工具,图形化界面。CVE-2020-10199 and CVE-2020-10204 Vul Tool with GUI.
Stars: ✭ 20 (-54.55%)
Mutual labels:  vulnerability
V3n0m Scanner
Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
Stars: ✭ 847 (+1825%)
Mutual labels:  vulnerability
Herpaderping
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
Stars: ✭ 614 (+1295.45%)
Mutual labels:  vulnerability
Labs
Vulnerability Labs for security analysis
Stars: ✭ 1,002 (+2177.27%)
Mutual labels:  vulnerability
Whitewidow
SQL Vulnerability Scanner
Stars: ✭ 926 (+2004.55%)
Mutual labels:  vulnerability
Poccollect
Poc Collected for study and develop
Stars: ✭ 15 (-65.91%)
Mutual labels:  vulnerability
Vfeed
The Correlated CVE Vulnerability And Threat Intelligence Database API
Stars: ✭ 826 (+1777.27%)
Mutual labels:  vulnerability
Whour
Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.
Stars: ✭ 18 (-59.09%)
Mutual labels:  vulnerability
Dracnmap
Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.
Stars: ✭ 861 (+1856.82%)
Mutual labels:  scanning
Bad Pdf
Steal Net-NTLM Hash using Bad-PDF
Stars: ✭ 748 (+1600%)
Mutual labels:  vulnerability
Blackwidow
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Stars: ✭ 887 (+1915.91%)
Mutual labels:  vulnerability
Singularity
A DNS rebinding attack framework.
Stars: ✭ 621 (+1311.36%)
Mutual labels:  vulnerability
Trivy
Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues
Stars: ✭ 9,673 (+21884.09%)
Mutual labels:  vulnerability
Vulnx
vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}
Stars: ✭ 1,009 (+2193.18%)
Mutual labels:  vulnerability
Burp Suite Software Version Checks
Burp extension to passively scan for applications revealing software version numbers
Stars: ✭ 29 (-34.09%)
Mutual labels:  scanning
Scanless
online port scan scraper
Stars: ✭ 875 (+1888.64%)
Mutual labels:  scanning
View All Similar Projects ➔

NuGetDefense

Join the chat at https://gitter.im/NuGetDefense/community NuGet version

An MSBuildTask that checks for known vulnerabilities. Inspired by OWASP SafeNuGet.

Docs

View the full documentation for NuGetDefense here

Features

  • Uses Multiple Sources to check for known vulnerabilities in third-party libraries (NuGet packages)
  • Simple installation/configuration: the NuGet Package is all you need.
  • Transitive Dependency Checking
    • SDK style projects only (older project format is not supported by the dotnet cli)
    • Uses the versions resolved by the dotnet cli at build
  • Project Reference Scanning
    • Scan all projects in a hierarchy by installing NuGet Defense to the top level package (pre-release)
  • Allow breaking the build based on severity of vulnerability.
  • Ignore specific vulnerabilities/packages.
  • Sensitive/Internal Packages filtering
    • Don't send packages that are sensitive/internal to remote vulnerability sources
  • Blocklisting NuGet Packages
  • Allowlisting NuGet Packages
  • MIT Licensed

Requirements

  • NuGetDefense v1.x is built only in .Net Core 3.1 so you will need the runtime/SDK installed.
  • NuGetDefense v2.x is built only in .Net 5.0 (significantly faster) so you will need the runtime/SDK installed.

How does it work?

NuGetDefense is a bundled dotnet tool that runs using an MSBuild ExecTask after your project finishes building.

Love it? Support it!

You can sponsor this project on Github and Patreon. The funds will be used to pay for software licenses and cloud/hardware costs that keep my projects running.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].