Results for: command injection

... OS command injection, directory listings, directory traversals, source exposure, file upload bypass, authentication bypass, XSS, HTTP header crlf injections, SQL injection, NoSQL injection, and more. For example, FuzzDB catalogs 56 patterns that can potentially be interpreted as a null byte and contains lists of commonly used methods and name-value pairs that trigger debug modes.

WebReaver is an elegant, easy to use and fully-automated, web application security security testing tool for Mac, Windows and Linux, suitable for novice as well as advanced users. WebReaver allows you easily test any web application for a large variety of web vulnerabilities from the sever kinds such as SQL Injection, local and remote file Includes, command Injection, cross-site scripting and expression Injection to the less severe ones such as variety of session and headers problems...

No more copy and pasting, create templates once and let Espanso do the rest for you. Customer support replies, sales pitches, medical reports, you name it. Espanso got you covered. Extend Espanso’s capabilities with packages, or create your owns and share them with the community on the Espanso Hub. For advanced use-cases, you can extend Espanso’s snippets with shell commands or custom scripts. No more copy-pasting from the terminal, inject the output into applications directly. Use forms...

A highly extensible Node.js and TypeScript framework for building APIs and microservices. A brand new LoopBack core to deliver great extensibility and flexibility written in TypeScript/ES2017. Create powerful APIs easily with a new creative experience for defining REST APIs and handling API requests/responses. A new, improved programming model with dependency injection and new concepts such as components, mixins, repositories, etc. make this the most extensible version yet. The LoopBack 4 CLI...

garak checks if an LLM can be made to fail in a way we don't want. garak probes for hallucination, data leakage, prompt injection, misinformation, toxicity generation, jailbreaks, and many other weaknesses. garak's a free tool, we love developing it and are always interested in adding functionality to support applications. garak is a command-line tool, it's developed in Linux and OSX. Just grab it from PyPI and you should be good to go. The standard pip version of garak is updated periodically...

CI Fuzz ensures robust and secure code with test coverage up to 100%. Use CI Fuzz from the command line or in the IDE of choice to generate thousands of test cases automatically. CI Fuzz analyzes code as it runs, just like a unit test, but with AI support to efficiently cover all paths through the code. Uncover real bugs in real-time and say goodbye to theoretical issues and false positives. Find real issues with all the information needed to quickly reproduce and fix them. Test your code...