LunaSec

Easily detect and fix security issues like Log4Shell with LunaSec's Open Source security tools. Come join the hundreds of companies already using LunaSec!

United States of America

Pinned Repositories

cve-2022-42889-text4shell-docker
Dockerized POC for CVE-2022-42889 Text4Shell (with LunaSec research notes)
Language:Java1 1 01
damn-vulnerable-js-sca
An intentionally vulnerable Javascript app containing notable vulnerabilities in its dependencies.
Language:JavaScript14 3 113
dvja
Damn Vulnerable Java (EE) Application
Language:Java0 1 01
grype
A vulnerability scanner for container images and filesystems
Language:Go0 1 00
lunasec
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Language:TypeScript1.4k 30 290162
spring-rce-vulnerable-app
Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228) and the possible Spring RCE vulnerability.
Language:Java34 2 019
Spring4Shell-POC
This is a dockerized application that is vulnerable to the Spring4Shell vulnerability (CVE-2022-22965).
Language:Python104 4 076
syft
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Language:Go1 1 01
vulnerable-app
Intentionally vulnerable apps that are used to test LunaTrace.
Language:JavaScript2 3 05
yarn-plugin-workspace-lockfile
Yarn 2 plugin to create a separate lockfile per workspace
Language:JavaScript0 1 01

LunaSec's Repositories

lunasec-io/lunasec
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Language:TypeScript1.4k 30 290162
lunasec-io/Spring4Shell-POC
This is a dockerized application that is vulnerable to the Spring4Shell vulnerability (CVE-2022-22965).
Language:Python104 4 076
lunasec-io/spring-rce-vulnerable-app
Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228) and the possible Spring RCE vulnerability.
Language:Java34 2 019
lunasec-io/damn-vulnerable-js-sca
An intentionally vulnerable Javascript app containing notable vulnerabilities in its dependencies.
Language:JavaScript14 3 113
lunasec-io/vulnerable-app
Intentionally vulnerable apps that are used to test LunaTrace.
Language:JavaScript2 3 05
lunasec-io/cve-2022-42889-text4shell-docker
Dockerized POC for CVE-2022-42889 Text4Shell (with LunaSec research notes)
Language:Java1 1 01
lunasec-io/syft
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
Language:Go1 1 01
lunasec-io/cwe-sdk-javascript
A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
Language:TypeScript0 1 00
lunasec-io/dvja
Damn Vulnerable Java (EE) Application
Language:Java0 1 01
lunasec-io/grype
A vulnerability scanner for container images and filesystems
Language:Go0 1 00
lunasec-io/yarn-plugin-workspace-lockfile
Yarn 2 plugin to create a separate lockfile per workspace
Language:JavaScript0 1 01
lunasec-io/nodejs-lockfile-parser
Generate a Snyk dependency tree from package-lock.json or yarn.lock file
Language:TypeScript1 0

LunaSec

Pinned Repositories

cve-2022-42889-text4shell-docker

damn-vulnerable-js-sca

dvja

grype

lunasec

spring-rce-vulnerable-app

Spring4Shell-POC

syft

vulnerable-app

yarn-plugin-workspace-lockfile

LunaSec's Repositories

lunasec-io/lunasec

lunasec-io/Spring4Shell-POC

lunasec-io/spring-rce-vulnerable-app

lunasec-io/damn-vulnerable-js-sca

lunasec-io/vulnerable-app

lunasec-io/cve-2022-42889-text4shell-docker

lunasec-io/syft

lunasec-io/cwe-sdk-javascript

lunasec-io/dvja

lunasec-io/grype

lunasec-io/yarn-plugin-workspace-lockfile

lunasec-io/nodejs-lockfile-parser