/npmdc-poc

NPM Dependency Confusion - PoC

Primary LanguagePHP

npmdc-poc

Template repository which contains dependency confusion poc for npm package

Usage

  1. Clone the repository
  2. Update package.json file with the vulnerable package details
  3. Update pre.sh without your RCE command
  4. Publish the package
  5. (Optional) backend.php (if you want to setup a php api which will email about the trigger)

Disclaimer

This is only for educational purpose. User will be responsible for any usage of this.