Skip to content
@lunasec-io

LunaSec

Easily detect and fix security issues like Log4Shell with LunaSec's Open Source security tools. Come join the hundreds of companies already using LunaSec!

Pinned Loading

  1. lunasec Public

    LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the Luna…

    TypeScript 1.4k 166

  2. Spring4Shell-POC Public

    Forked from reznok/Spring4Shell-POC

    This is a dockerized application that is vulnerable to the Spring4Shell vulnerability (CVE-2022-22965).

    Python 104 76

Repositories

Showing 10 of 12 repositories
  • lunasec Public

    LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

    TypeScript 1,445 166 90 (1 issue needs help) 7 Updated May 2, 2024
  • vulnerable-app Public

    Intentionally vulnerable apps that are used to test LunaTrace.

    JavaScript 3 5 0 7 Updated Mar 2, 2023
  • damn-vulnerable-js-sca Public

    An intentionally vulnerable Javascript app containing notable vulnerabilities in its dependencies.

    JavaScript 19 Apache-2.0 25 1 1 Updated Jan 26, 2023
  • dvja Public Forked from appsecco/dvja

    Damn Vulnerable Java (EE) Application

    Java 0 MIT 521 0 0 Updated Jan 5, 2023
  • grype Public Forked from anchore/grype

    A vulnerability scanner for container images and filesystems

    Go 0 Apache-2.0 627 0 0 Updated Dec 29, 2022
  • cwe-sdk-javascript Public Forked from OWASP/cwe-sdk-javascript

    A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC

    TypeScript 1 Apache-2.0 10 0 0 Updated Nov 17, 2022
  • cve-2022-42889-text4shell-docker Public Forked from karthikuj/cve-2022-42889-text4shell-docker

    Dockerized POC for CVE-2022-42889 Text4Shell (with LunaSec research notes)

    Java 1 34 0 0 Updated Oct 20, 2022
  • nodejs-lockfile-parser Public Forked from snyk/nodejs-lockfile-parser

    Generate a Snyk dependency tree from package-lock.json or yarn.lock file

    TypeScript 0 31 0 0 Updated Sep 14, 2022
  • Spring4Shell-POC Public Forked from reznok/Spring4Shell-POC

    This is a dockerized application that is vulnerable to the Spring4Shell vulnerability (CVE-2022-22965).

    Python 104 243 0 1 Updated Aug 4, 2022
  • syft Public Forked from anchore/syft

    CLI tool and library for generating a Software Bill of Materials from container images and filesystems

    Go 1 Apache-2.0 630 0 0 Updated Apr 27, 2022