Audit Node Module folder with YARA rules

on

Audit Node Module folder with YARA rules

(New rules, PRs, feedbacks are highly appreciated)

GitHub Repo: https://github.com/rpgeeganage/audit-node-modules-with-yara

Purpose:

  • The purpose of this tool is to run a given set of YARA rules against the given node_module
    folder.
  • Help to detect supplier chain attacks
  • With this approach, We can define YARA rules to identify suspicious scripts which are injected into node packages.
  • This package can be added to the CI/CD
    pipeline
submitted by /u/geeganage
[link] [comments]

from hacking: security in practice https://ift.tt/3rnQdV9

Comments

Post a Comment