Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/arshadkazmi42/npmdc-poc
NPM Dependency Confusion - PoC
https://github.com/arshadkazmi42/npmdc-poc
bugbounty confusion dependency infosec npm poc
Last synced: about 1 month ago
JSON representation
NPM Dependency Confusion - PoC
- Host: GitHub
- URL: https://github.com/arshadkazmi42/npmdc-poc
- Owner: arshadkazmi42
- Created: 2021-11-28T11:28:54.000Z (about 3 years ago)
- Default Branch: main
- Last Pushed: 2021-11-28T17:27:09.000Z (about 3 years ago)
- Last Synced: 2024-10-28T03:16:39.611Z (3 months ago)
- Topics: bugbounty, confusion, dependency, infosec, npm, poc
- Language: PHP
- Homepage:
- Size: 2.93 KB
- Stars: 0
- Watchers: 2
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# npmdc-poc
Template repository which contains dependency confusion poc for npm package
## Usage
1. Clone the repository
2. Update `package.json` file with the vulnerable package details
3. Update `pre.sh` without your RCE command
4. Publish the package
5. (Optional) `backend.php` (if you want to setup a php api which will email about the trigger)
## Disclaimer
This is only for educational purpose. User will be responsible for any usage of this.