Security tool + attack database used to take quick action against newly-discovered vulnerabilities in the blockchain.

Last update: Jan 3, 2023

Overview

SolidGuard

Version: v1.0.1

SolidGuard is a Blockchain Security tool catered towards organizations who manages decentralized applications on the Ethereum blockchain. It is an attack database for documenting all major hacks that happened in the blockchain, and is also used to notify or pause decentralized applications that contain vulnerabilities published in the database.

This repository contains everything needed to run the server (minus the prerequisites)!

Preview

Deployment

To learn more on deploying the entire application via docker-compose, see deploy.md.

Contribute

To learn more on how to contribute to this repository, see contribute.md.

Credits

Lead Software Engineer: Jan Garong.
Lead Designer: Angela Shen.
Graphic Designers: Amy Li, Jackie.
Frontend Engineers: Vivek Kandathil, Peter Pham.
Backend Engineers: Meixuan (Mexi) Lu, Ruo Ning (Nancy) Qiu.
DevOps Engineers: Si (Leo) Wang, Stephen Guo.

@nodesecure/ci brings together a set of tools to identify dependencies vulnerabilities and track most common malicious code and patterns

NodeSecure CI Action @nodesecure/ci brings together a set of tools to identify dependencies vulnerabilities and track most common malicious code and p

Jul 29, 2022

Browser In The Browser (BITB) attack is a sophisticated phishing and hard to detect.

BITB Browser In The Browser (BITB) attack is a sophisticated phishing and hard to detect. Goto: 👉 MacOS-Chrome-DarkMode 👉 MacOS-Chrome-LightMode 👉

Dec 4, 2022

Zed Attack Proxy Scripts for finding CVEs and Secrets.

zap-scripts Zed Attack Proxy Scripts for finding CVEs and Secrets. Building This project uses Gradle to build the ZAP add-on, simply run: ./gradlew bu

Jan 3, 2023

Rainbow Table attack to break zkcrush.xyz and reveal your crush.

ZK-Crush-Break Rainbow Table attack to break zkcrush.xyz and reveal your crush. Background Amir released a project called zkcrush.xyz that allowed a u

Jul 1, 2022

🎯 Wallet Lite is a Quick and Simple way to use your Tokens of Lunes Blockchain in a light Chrome extension

Lunes Wallet Lite Offered by: Lunes Installing Web store: Lunes Lite will be available on Chrome Web Store Build: Requisites NodeJS (16 or higher) Git

Oct 25, 2022

Visualize, modify, and build your database with dbSpy! An open-source data modeling tool to facilitate relational database development.

Visualize, modify, and build your database with dbSpy! dbSpy is an open-source data modeling tool to facilitate relational database development. Key F

Dec 22, 2022

It is a very basic implementation of how blockchain works, mainly how the bitcoin blockchain.

How to run this program npm install node core/blockchain.js What is this It is a very basic implementation of how blockchain works, mainly how the bit

May 9, 2022

HackMIT 2022. 2nd Place in Blockchain for Society sponsored by Jump Crypto. A revolutionary web application that leverages machine learning and blockchain technology to improve the crowdsourcing experience!

📕 Wikisafe 📕 Wikisafe is a revolutionary new crowdsourcing web application that innovates the process of crowdsourcing information. This application

Dec 8, 2022

This tool uses native browser APIs to take screenshots of a given web page, tab, window, or the user's entire screen.

Jan 1, 2023

Releases(v1.0.3)

v1.0.3(Jul 7, 2022)
Date: July 6, 2022

Features:

Switch from using REST APIs to GraphQL.

Security:

Add manual SSL certificate generation scripts in /certbot/

Source code(tar.gz)
Source code(zip)
v1.0.2(Jun 13, 2022)
Date: June 12, 2022

Features:

Complete API and Client integration for all features, this includes:

Adds missing pagination.

Escaping of description.

Search bar.

Styling fixes.

Add monitoring tools such as:

metabase

portainer

Use SendGrid for sending emails instead of nodemailer.

Bug Fixes:

Fix authentication issues when performing Admin actions (i.e. verifying an exploit).

Fix issue where the .env file in the client folder will be picked up in docker-compose.

Fix approving issues.

Security:

Remove password from GET /api/user requests.

Source code(tar.gz)
Source code(zip)
v1.0.1(May 15, 2022)
Security:

Add SSL to the reverse proxy.

Source code(tar.gz)
Source code(zip)
v1.0(May 11, 2022)
Date: May 10, 2022

Features:

Add new homepage + about us.

Add an exploits dashboard.

Bug Fixes:

Add backend and frontend integration to all features implemented in Prototype v1.2

Fix docker deployment.

Security:

Replace JWT authentication with Session/Cookie authentication.

Replace email with username for authentication.

Add NGINX Proxy. No longer need to access the API and client on separate hosts!

Update SolidGuardManager smart contract to be upgradeable.

Disabled CORS.

Add rate limiting on requests.

Source code(tar.gz)
Source code(zip)

Owner

Team SolidGuard

GitHub

This project will be using various AI and Rule Engine algorithm to detect various attack against a company!

?? Introduction This project will be using various AI and Rule Engine algorithm to detect various attack against a website! ?? Mission After starting

4 Apr 29, 2022

A cyber-sec tool to be used responsibly in identifying XSS vulnerabilities

Visit the Breach website here Table of Contents About Breach Getting Started Demo Scan URL Results History Settings Looking Ahead Contributors License

39 Apr 14, 2022

A quick and easy to use security reconnaissance webapp tool, does OSINT, analysis and red-teaming in both passive and active mode. Written in nodeJS and Electron.

ᵔᴥᵔ RedJoust A quick and easy to use security reconnaissance webapp tool, does OSINT, analysis and red-teaming in both passive and active mode. Writte

17 Oct 31, 2022

This is a tic-tac-toe game but differs from most others as it carries the option of playing against an AI (COM) or against a friend.

TIC-TAC-TOE This is a simple tic-tac-toe game with the exception of playing against an algorithm or against a friend. At the very start, you have to s

4 Jul 2, 2022

A server setup to take screenshots against the green screen in-game.

alt:V Clothing Green Screener Support on Patreon. Seriously. Ever want screenshots of every single clothing item in GTA:V? Well this is your repositor

13 Dec 26, 2022

LunaSec - Open Source Security Software built by Security Engineers. Scan your dependencies for Log4Shell, or add Data Tokenization to prevent data leaks. Try our live Tokenizer demo: https://app.lunasec.dev

Our Software We're a team of Security Engineers on a mission to make awesome Open Source Application Security tooling. It all lives in this repo. Here

1.2k Jan 7, 2023

Interplanetary Database: A Database built on top of IPFS and made immutable using Ethereum blockchain.

IPDB IPDB (Interplanetary Database) is a key/value store database built on top of IPFS (Interplanetary File System). Project is intended to be an MVP

8 Oct 6, 2022

Been interested, studying, and developing blockchain security with a Zero Knowledge Proof (ZKP) and create a prototype on the current issue with Philippine's upcoming election. 📥

Implementation of Zero Knowledge Proofs in Cryptographic Voting ?? Reference: Cryptographic Voting – A Gentle Introduction Overview ????‍?? The main i

2 Apr 11, 2022

Harassment Manager is a web application that aims to empower users to document and take action on abuse targeted at them on online platforms.

Harassment Manager Online abuse and harassment silence important voices in conversation, forcing already marginalized people offline. Harassment Manag

71 Dec 6, 2022

Chrome extension that uses vulnerabilities CVE-2021-33044 and CVE-2021-33045 to log in to Dahua cameras without authentication.

DahuaLoginBypass Chrome extension that uses vulnerability CVE-2021-33044 to log in to Dahua IP cameras and VTH/VTO (video intercom) devices without au

71 Nov 26, 2022