RetireJS port to Python

16 Mar 2016

We have open sourced our port of RetireJS to Python. Feel free to use to test your applications / websites.

Source

Installation

pip install retirejs

How to use

import retirejs

retirejs.scan_endpoint("http://code.jquery.com/jquery-1.6.min.js")

Sample Output:

[{
	'detection': 'filecontent',
	'vulnerabilities': [{
		'info': ['http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4969', 'http://research.insecurelabs.org/jquery/test/'],
		'identifiers': {
			'CVE': ['CVE-2011-4969']
		},
		'severity': 'medium'
	}, {
		'info': ['http://bugs.jquery.com/ticket/11290', 'http://research.insecurelabs.org/jquery/test/'],
		'identifiers': {
			'bug': '11290',
			'summary': 'Selector interpreted as HTML'
		},
		'severity': 'medium'
	}, {
		'info': ['https://github.com/jquery/jquery/issues/2432', 'http://blog.jquery.com/2016/01/08/jquery-2-2-and-1-12-released/'],
		'identifiers': {
			'summary': '3rd party CORS request may execute'
		},
		'severity': 'medium'
	}],
	'version': '1.6.0',
	'component': 'jquery'
}]

Fallible Blog Adventures with looking under the hood

RetireJS port to Python

Source

Installation

How to use

Sample Output:

Related Posts

The Security Checklist 22 Jun 2016

Common issues with OTP based authentication 10 May 2016

Used your credit card online in India? It's probably stolen 30 Mar 2016