Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings
@lirantal
lirantal
Follow
View lirantal's full-sized avatar
💟
AI Security, Hacking Agents, MCPs and Socially Engineering LLMs

Liran Tal lirantal

💟
AI Security, Hacking Agents, MCPs and Socially Engineering LLMs
🧠 Socially Engineering LLMs🤖 Hacking AI Agents🦄 Node.js Secure Coding🌟@github Star🏅@Openjs Pathfinder award 4 Security🥑 DevRel@snyksec

Organizations

@meanjs@nodejs@snyk@jsheroes@verdaccio@TheSecureDeveloper@snyk-labs@create-node@community-snyk

Block or report lirantal

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more aboutblocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more aboutreporting abuse.

Report abuse
lirantal/README.md

I created a series of comprehensive vulnerable code deep-dive training books on Secure Coding in Node.js to help developers master Node.js security with hands-on vulnerability review and remediation walkthroughs

Node.js Secure Coding: Defending Against Command Injection Vulnerabilities
Node.js Secure Coding: Defending Against Command Injection Vulnerabilities		Node.js Secure Coding: Prevention and Exploitation of Path Traversal Vulnerabilities
Node.js Secure Coding: Prevention and Exploitation of Path Traversal Vulnerabilities		Mitigate and Weaponize Code Injection Vulnerabilities
Node.js Secure Coding: Mitigate and Weaponize Code Injection Vulnerabilities

Software Engineer · Web Security Activist · Author

A GitHub Star, world-wide recognized for championing open source software and actively working within communities to inspire and lift other humans. Liran also received the OpenJS Foundation's Pathfinder for Security for his work on Node.js security. A JavaScript & Node.js software developer, building web applications and command-line tools. A web security activist , engaging in security research, software supply chain security, and regular contributor and project lead to OWASP Foundation projects. An avid member of the Node.js Foundation ecosystem security working group, dedicated to advancing Node.js security awareness and skill-set in the open source community. Developer Advocate at Snyk.

Twitter


Awarded:

Web Security Activism

Blog & other resources

Published Author

Essential Node.js Security
Essential Node.js Security
Liran Tal		Web Security: Learning HTTP Security Headers
Web Security: Learning HTTP Security Headers
Liran Tal		O'Reilly Serverless Security
O'Reilly Serverless Security
Guy Podjarny, Liran Tal		State of Open Source Security 2019
Snyk's State of Open Source Security 2019
Liran Tal

PinnedLoading

  1. npqnpqPublic

    safely install npm packages by auditing them pre-install stage

    JavaScript 1.5k 33

  2. awesome-mcp-best-practicesawesome-mcp-best-practicesPublic

    Build Awesome MCPs with Awesome Best Practices for MCP Servers and MCP Clients

    65 2

  3. ls-mcpls-mcpPublic

    List MCP Server configurations in your system used by AI applications like Cursor, Claude Desktop, VS Code and others

    TypeScript 76 8

  4. mcp-server-nodejs-api-docsmcp-server-nodejs-api-docsPublic

    MCP Server for Node.js API documentation

    TypeScript 8 4

  5. agent-rulesagent-rulesPublic

    Rules and instructions for agentic coding tools like Cursor, Claude CLI, Gemini CLI, Qodo, Cline and more

    TypeScript 43 1

  6. npm-security-best-practicesnpm-security-best-practicesPublic

    Collection of npm package manager Security Best Practices

    272 6

[8]ページ先頭
©2009-2025 Movatter.jp