npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@bhaveshbhardwaj7/adbis-sentinel

v3.1.0

Published

ADBIS automated security scanner — endpoint discovery & attack simulation

Downloads

306

Readme

@bhaveshbhardwaj7/adbis-sentinel

ADBIS Sentinel — Automated security scanner for the ADBIS control-plane. Discovers endpoints and simulates real-world hacker attack vectors to find vulnerabilities before attackers do.

Features

  • 🔍 Auto-Discovery — Probes all known ADBIS endpoints to map the attack surface
  • ⚔️ 17 Attack Modules — Covers OWASP Top 10 categories for dynamic scanning (DAST)
  • 📝 Static Analysis (SAST) — Scans your frontend and backend code for hardcoded API keys and insecure configurations
  • 📊 Structured Reports — JSON or rich console output with OWASP categorization
  • 🔑 Auth-Aware — Tests both authenticated and unauthenticated attack vectors
  • 🏗️ Extensible — Select specific modules or run the full suite

Attack Modules

| Module | Category | Description | |--------|----------|-------------| | oversized-payload | A05 | Tests body size limits with >1MB payloads | | malformed-json | A03 | Broken JSON to test error handling | | sql-injection | A03 | SQL payloads in URL params | | nosql-injection | A03 | MongoDB-style operators in JSON bodies | | path-traversal | A01 | ../ sequences in URL path segments | | xss-injection | A03 | <script> and event handler payloads | | prototype-pollution | A08 | __proto__ / constructor key injection | | header-injection | A03 | CRLF injection via forwarded headers | | auth-bypass | A01 | Missing/malformed auth tokens | | rate-limit-flood | A05 | 150+ rapid concurrent requests | | ssrf-probe | A10 | Internal IPs in source fields | | enum-ids | A01 | Predictable ID guessing | | schema-violation | A05 | Missing fields, wrong types, oversized arrays | | replay-attack | A08 | Stale-dated envelopes | | timestamp-manipulation | A08 | Future-dated events | | sse-abuse | A05 | 120 concurrent SSE connections | | containment-escalation | A01 | Spoofed actor identity in containment |

Quick Start

```bash
# Scan your local ADBIS instance (DAST)
npx tsx packages/adbis-sentinel/src/cli.ts scan --target http://localhost:8000

# Scan your local project code for flaws and leaked keys (SAST)
npx tsx packages/adbis-sentinel/src/cli.ts analyze --dir ./my-app-src

# Scan with authentication
npx tsx packages/adbis-sentinel/src/cli.ts scan --target http://localhost:8000 --api-key YOUR_SECRET

# Run specific modules only
npx tsx packages/adbis-sentinel/src/cli.ts scan --modules auth-bypass,sql-injection,rate-limit-flood

# Export JSON report
npx tsx packages/adbis-sentinel/src/cli.ts scan --json > report.json

# List all modules
npx tsx packages/adbis-sentinel/src/cli.ts modules

Programmatic Usage

import { ADBISSentinel } from "@bhaveshbhardwaj7/adbis-sentinel";

const sentinel = new ADBISSentinel({
  target: "http://localhost:8000",
  apiKey: "my-secret",
});

const report = await sentinel.scan();
console.log(`Found ${report.summary.total} vulnerabilities`);
console.log(`Critical: ${report.summary.critical}, High: ${report.summary.high}`);

🌐 Universal Web Architecture

ADBIS is a completely framework-agnostic universal security product. It does not depend on any specific application structure, backend framework, or frontend library. It is completely decoupled from any hardcoded application logic and works with any website.