Insider

Focus

Focused on covering the OWASP Top 10, making source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline.

Supported Technologies

• Java (Maven and Android)
• Kotlin (Android)
• Swift (iOS)
• .NET Full Framework
• C#
• JavaScript (Node.js)

Installation

You can install Insider using precompiled binaries or from source.

Precompiled Binaries

We have precompiled binaries for Linux, Windows, and macOS operational systems that you can find here.

Usage

insider -exclude value -jobs int -no-html -no-json -quiet -security float -target string -tech string -v -version

Supported technologies: android, java, ios, javascript, csharp
Example of use:
  # Run JavaScript analysis on specific directory
  insider -tech javascript -target <directory>

Example

# Check the correct release for your environment
$ wget https://github.com/insidersec/insider/releases/download/2.1.0/insider_2.1.0_linux_x86_64.tar.gz
$ tar xf insider_2.1.0_linux_x86_64.tar.gz 
$ chmod +x insider
$ ./insider --tech javascript   --target <projectfolder>

Docker

$ docker run --rm -v $(pwd):/target-project insidersec/insider -tech <tech> -target /target-project

Contribution Your contributions and suggestions are heartily welcome. See here the contribution guidelines Please, report bugs via issues page

License

• This work is licensed under MIT.

> Visit Insider CLI Website <