Cookie Consent

Close
Cookies consenting list

For more information on cookies, please visit our Cookie Policy.

Cancel Save
listen.dev
  • Docs
  • Blog
  • Pricing
  • Get started for free
Demo Get started for free

Domain takeover

Attackers can gain control over an open source package by owning the maintainer’s domain.

  • attack vector
  • transitive dependencies
  • see all
  • All your base are belong to us

    All your domains are belong to us

    Let's discuss one of the most underrated but effective attack vectors: using expiring domains to take over npm packages.

    npm domain takeover attack vector
    Published by Garnet Research (@research) Garnet Research (@research)
    By @research 
    Date
    October 4, 2022
    Reading time 
     · 9 min
    Read more

Use open source with confidence.

Get started for free
listen.dev
Product
Verdict Pages GitHub Action lstn CLI Docs Pricing
Resources
Blog Discord GitHub FAQ Careers
Subscribe

Stay in the loop for latest updates, annoucements and insights on open source.

Get in touch.

Looks like you have Tracking Protection on... Please temporarily disable it in order to subscribe to our service.
  • Terms
  • Privacy
  • Security
Follow us on Twitter
Join our community on Discord
RSS Feed
garnet ©