gnh1201/welsonjs
1
0
Fork 0
mirror of https://github.com/gnh1201/welsonjs.git synced 2024-10-04 15:11:54 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity
164ef1d378
welsonjs/SECURITY.MD
Namhyeon, Go 164ef1d378
Update SECURITY.MD
2023-07-27 15:30:27 +09:00

2.7 KiB
Raw Blame History

Security Note for WelsonJS

Caution

This repository contains information on accessing Windows APIs and functions on the JavaScript runtime, along with recent case studies. While this can provide a flexible development environment for anyone, it can also be misused for malicious purposes. Please be aware that using this project to create abuse tools, such as a DoS attack, may result in legal punishment in your country. We encourage you to use this project only for creating web technology-based applications, like Electron, or legally permitted testing tools.

Known use cases

WelsonJS is typically used for the following purposes:

  • Testing web accessibility and compliance, including adherence to W3C standards (WEB-ARIA, WCAG), national laws (ADA/DDA, GDPR), and other relevant regulations.
  • Exploring vulnerabilities of equipment within the local network.
  • Improving the availability of VPN or Proxy clients.
  • Building automation, CD/CI (Continuous Integration/Continuous Delivery), DevOps, and SecOps.
  • Asset evaluation (e.g. Get a purchase history from online shopping and delivery websites)
  • Online video streaming quality testing and improvement.

Notes

  1. If you plan to use WelsonJS for a purpose other than those mentioned above, please contact us beforehand.
  2. If you are looking for ways to use WelsonJS more efficiently, referencing the LOLBAS (Living Off The Land Binaries and Scripts) list can be helpful.

Guidelines

For the use of online shopping and delivery websites

We are aware of cases where WelsonJS has been used for asset valuation to access websites of online shopping or delivery companies. This is a good use case, but there have been reports of website downtime caused by excessive concurrent requests. Please exercise caution and avoid excessive simultaneous executions.

For the use of online video streaming quality testing and improvement

We are aware of cases where WelsonJS is used for the purpose of video streaming quality testing and improvement. It should be used solely for expert-level streaming quality testing, often referred to by terms like 4K, 8K, HD, FHD, UHD, 720p, 1080p, etc. For such purposes, it is recommended to use videos provided by television manufacturers (e.g., LG, Samsung) or graphics card manufacturers (e.g., NVIDIA, AMD) specifically for testing purposes. It is essential to avoid using videos that contain content not legally permitted in the region. The WelsonJS developers and maintainers take no responsibility for the use of videos containing illegal content.

Report abuse

If you discover any instances of this project being misused, please report them.