so.cl

Sandworm intercepts all potentially harmful Node & browser APIs, like arbitrary code execution (child_process.exec) or network calls (fetch). It knows what packages are responsible for each call.

Simple obfuscation techniques can confuse static analysis tools, but Sandworm’s dynamic analysis will always intercept risky calls at run time. Easy auditing & sandboxing for your JavaScript dependencies