Merge pull request #2822 from Meeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee/master

Create  node-integration.yaml

file/electron/node-integration-enabled.yaml

@@ -0,0 +1,21 @@
+id: node-integration-enabled
+
+info:
+  name: Node Integration Enabled
+  author: me9187
+  severity: critical
+  reference:
+    - https://blog.yeswehack.com/yeswerhackers/exploitation/pentesting-electron-applications/
+    - https://book.hacktricks.xyz/pentesting/pentesting-web/xss-to-rce-electron-desktop-apps
+  tags: electron,file,nodejs
+  # nodeIntegration in Electron Applications means you can turn XSS into RCE by calling require('child_process').exec('COMMAND');
+
+file:
+  - extensions:
+      - all
+
+    matchers:
+
+      - type: word
+        words:
+          - "nodeIntegration: true"