Alternatives and similar repositories for auditjs

Users that are interested in auditjs are comparing it to the libraries listed below

• zaproxy / zap-api-nodejs
  ☆49Updated 2 weeks ago
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆401Updated 6 months ago
• CycloneDX / cyclonedx-node-module
  creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
  ☆128Updated last week
• ESAPI / node-esapi
  A minimal port of the old, publicly archived "owasp-esapi-js" (Enterprise Security API for JavaScript) encoder.
  ☆137Updated 2 years ago
• auth0 / repo-supervisor
  Scan your code for security misconfiguration, search for passwords and secrets.
  ☆647Updated last year
• purpleteam-labs / purpleteam
  CLI component of OWASP PurpleTeam
  ☆129Updated last year
• ESAPI / owasp-esapi-js
  An UNMAINTAINTED project originally exported from code.google.com/p/owasp-esapi-js. This project is deprecated. See the README.md for fur…
  ☆102Updated 4 years ago
• artilleryio / artillery-plugin-fuzzer
  Fuzz testing for HTTP APIs with Artillery.io 🌪
  ☆60Updated 3 years ago
• webschik / tslint-config-security
  TSLint security rules
  ☆69Updated 4 years ago
• bellingard / sonar-scanner-npm
  SonarQube Scanner for the JavaScript world
  ☆176Updated 2 years ago
• ICTU / zap2docker-auth-weekly
  Zap baseline scanner in Docker with authentication
  ☆103Updated last year
• OWASP / samm
  SAMM stands for Software Assurance Maturity Model.
  ☆397Updated 3 years ago
• CycloneDX / cyclonedx-node-npm
  Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
  ☆88Updated this week
• mozfreddyb / eslint-config-scanjs
  umbrella config to achieve scanjs-like functionality through eslint
  ☆88Updated 3 years ago
• clinicjs / node-clinic-doctor
  Programmable interface to `clinic doctor`
  ☆367Updated last year
• snyk / vulncost
  Find security vulnerabilities in open source npm packages while you code
  ☆206Updated 3 years ago
• SecurityRAT / SecurityRAT
  OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
  ☆181Updated 5 months ago
• google / node-sec-roadmap
  Some thoughts on how Node.js might respond to a changing security environment
  ☆173Updated 6 years ago
• SonarSource / SonarTS-example
  ☆27Updated 4 years ago
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆357Updated 4 years ago
• OWASP / Maturity-Models
  Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM
  ☆194Updated 6 years ago
• Yelp / fuzz-lightyear
  A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
  ☆221Updated last year
• OWASP / user-security-stories
  Repo to hold mapping of user-security-stories
  ☆120Updated 6 years ago
• mike-goodwin / owasp-threat-dragon
  An open source, online threat modelling tool from OWASP
  ☆484Updated 11 months ago
• dpnishant / jsprime
  a javascript static security analysis tool
  ☆590Updated 10 years ago
• OWASP / www-project-secure-headers
  The OWASP Secure Headers Project
  ☆158Updated this week
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆147Updated 2 months ago
• CycloneDX / cyclonedx-webpack-plugin
  Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.
  ☆26Updated this week
• davisjam / vuln-regex-detector
  Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.
  ☆329Updated 3 years ago
• AppThreat / sast-scan
  Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…
  ☆148Updated 4 years ago