Alternatives and similar repositories for auditjs:

Users that are interested in auditjs are comparing it to the libraries listed below

• webschik / tslint-config-security
  TSLint security rules
  ☆70Updated 4 years ago
• ESAPI / node-esapi
  A minimal port of the old, publicly archived "owasp-esapi-js" (Enterprise Security API for JavaScript) encoder.
  ☆135Updated 2 years ago
• snyk / vulncost
  Find security vulnerabilities in open source npm packages while you code
  ☆204Updated 2 years ago
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆383Updated 2 months ago
• auth0 / repo-supervisor
  Scan your code for security misconfiguration, search for passwords and secrets.
  ☆639Updated last year
• zaproxy / zap-api-nodejs
  ☆47Updated last month
• CycloneDX / cyclonedx-node-module
  creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
  ☆124Updated 2 months ago
• aparsons / bag-of-holding
  An application to assist in the organization and prioritization of software security activities.
  ☆137Updated 3 years ago
• artilleryio / artillery-plugin-fuzzer
  Fuzz testing for HTTP APIs with Artillery.io 🌪
  ☆60Updated 2 years ago
• CycloneDX / cyclonedx-node-npm
  Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
  ☆77Updated this week
• OWASP / www-project-api-security
  OWASP Foundation Web Repository
  ☆47Updated 2 weeks ago
• google / node-sec-roadmap
  Some thoughts on how Node.js might respond to a changing security environment
  ☆172Updated 5 years ago
• ICTU / zap2docker-auth-weekly
  Zap baseline scanner in Docker with authentication
  ☆104Updated 8 months ago
• OWASP / samm
  SAMM stands for Software Assurance Maturity Model.
  ☆398Updated 2 years ago
• OWASP / Maturity-Models
  Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM
  ☆189Updated 6 years ago
• hawkeyesec / scanner-cli
  A project security/vulnerability/risk scanning tool
  ☆360Updated 3 years ago
• mozilla / eslint-plugin-no-unsanitized
  Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike
  ☆233Updated last month
• bellingard / sonar-scanner-npm
  SonarQube Scanner for the JavaScript world
  ☆176Updated last year
• AppThreat / sast-scan
  Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…
  ☆147Updated 4 years ago
• davisjam / vuln-regex-detector
  Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.
  ☆319Updated 3 years ago
• owasp-cloud-security / owasp-cloud-security
  OWASP Cloud Security - Enabling conversations through threat and control stories
  ☆178Updated 6 years ago
• we45 / ThreatPlaybook
  A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…
  ☆275Updated 3 weeks ago
• paypal / scorebot
  ☆57Updated 4 years ago
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆340Updated 4 years ago
• snyk / broker
  A broker system between a public service and a private service
  ☆105Updated this week
• OWASP / user-security-stories
  Repo to hold mapping of user-security-stories
  ☆114Updated 6 years ago
• Autodesk / continuous-threat-modeling
  A Continuous Threat Modeling methodology
  ☆313Updated 2 years ago
• UlisesGascon / check-my-headers
  Fast and simple way to check any HTTP Headers
  ☆45Updated last year
• SecurityRAT / SecurityRAT
  OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
  ☆175Updated 3 weeks ago
• OWASP / Serverless-Top-10-Project
  OWASP Serverless Top 10
  ☆215Updated 3 years ago