sonatype-nexus-community / auditjs

Related projects ⓘ

Alternatives and complementary repositories for auditjs

• CycloneDX / cyclonedx-node-module
  creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
  ☆124Updated 2 weeks ago
• CycloneDX / cyclonedx-node-npm
  Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
  ☆73Updated last week
• webschik / tslint-config-security
  TSLint security rules
  ☆70Updated 4 years ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆134Updated 6 months ago
• ICTU / zap2docker-auth-weekly
  Zap baseline scanner in Docker with authentication
  ☆104Updated 5 months ago
• ESAPI / node-esapi
  A minimal port of the old, publicly archived "owasp-esapi-js" (Enterprise Security API for JavaScript) encoder.
  ☆131Updated 2 years ago
• snyk / vulncost
  Find security vulnerabilities in open source npm packages while you code
  ☆202Updated 2 years ago
• zaproxy / zap-api-nodejs
  ☆46Updated this week
• auth0 / repo-supervisor
  Scan your code for security misconfiguration, search for passwords and secrets.
  ☆637Updated last year
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆375Updated this week
• OWASP / glue
  Application Security Automation
  ☆522Updated last year
• purpleteam-labs / purpleteam
  CLI component of OWASP PurpleTeam
  ☆124Updated 10 months ago
• davisjam / vuln-regex-detector
  Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.
  ☆320Updated 2 years ago
• bellingard / sonar-scanner-npm
  SonarQube Scanner for the JavaScript world
  ☆176Updated last year
• OWASP / www-project-api-security
  OWASP Foundation Web Repository
  ☆47Updated last week
• OWASP / user-security-stories
  Repo to hold mapping of user-security-stories
  ☆113Updated 5 years ago
• we45 / ThreatPlaybook
  A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…
  ☆274Updated 2 weeks ago
• AppThreat / sast-scan
  Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…
  ☆147Updated 4 years ago
• dpnishant / jsprime
  a javascript static security analysis tool
  ☆585Updated 9 years ago
• artilleryio / artillery-plugin-fuzzer
  Fuzz testing for HTTP APIs with Artillery.io 🌪
  ☆59Updated 2 years ago
• SecurityRAT / SecurityRAT
  OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
  ☆173Updated 3 months ago
• OWASP / Maturity-Models
  Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM
  ☆187Updated 6 years ago
• mikesamuel / node-sec-patterns
  Security design pattern support for Node.js
  ☆24Updated 5 years ago
• CycloneDX / specification
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆363Updated this week
• lirantal / detect-secrets
  A developer-friendly secrets detection tool for CI and pre-commit hooks based on Yelp's detect-secrets
  ☆49Updated 2 years ago
• mike-goodwin / owasp-threat-dragon
  An open source, online threat modelling tool from OWASP
  ☆483Updated 4 months ago
• CycloneDX / gh-node-module-generatebom
  GitHub action to generate a CycloneDX SBOM for Node.js
  ☆20Updated 3 months ago
• OWASP / www-project-secure-headers
  The OWASP Secure Headers Project
  ☆135Updated last week
• google / node-sec-roadmap
  Some thoughts on how Node.js might respond to a changing security environment
  ☆172Updated 5 years ago
• OWASP / samm
  SAMM stands for Software Assurance Maturity Model.
  ☆397Updated 2 years ago