Alternatives and similar repositories for auditjs:

Users that are interested in auditjs are comparing it to the libraries listed below

• CycloneDX / cyclonedx-node-module
  creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
  ☆127Updated 2 months ago
• webschik / tslint-config-security
  TSLint security rules
  ☆70Updated 4 years ago
• snyk / vulncost
  Find security vulnerabilities in open source npm packages while you code
  ☆205Updated 3 years ago
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆398Updated 5 months ago
• zaproxy / zap-api-nodejs
  ☆49Updated this week
• davisjam / vuln-regex-detector
  Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.
  ☆327Updated 3 years ago
• google / node-sec-roadmap
  Some thoughts on how Node.js might respond to a changing security environment
  ☆173Updated 6 years ago
• CycloneDX / cyclonedx-node-npm
  Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
  ☆85Updated 2 weeks ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆143Updated 3 weeks ago
• ESAPI / node-esapi
  A minimal port of the old, publicly archived "owasp-esapi-js" (Enterprise Security API for JavaScript) encoder.
  ☆136Updated 2 years ago
• bellingard / sonar-scanner-npm
  SonarQube Scanner for the JavaScript world
  ☆176Updated 2 years ago
• auth0 / repo-supervisor
  Scan your code for security misconfiguration, search for passwords and secrets.
  ☆644Updated last year
• mozilla / eslint-plugin-no-unsanitized
  Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike
  ☆236Updated 5 months ago
• sqreen / SPAudit
  ☆39Updated 2 years ago
• we45 / ThreatPlaybook
  A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…
  ☆279Updated 3 weeks ago
• ICTU / zap2docker-auth-weekly
  Zap baseline scanner in Docker with authentication
  ☆103Updated 11 months ago
• OWASP / www-project-api-security
  OWASP Foundation Web Repository
  ☆47Updated 3 months ago
• OWASP / Maturity-Models
  Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM
  ☆193Updated 6 years ago
• AppThreat / sast-scan
  Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…
  ☆148Updated 4 years ago
• zaproxy / zap-hud
  The ZAP Heads Up Display (HUD)
  ☆263Updated 2 months ago
• artilleryio / artillery-plugin-fuzzer
  Fuzz testing for HTTP APIs with Artillery.io 🌪
  ☆60Updated 2 years ago
• mikesamuel / node-sec-patterns
  Security design pattern support for Node.js
  ☆24Updated 5 years ago
• hawkeyesec / scanner-cli
  A project security/vulnerability/risk scanning tool
  ☆361Updated 3 years ago
• OWASP / www-project-threat-dragon
  OWASP Foundation Threat Dragon Project Web Repository
  ☆79Updated last week
• aparsons / bag-of-holding
  An application to assist in the organization and prioritization of software security activities.
  ☆139Updated 3 years ago
• purpleteam-labs / purpleteam
  CLI component of OWASP PurpleTeam
  ☆128Updated last year
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated 2 years ago
• jenkinsci / zap-plugin
  The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.
  ☆60Updated 6 months ago
• OWASP / user-security-stories
  Repo to hold mapping of user-security-stories
  ☆120Updated 6 years ago
• mike-goodwin / owasp-threat-dragon
  An open source, online threat modelling tool from OWASP
  ☆483Updated 9 months ago