AuditJS Logo

AuditJS

0
Free
Visit Website

Audits JavaScript projects using the OSS Index v3 REST API to identify known vulnerabilities and outdated package versions. Supports any project with package managers that install npm dependencies into a node_modules folder including: npm, Angular, yarn, bower. For users wanting to use Nexus IQ Server as their data source for scanning, version 77 or above must be installed. The user performing the scan must have the permission 'Can Evaluate Applications', which can be found in the Role Editor > User > Permissions > IQ Installation. AuditJS can be used via npx (least permanent install) or global install (most permanent install). It supports node LTS versions of 8.x forward at the moment.

FEATURES

ALTERNATIVES

Automate Google Hacking Database scraping and searching with Pagodo, a tool for finding vulnerabilities and sensitive information.

CSET is a free software tool for identifying vulnerabilities in enterprise and industrial control cyber systems.

A LinkedIn reconnaissance tool for gathering information about companies and individuals on the platform.

Finds publicly known security vulnerabilities in a website's frontend JavaScript libraries.

A utility for testing AWS Lambda functions for SQL Injection vulnerabilities using SQLMap attacks.

A tool that finds unprotected secrets in container images or file systems, matching against a database of 140 secret types.

An Open Source supply chain security and auditing tool that tracks projects and dependencies, monitoring for vulnerabilities and issues.

A multithreaded vulnerability scanner for web-based applications

PINNED