What is the pricing for express-brute?

express-brute is a free Application Security tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/AdamPflug/express-brute/ for download and installation instructions.

What are alternatives to express-brute?

Popular alternatives to express-brute include: 1. Heeler Application Security Auto-Remediation - Fix-first AppSec powered by agentic remediation, covering SCA, SAST & secrets. (Commercial) 2. ImmuniWeb® Neuron - AI-enhanced web app vulnerability scanner with zero false-positive SLA (Commercial) 3. OWASP API Security Top 10 - A community website for API security news, vulnerabilities, and best practices (Free) 4. Impart AI Runtime Protection - AI-powered runtime protection platform for web, API, and AI applications (Commercial) 5. Cequence AI Gateway - Unified platform for API security, bot management, and AI gateway protection (Commercial) Compare these tools and more at https://cybersectools.com/categories/application-security

Who should use express-brute?

express-brute is for security teams and organizations that need Security, Middleware, Brute Force, Express. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Application Security tools can be found at https://cybersectools.com/categories/application-security

express-brute

A brute-force protection middleware for express routes that rate-limits incoming requests.

568

Application Security Open Source

Visit website

Claim and verify your listing

express-brute

A brute-force protection middleware for express routes that rate-limits incoming requests.

Application Security•API Security

Open Source

Security Middleware Brute Force

568stars

GitHub Stars

25 Mar

Last commit

Visit Website

Claim and verify your listing

Updated 30 Dec 25

Nikoloz Kokhreidze

Founder & Fractional CISO

Not sure if express-brute is right for your team?

Book a 60-minute strategy call with Nikoloz. You will get a clear roadmap to evaluate products and make a decision.

→Align tool selection with your actual business goals

→Right-sized for your stage (not enterprise bloat)

→Not 47 options, exactly 3 that fit your needs

→Stop researching, start deciding

→Questions that reveal if the tool actually works

→Most companies never ask these

→The costs vendors hide in contracts

→How to uncover real Total Cost of Ownerhship before signing

Book Session

express-brute Description

A brute-force protection middleware for express routes that rate-limits incoming requests, increasing the delay with each request in a fibonacci-like sequence. Installation via npm: $ npm install express-brute A Simple Example var ExpressBrute = require('express-brute'); // stores state locally, don't use this in production var store = new ExpressBrute.MemoryStore(); var bruteforce = new ExpressBrute(store); app.post('/auth', bruteforce.prevent, // error 429 if we hit this route too often function (req, res, next) { res.send('Success!'); }); Classes ExpressBrute(store, options) store An instance of ExpressBrute.MemoryStore or some other ExpressBrute store (see a list of known stores below). options freeRetries The number of retries the user has before they need to start waiting (default: 2) minWait The initial wait time (in milliseconds) after the user runs out of retries (default: 500 milliseconds) maxWait The maximum amount of time (in milliseconds) between requests the user needs to wait (default: 15 minutes). The wait for a given request is determined by adding the time the user needed to wait for the previous two requests. lifetime The length of time (in seconds)

express-brute Description

express-brute FAQ

Common questions about express-brute including features, pricing, alternatives, and user reviews.

express-brute is A brute-force protection middleware for express routes that rate-limits incoming requests.. It is a Application Security solution designed to help security teams with Security, Middleware, Brute Force.

Have more questions? Browse our categories or search for specific tools.