#1
DeepAudit:人人拥有的 AI 黑客战队,让漏洞挖掘触手可及。国内首个开源的代码漏洞挖掘多智能体系统。小白一键部署运行,自主协作审计 + 自动化沙箱 PoC 验证。支持 Ollama 私有部署 ,一键生成报告。支持中转站。让安全不再昂贵,让审计不再复杂。
6.4K starsApr 1, 2026 pushsecurityPythonSAST
$ npx skills add lintsinghua/DeepAuditAlternatives
Bearer alternatives for AI agents.
Compare similar skills by workflow fit, trust score, quality, GitHub adoption, maintenance, and install readiness.
Current skill
Bearer
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
100
Quality
100
Trust
2.7K
Stars
#2
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
16K starsMay 11, 2026 pushsecurityShellCompliance
$ npx skills add CISOfy/lynis#3
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
15K starsJun 12, 2026 pushsecurityOCamlSAST
$ npx skills add semgrep/semgrep#4
Open Policy Agent (OPA) is an open source, general-purpose policy engine.
12K starsJun 12, 2026 pushsecurityGoCompliance
$ npx skills add open-policy-agent/opa#5
Unified Policy as Code
7.8K starsJun 8, 2026 pushsecurityGoCompliance
$ npx skills add kyverno/kyverno#6
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
16K starsJun 12, 2026 pushsecurityC++Compliance
$ npx skills add wazuh/wazuh#7
The ZAP by Checkmarx Core project
15K starsJun 4, 2026 pushsecurityJavaSecurity
$ npx skills add zaproxy/zaproxy#8
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
29K starsJun 4, 2026 pushsecurityGoSecurity
$ npx skills add projectdiscovery/nuclei#9
Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
6.0K starsJun 10, 2026 pushsecurityPythonCompliance
$ npx skills add cloud-custodian/cloud-custodian#10
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
12K starsJun 5, 2026 pushsecurityGoSecurity
$ npx skills add future-architect/vuls#11
Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in your Kubernetes YAML and Charts. Static code analysis for Kubernetes.
3.1K starsMay 20, 2026 pushsecurityGoSecurity
$ npx skills add zegl/kube-score#12
🕵️♂️ Collect a dossier on a person by username from 3000+ sites
33K starsJun 11, 2026 pushsecurityPythonOSINT
$ npx skills add soxoj/maigret#13
Tfsec is now part of Trivy
7.0K starsMar 25, 2026 pushdevelopmentGoStatic Analysis
$ npx skills add aquasecurity/tfsec#14
Incredibly fast crawler designed for OSINT.
13K starsFeb 10, 2026 pushsecurityPythonOSINT
$ npx skills add s0md3v/Photon#15
Download pictures (or videos) along with their captions and other metadata from Instagram.
13K starsApr 15, 2026 pushsecurityPythonOSINT
$ npx skills add instaloader/instaloader#16
Your personal intelligence agent. Watches the world from multiple data sources and pings you when something changes.
10K starsMay 20, 2026 pushsecurityJavaScriptOSINT
$ npx skills add calesthio/CrucixHow to choose
When should you switch?
Use an alternative when it has a clearer install path, higher trust score, fresher maintenance, or better platform fit for your current agent stack. Keep Bearer if it already passes your workflow test and repository review.
Next step
Compare top candidates side by side
Open the compare page, test the install commands in a sandbox, and check each repository before using a skill in production.