Tartufo alternatives for AI agents.

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.

The ZAP by Checkmarx Core project

Bandit is a tool designed to find common security issues in Python code.

A modular vulnerability scanner with automatic report generation capabilities.

ZAP Add-ons

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com

A default credential scanner.

Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in your Kubernetes YAML and Charts. Static code analysis for Kubernetes.

A friendly car security exploration tool for the CAN bus

OXO is a security scanning orchestrator for the modern age.

Solhint is an open-source project to provide a linting utility for Solidity code.

Multi-engine Linux malware scanner with five detection stages (MD5, HEX pattern, YARA, ClamAV, statistical), real-time inotify monitoring, quarantine, and multi-channel alerting

A high performance offensive security tool for reconnaissance and vulnerability scanning

A tool for BLE environment monitoring. Find and track Bluetooth devices around, and get notified when the target device is detected.

A python2 script for sweeping a network to find windows systems compromised with the DOUBLEPULSAR implant.

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).