#1
The ZAP by Checkmarx Core project
15K starsJun 11, 2026 pushsecurityJavaSecurity
$ npx skills add zaproxy/zaproxyAlternatives
Jackhammer alternatives for AI agents.
Compare similar skills by workflow fit, trust score, quality, GitHub adoption, maintenance, and install readiness.
Current skill
Jackhammer
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
50
Quality
73
Trust
740
Stars
#2
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
29K starsJun 13, 2026 pushsecurityGoSecurity
$ npx skills add projectdiscovery/nuclei#3
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
1.2K starsJan 21, 2026 pushsecurityGoSecurity
$ npx skills add Hackmanit/Web-Cache-Vulnerability-Scanner#4
A default credential scanner.
1.5K starsJul 8, 2025 pushsecurityPythonSecurity
$ npx skills add ztgrace/changeme#5
WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com
9.6K starsJun 12, 2026 pushsecurityRubySecurity
$ npx skills add wpscanteam/wpscan#6
Bandit is a tool designed to find common security issues in Python code.
8.1K starsMay 25, 2026 pushsecurityPythonSecurity
$ npx skills add PyCQA/bandit#7
:new: The Multi-Tool Web Vulnerability Scanner.
2.1K starsAug 22, 2023 pushsecurityPythonSecurity
$ npx skills add skavngr/rapidscan#8
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
1.8K starsJun 12, 2026 pushsecurityKotlinSecurity
$ npx skills add doyensec/inql#9
Solhint is an open-source project to provide a linting utility for Solidity code.
1.1K starsJun 12, 2026 pushsecurityJavaScriptSecurity
$ npx skills add protofire/solhint#10
Multi-engine Linux malware scanner with five detection stages (MD5, HEX pattern, YARA, ClamAV, statistical), real-time inotify monitoring, quarantine, and multi-channel alerting
1.4K starsMay 24, 2026 pushsecurityShellSecurity
$ npx skills add rfxn/linux-malware-detect#11
A modular vulnerability scanner with automatic report generation capabilities.
1.2K starsJun 13, 2026 pushsecurityPythonSecurity
$ npx skills add CERT-Polska/Artemis#12
A tool for BLE environment monitoring. Find and track Bluetooth devices around, and get notified when the target device is detected.
1.4K starsJan 22, 2026 pushsecurityKotlinSecurity
$ npx skills add BLE-Research-Group/MetaRadar#13
Application Layer DoS attack simulator
1.6K starsJun 26, 2025 pushsecurityC++Security
$ npx skills add shekyan/slowhttptest#14
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
16K starsMay 11, 2026 pushsecurityShellSecurity
$ npx skills add CISOfy/lynis#15
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
12K starsJun 12, 2026 pushsecurityGoSecurity
$ npx skills add future-architect/vuls#16
ZAP Add-ons
932 starsJun 13, 2026 pushsecurityHTMLSecurity
$ npx skills add zaproxy/zap-extensionsHow to choose
When should you switch?
Use an alternative when it has a clearer install path, higher trust score, fresher maintenance, or better platform fit for your current agent stack. Keep Jackhammer if it already passes your workflow test and repository review.
Next step
Compare top candidates side by side
Open the compare page, test the install commands in a sandbox, and check each repository before using a skill in production.