Opa alternatives for AI agents.

Unified Policy as Code

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in your Kubernetes YAML and Charts. Static code analysis for Kubernetes.

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.

🕵️‍♂️ Collect a dossier on a person by username from 3000+ sites

The ZAP by Checkmarx Core project

Incredibly fast crawler designed for OSINT.

Download pictures (or videos) along with their captions and other metadata from Instagram.

Your personal intelligence agent. Watches the world from multiple data sources and pings you when something changes.

The recursive internet scanner for hackers. 🧡

OneForAll是一款功能强大的子域收集工具