Alternatives

POC Bomber alternatives for AI agents.

Compare similar skills by workflow fit, trust score, quality, GitHub adoption, maintenance, and install readiness.

Current skill

POC Bomber

利用大量高威胁poc/exp快速获取目标权限,用于渗透和红队快速打点

74
Quality
80
Trust
2.4K
Stars
#1

Bandit

Similarity 114Trust 89Excellent 100

Bandit is a tool designed to find common security issues in Python code.

8.1K starsMay 25, 2026 pushsecurityPythonSecurity
$ npx skills add PyCQA/bandit
#2

Osv Scanner

Similarity 110Trust 93Excellent 100

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

11K starsJun 20, 2026 pushsecurityGoSecurity
$ npx skills add google/osv-scanner
#3

Nuclei

Similarity 103Trust 93Excellent 100

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.

29K starsJun 13, 2026 pushsecurityGoSecurity
$ npx skills add projectdiscovery/nuclei
#4

Maigret

Similarity 103Trust 88Excellent 100

🕵️‍♂️ Collect a dossier on a person by username from 3000+ sites

33K starsJun 11, 2026 pushsecurityPythonOSINT
$ npx skills add soxoj/maigret
#5

Zaproxy

Similarity 102Trust 92Excellent 100

The ZAP by Checkmarx Core project

15K starsJun 11, 2026 pushsecurityJavaSecurity
$ npx skills add zaproxy/zaproxy
#6

Lynis

Similarity 102Trust 90Excellent 100

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

16K starsMay 11, 2026 pushsecurityShellSecurity
$ npx skills add CISOfy/lynis
#7

Instaloader

Similarity 102Trust 92Excellent 100

Download pictures (or videos) along with their captions and other metadata from Instagram.

13K starsApr 15, 2026 pushsecurityPythonOSINT
$ npx skills add instaloader/instaloader
#8

Vuls

Similarity 102Trust 92Excellent 100

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

12K starsJun 12, 2026 pushsecurityGoSecurity
$ npx skills add future-architect/vuls
#9

Infisical

Similarity 102Trust 83Excellent 100

Infisical is the open-source platform for secrets, certificates, and privileged access management.

27K starsJun 20, 2026 pushsecurityTypeScriptSecurity
$ npx skills add Infisical/infisical
#10

Shadowbroker

Similarity 101Trust 92Excellent 100

Open-source intelligence for the global theater. Track everything from the corporate/private jets of the wealthy, and spy satellites, to seismic events in one unified interface. Hook an AI agent up to have it parse through data and find previously unseen correlations. The knowledge is available to all but rarely aggregated in the open, until now.

9.2K starsJun 12, 2026 pushsecurityPythonOSINT
$ npx skills add BigBodyCobain/Shadowbroker
#11

Wpscan

Similarity 101Trust 89Excellent 100

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com

9.6K starsJun 12, 2026 pushsecurityRubySecurity
$ npx skills add wpscanteam/wpscan
#12

Bbot

Similarity 100Trust 87Excellent 100

The recursive internet scanner for hackers. 🧡

9.9K starsJun 12, 2026 pushsecurityPythonOSINT
$ npx skills add blacklanternsecurity/bbot
#13

Wazuh

Similarity 96Trust 89Excellent 100

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

16K starsJun 12, 2026 pushsecurityC++Compliance
$ npx skills add wazuh/wazuh
#14

Opa

Similarity 96Trust 92Excellent 100

Open Policy Agent (OPA) is an open source, general-purpose policy engine.

12K starsJun 12, 2026 pushsecurityGoCompliance
$ npx skills add open-policy-agent/opa
#15

Crucix

Similarity 95Trust 92Excellent 100

Your personal intelligence agent. Watches the world from multiple data sources and pings you when something changes.

10K starsMay 20, 2026 pushsecurityJavaScriptOSINT
$ npx skills add calesthio/Crucix
#16

Kyverno

Similarity 95Trust 91Excellent 100

Unified Policy as Code

7.8K starsJun 8, 2026 pushsecurityGoCompliance
$ npx skills add kyverno/kyverno

How to choose

When should you switch?

Use an alternative when it has a clearer install path, higher trust score, fresher maintenance, or better platform fit for your current agent stack. Keep POC Bomber if it already passes your workflow test and repository review.

Next step

Compare top candidates side by side

Open the compare page, test the install commands in a sandbox, and check each repository before using a skill in production.