#1
Bandit is a tool designed to find common security issues in Python code.
8.1K starsMay 25, 2026 pushsecurityPythonSecurity
$ npx skills add PyCQA/banditAlternatives
Wpscan alternatives for AI agents.
Compare similar skills by workflow fit, trust score, quality, GitHub adoption, maintenance, and install readiness.
Current skill
Wpscan
WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com
100
Quality
100
Trust
9.6K
Stars
#2
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
29K starsJun 4, 2026 pushsecurityGoSecurity
$ npx skills add projectdiscovery/nuclei#3
The ZAP by Checkmarx Core project
15K starsJun 4, 2026 pushsecurityJavaSecurity
$ npx skills add zaproxy/zaproxy#4
Multi-engine Linux malware scanner with five detection stages (MD5, HEX pattern, YARA, ClamAV, statistical), real-time inotify monitoring, quarantine, and multi-channel alerting
1.4K starsMay 24, 2026 pushsecurityShellSecurity
$ npx skills add rfxn/linux-malware-detect#5
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
16K starsMay 11, 2026 pushsecurityShellSecurity
$ npx skills add CISOfy/lynis#6
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
12K starsJun 5, 2026 pushsecurityGoSecurity
$ npx skills add future-architect/vuls#7
Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in your Kubernetes YAML and Charts. Static code analysis for Kubernetes.
3.1K starsMay 20, 2026 pushsecurityGoSecurity
$ npx skills add zegl/kube-score#8
Semi-automatic OSINT framework and package manager
2.4K starsMay 15, 2026 pushsecurityRustSecurity
$ npx skills add kpcyrd/sn0int#9
Assist penetration testing workflows with agentic reasoning
14K starsFeb 23, 2026 pushsecurityPythonSecurity
$ npx skills add GreyDGL/PentestGPT#10
A marketplace for AI-assisted security analysis and auditing plugins.
5.6K starsJun 5, 2026 pushsecurityClaude Code
$ npx skills add trailofbits/skills#11
A static analysis security vulnerability scanner for Ruby on Rails applications
7.2K starsJun 5, 2026 pushdevelopmentRubyStatic Analysis
$ npx skills add presidentbeef/brakeman#12
Code smell detector for Ruby
4.1K starsJun 5, 2026 pushdevelopmentRubyStatic Analysis
$ npx skills add troessner/reek#13
Manage translation and localization with static analysis, for Ruby i18n
2.2K starsMay 30, 2026 pushdevelopmentRubyStatic Analysis
$ npx skills add glebm/i18n-tasks#14
Fast, Nimble PDF Writer for Ruby
4.8K starsApr 18, 2026 pushdocument-processingRubyPDF
$ npx skills add prawnpdf/prawn#15
Versatile PDF creation and manipulation for Ruby
1.4K starsJun 7, 2026 pushdocument-processingRubyPDF
$ npx skills add gettalong/hexapdf#16
Go security checker
8.9K starsJun 3, 2026 pushdevelopmentGoStatic Analysis
$ npx skills add securego/gosecHow to choose
When should you switch?
Use an alternative when it has a clearer install path, higher trust score, fresher maintenance, or better platform fit for your current agent stack. Keep Wpscan if it already passes your workflow test and repository review.
Next step
Compare top candidates side by side
Open the compare page, test the install commands in a sandbox, and check each repository before using a skill in production.