Best AI agent skills for security review

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Excellent quality, 16K stars, and a 26 use-case fit score.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Excellent quality, 12K stars, and a 26 use-case fit score.

A static analysis security vulnerability scanner for Ruby on Rails applications

Excellent quality, 7.2K stars, and a 25 use-case fit score.

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.

Excellent quality, 29K stars, and a 24 use-case fit score.

A vulnerability scanner for container images and filesystems

Excellent quality, 12K stars, and a 23 use-case fit score.

Open Policy Agent (OPA) is an open source, general-purpose policy engine.

Excellent quality, 12K stars, and a 23 use-case fit score.

Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.

Excellent quality, 11K stars, and a 23 use-case fit score.

immudb - immutable database based on zero trust, SQL/Key-Value/Document model, tamperproof, data change history

Excellent quality, 9.0K stars, and a 22 use-case fit score.

Unified Policy as Code

Excellent quality, 7.8K stars, and a 22 use-case fit score.

Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows

Excellent quality, 5.8K stars, and a 22 use-case fit score.

Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS

Excellent quality, 73K stars, and a 22 use-case fit score.

A simple, lightweight PowerShell script that allows you to remove pre-installed apps, disable telemetry, as well as perform various other changes to declutter and customize your Windows experience. Win11Debloat works for both Windows 10 and Windows 11.

Excellent quality, 48K stars, and a 21 use-case fit score.

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Excellent quality, 36K stars, and a 21 use-case fit score.

Network-wide ads & trackers blocking DNS server

Excellent quality, 35K stars, and a 21 use-case fit score.

🕵️‍♂️ All-in-one OSINT tool for analysing any website

Excellent quality, 34K stars, and a 21 use-case fit score.

🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.

Excellent quality, 31K stars, and a 21 use-case fit score.

Automated auditing, performance metrics, and best practices for the web.

Excellent quality, 30K stars, and a 21 use-case fit score.

Set up your own IPsec VPN server in just a few minutes, with IPsec/L2TP, Cisco IPsec and IKEv2. Supports Ubuntu, Debian, CentOS/RHEL, Amazon Linux, Alpine and Raspberry Pi. Includes client config and management scripts.

Excellent quality, 28K stars, and a 21 use-case fit score.

Find secrets with Gitleaks 🔑

Excellent quality, 28K stars, and a 21 use-case fit score.

KeePassXC is a cross-platform community-driven port of the Windows application “KeePass Password Safe”.

Excellent quality, 28K stars, and a 21 use-case fit score.

💚 End-to-end encrypted cloud for everything.

Excellent quality, 27K stars, and a 21 use-case fit score.

Google Chromium, sans integration with Google

Excellent quality, 27K stars, and a 21 use-case fit score.

FHEVM, a full-stack framework for integrating Fully Homomorphic Encryption (FHE) with blockchain applications

Excellent quality, 25K stars, and a 21 use-case fit score.

DNS-Blocklists: For a better internet - keep the internet clean!

Excellent quality, 24K stars, and a 20 use-case fit score.

Test your prompts, agents, and RAGs. Red teaming/pentesting/vulnerability scanning for AI. Compare performance of GPT, Claude, Gemini, DeepSeek, and more. Simple declarative configs with command line and CI/CD integration. Used by OpenAI and Anthropic.

Excellent quality, 22K stars, and a 20 use-case fit score.

An Open Source YouTube app for privacy

Excellent quality, 21K stars, and a 20 use-case fit score.

🚀 An open and lightweight modification to Windows, designed to optimize performance, privacy and usability.

Excellent quality, 21K stars, and a 20 use-case fit score.

The easiest, and most secure way to access and protect all of your infrastructure.

Excellent quality, 20K stars, and a 20 use-case fit score.

Super Productivity is an advanced todo list app with integrated Timeboxing and time tracking capabilities. It also comes with integrations for Jira, GitLab, GitHub and Open Project.

Excellent quality, 20K stars, and a 20 use-case fit score.

337 Claude Code skills & agent skills & plugins (30+ Agents, 70+ custom commands, 330+ skills, customizable references, scripts)for Claude Code, Codex, Gemini CLI, Cursor, and 8 more coding agents — engineering, marketing, product, compliance, C-level advisory, research, business operations, commercial & finance, and your daily productivity skills.

Excellent quality, 18K stars, and a 20 use-case fit score.