#Security-automation

Showing 60 of 165 repositories tagged #security-automation, ranked by stars

KeygraphHQ
KeygraphHQ
shannon

Shannon is an autonomous, white-box AI pentester for web applications and APIs. It analyzes your source code, identifies attack vectors, and executes real exploits to prove vulnerabilities before they reach production.

Score
100
★ 45.6k ⑂ 5.3k +155/day
TypeScript
usestrix
usestrix
strix

Open-source AI penetration testing tool to find and fix your app’s vulnerabilities.

Score
100
★ 39.8k ⑂ 4.2k +443/day
Python
mukul975
mukul975
Anthropic-Cybersecurity-Skills

817 structured cybersecurity skills for AI agents · Mapped to 6 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND, NIST AI RMF & MITRE F3 (Fight Fraud) · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platforms · 29 security domains · Apache 2.0

Score
93
★ 24.9k ⑂ 2.9k +494/day
Python
vxcontrol
vxcontrol
pentagi

Fully autonomous AI Agents system capable of performing complex penetration testing tasks

Score
100
★ 18.5k ⑂ 2.5k +414/day
Go
wazuh
wazuh
wazuh

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Score
99
★ 16.1k ⑂ 2.4k +4/day
C++
future-architect
future-architect
vuls

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Score
83
★ 12.2k ⑂ 1.2k +1/day
Go
xonsh
xonsh
xonsh

🐚 Python-powered shell. Full-featured, cross-platform and AI-friendly.

Score
86
★ 9.5k ⑂ 729 +2/day
Python
We5ter
We5ter
Scanners-Box

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

Score
98
★ 9.0k ⑂ 2.4k +6/day
securego
securego
gosec

Go security checker

Score
67
★ 8.9k ⑂ 700 +4/day
Go
apache
apache
caldera

Automated Adversary Emulation Platform

Score
79
★ 7.1k ⑂ 1.4k +12/day
Python
guardicore
guardicore
monkey

Infection Monkey - An open-source adversary emulation platform

Score
57
★ 7.0k ⑂ 818 +2/day
Python
infobyte
infobyte
faraday

Open Source Vulnerability Management Platform

Score
64
★ 6.6k ⑂ 1.1k +5/day
Python
DefectDojo
DefectDojo
django-DefectDojo

Open-Source Unified Vulnerability Management, DevSecOps & ASPM

Score
71
★ 4.8k ⑂ 1.9k +1/day
HTML
DependencyTrack
DependencyTrack
dependency-track

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

Score
97
★ 4.0k ⑂ 775 +6/day
Java
builtbybel
builtbybel
privatezilla

👀👮🐢🔥Performs a privacy & security check of Windows 10

Score
66
★ 3.7k ⑂ 170 +2/day
C#
Yamato-Security
Yamato-Security
hayabusa

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Score
100
★ 3.2k ⑂ 279
Rust
GH05TCREW
GH05TCREW
pentestagent

PentestAgent is an AI agent framework for black-box security testing, supporting bug bounty, red-team, and penetration testing workflows.

Score
96
★ 2.8k ⑂ 555 +31/day
Python
ComplianceAsCode
ComplianceAsCode
content

Security automation content in SCAP, Bash, Ansible, and other formats

Score
97
★ 2.8k ⑂ 813
Shell
Bearer
Bearer
bearer

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

Score
92
★ 2.7k ⑂ 141 +2/day
Go
flipkart-incubator
flipkart-incubator
Astra

Automated Security Testing For REST API's

Score
66
★ 2.6k ⑂ 413
Python
cisagov
cisagov
ScubaGear

Automation to assess the state of your M365 tenant against CISA's baselines

Score
95
★ 2.6k ⑂ 367
PowerShell
danieldurnea
danieldurnea
FBI-tools

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

Score
65
★ 2.6k ⑂ 369 +9/day
Shuffle
Shuffle
Shuffle

Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.

Score
94
★ 2.3k ⑂ 415 +6/day
JavaScript
aress31
aress31
burpgpt

A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.

Score
64
★ 2.3k ⑂ 284
Java
someengineering
someengineering
fixinventory

Fix Inventory helps you identify and remove the most critical risks in AWS, GCP, Azure and Kubernetes.

Score
88
★ 2.1k ⑂ 137
Python
0xSteph
0xSteph
pentest-ai-agents

Turn Claude Code into your offensive security research assistant. Specialized AI subagents for authorized penetration testing plan engagements, analyze recon, research exploits, build detections, audit STIGs, and write reports.

Score
92
★ 2.0k ⑂ 388 +30/day
Shell
oritera
oritera
Cairn

A AI general-purpose state-space search engine, validated first on autonomous penetration testing.

Score
90
★ 1.9k ⑂ 270 +37/day
Python
nsonaniya2010
nsonaniya2010
SubDomainizer

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

Score
36
★ 1.9k ⑂ 236
Python
ossf
ossf
cve-bin-tool

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

Score
93
★ 1.7k ⑂ 637 +2/day
Python
konstruktoid
konstruktoid
hardening

Hardening Ubuntu. Systemd edition.

Score
91
★ 1.7k ⑂ 402
Shell
w5teams
w5teams
w5

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效

Score
29
★ 1.5k ⑂ 248
Python
TheresAFewConors
TheresAFewConors
Sooty

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

Score
58
★ 1.5k ⑂ 221 +1/day
Python
fkie-cad
fkie-cad
FACT_core

Firmware Analysis and Comparison Tool

Score
89
★ 1.4k ⑂ 251
Python
stelligent
stelligent
cfn_nag

Linting tool for CloudFormation templates

Score
56
★ 1.3k ⑂ 209
Ruby
tmobile
tmobile
pacbot

PacBot (Policy as Code Bot)

Score
57
★ 1.3k ⑂ 281
Java
bitquark
bitquark
shortscan

An IIS short filename enumeration tool

Score
55
★ 1.2k ⑂ 115 +2/day
Go
CyberStrikeus
CyberStrikeus
CyberStrike

AI-powered offensive security agent with 7,300+ actionable security skills. Autonomous pentesting powered by MITRE ATT&CK (2,000+ Atomic tests), CIS Benchmarks (1,500+ controls), OWASP, NIST. Lazy-loading, zero context pollution. Your AI red team.

Score
87
★ 1.2k ⑂ 192 +75/day
TypeScript
SanMuzZzZz
SanMuzZzZz
LuaN1aoAgent

LuaN1aoAgent is a cognitive-driven AI hacker. It is a fully autonomous AI penetration testing agent, using dual-graph reasoning.

Score
84
★ 1.1k ⑂ 168 +15/day
Python
APTRS
APTRS
APTRS

Automated pentest reporting with custom templates, project tracking, customer dashboard and client management tools. Streamline your security workflows effortlessly!

Score
82
★ 1.1k ⑂ 135
TypeScript
berylliumsec
berylliumsec
nebula

AI-powered penetration testing assistant for automating recon, note-taking, and vulnerability analysis.

Score
87
★ 1.0k ⑂ 160 +21/day
Python
dropbox
dropbox
securitybot

Distributed alerting for the masses!

Score
21
★ 990 ⑂ 107
Python
secureCodeBox
secureCodeBox
secureCodeBox

secureCodeBox (SCB) - continuous secure delivery out of the box

Score
50
★ 983 ⑂ 182 +2/day
Go
DataDog
DataDog
KubeHound

Tool for building Kubernetes attack paths

Score
33
★ 979 ⑂ 65
Go
bountyyfi
bountyyfi
lonkero

Lonkero - Wraps around your attack surface. Professional-grade scanner for real penetration testing. Fast. Modular. Rust.

Score
50
★ 965 ⑂ 80 +4/day
Rust
reconmap
reconmap
reconmap

Reconmap is a collaboration-first security operations platform for infosec teams and MSSPs, enabling end‑to‑end engagement management, from reconnaissance through execution and reporting. With built-in command automation, output parsing, and AI‑assisted summaries, it delivers faster, more structured, and high‑quality security assessments.

Score
86
★ 938 ⑂ 133 +1/day
JavaScript
JoasASantos
JoasASantos
n8n-CyberSecurity-Workflows

Security automation with n8n ideas: 100+ Red/Blue/AppSec workflows, integrations, and ready-to-run playbooks.

Score
61
★ 880 ⑂ 172 +3/day
flosell
flosell
trailscraper

A command-line tool to get valuable information out of AWS CloudTrail

Score
80
★ 835 ⑂ 38
Python
rust-secure-code
rust-secure-code
cargo-auditable

Make production Rust binaries auditable

Score
0
★ 832 ⑂ 40 +1/day
Rust
google
google
turbinia

Automation and Scaling of Digital Forensics Tools

Score
85
★ 790 ⑂ 171
Python
aws-samples
aws-samples
aws-secure-environment-accelerator

ASEA developer support has ended, and the ASEA github repo will be marked Archived (read-only) by the end of 2025.

Score
68
★ 755 ⑂ 234
HTML
CycodeLabs
CycodeLabs
raven

CI/CD Security Analyzer

Score
49
★ 742 ⑂ 45
Python
uphiago
uphiago
recon-skills

156 offensive security skills for recon and pentest. Field-validated techniques from 600+ targets across 45+ sectors. Updated with browser fingerprint evasion, anti-bot bypass, hardcoded credential hunting, SCADA/ICS enumeration.

Score
83
★ 723 ⑂ 138 +146/day
Python
ASCIT31
ASCIT31
Dark-Moon

Autonomous AI pentesting engine performing continuous offensive security across web, cloud, AD and Kubernetes. Uses agentic reasoning, real exploit execution and attack path analysis to deliver proof-based vulnerabilities.

Score
81
★ 703 ⑂ 124 +48/day
Python
PentesterFlow
PentesterFlow
agent

Agentic offensive-security in your terminal

Score
79
★ 698 ⑂ 119 +175/day
TypeScript
AnasAboreeda
AnasAboreeda
Penetration-Testing-Study-Notes

Penetration Testing notes, resources and scripts

Score
69
★ 690 ⑂ 199 +1/day
Python
Patrowl
Patrowl
PatrowlManager

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Score
100
★ 637 ⑂ 112
HTML
devops-kung-fu
devops-kung-fu
bomber

Scans Software Bill of Materials (SBOMs) for security vulnerabilities

Score
17
★ 622 ⑂ 55 +2/day
Go
cyproxio
cyproxio
mcp-for-security

MCP for Security: A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more. Integrate security testing and penetration testing into AI workflows.

Score
72
★ 619 ⑂ 99
TypeScript
gitleaks
gitleaks
gitleaks-action

Protect your secrets using Gitleaks-Action

Score
82
★ 612 ⑂ 193 +2/day
JavaScript
factionsecurity
factionsecurity
faction

Pen Test Report Generation and Assessment Collaboration

Score
75
★ 595 ⑂ 63
Java
Related Topics
#security#security-tools#cybersecurity#penetration-testing#pentesting#security-audit#devsecops#vulnerability-scanners#bug-bounty#offensive-security#ai-agents

© 2026 GitRepoTrend · GitHub repositories by topic · Updated weekly