Automation

AI-powered SAST tool that finds and auto-fixes code vulnerabilities in real-time

Security operations platform combining SIEM, UEBA, and SOAR capabilities

AI-native GRC platform for compliance automation, risk mgmt & security reviews

AI-powered security platform for threat detection, automation, and AI protection

AI-powered identity governance platform for automated access management

An automated tool for identifying technologies used on websites with mass scanning capabilities, based on the Wappalyzer detection engine.

Dalfox is an open-source automated XSS scanner that provides customizable scanning profiles and detailed reporting for cross-site scripting vulnerability detection.

Secret Bridge monitors GitHub repositories to detect and alert on leaked secrets and sensitive data exposure.

Femida is a Python automation tool that integrates with Burp Suite to detect blind XSS vulnerabilities in web applications through HTTP request analysis.

Jaeles is an automated web application testing tool that helps identify vulnerabilities and security issues through customizable testing scenarios.

A Go-based command-line tool that uses Chrome Headless to automatically capture screenshots of web pages for reconnaissance and analysis purposes.

A Burp Suite extension that automates XSS vulnerability detection and validation through custom payload generation and response analysis.

A command-line tool for capturing automated screenshots of websites and mobile applications with support for multiple browsers and device emulations.

A collection of customizable automation scripts for Turbo Intruder that facilitate vulnerability scanning, exploitation, and data extraction in penetration testing workflows.

Krampus is an AWS resource management tool that automates the deletion and disabling of cloud objects based on JSON task files for security remediation and cost control.

A tool for creating encrypted volumes with self-destruction capabilities that automatically destroy data when tampering is detected or commands are issued.

A contribution guide that provides guidelines and instructions for developers to contribute custom activities to the Ayehu IT automation platform through GitHub pull requests.

CrowdFMS is a CrowdStrike framework that automates malware sample collection from VirusTotal using YARA rule-based notifications and the Private API system.

Allstar is a GitHub App that continuously monitors repositories and organizations for security policy violations, creating alerts when best practices are not followed.

A CLI program that simplifies cybersecurity solution management through automated deployment, configuration, monitoring, and lifecycle operations across multiple hosts.

A Docker-based utility that monitors TLS certificate expiration dates and exposes the data as Prometheus metrics with support for Kubernetes ingress discovery and configurable domain filtering.

An AWS incident response framework that uses Athena to analyze CloudTrail events and EventBridge for notifications to investigate API activity and detect security misconfigurations.

mkCTF is a framework for creating and managing jeopardy-style CTF challenges with configurable structure and automated deployment capabilities.

OneFuzz is a self-hosted Fuzzing-As-A-Service platform developed by Microsoft that enables continuous developer-driven security testing through automated fuzzing capabilities.