Best AI tools for< Scan Vulnerabilities >
20 - AI tool Sites

Vulnscanner AI
Vulnscanner AI is an AI-powered WordPress security tool that offers affordable and user-friendly website security solutions. It provides instant, jargon-free security reports, step-by-step resolution guides, and customizable security solutions to prevent future attacks. The tool is designed to help small/medium businesses, web professionals, and individuals safeguard their online presence without breaking the bank. With advanced algorithms and military-grade encryption, Vulnscanner AI aims to protect websites from cyber threats and vulnerabilities.

AquilaX
AquilaX is an AI-powered DevSecOps platform that simplifies security and accelerates development processes. It offers a comprehensive suite of security scanning tools, including secret identification, PII scanning, SAST, container scanning, and more. AquilaX is designed to integrate seamlessly into the development workflow, providing fast and accurate results by leveraging AI models trained on extensive datasets. The platform prioritizes developer experience by eliminating noise and false positives, making it a go-to choice for modern Secure-SDLC teams worldwide.

ZeroThreat
ZeroThreat is a web app and API security scanner that helps businesses identify and fix vulnerabilities in their web applications and APIs. It uses a combination of static and dynamic analysis techniques to scan for a wide range of vulnerabilities, including OWASP Top 10, CWE Top 25, and SANS Top 25. ZeroThreat also provides continuous monitoring and alerting, so businesses can stay on top of new vulnerabilities as they emerge.

Roost.ai
Roost.ai is an AI-driven testing copilot that offers automated test case generation and code scanning services. It leverages Generative-AI and Large Language Models (LLMs) to provide reliable software testing solutions. Roost.ai helps in freeing up developer time by automating test case generation, enhancing test accuracy and coverage, and detecting static vulnerabilities in source code and logs. The platform is trusted by global financial institutions and industry leaders for its ability to fill gaps in test coverage and streamline the testing and deployment process.

Qwiet AI
Qwiet AI is a code vulnerability detection platform that accelerates secure coding by uncovering, prioritizing, and generating fixes for top vulnerabilities with a single scan. It offers features such as AI-enhanced SAST, contextual SCA, AI AutoFix, Container Security, SBOM, and Secrets detection. Qwiet AI helps InfoSec teams in companies to accurately pinpoint and autofix risks in their code, reducing false positives and remediation time. The platform provides a unified vulnerability dashboard, prioritizes risks, and offers tailored fix suggestions based on the full context of the code.

ODIN
ODIN is a powerful internet scanning search engine designed for scanning and cataloging internet assets. It offers enhanced scanning capabilities, faster refresh rates, and comprehensive visibility into open ports. With over 45 modules covering various aspects like HTTP, Elasticsearch, and Redis, ODIN enriches data and provides accurate and up-to-date information. The application uses AI/ML algorithms to detect exposed buckets, files, and potential vulnerabilities. Users can perform granular searches, access exploit information, and integrate effortlessly with ODIN's API, SDKs, and CLI. ODIN allows users to search for hosts, exposed buckets, exposed files, and subdomains, providing detailed insights and supporting diverse threat intelligence applications.

Zing Coach
Zing Coach is a fitness application designed to help users determine their fitness level and provide personalized workout plans. The app offers options for beginners, intermediate, and advanced users, guiding them towards achieving their fitness goals. Users can easily navigate through the app to select their fitness level and receive tailored recommendations for workouts. Zing Coach aims to make fitness accessible and enjoyable for individuals of all levels.

Siwalu
Siwalu is an AI-based image recognition application that specializes in identifying animals. The app helps pet owners learn more about their pets by providing specific information about their breed and characteristics. It offers a quick and reliable way to determine the breed of dogs, cats, and horses, including mixed breeds, without the need for costly DNA analysis. Siwalu aims to increase knowledge about global biodiversity by developing a universal animal recognition system.

Qlone
Qlone is a user-friendly 3D scanning app that allows users to easily create 3D models using their smartphone or tablet. The app offers seamless integration with leading 3D platforms for printing, sharing, and selling models. Users can create AR menus, scan various objects like food, people, and art, and engage in educational activities. Qlone is developed by EyeCue Vision Technologies LTD and is designed to provide a simple and efficient 3D scanning experience.

ScanMyGolfBall
ScanMyGolfBall is an AI-powered application designed to revolutionize the golfing experience. By simply scanning any golf ball, users can uncover detailed insights and personalized recommendations to enhance their gameplay. The app utilizes AI algorithms to analyze ball characteristics, provide accurate information, and offer tailored ball fitting suggestions based on individual playing styles. With a user-friendly interface, hassle-free experience, and focus on privacy and security, ScanMyGolfBall aims to elevate the way golfers approach their game.

Open Tutor App
Open Tutor App is an AI-powered Homework Helper designed to assist students in solving homework questions efficiently. The app allows users to take a photo of their homework, which is then analyzed by AI to provide step-by-step solutions and explanations. With features like scanning and solving homework questions, Open Tutor App aims to enhance learning experiences and boost academic performance. The application is available for download on Google Play, App Store, and Web platforms.

OpalAi
OpalAi is a revolutionary floor plan creator app that empowers users to create detailed floor plans and BIM models using only their iPhone or iPad. With its cutting-edge AI technology, OpalAi automates the entire process, eliminating the need for manual measurements, note-taking, and furniture removal. Simply scan your space, texture it within the app, and upload the project to receive a complete floor plan in just 10 minutes. OpalAi supports various output formats, including 3D CAD & BIM models, Revit, AutoCAD, Sketchup, Rhino, PDF, and 2020 Design models, with options for textured and colored models. The app's advanced features and capabilities make it an ideal tool for architects, contractors, real estate agents, interior designers, and homeowners alike.

Scanner Go
Scanner Go is a free PDF tool that offers easy-to-use features for high-quality scanning and conversion of various documents into PDF format. With powerful OCR technology, it allows users to extract text from PDFs and images, making it convenient to edit and share documents. The tool also provides options for managing, editing, printing, and sharing documents, enhancing productivity. Additionally, Scanner Go offers a range of popular tools for converting, optimizing, and securing PDF files, catering to diverse user needs.

Animant
Animant is an interactive AR tool that allows users to create engaging 3D scenes, conduct 3D scanning, and capture rooms. It leverages AI to enable users to build interactive 3D scenes using natural language, without the need for 3D animation knowledge. Animant is designed for AR experiences, enabling users to visualize 3D models in their real-world environment. The tool offers features like Object Capture, Room Capture, SharePlay for collaboration, and innovative 3D path construction. It prioritizes user privacy by not collecting personally identifiable information and supports offline rendering for creative flexibility.

Codiga
Codiga is a static code analysis tool that helps developers write clean, safe, and secure code. It works in real-time in your IDE and CI/CD pipelines, and it can be customized to meet your specific needs. Codiga supports a wide range of languages and frameworks, and it integrates with popular tools like GitHub, GitLab, and Bitbucket.

Glowup AI
Glowup AI is an innovative AI tool that allows users to discover their unique beauty potential through advanced facial analysis technology. By uploading a photo, users can receive personalized recommendations for enhancing their features and achieving their desired look. The app provides insights on skincare, makeup techniques, and hairstyle suggestions tailored to individual facial characteristics. With its user-friendly interface and accurate results, Glowup AI is revolutionizing the beauty industry by empowering users to explore and enhance their natural beauty effortlessly.

Skinive
Skinive is an AI-powered dermatology app that provides users with a personalized skin analysis and treatment plan. The app uses a combination of computer vision and machine learning to identify and track skin conditions, such as acne, rosacea, and skin cancer. Skinive also offers a variety of features to help users improve their skin health, such as a personalized skincare routine, a skin diary, and access to a team of dermatologists. Skinive is available as a mobile app and a web app.

Privacy Observer
Privacy Observer is an AI-powered tool that makes privacy accessible by scanning and analyzing privacy policies of websites. It helps users understand when websites request excessive personal information without the need to read lengthy policies. The tool provides a detailed score for each website, ensuring users can make informed decisions about their online privacy. With features like unlimited background scans, anonymous checks by humans, and a user-friendly browser extension, Privacy Observer aims to empower users to protect their privacy online.

Medgic
Medgic is an advanced Artificial Intelligence (AI) tool designed to scan, analyze, and detect skin problems using powerful AI technology. Users can easily upload photos of their skin conditions and receive accurate results along with friendly advice. The AI robot, Medgic, continuously learns and improves with user interactions, aiming to contribute to solving global healthcare challenges. While providing general information for educational purposes, Medgic is not a replacement for professional medical consultation. The tool is developed in Singapore and emphasizes user agreement with its Terms of Use and Privacy Policy.

WellyBox
WellyBox is an AI-powered platform designed to help users organize receipts and invoices effortlessly. With the power of AI, WellyBox automatically collects and analyzes receipts from various sources, integrates them with business tools and accountants, and simplifies financial operations for over 70,000 businesses worldwide. The platform offers a seamless solution for managing financial documents, saving time on administrative tasks, and ensuring efficient receipt organization.
20 - Open Source AI Tools

agentic_security
Agentic Security is an open-source vulnerability scanner designed for safety scanning, offering customizable rule sets and agent-based attacks. It provides comprehensive fuzzing for any LLMs, LLM API integration, and stress testing with a wide range of fuzzing and attack techniques. The tool is not a foolproof solution but aims to enhance security measures against potential threats. It offers installation via pip and supports quick start commands for easy setup. Users can utilize the tool for LLM integration, adding custom datasets, running CI checks, extending dataset collections, and dynamic datasets with mutations. The tool also includes a probe endpoint for integration testing. The roadmap includes expanding dataset variety, introducing new attack vectors, developing an attacker LLM, and integrating OWASP Top 10 classification.

cheating-based-prompt-engine
This is a vulnerability mining engine purely based on GPT, requiring no prior knowledge base, no fine-tuning, yet its effectiveness can overwhelmingly surpass most of the current related research. The core idea revolves around being task-driven, not question-driven, driven by prompts, not by code, and focused on prompt design, not model design. The essence is encapsulated in one word: deception. It is a type of code understanding logic vulnerability mining that fully stimulates the capabilities of GPT, suitable for real actual projects.

trickPrompt-engine
This repository contains a vulnerability mining engine based on GPT technology. The engine is designed to identify logic vulnerabilities in code by utilizing task-driven prompts. It does not require prior knowledge or fine-tuning and focuses on prompt design rather than model design. The tool is effective in real-world projects and should not be used for academic vulnerability testing. It supports scanning projects in various languages, with current support for Solidity. The engine is configured through prompts and environment settings, enabling users to scan for vulnerabilities in their codebase. Future updates aim to optimize code structure, add more language support, and enhance usability through command line mode. The tool has received a significant audit bounty of $50,000+ as of May 2024.

ai-exploits
AI Exploits is a repository that showcases practical attacks against AI/Machine Learning infrastructure, aiming to raise awareness about vulnerabilities in the AI/ML ecosystem. It contains exploits and scanning templates for responsibly disclosed vulnerabilities affecting machine learning tools, including Metasploit modules, Nuclei templates, and CSRF templates. Users can use the provided Docker image to easily run the modules and templates. The repository also provides guidelines for using Metasploit modules, Nuclei templates, and CSRF templates to exploit vulnerabilities in machine learning tools.

vulnerability-analysis
The NVIDIA AI Blueprint for Vulnerability Analysis for Container Security showcases accelerated analysis on common vulnerabilities and exposures (CVE) at an enterprise scale, reducing mitigation time from days to seconds. It enables security analysts to determine software package vulnerabilities using large language models (LLMs) and retrieval-augmented generation (RAG). The blueprint is designed for security analysts, IT engineers, and AI practitioners in cybersecurity. It requires NVAIE developer license and API keys for vulnerability databases, search engines, and LLM model services. Hardware requirements include L40 GPU for pipeline operation and optional LLM NIM and Embedding NIM. The workflow involves LLM pipeline for CVE impact analysis, utilizing LLM planner, agent, and summarization nodes. The blueprint uses NVIDIA NIM microservices and Morpheus Cybersecurity AI SDK for vulnerability analysis.

finite-monkey-engine
FiniteMonkey is an advanced vulnerability mining engine powered purely by GPT, requiring no prior knowledge base or fine-tuning. Its effectiveness significantly surpasses most current related research approaches. The tool is task-driven, prompt-driven, and focuses on prompt design, leveraging 'deception' and hallucination as key mechanics. It has helped identify vulnerabilities worth over $60,000 in bounties. The tool requires PostgreSQL database, OpenAI API access, and Python environment for setup. It supports various languages like Solidity, Rust, Python, Move, Cairo, Tact, Func, Java, and Fake Solidity for scanning. FiniteMonkey is best suited for logic vulnerability mining in real projects, not recommended for academic vulnerability testing. GPT-4-turbo is recommended for optimal results with an average scan time of 2-3 hours for medium projects. The tool provides detailed scanning results guide and implementation tips for users.

invariant
Invariant Analyzer is an open-source scanner designed for LLM-based AI agents to find bugs, vulnerabilities, and security threats. It scans agent execution traces to identify issues like looping behavior, data leaks, prompt injections, and unsafe code execution. The tool offers a library of built-in checkers, an expressive policy language, data flow analysis, real-time monitoring, and extensible architecture for custom checkers. It helps developers debug AI agents, scan for security violations, and prevent security issues and data breaches during runtime. The analyzer leverages deep contextual understanding and a purpose-built rule matching engine for security policy enforcement.

HackBot
HackBot is an AI-powered cybersecurity chatbot designed to provide accurate answers to cybersecurity-related queries, conduct code analysis, and scan analysis. It utilizes the Meta-LLama2 AI model through the 'LlamaCpp' library to respond coherently. The chatbot offers features like local AI/Runpod deployment support, cybersecurity chat assistance, interactive interface, clear output presentation, static code analysis, and vulnerability analysis. Users can interact with HackBot through a command-line interface and utilize it for various cybersecurity tasks.

awesome-gpt-security
Awesome GPT + Security is a curated list of awesome security tools, experimental case or other interesting things with LLM or GPT. It includes tools for integrated security, auditing, reconnaissance, offensive security, detecting security issues, preventing security breaches, social engineering, reverse engineering, investigating security incidents, fixing security vulnerabilities, assessing security posture, and more. The list also includes experimental cases, academic research, blogs, and fun projects related to GPT security. Additionally, it provides resources on GPT security standards, bypassing security policies, bug bounty programs, cracking GPT APIs, and plugin security.

garak
Garak is a vulnerability scanner designed for LLMs (Large Language Models) that checks for various weaknesses such as hallucination, data leakage, prompt injection, misinformation, toxicity generation, and jailbreaks. It combines static, dynamic, and adaptive probes to explore vulnerabilities in LLMs. Garak is a free tool developed for red-teaming and assessment purposes, focusing on making LLMs or dialog systems fail. It supports various LLM models and can be used to assess their security and robustness.

agentic-radar
The Agentic Radar is a security scanner designed to analyze and assess agentic systems for security and operational insights. It helps users understand how agentic systems function, identify potential vulnerabilities, and create security reports. The tool includes workflow visualization, tool identification, and vulnerability mapping, providing a comprehensive HTML report for easy reviewing and sharing. It simplifies the process of assessing complex workflows and multiple tools used in agentic systems, offering a structured view of potential risks and security frameworks.

watchtower
AIShield Watchtower is a tool designed to fortify the security of AI/ML models and Jupyter notebooks by automating model and notebook discoveries, conducting vulnerability scans, and categorizing risks into 'low,' 'medium,' 'high,' and 'critical' levels. It supports scanning of public GitHub repositories, Hugging Face repositories, AWS S3 buckets, and local systems. The tool generates comprehensive reports, offers a user-friendly interface, and aligns with industry standards like OWASP, MITRE, and CWE. It aims to address the security blind spots surrounding Jupyter notebooks and AI models, providing organizations with a tailored approach to enhancing their security efforts.

nebula
Nebula is an advanced, AI-powered penetration testing tool designed for cybersecurity professionals, ethical hackers, and developers. It integrates state-of-the-art AI models into the command-line interface, automating vulnerability assessments and enhancing security workflows with real-time insights and automated note-taking. Nebula revolutionizes penetration testing by providing AI-driven insights, enhanced tool integration, AI-assisted note-taking, and manual note-taking features. It also supports any tool that can be invoked from the CLI, making it a versatile and powerful tool for cybersecurity tasks.

garak
Garak is a free tool that checks if a Large Language Model (LLM) can be made to fail in a way that is undesirable. It probes for hallucination, data leakage, prompt injection, misinformation, toxicity generation, jailbreaks, and many other weaknesses. Garak's a free tool. We love developing it and are always interested in adding functionality to support applications.

patchwork
PatchWork is an open-source framework designed for automating development tasks using large language models. It enables users to automate workflows such as PR reviews, bug fixing, security patching, and more through a self-hosted CLI agent and preferred LLMs. The framework consists of reusable atomic actions called Steps, customizable LLM prompts known as Prompt Templates, and LLM-assisted automations called Patchflows. Users can run Patchflows locally in their CLI/IDE or as part of CI/CD pipelines. PatchWork offers predefined patchflows like AutoFix, PRReview, GenerateREADME, DependencyUpgrade, and ResolveIssue, with the flexibility to create custom patchflows. Prompt templates are used to pass queries to LLMs and can be customized. Contributions to new patchflows, steps, and the core framework are encouraged, with chat assistants available to aid in the process. The roadmap includes expanding the patchflow library, introducing a debugger and validation module, supporting large-scale code embeddings, parallelization, fine-tuned models, and an open-source GUI. PatchWork is licensed under AGPL-3.0 terms, while custom patchflows and steps can be shared using the Apache-2.0 licensed patchwork template repository.

NeMo-Guardrails
NeMo Guardrails is an open-source toolkit for easily adding _programmable guardrails_ to LLM-based conversational applications. Guardrails (or "rails" for short) are specific ways of controlling the output of a large language model, such as not talking about politics, responding in a particular way to specific user requests, following a predefined dialog path, using a particular language style, extracting structured data, and more.

koordinator
Koordinator is a QoS based scheduling system for hybrid orchestration workloads on Kubernetes. It aims to improve runtime efficiency and reliability of latency sensitive workloads and batch jobs, simplify resource-related configuration tuning, and increase pod deployment density. It enhances Kubernetes user experience by optimizing resource utilization, improving performance, providing flexible scheduling policies, and easy integration into existing clusters.

AiTreasureBox
AiTreasureBox is a versatile AI tool that provides a collection of pre-trained models and algorithms for various machine learning tasks. It simplifies the process of implementing AI solutions by offering ready-to-use components that can be easily integrated into projects. With AiTreasureBox, users can quickly prototype and deploy AI applications without the need for extensive knowledge in machine learning or deep learning. The tool covers a wide range of tasks such as image classification, text generation, sentiment analysis, object detection, and more. It is designed to be user-friendly and accessible to both beginners and experienced developers, making AI development more efficient and accessible to a wider audience.

AITreasureBox
AITreasureBox is a comprehensive collection of AI tools and resources designed to simplify and accelerate the development of AI projects. It provides a wide range of pre-trained models, datasets, and utilities that can be easily integrated into various AI applications. With AITreasureBox, developers can quickly prototype, test, and deploy AI solutions without having to build everything from scratch. Whether you are working on computer vision, natural language processing, or reinforcement learning projects, AITreasureBox has something to offer for everyone. The repository is regularly updated with new tools and resources to keep up with the latest advancements in the field of artificial intelligence.
20 - OpenAI Gpts

ethicallyHackingspace (eHs)® (Full Spectrum)™
Full Spectrum Space Cybersecurity Professional ™ AI-copilot (BETA)

🛡️ CodeGuardian Pro+ 🛡️
Your AI-powered sentinel for code! Scans for vulnerabilities, offers security tips, and educates on best practices in cybersecurity. 🔍🔐

IAC Code Guardian
Introducing IAC Code Guardian: Your Trusted IaC Security Expert in Scanning Opentofu, Terrform, AWS Cloudformation, Pulumi, K8s Yaml & Dockerfile

Ethical Hacking GPT
Guide to ethical hacking, specializing in NMAP | For Educational Purposes Only | CSV Upload Suggested |

TipCheck Calculator Pro
Effortlessly calculate your tip and total bill with TipCheck Calculator Pro. Simply scan your restaurant or bar receipt, and get instant suggested tip amounts with an accurate breakdown of your total payment. No more guesswork.
Swapzone
Swapzone is a non-custodial instant crypto exchange aggregator that helps users scan the network of registered exchanges globally and gives them a comprehensive list of those that support a particular trading or swap pair.

Manifestation Mentor GPT
Guides entrepreneurs through 'The Power of Manifestation' with AI-enhanced insights. Scan any page in the book to dive deep in the Manifestation Matrix.

DocuScan and Scribe
Scans and transcribes images into documents, offers downloadable copies in a document and offers to translate into different languages

Free Antivirus Software 2024
Free Antivirus Software : Reviews and Best Free Offers for antivirus software to protect you

Business Card Digitizer
Simply take a photo of your business cards and upload it to the chat. I'll take it from there!