* [Shannon v1.4.0](https://github.com/KeygraphHQ/shannon) – Autonomous white-box AI pentester for web applications and APIs that analyzes source code and runs proof-of-concept exploits.

* [Trivy v0.71.0](https://github.com/aquasecurity/trivy) – Comprehensive security scanner for vulnerabilities, misconfigurations, and secrets across various targets.

* [gosec v2.27.0](https://github.com/securego/gosec) – Inspects Go source code for security issues by scanning the AST and SSA representations.

* [Osmedeus v5.0.3](https://github.com/j3ssie/osmedeus) – Workflow engine designed for scalable and customizable offensive security reconnaissance.

* [lazytrivy v1.4.0](https://github.com/owenrumney/lazytrivy) – Terminal UI wrapper for Trivy that runs image, filesystem, and Kubernetes vulnerability scans without Docker.

* [KeyLeak Detector v0.5.1](https://github.com/Amal-David/keyleak-detector) – Runtime detector for exposed API keys and BaaS misconfigurations in web apps, with Chrome extension and CLI.

* [Greenmask v0.2.21](https://github.com/GreenmaskIO/greenmask) – Tool for database anonymization and synthetic data generation.

* [Yaklang 1.4.7-beta7](https://github.com/yaklang/yaklang) – Cybersecurity-focused domain-specific programming language with a dedicated virtual machine and IDE support.