ENNAENNA

DeepAudit

Apache-2.0

Vulnerability Scanning · Python

DeepAudit is a multi-agent AI system designed for deep code security auditing. Unlike traditional SAST tools that match patterns, DeepAudit uses multiple specialized AI agents that reason about code semantics, data flows, and trust boundaries. When it finds a potential vulnerability, it automatically generates and executes a proof-of-concept in a sandboxed environment to verify exploitability. The system has discovered 49 confirmed CVEs across 17 major open-source projects, demonstrating its ability to find vulnerabilities that human auditors and traditional tools miss.

5.9kstars
520forks
41issues
Updated 5d ago
+I use this
View on GitHub

Installation

$ pip install deepaudit

Use Cases

  • Automated security code review with PoC generation
  • Finding vulnerabilities missed by traditional SAST
  • CVE discovery in open-source dependencies
  • Verifying exploitability of potential vulnerabilities

Tags

ai-auditcode-reviewcve-discoverymulti-agentproof-of-concept

Details

Category
Vulnerability Scanning
Language
Python
License
Apache-2.0
Platforms
🐧linux🍎macos

Links

GitHub Repository

github.com/lintsinghua/DeepAudit

Releases

github.com/lintsinghua/DeepAudit/releases

Issues

github.com/lintsinghua/DeepAudit/issues

Sponsored

Your ad here

Reach security professionals and developers - ads@en-na.com

Community Reviews

Alternatives & Comparisons

Semgrep

OCaml

Lightweight static analysis engine for finding bugs and enforcing code standards across 30+ languages with custom rules.

Compare DeepAudit vs Semgrep

Bearer

Go

SAST tool scanning code for security risks, sensitive data flows, and vulnerabilities.

Compare DeepAudit vs Bearer

Bandit

Python

Python static analysis security linter to find common code vulnerabilities.

Compare DeepAudit vs Bandit

Brakeman

Ruby

Static analysis security scanner for Ruby on Rails applications. Finds SQL injection, XSS, and dozens of Rails-specific vulnerabilities.

Compare DeepAudit vs Brakeman

More in Vulnerability Scanning

Nuclei

Go

Fast vulnerability scanner driven by YAML templates. Thousands of community-contributed detection templates.

template-basedcvemisconfig

sqlmap

Python

Automatic SQL injection and database takeover tool. Detects and exploits SQL injection flaws.

sql-injectiondatabaseautomated

WPScan

Ruby

WordPress security scanner. Enumerates plugins, themes, users, and checks for known vulnerabilities.

wordpressplugin-enumcve

OpenVAS

C

Full-featured vulnerability scanner. 50,000+ NVTs, credentialed scanning, compliance checks.

enterprisenvtcompliance

XSStrike

Python

Advanced XSS detection suite. Fuzzing engine, context analysis, and WAF detection/bypass capabilities.

xsswaf-bypassfuzzing

Commix

Python

Automated OS command injection exploitation tool. Tests web apps for command injection vulnerabilities.

command-injectionautomatedweb-app