Best AI Security Agents 2026
Published 2026-03-10 · Data from nerq.ai · Updated hourly
Security is a natural fit for AI agents — from automated penetration testing to real-time threat detection. We ranked all 1,293 security agents in the Nerq index by Trust Score. In security especially, trust and maintenance quality matter — a poorly maintained security tool is worse than none at all.
Top 5 — in detail
1. SWE-agent/SWE-agent — agent
SWE-agent takes a GitHub issue and tries to automatically fix it, using your LM of choice. It can also be employed for offensive cybersecurity or competitive coding challenges. [NeurIPS 2024]
Trust: 92.5/100 (A+) · GitHub · 18,516 stars · full report
2. FunnyWolf/agentic-soc-platform — agent
Agentic SOC Platform: A powerful, flexible, open-source, and agent-centric automated security operations platform
Trust: 91.3/100 (A+) · GitHub · 579 stars · full report
3. raptor — agent
Raptor is an autonomous security research framework for advanced security operations and research.
Trust: 90.2/100 (A+) · GitHub · 1,095 stars · full report
4. GreyDGL/PentestGPT — agent
Automated Penetration Testing Agentic Framework Powered by Large Language Models
Trust: 89.7/100 (A) · GitHub · 11,700 stars · full report
5. CursorTouch/Windows-MCP — MCP server
MCP Server for Computer Use in Windows
Trust: 89.0/100 (A) · GitHub · 4,390 stars · full report
Full ranking — top 15
| # | Name | Type | Score | Grade | Source | Stars |
|---|---|---|---|---|---|---|
| 1 | SWE-agent/SWE-agent | agent |
92.5 | A+ | GitHub | 18,516 |
| SWE-agent takes a GitHub issue and tries to automatically fix it, using your LM of choice. It can also be employed for offensive cybersecurity or competitive coding challenges. ... | ||||||
| 2 | FunnyWolf/agentic-soc-platform | agent |
91.3 | A+ | GitHub | 579 |
| Agentic SOC Platform: A powerful, flexible, open-source, and agent-centric automated security operations platform | ||||||
| 3 | raptor | agent |
90.2 | A+ | GitHub | 1,095 |
| Raptor is an autonomous security research framework for advanced security operations and research. | ||||||
| 4 | GreyDGL/PentestGPT | agent |
89.7 | A | GitHub | 11,700 |
| Automated Penetration Testing Agentic Framework Powered by Large Language Models | ||||||
| 5 | CursorTouch/Windows-MCP | MCP server |
89.0 | A | GitHub | 4,390 |
| MCP Server for Computer Use in Windows | ||||||
| 6 | cisco-ai-defense/mcp-scanner | agent |
88.1 | A | GitHub | 809 |
| Scan MCP servers for potential threats & security findings. | ||||||
| 7 | cyproxio/mcp-for-security | MCP server |
88.1 | A | GitHub | 553 |
| MCP for Security: A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more. Integrate security testing and penetration... | ||||||
| 8 | samugit83/redamon | agent |
87.4 | A | GitHub | 1,060 |
| An AI-powered agentic red team framework that automates offensive security operations, from reconnaissance to exploitation to post-exploitation, with zero human intervention. | ||||||
| 9 | santosomar/AI-agents-for-cybersecurity | agent |
87.4 | A | GitHub | 146 |
| This repository contains resources and materials for the "AI Agents and Retrieval Augmented Generation (RAG) for Cybersecurity Operations" and other courses by Omar Santos. | ||||||
| 10 | export-assist-mcp | MCP server |
86.6 | A | GitHub | — |
| MCP server for AI-assisted export control compliance. | ||||||
| 11 | aegis-mcp | MCP server |
86.6 | A | GitHub | — |
| MCP server for software developers to understand and implement DOE/DOD and National Labs security compliance requirements. | ||||||
| 12 | slither-mcp | MCP server |
86.5 | A | GitHub | 71 |
| MCP server for analyzing Solidity smart contracts. | ||||||
| 13 | FuzzingLabs/fuzzforge_ai | agent |
85.3 | A | GitHub | 744 |
| AI-powered workflow automation and AI Agents platform for AppSec, Fuzzing & Offensive Security. Automate vulnerability discovery with intelligent fuzzing, AI-driven analysis... | ||||||
| 14 | GH05TCREW/pentestagent | agent |
85.2 | A | GitHub | 1,648 |
| PentestAgent is an AI agent framework for black-box security testing, supporting bug bounty, red-team, and penetration testing workflows. | ||||||
| 15 | suricata-mcp-server | MCP server |
84.3 | A | GitHub | — |
| A comprehensive MCP server for Suricata IDS/IPS, connecting Claude Desktop for network security analysis. | ||||||
How we rank
Rankings are based on the Nerq Trust Score (0-100), a composite metric covering:
- Security (30%) — vulnerability audit, dependency safety
- Maintenance (25%) — commit recency, release cadence
- Popularity (20%) — stars, downloads, community
- Documentation (15%) — README, API docs, examples
- Ecosystem (10%) — protocol support, integrations
Scores update continuously as new data is crawled. These rankings reflect live data from the Nerq index of 1,293 security agents.
Related reports
- State of AI Assets — Q1 2026
- Best AI Coding Agents 2026
- Best AI Customer Service & Communication Agents 2026
- Best AI DevOps Agents 2026
- Best AI Content Creation Agents 2026