DeepAudit
DeepAudit:人人拥有的 AI 黑客战队,让漏洞挖掘触手可及。国内首个开源的代码漏洞挖掘多智能体系统。小白一键部署运行,自主协作审计 + 自动化沙箱 PoC 验证。支持 Ollama 私有部署 ,一键生成报告。支持中转站。让安全不再昂贵,让审计不再复杂。
Overview
DeepAudit is an innovative AI-powered auditing platform designed to make vulnerability discovery accessible to everyone. With its advanced capabilities, this tool caters to both novice and experienced users, providing them with robust features for efficient auditing of open-source projects. Users can leverage the power of AI to conduct comprehensive audits, ensuring that their applications are secure and free from vulnerabilities.
The platform has successfully discovered and documented multiple Common Vulnerabilities and Exposures (CVEs) across well-known open-source projects, showcasing its reliability and effectiveness. Whether you're a developer looking to enhance your project's security or an organization aiming to maintain high standards of performance, DeepAudit equips you with the necessary tools and reports to initiative your security measures.
Features
-
User-Friendly Interface: The application boasts an intuitive interface that facilitates easy navigation and quick access to various auditing features.
-
Multi-Agent Deep Auditing: Users can engage multiple agents for a thorough audit process, enhancing the depth and breadth of vulnerability detection.
-
One-Click Report Exporting: Generate professional reports in various formats, including PDF, Markdown, and JSON, with simplicity and efficiency.
-
Extensive CVE Discovery: DeepAudit has identified 48 unique CVE identifiers across numerous popular open-source projects, reflecting its powerful scanning capabilities.
-
Diverse Vulnerability Types: The platform detects a variety of vulnerability types, such as SQL Injection, SSRF, XSS, and privilege escalation, ensuring comprehensive security assessments.
-
Regular Updates: The tool is continuously improved, adding new features and updates to enhance user experience and expand its capabilities.
-
Community Support: Operating under the AGPL-3.0 license, DeepAudit fosters community collaboration, allowing users to contribute to ongoing development and improvement efforts.
-
Integration with Various Technologies: Built using modern technologies such as React, TypeScript, and FastAPI, DeepAudit ensures seamless performance across different platforms.
- React
React is a widely used JavaScript library for building user interfaces and single-page applications. It follows a component-based architecture and uses a virtual DOM to efficiently update and render UI components
- Vite
Vite is a build tool that aims to provide a faster and leaner development experience for modern web projects
- Supabase
Supabase is an open source Firebase alternative. Start your project with a Postgres database, Authentication, instant APIs, Edge Functions, Realtime subscriptions, and Storage.
- Fullstack
A fullstack boilerplate provides a starter application that includes both frontend and backend. It should include database, auth, payments, user roles and other backend services to build a fully featured saas or webapps.
- Typescript
TypeScript is a superset of JavaScript, providing optional static typing, classes, interfaces, and other features that help developers write more maintainable and scalable code. TypeScript's static typing system can catch errors at compile-time, making it easier to build and maintain large applications.