Integrated Development and Learning Environment
Security research, open source tooling, and tinkering.
Not just red team. Not just compliance. Everything hacking means.
30+ multi-framework security compliance audit tools — one per vendor, each mapping API evidence to control frameworks (NIST 800-53, FedRAMP, SOC 2, ISO 27001, SCF, and more).
 Cloud |
 IAM |
 Security |
 Observability |
 SaaS |
 DevOps |
 Vuln/AppSec |
Browse all inspectors
| Domain | Inspectors |
|---|---|
| Cloud Infrastructure | aws · azure · gcp · oci · cloudflare |
| Identity & Access | duo |
| Security & Network | crowdstrike · paloalto · zscaler |
| Monitoring & Observability | datadog · splunk · newrelic · sumologic · elastic · tenable · qualys |
| SaaS & Collaboration | salesforce · slack · zoom · zendesk · box · servicenow · knowbe4 · webex |
| DevOps & Developer | github · launchdarkly · veracode · mulesoft |
| Endpoint & Vuln | pagerduty · snowflake |
- scf-api — Static JSON API for the Secure Controls Framework. 1,468 controls, 33 families, 249 framework crosswalks.
- nist-cybersecurity-skills — Claude Code plugin for NIST SP 800-53, 800-171, CSF 2.0, and more.
- homebrew-tap / scoop-bucket — Package distribution for hackIDLE tools.
- skills — Security-focused agent skills for mesh analysis, compliance reporting, and remediation.
RL environments for training language models on security and compliance tasks. Teaching agents to audit, assess, and remediate.
Weekly digest of security research, notes, and finds from across the field.
Built by Ethan Troy
