Professional AI agents for security engineers: Access our directory of intelligent automation tools verified by leading AI agency experts.

AI Agents for security engineers | AI Agent Store

FLAMEHAVEN FileSearch is an open-source, self-hosted RAG document search engine you can run locally (Docker or Python). It supports multi-format ingestion (PDF, DOCX, TXT, MD) and provides keyword, semantic, and hybrid search modes (with typo correction). Results include source attribution, and the API includes production features like API-key authentication with permissions, rate limiting, audit logging, batch search, and an admin dashboard. It integrates with Google Gemini (via GEMINI_API_KEY) and supports a lightweight local store plus optional components such as Redis caching and Postgres/pgvector for higher-performance deployments.

FLAMEHAVEN FileSearch

flamehaven-filesearch

Self-hosted RAG file search engine (FastAPI) with keyword/semantic/hybrid modes, citations, API keys, and Docker quickstart.

CodeMender is a Google DeepMind research project focused on automatically improving software security by generating high-quality vulnerability patches. It’s designed to work both reactively (patching newly found vulnerabilities) and proactively (rewriting existing code to reduce or eliminate entire vulnerability classes). The agent leverages advanced “thinking” model capabilities plus a toolbox for reasoning and validation, including program analysis techniques (static and dynamic analysis, differential testing, fuzzing, SMT solvers) and multi-agent components for critique and regression checking. DeepMind reports that in the first six months of development it upstreamed dozens of security fixes to open-source projects, with all patches reviewed by humans before submission, and that broader availability is planned but not yet generally released.

CodeMender

codemender

Google DeepMind research AI agent that autonomously finds, patches, and validates fixes for software security vulnerabilities (human-reviewed before upstreaming).

Qevlar AI is an autonomous SOC analyst that automates end-to-end alert investigation and threat triage. It enriches signals from SIEM, EDR, and cloud sources, formulates hypotheses, runs checks, and documents conclusions directly into your tickets—cutting mean time to investigate to minutes. Built for enterprise security teams and MSSPs, Qevlar offers SaaS or private-cloud deployment, headless integrations with existing tooling, and has been adopted in large SOC environments and recognized by industry programs.

Qevlar AI

qevlar-ai

Autonomous SOC analyst that triages and investigates security alerts in minutes with SIEM/SOAR integrations and flexible deployment.

**Sprinto AI’s Free Compliance Kit includes:**

***1. AI-Powered Trust Center:*** A single, secure, shareable hub to host compliance documents, policies, and certifications — ready to go live in minutes. Your Trust Center is automatically created within two minutes of signing up, with no code and no manual setup required. Simply review, edit, and publish — completely free.
▶️ Trust Center Product Video: https://youtu.be/agN2sWo-yTc?si=5MCetClnPXQcddzD

***2. AI Security Questionnaire:*** Quickly respond to RFPs and vendor questionnaires in any format or language within minutes. Train Sprinto AI on your past questionnaires to deliver highly accurate responses. Includes up to five free questionnaires per month and built-in team collaboration features.
▶️ AI Security Questionnaire Product Video: https://youtu.be/T68aUcJzLO0?si=lLoIiy6JqiB9Y_CM


*Note: To access you Free Compliance Kit, simply Sign-up here. Your Trust Center will be auto-created within 2 minutes of signup - you can review, edit, and go live. The AI Security Questionnaire includes a guided onboarding flow to help you get started quickly. If you need assistance at any point, email  at tuneerb@sprinto.com*

Sprinto AI

sprinto-ai

Sprinto AI’s Free Compliance Kit: Trust Center + AI Security Questionnaire — Free for All

Prisma AIRS by Palo Alto Networks is a SaaS-based AI runtime security platform (with Python SDK) designed to secure AI applications and agentic workflows. It detects and prevents threats like prompt injection, malicious code, data leakage, tool misuse, memory poisoning, and malicious URLs. Integrated with Prisma AIRS MCP Server and tightly woven into enterprise SecOps—its goal is to harden AI agents in production against emerging attack vectors.

Palo Alto Networks Prisma AIRS

palo-alto-networks-prisma-airs

An AI runtime security API/agent platform that protects AI agents at runtime against prompt injection, data leaks, tool misuse, and memory attacks.

Amplify Security is an AI-powered platform designed to integrate seamlessly into existing software development practices, enabling developers to identify and resolve security vulnerabilities efficiently. By leveraging a dual-agent architecture, it offers full visibility into code security, generating one-click solutions with clear explanations. This approach eliminates the traditional back-and-forth between development and security teams, allowing for immediate fixes directly within pull requests. Amplify Security aims to simplify vulnerability management, prioritize risks, and provide deployment-ready fixes, thereby enhancing the overall security posture of software projects.

Amplify Security

amplify-security

An AI-driven platform that streamlines the software security lifecycle, providing developers with immediate, actionable solutions to enhance code security without disrupting development workflows.

PixeeAI is an automated product security platform designed to assist developers in maintaining secure codebases. It integrates seamlessly into existing workflows, monitoring repositories and pull requests to provide high-quality fixes instantly. PixeeAI supports various programming languages and can triage results from code scanners like Sonar, Snyk, and Semgrep, offering expert security context and recommended actions. By automating the remediation of security vulnerabilities, PixeeAI enables developers to focus more on feature development while ensuring code security.

PixeeAI

pixeeai

An automated product security engineer that fixes vulnerabilities, hardens code, and squashes bugs to enhance software security.