Esta página se muestra en inglés. Una traducción al español está en curso.
SkillsMay 12, 2026·2 min de lectura

Osmedeus — Security Orchestration Engine

Osmedeus is a security orchestration engine with a CLI and workflows for recon and asset inventory—use only on systems you own or are authorized to test.

Listo para agents

Instalación con revisión previa

Este activo requiere revisión. El prompt copiado pide dry-run, muestra escrituras y continúa solo tras confirmación.

Needs Confirmation · 64/100Política: confirmar
Superficie agent
Cualquier agent MCP/CLI
Tipo
Skill
Instalación
Single
Confianza
Confianza: Established
Entrada
Asset
Comando con revisión previa
npx -y tokrepo@latest install 847acf46-a034-5504-a1fc-e481df2f07b5 --target codex

Primero dry-run, confirma las escrituras y luego ejecuta este comando.

Introducción

Osmedeus is a security orchestration engine with a CLI and workflows for recon and asset inventory—use only on systems you own or are authorized to test.

  • Best for: Authorized security testing and repeatable recon workflows
  • Works with: Linux/macOS; CLI workflows; optional API server; integrates with docs.osmedeus.org
  • Setup time: 15–45 minutes

Practical Notes

  • GitHub: 6,232 stars · 982 forks; pushed 2026-05-11 (verified via GitHub API).
  • README installation uses a one-line install script and includes --dry-run to preview workflow execution.
  • CLI examples show modules/flows, concurrency flags, and a built-in API server (osmedeus serve).

Main

Safety-first usage:

  • Treat Osmedeus as an internal security automation runner. Keep targets in a scoped allowlist (your domains, your staging, your owned IPs).
  • Start with --dry-run and inspect what will execute, then run with conservative concurrency.
  • Keep outputs in a dedicated workspace and store the final report artifacts alongside the run configuration so audits are easy.

If you want to involve an AI agent, have it produce a plan and a safe target list first; never let the agent free-run on the public internet.

FAQ

Q: Is it legal to scan random sites? A: No. Use it only for systems you own or have explicit permission to test.

Q: How do I reduce risk? A: Use --dry-run, keep concurrency low, and run inside isolated environments.

Q: Can it expose an API? A: Yes—README includes osmedeus serve to start an API server.

🙏

Fuente y agradecimientos

Source: https://github.com/j3ssie/osmedeus > License: MIT > GitHub stars: 6,232 · forks: 982

Discusión

Inicia sesión para unirte a la discusión.
Aún no hay comentarios. Sé el primero en compartir tus ideas.

Activos relacionados