Home
Projects

Open-Source Projects

Discover top open-source software, updated regularly with real-world adoption signals.

PickYourTech

Curated open-source & SaaS tooling to help teams ship faster.

Projects Alternatives Categories About

Terms Privacy

Nebula – AI-Powered Penetration Testing CLI Tool | PickYourTech

Home
Projects
Application Security Testing (SAST/DAST/SCA)
Nebula

Nebula

AI-driven CLI assistant that automates penetration testing workflows

Application Security Testing (SAST/DAST/SCA)

Overview Highlights Managed products Fit Use cases Tech Tags FAQ

Nebula adds LLMs to the CLI, delivering real‑time vulnerability insights, automated note‑taking, internet research, and tool integration for security teams.

Overview

Highlights

AI‑Powered Internet Search via agents for up‑to‑date security context

Automated note‑taking and command logging for comprehensive reports

Real‑time AI insights derived from terminal tool outputs

Integrated screenshot capture and annotation within the CLI

Pros

Supports multiple LLM providers (OpenAI, Meta, Mistral, DeepSeek)
Automates documentation and reduces manual reporting effort
Enhances existing CLI tools with AI‑driven suggestions
Can run locally via Ollama for privacy‑focused environments

Considerations

Requires at least 16 GB RAM and Python 3.11+
Initial model setup (Ollama or API keys) may be complex for newcomers
Limited to command‑line interfaces; no native graphical UI
Advanced autonomous features are only available in Nebula Pro

Managed products teams compare with

When teams consider Nebula, these hosted platforms usually appear on the same shortlist.

Acunetix

Web vulnerability scanner for automated security testing of websites and web apps

AppCheck

Automated web application and infrastructure vulnerability scanning platform

Burp Suite

Web application security testing platform

Looking for a hosted option? These are the services engineering teams benchmark against before choosing open source.

Fit guide

Great for

Penetration testers who already use CLI utilities
Security teams needing automated reporting and note‑taking
Researchers analyzing executables with the Deep Application Profiler
Developers wanting AI‑augmented security checks in their pipelines

Not ideal when

Users with less than 16 GB RAM or older hardware
Organizations that require a full graphical dashboard
Beginners unfamiliar with LLM configuration and API keys
Environments where external API access is prohibited

How teams use it

Rapid vulnerability enumeration during a red‑team engagement

Nebula parses nmap output, suggests exploit paths, and logs findings automatically.

Automated note‑taking while running Metasploit modules

All commands and observations are captured, with AI‑generated summaries for the final report.

Zero‑day malware analysis using Deep Application Profiler

DAP provides structural breakdown, and Nebula’s AI offers remediation suggestions.

Live internet research for emerging CVEs

Agent‑driven search fetches latest advisories, feeding AI context for exploit prioritization.

Tech snapshot

Python93%

HTML3%

CSS3%

Dockerfile1%

Shell1%

Frequently asked questions

Do I need an OpenAI API key?

Only if you want to use OpenAI models; otherwise you can run local models via Ollama.

What are the system requirements?

Minimum 16 GB RAM, Python 3.11+, and Ollama installed for local inference.

Can Nebula run inside Docker?

Yes, a Docker image is provided; you need to expose the X server for screenshot features.

Is there a free version?

The core Nebula tool is free under the BSD‑2‑Clause license; Nebula Pro adds extra features and is a separate offering.

How does Nebula store logs and notes?

Logs are written to ~/.local/share/nebula/logs and can be reviewed or exported.

Project at a glance

Stable

Visit site View repo

Stars: 818
Watchers: 818
Forks: 112

LicenseBSD-2-Clause

Repo age2 years old

Last commit7 months ago

Primary languagePython

Last synced 4 days ago