Assess an organization's security posture against a compliance framework (SOC 2, ISO 27001, HIPAA, PCI-DSS, NIST CSF).

Generate evidence collection plans for compliance controls.

Deep-dive analysis of compliance control gaps with remediation roadmap.

Generate audit-ready compliance reports.

Generate tailored security policy documents.

Scan an IP/domain for open ports, services, and vulnerabilities.

Scan a web app for OWASP Top 10 vulnerabilities.

Prioritize vulnerabilities by exploitability and business impact.

Look up CVE details, CVSS scores, and patches.

Audit SSL/TLS configuration for a domain.

Static analysis for security vulnerabilities. Supports Python, JS/TS, Java, Go, Ruby, PHP, C/C++.

Detect hardcoded secrets in source code.

Audit dependencies for known vulnerabilities (npm, pip, Go, Ruby, Java, Cargo).

Classify and respond to security incidents.

IOC lookup against threat intel feeds.

Check DNS security (SPF, DKIM, DMARC, DNSSEC).

Comprehensive email security audit.

Audit user access against least-privilege.

Assess MFA coverage and strength.

Check email/domain in breach databases (HIBP).

Composite trust verdict (PROCEED/CAUTION/BLOCK) for an endpoint an agent is about to call or pay — combines TLS/cert health, DNS hygiene, threat-intel reputation, and domain age into one decision with reasons.

Scan an MCP server (git repo or code) for supply-chain risk BEFORE trusting it — exfiltration (secrets/env to the network), prompt-injection sinks, dangerous capabilities, npm install hooks, obfuscation, plus Semgrep + secret scanning → a PROCEED/CAUTION/BLOCK verdict with findings.

Scan an agent SKILL (git repo or SKILL.md) for supply-chain risk BEFORE trusting it — prompt-injection / hidden-unicode in the instructions (hard block), over-broad allowed-tools grants, plus exfiltration, dangerous capabilities, secrets and obfuscation in bundled scripts → a PROCEED/CAUTION/BLOCK verdict.

Returns the calling API key's prepaid balance, monthly limit, current month usage, and a breakdown of how many of each tool the customer can still afford. Free to call.

Returns AgentAegis FAQ — authentication, balance/billing, tool catalog, async jobs, error codes, x402, rate limits, security. Optional topic filter. Free to call.

Returns your persistent AgentAegis agent identity (agent_id), how you're identified (API key / wallet / anonymous session), and lifetime call count + spend. Free to call.

Lists your recent scans (scan_id, tool, target, status, time) so you can retrieve or chain from a prior result. Optional limit/tool/target/since filters. Free to call.

Retrieves one of your prior scans by scan_id, including the stored full output, so you can build on earlier results without re-paying. Free to call.