GitHub - code3hr/opencode: The open source coding agent.

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

To see all available qualifiers, see our documentation.

The open source coding agent.

License

code3hr/opencode

Folders and files

Latest commit

History

Repository files navigation

Wiz (cyxwiz)

Your AI Security Partner - Just describe what you need. No commands to memorize. No syntax to learn.

Why Wiz Exists

Security testing shouldn't require memorizing hundreds of tool flags and command syntaxes.

Think about it: nmap has 130+ options. Nuclei has dozens of flags. SQLMap has over 100 parameters. Now multiply that by the 30+ tools a typical assessment requires. That's not security work - that's a memorization exercise.

Wiz takes a different approach. Instead of learning tool syntax, you simply describe what you want to accomplish. The AI understands your intent and figures out which tools to use, how to chain them, and how to interpret the results.

No flags to remember. No syntax to look up. Just describe what you need.

What Wiz Does

Wiz is an AI-powered security operations assistant. You talk to it in plain English, and it:

Talk, Don't Type Commands

Here's how a real conversation with Wiz looks:

What You Can Ask

Just describe what you need in your own words:

Wiz understands context too. After scanning a network, you can say "check that Apache server for vulnerabilities" - it knows which one you mean.

Why Wiz? Why Not Claude CLI or Other LLM Tools?

Yes, Claude CLI, Cursor, and other LLM tools can run commands too. So what makes Wiz different?

The Foundation: OpenCode Agent

Wiz is built on OpenCode, which provides a superior agent architecture compared to generic LLM CLIs:

What OpenCode Gives Us (That Others Don't)

Better Agent Control - OpenCode's architecture gives finer control over LLM behavior, tool execution, and context management than Claude CLI's generic approach

Extensible Tool Framework - Not just "run bash commands" but structured tool definitions with typed inputs/outputs

Session Persistence - Real session management, not just chat history

Multi-LLM Support - Claude, GPT-4, Gemini, local models - your choice

What Wiz Adds on Top of OpenCode

Wiz extends OpenCode with a complete security operations layer:

OpenCode gives raw output. Wiz parses it:

Not just command history - structured security findings:

What OpenCode doesn't have:

Compliance-ready logging:

Professional deliverables, not chat exports:

Schedule recurring scans with diff detection:

Visual interface for findings management:

Real Example: The Difference

Claude CLI:

Wiz:

Summary

Wiz = OpenCode's superior agent + Security expertise + Findings management + Governance + Reporting

What Wiz Is NOT

Let's be clear about boundaries:

Not a Replacement for Your Judgment

Wiz is a tool, not a security expert replacement. It doesn't:

You are the security professional. Wiz handles the tedious parts so you can focus on analysis and decisions.

Not for Malicious Use

Wiz is built for:

It is NOT for:

The tools Wiz uses are powerful. Use them responsibly and legally.

Not a Magic Button

Wiz won't:

It's an assistant that makes security work more efficient - not a shortcut around doing things properly.

Installation

Download Pre-built Binaries

The easiest way to get started. Download for your platform:

Build from Source

Required: API Key

Wiz needs an AI provider to work. Set one of these:

Recommended: Security Tools

For full functionality, have these tools installed (pre-installed on Kali/Parrot):

Don't have them? Wiz will tell you when it needs something.

Architecture

Data Flow

Running Modes

Wiz offers multiple interfaces to fit your workflow:

Terminal (Default)

Interactive command-line interface. Type naturally and see results directly.

Web Server (Port 4096)

Opens a web interface at http://localhost:4096. Features:

Dashboard (Port 5173 - Development)

Development dashboard at http://localhost:5173. For contributors extending Wiz.

Web Reports

Reports are served through the web interface:

Features:

How It Works

1. You Describe, Wiz Executes

2. Wiz Remembers Context

3. Findings Are Tracked

4. Reports When You're Ready

Capabilities

Network Security

Web Application Security

API Security

Active Directory

Reporting

Platform Support

Project Status

Wiz is under active development. Current capabilities:

Documentation

Core Docs

Module Documentation (Phases)

Contributing

Contributions welcome! See CONTRIBUTING.md.

Security

Found a security issue? See SECURITY.md.

License

MIT License - See LICENSE

Acknowledgments

Wiz - Security testing should be about security, not syntax.

About

The open source coding agent.

Resources

License

Contributing

Security policy

Uh oh!

There was an error while loading. Please reload this page.

Stars

Watchers

Forks

Releases

2

Packages

0

Languages

Footer

Footer navigation