Claude Skill

LoRexxar/Kunlun-M

Kunlun-M is a fully open-source static white-box scanning tool for PHP and JavaScript, featuring semantic analysis and one-click AI Agent integration (OpenClaw, Codex, Claude Code, Hermes).

Overview

Stars2,398
Forks316
LanguagePython
Last pushed2026-07-03
Last synced2026-07-03
View on GitHub

Repository

OwnerLoRexxar
RepositoryKunlun-M
Full nameLoRexxar/Kunlun-M
Repo ID102,699,687

Install this Skill

pip install -r requirements.txt

Registry

Typeopenclaw_skill
Quality score85/100
Verificationreadme_parsed
Last verified2026-05-31
Platforms
ClaudeOpenClawCodex
Capabilities
pdfsearchterminalworkflow
Detected files
README.mddocsrequirements.txttests
Config keys
API_TOKEN

Summary

Kunlun-M is a fully open-source static white-box scanning tool that supports semantic scanning for PHP and JavaScript, and can be seamlessly integrated with AI Agents such as OpenClaw, Codex, Claude Code, and Hermes for one-click automated analysis.

Chinese description

KunLun-M 是一款完全开源的静态白盒扫描工具,支持 PHP 和 JavaScript 的语义扫描,并可通过 AI Agent(如 OpenClaw / Codex / Claude Code / Hermes 等)一键接入工具。

Key features

  • Fully open-source static white-box scanning
  • Semantic scanning support for PHP and JavaScript
  • One-click integration with AI Agents (OpenClaw, Codex, Claude Code, Hermes, etc.)
  • Built with Python for extensibility
  • Designed for security code analysis

Use cases

  • Automated security auditing of PHP and JavaScript codebases
  • Integrating AI-assisted code review into CI/CD pipelines
  • Rapid vulnerability detection in open-source projects
  • Enhancing manual penetration testing with automated scanning

README excerpt

[中文](README.zh.md) | English > <big>**Since Cobra-W 2.0, Cobra-W has been officially renamed to Kunlun-M(昆仑镜).**</big> > **Python 3.10+ is recommended (Python 3.13+ preferred); Python 2.7 has reached end-of-life.** > Thanks to the AI era, I can address the project's basic maintenance issues at extremely low cost. Although the project's concepts may not be cutting-edge by today's standards, the stable core still serves as a solid tool reference. I will continue to iterate rapidly using Codex at minimal cost, boldly experiment with new features, and **attempt to build a potentially very useful tool using AI-era methods**. # Kunlun-Mirror [![GitHub release](https://img.shields.io/github/release/LoRexxar/Kunlun-M/all.svg)](https://github.com/LoRexxar/Kunlun-M/releases) [![license](https://img.shields.io/github/license/LoRexxar/Kunlun-M.svg)](./LICENSE) ![](https://img.shields.io/badge/language-python3.13-orange.svg) ``` _ __ _ ___ ___ | | / / | | | \/ | | |/ / _ _ _ __ | | _ _ _ __ | . . | | \| | | | '_ \| | | | | | '_ \ _____| |\/| | | |\ \ |_| | | | | |___| |_| | | | |_____| | | | \_| \_/\__,_|_| |_\_____/\__,_|_| |_| \_| |_/ -v2.12 GitHub: https://github.com/LoRexxar/Kunlun-M KunLun-M is a static code analysis system that automates the detecting vulnerabilities and security issue. Main Program positional arguments: {init,config,scan,show,search,console,plugin,web} init Kunlun-M init before use. config config for rule&tamper scan scan target path show show rule&tamper search search vendor/project info console enter console mode plugin run plugin

Topics

No topics yet.

Explore more

Data from GitHub. Synced on 2026-07-03