AgentIndex icon
AgentIndex
ToolsCategoriesTrendingNewCompare
Submit Tool
Home/
Compare/
Fray vs agent-security-scanner-mcp
Fray logo
Fray
★ 53
vs
agent-security-scanner-mcp logo
agent-security-scanner-mcp
★ 107

Fray vs agent-security-scanner-mcp

Fray: Fray is an open-source WAF security testing toolkit designed to provide a complete workflow for security professionals, from automated crawling and parameter discovery to payload injection and reporting. Unlike static payload collections, Fray offers a dynamic approach to scanning, detecting WAFs, and testing against 5,500+ payloads across 24 OWASP categories.; agent-security-scanner-mcp: This is a comprehensive security scanner designed for AI coding agents and autonomous assistants. It performs static analysis to detect code vulnerabilities, identifies hallucinated packages, and protects against prompt injection attacks.

01

TL;DR

Fray logoChoose Fray if…

Bug Bounty Hunters: Discover hidden parameters, old endpoints, bypass WAFs, and generate reports.

agent-security-scanner-mcp logoChoose agent-security-scanner-mcp if…

Real-time Code Security: Scan and automatically fix vulnerabilities in code files immediately after writing or editing.

02

Side-by-Side Comparison

Field
Fray logoFray
agent-security-scanner-mcp logoagent-security-scanner-mcp
Category
Browser Automation
Security & Safety
Stars
★ 53
★ 107
License
NOASSERTION
MIT
Updated
2mo ago
6d ago
Open Source
Yes
Yes
Website
↗ Visit
↗ Visit
GitHub
↗ GitHub
↗ GitHub
Tags
WAF, Security Testing, Vulnerability Scanner
AI Security, Code Analysis, Vulnerability Scanner
03

Features

Fray logoFray
01Automated Attack Surface Mapping: Crawls, discovers injection points, and tests payloads with reflection detection.
02Comprehensive Reconnaissance: Performs 21 automated checks including parameter discovery, JS endpoint extraction, and API discovery.
03Adaptive Payload Testing: 'Smart' mode recommends payloads based on detected technology stack.
04WAF Detection & Bypass: Fingerprints 25 WAF vendors and identifies potential bypass strategies.
05CI/CD Integration & Reporting: Supports SARIF output for GitHub Security tab, JSON output for pipelines, and HTML/Markdown reports.
agent-security-scanner-mcp logoagent-security-scanner-mcp
01Advanced Code Vulnerability Scanning: Utilizes AST and taint analysis with 1700+ rules across 12 languages to detect a wide range of security flaws.
02Automated Vulnerability Fixing: Provides 120 auto-fix templates to remediate identified security vulnerabilities efficiently.
03AI Package Hallucination Detection: Identifies AI-generated fake package names across 7 ecosystems to prevent malicious dependency installation.
04Prompt Injection Protection: Scans AI agent prompts for malicious instructions and injection attempts using 56 specialized rules.
05Seamless AI Client & CI/CD Integration: Offers deep integration with popular AI coding agents and supports CI/CD workflows with SARIF output.
04

Use Cases

Fray logoFray
↳Bug Bounty Hunters: Discover hidden parameters, old endpoints, bypass WAFs, and generate reports.
↳Pentesters: Conduct full reconnaissance and automated scans with client-ready HTML reports.
↳Blue Teams: Validate WAF rules and perform regression testing after configuration changes.
↳DevSecOps: Integrate into CI/CD pipelines for WAF testing, failing builds on bypasses.
agent-security-scanner-mcp logoagent-security-scanner-mcp
↳Real-time Code Security: Scan and automatically fix vulnerabilities in code files immediately after writing or editing.
↳Dependency Verification: Check new package names against known registries to prevent installation of AI-hallucinated or malicious dependencies.
↳Secure AI Agent Interactions: Guard against prompt injection and malicious instructions when AI agents process external or untrusted input.
↳CI/CD & PR Security: Incorporate into CI/CD pipelines and pull request reviews for automated scanning of code changes and project audits.
05

Best For

Fray logoFray
Hidden GemSecurity & Safety
agent-security-scanner-mcp logoagent-security-scanner-mcp
TrendingSecurity & SafetyPrompt Engineering
FAQ

FAQ

What is the difference between Fray and agent-security-scanner-mcp?
Both Fray and agent-security-scanner-mcp are in the Browser Automation category. Fray has 53 stars, while agent-security-scanner-mcp has 107 stars.
Which is better, Fray or agent-security-scanner-mcp?
The best choice depends on your use case. Choose Fray if Bug Bounty Hunters: Discover hidden parameters, old endpoints, bypass WAFs, and generate reports., and agent-security-scanner-mcp if Real-time Code Security: Scan and automatically fix vulnerabilities in code files immediately after writing or editing..
Is Fray free or open source?
Yes, Fray is open source on GitHub (NOASSERTION).
Is agent-security-scanner-mcp free or open source?
Yes, agent-security-scanner-mcp is open source on GitHub (MIT).
→

Related

Alternatives to Fray →Alternatives to agent-security-scanner-mcp →Fray details →agent-security-scanner-mcp details →
© 2026 AgentIndex.app|Built by a 10-year iOS Developer.
QYSGitHubBuy me a coffee ☕

Browse by Category

Code AssistantWorkflow AutomationRAG / Knowledge BaseMulti-AgentBrowser AutomationLLM InfraDev ToolingObservability

Not affiliated with Anthropic, OpenAI or Microsoft.