Security research and tools,
open for everyone.

Enterprise-grade security automation, open for everyone. We build CIS compliance scanners, cloud security tooling, and DevSecOps utilities — then publish everything with the research behind it. Take the tools. Read the tradecraft. No strings attached.

Read the blog Browse GitHub repos

New posts and tools added regularly.

CIS-Hardened by Default

Windows and Linux compliance scanning built against CIS benchmark controls — not checkbox security

AWS · Azure · GCP · OCI

Multi-cloud attack surface coverage — IAM, CSPM, workload protection across all four major providers

Security Shifts Left

DevSecOps automation for CI/CD pipelines, IaC scanning, secrets detection, and container hardening

Vulnerability-First Research

CVE analysis, real exploit chains, and the detection tooling to catch them — documented from actual assessments

What you'll find here

Enterprise-grade security tools and research — open-source, production-ready, built for practitioners who operate at scale.

CIS Compliance Scanners

Automated CIS benchmark scanning for Windows and Linux. Run compliance checks against industry-standard baselines — fully open-source, ready to drop into any environment.

WindowsLinuxCIS BenchmarksApache 2.0

Cloud Security & CSPM

Multi-cloud security posture management, attack surface enumeration, IAM analysis, and misconfiguration detection across all major cloud providers including Oracle Cloud.

AWSAzureGCPOCICNAPP

Vulnerability Detection

CVE detection, dependency auditing, and container image scanning. We document real vulnerabilities and the tooling to find them before an attacker does.

CVE ResearchReal-timeContainer Scanning

DevSecOps Automation

Security utilities for CI/CD pipelines, infrastructure-as-code scanning, secrets detection, and shift-left security integration across GitHub Actions, GitLab, and Jenkins.

CI/CD SecurityIaCPipeline Hardening

Technical writeups & guides

Practical guides written from hands-on experience — not documentation rewrites. If we've solved a problem worth sharing, it ends up here.

Step-by-stepHands-onNo fluff

Security research

Deep dives into attack techniques, threat models, detection methods, and how real threats work — across cloud, identity, AI systems, and container infrastructure.

Threat ModelingAI SecurityIdentity

Security automation

From detection to remediation — automated

We build tools that find real problems — shadow AI running unchecked in your org, misconfigured cloud resources, systems failing CIS controls — and produce actionable output, not just dashboards.

Shadow AI detection — find unauthorized LLM usage across your org
CIS benchmark automation — Windows & Linux compliance at scale
Cloud misconfiguration scanning — AWS, Azure, GCP, OCI
DevSecOps integration — drop into any CI/CD pipeline
Real-time SIEM alerting — every finding, logged and actioned

Browse the tools

vijenex-cli — bash

Topics covered

From CIS benchmark automation and multi-cloud posture management to AI threat modeling and identity exploitation — no fixed scope, no vendor allegiance.

Cloud SecurityAWSGCPAzureIAM & IdentityZero TrustJIT AccessPAMCNAPPContainer SecurityKubernetesAI & LLM SecurityPrompt InjectionDevSecOpsTerraformAnsibleCI/CDThreat DetectionIncident ResponseVulnerability ResearchThreat ModelingCIS BenchmarksCompliance & AuditOracle Cloud (OCI)Network SecurityVulnerability ScanningSecrets Management

The ecosystem we operate in

Our tools and research cover the full stack — from cloud infrastructure and identity to DevSecOps pipelines, vulnerability tooling, and enterprise compliance frameworks.

Cloud providers

AWS

Google Cloud

Azure

Oracle Cloud

DigitalOcean

DevSecOps & IaC

Terraform

Ansible

GitHub

GitLab

Jenkins

ArgoCD

GH Actions

Docker

Kubernetes

Security tooling & frameworks

Snyk

Trivy

OWASP

CIS Benchmarks

SIEM/SOC

Network Sec

All product names and logos are trademarks of their respective owners.

Vijenex™ — Trademark App No. 7368905 (Class 9) · India

Latest from the blog

Real writeups on real problems. No sponsored content. No vendor pitches.

View all posts

AWSCloud SecurityRecon

How I map cloud attack surfaces before an adversary does

A walkthrough of the manual and automated techniques I use to enumerate misconfigurations, exposed credentials, and over-permissioned roles across AWS — before a pentest even starts.

Jun 1, 2025 8 min read

IAMZero TrustAWS

Why standing access is your biggest IAM risk (and how to fix it)

Most AWS environments I've reviewed grant permanent admin access to service accounts that only need it once a month. Here's how to implement JIT access with practical examples.

May 18, 2025 11 min read

Say something

Have thoughts on a post? Found a bug in a tool? Want to suggest a topic? This goes directly to us.

We read everything

No ticket system. No SLA. Just a direct line — we read every message personally.

Vulnerability disclosures

[email protected] — Do not open a public GitHub issue for vulnerability reports. We follow responsible disclosure.

Technical bugs

Open an issue directly on the relevant GitHub repo — it helps track things properly and others can follow along.

Security research and tools, open for everyone.