Show HN: CyBox Security – Your Virtual Security Team for the AI Era

3•Hayim_Gabay•2mo ago

Hey HN,

I’ve been building CyBox Security a platform that acts like a virtual security team for developers.

It combines multiple security scanners into one unified dashboard, covering SAST, SCA, IaC, and Secrets in a single workflow.

The idea came after seeing how many small dev teams and startups don’t have dedicated security staff, yet still need continuous scanning and clear remediation guidance. CyBox integrates with GitHub and stores only scan results (no source code).

It’s still early (MVP stage), but it already works, you can sign up, connect a repo, and see scan results in minutes.

Would love your feedback, use cases, and what matters most for you when using security tools.

Thanks

Comments

Hayim_Gabay•2mo ago

This is still an early MVP, so I’d love to hear any kind of feedback, from UX to positioning to what you’d expect from a “virtual security team” for developers.

Really appreciate any thoughts or experiences you’re willing to share.

sbr123•2mo ago

I’ve been looking for a smart way to unify multiple scanners in one dashboard. This looks like it could save a lot of setup time. How’s the integration part, do you plan to support GitLab or CI/CD pipelines as well?

Hayim_Gabay•2mo ago

Great question!

GitHub is already fully integrated (you can connect repos and trigger scans directly). GitLab and Bitbucket are next on the roadmap, along with CI/CD pipeline support so teams can run scans automatically after each commit or deployment.

The goal is to make it as seamless as possible — no manual setup or config files, just connect and scan.

Really appreciate the feedback, it helps prioritize what to ship next!

BookTalk: A Reading Companion That Captures Your Voice

Is AI "good" yet? – tracking HN's sentiment on AI coding

Show HN: Amdb – Tree-sitter based memory for AI agents (Rust)

OpenClaw Partners with VirusTotal for Skill Security

Show HN: Seedance 2.0 Release

Leisure Suit Larry's Al Lowe on model trains, funny deaths and Disney

Towards Self-Driving Codebases

VCF West: Whirlwind Software Restoration – Guy Fedorkow [video]

Show HN: COGext – A minimalist, open-source system monitor for Chrome (<550KB)

FOSDEM 26 – My Hallway Track Takeaways

Show HN: Env-shelf – Open-source desktop app to manage .env files

Show HN: Almostnode – Run Node.js, Next.js, and Express in the Browser

Dell support (and hardware) is so bad, I almost sued them

Project Pterodactyl: Incremental Architecture

Styling: Search-Text and Other Highlight-Y Pseudo-Elements

Crypto firm accidentally sends $40B in Bitcoin to users

Magnetic fields can change carbon diffusion in steel

Fantasy football that celebrates great games

Show HN: Animalese

StrongDM's AI team build serious software without even looking at the code

John Haugeland on the failure of micro-worlds

Show HN: Velocity - Free/Cheaper Linear Clone but with MCP for agents

Corning Invented a New Fiber-Optic Cable for AI and Landed a $6B Meta Deal [video]

Show HN: XAPIs.dev – Twitter API Alternative at 90% Lower Cost

Near-Instantly Aborting the Worst Pain Imaginable with Psychedelics

Show HN: Nginx-defender – realtime abuse blocking for Nginx

The Super Sharp Blade

Smart Homes Are Terrible

What I haven't figured out

KPMG pressed its auditor to pass on AI cost savings