Starred repositories
TheHulk is a dynamic analysis tool designed to detect and exploit DOM Clobbering vulnerabilities.
A rapid HTTP downgrade smuggling scanner written in Go.
A curation of awesome tools, documents and projects about LLM Security.
A research project to add some brrrrrr to Burp
Style definitions for nice terminal layouts 👄
A comprehensive security testing framework for Large Language Models based on OWASP Top 10 for LLMs, and NIST AI 600 frameworks. Features advanced false positive reduction, parallel testing, and co…
Abuse trust-boundaries to bypass firewalls and network controls
The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testing. The tool is intended to speed up the process of Cloud rev…
Enumerate the permissions associated with AWS credential set
🔓 🔓 Find secrets and passwords in container images and file systems 🔓 🔓
CF-Hero is a reconnaissance tool that uses multiple data sources to discover the origin IP addresses of Cloudflare-protected web applications
An AI-driven vulnerability scanner that uses Nmap to discover open services on a user-supplied IP, matches each service to relevant CVEs via SBERT embeddings and a severity classifier, and generate…
A comprehensive reconnaissance and vulnerability scanning tool that combines multiple security assessment capabilities into a single automated workflow.
Test your prompts, agents, and RAGs. Red teaming, pentesting, and vulnerability scanning for LLMs. Compare performance of GPT, Claude, Gemini, Llama, and more. Simple declarative configs with comma…
Autonomous coding agent right in your IDE, capable of creating/editing files, executing commands, using the browser, and more with your permission every step of the way.
🌟 The Multi-Agent Framework: First AI Software Company, Towards Natural Language Programming
Rust-based high performance domain permutation generator.
A Modern Bug Bounty and Security Research Management Platform
Anthropic's Interactive Prompt Engineering Tutorial
Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code
🔥 Turn entire websites into LLM-ready markdown or structured data. Scrape, crawl and extract with a single API.
A collection of android Exploits and Hacks