Skip to content
@BishopFox

Bishop Fox

The leader in offensive security, providing continuous pen testing, red teaming, attack surface management, and traditional security assessments.

Pinned Loading

  1. sliver Public

    Adversary Emulation Framework

    Go 9.2k 1.2k

  2. unredacter Public

    Never ever ever use pixelation as a redaction technique

    TypeScript 8k 757

  3. GitGot Public

    Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

    Python 1.5k 214

  4. eyeballer Public

    Convolutional neural network for analyzing pentest screenshots

    Python 1.2k 141

  5. cloudfox Public

    Automating situational awareness for cloud penetration tests.

    Go 2.1k 199

  6. jsluice Public

    Extract URLs, paths, secrets, and other interesting bits from JavaScript

    Go 1.5k 108

Repositories

Showing 10 of 76 repositories
  • sliver Public

    Adversary Emulation Framework

    Go 9,241 GPL-3.0 1,248 217 (6 issues need help) 19 Updated Apr 23, 2025
  • cloudfoxable Public

    Create your own vulnerable by design AWS penetration testing playground

    Python 369 MIT 41 0 0 Updated Apr 21, 2025
  • raink Public

    Use LLMs for document ranking

    Go 127 MIT 7 1 0 Updated Apr 17, 2025
  • sj Public

    A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

    Go 635 MIT 89 3 (1 issue needs help) 0 Updated Apr 15, 2025
  • cloudfox Public

    Automating situational awareness for cloud penetration tests.

    Go 2,088 MIT 199 8 (1 issue needs help) 3 Updated Mar 13, 2025
  • sonicrack Public

    Decrypt encrypted SonicOSX firmware images

    Python 14 GPL-3.0 2 0 0 Updated Feb 24, 2025
  • BrokenHill Public

    A productionized greedy coordinate gradient (GCG) attack tool for large language models (LLMs)

    Python 107 MIT 17 1 1 Updated Dec 18, 2024
  • local-llm-ctf Public

    A small go harness that uses Ollama to orchestrate LLMs in a restricted process flow

    Go 7 MIT 1 0 0 Updated Sep 10, 2024
  • cve-2024-21762-check Public

    Safely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762

    Python 101 GPL-3.0 16 3 1 Updated Jul 5, 2024
  • awsservicemap Public

    Go module that returns supported regions for a service or supported services for a region

    Go 17 MIT 6 0 1 Updated Jun 4, 2024
View all repositories