Skip to content
@BishopFox

Bishop Fox

The leader in offensive security, providing continuous pen testing, red teaming, attack surface management, and traditional security assessments.

Pinned Loading

  1. sliver Public

    Adversary Emulation Framework

    Go 9.8k 1.3k

  2. unredacter Public

    Never ever ever use pixelation as a redaction technique

    TypeScript 8.1k 786

  3. GitGot Public

    Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

    Python 1.5k 215

  4. eyeballer Public

    Convolutional neural network for analyzing pentest screenshots

    Python 1.2k 145

  5. cloudfox Public

    Automating situational awareness for cloud penetration tests.

    Go 2.2k 210

  6. jsluice Public

    Extract URLs, paths, secrets, and other interesting bits from JavaScript

    Go 1.6k 116

Repositories

Showing 10 of 76 repositories
  • cloudfox Public

    Automating situational awareness for cloud penetration tests.

    Go 2,171 MIT 210 9 (1 issue needs help) 2 Updated Aug 15, 2025
  • sliver Public

    Adversary Emulation Framework

    Go 9,812 GPL-3.0 1,343 233 (6 issues need help) 24 Updated Jul 22, 2025
  • cloudfoxable Public

    Create your own vulnerable by design AWS penetration testing playground

    Python 389 MIT 43 0 1 Updated Apr 21, 2025
  • raink Public

    Use LLMs for document ranking

    Go 145 MIT 7 1 0 Updated Apr 17, 2025
  • sj Public

    A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

    Go 682 MIT 93 3 (1 issue needs help) 0 Updated Apr 15, 2025
  • sonicrack Public

    Decrypt encrypted SonicOSX firmware images

    Python 16 GPL-3.0 2 0 0 Updated Feb 24, 2025
  • BrokenHill Public

    A productionized greedy coordinate gradient (GCG) attack tool for large language models (LLMs)

    Python 123 MIT 19 1 1 Updated Dec 18, 2024
  • local-llm-ctf Public

    A small go harness that uses Ollama to orchestrate LLMs in a restricted process flow

    Go 10 MIT 1 0 0 Updated Sep 10, 2024
  • cve-2024-21762-check Public

    Safely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762

    Python 105 GPL-3.0 17 3 1 Updated Jul 5, 2024
  • awsservicemap Public

    Go module that returns supported regions for a service or supported services for a region

    Go 16 MIT 6 0 1 Updated Jun 4, 2024
View all repositories