the LLM vulnerability scanner

High-performance, concurrent SMTP user validation

WifiForge is a tool developed by Black Hills InfoSec to help train Pentesters on different Wi-Fi attack vectors and Wireless capabilities.

A fancy self-hosted monitoring tool

HTTP API for Claude Code, Goose, Aider, and Codex

an awesome list of honeypot resources

Damn Vulnerable MCP Server

A plugin-based gateway that orchestrates other MCPs and allows developers to build upon it enterprise-grade agents.

Rust libraries and tools for using and generating TUF repositories

automatically detect software supply chain smells and issues http://arxiv.org/pdf/2410.16049

Fast, open-source tool for estimating infrastructure costs from Terraform plans and state files

A library for building fast, reliable and evolvable network services.

A CLI tool for threat modeling and visualizing AI agents built using popular frameworks like LangGraph, AutoGen, CrewAI, and more.

A security scanning tool for MCP servers

Cloud subdomains identification tool

Backstage is an open framework for building developer portals

An external reconnaissnce MCP server for offensive security engagements

Reverse engineering assistant that uses a locally running LLM to aid with pseudo-code analysis.

Putting a leash on naughty AWS permissions

An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and security implications

Code snippets to reproduce MCP tool poisoning attacks.

Fork de la distribution Rocky Linux, avec sécurité ANSSI-BP-028

Common Expression Language -- specification and binary representation

Fancy stream processing made operationally mundane. This repository is a fork of the original project before the license was changed.

Incident Response Hierarchy of Needs

Linux Kernel Defence Map shows the relationships between vulnerability classes, exploitation techniques, bug detection mechanisms, and defence technologies

The Runner for GitHub Actions 🚀