Skip to content
@BishopFox

Bishop Fox

The leader in offensive security, providing continuous pen testing, red teaming, attack surface management, and traditional security assessments.

Pinned Loading

  1. sliver Public

    Adversary Emulation Framework

    Go 9k 1.2k

  2. unredacter Public

    Never ever ever use pixelation as a redaction technique

    TypeScript 8k 748

  3. GitGot Public

    Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

    Python 1.5k 214

  4. eyeballer Public

    Convolutional neural network for analyzing pentest screenshots

    Python 1.1k 130

  5. cloudfox Public

    Automating situational awareness for cloud penetration tests.

    Go 2k 195

  6. jsluice Public

    Extract URLs, paths, secrets, and other interesting bits from JavaScript

    Go 1.5k 106

Repositories

Showing 10 of 76 repositories
  • sliver Public

    Adversary Emulation Framework

    Go 8,986 GPL-3.0 1,210 214 (6 issues need help) 15 Updated Feb 25, 2025
  • sonicrack Public

    Decrypt encrypted SonicOSX firmware images

    Python 8 GPL-3.0 1 0 0 Updated Feb 24, 2025
  • cloudfoxable Public

    Create your own vulnerable by design AWS penetration testing playground

    Python 356 MIT 38 1 0 Updated Jan 22, 2025
  • raink Public

    Use LLMs for document ranking

    Go 105 MIT 7 1 1 Updated Jan 18, 2025
  • cloudfox Public

    Automating situational awareness for cloud penetration tests.

    Go 2,043 MIT 195 7 (1 issue needs help) 4 Updated Dec 30, 2024
  • BrokenHill Public

    A productionized greedy coordinate gradient (GCG) attack tool for large language models (LLMs)

    Python 89 MIT 13 0 0 Updated Dec 18, 2024
  • sj Public

    A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

    Go 600 MIT 86 3 (1 issue needs help) 0 Updated Nov 15, 2024
  • local-llm-ctf Public

    A small go harness that uses Ollama to orchestrate LLMs in a restricted process flow

    Go 6 MIT 1 0 0 Updated Sep 10, 2024
  • cve-2024-21762-check Public

    Safely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762

    Python 99 GPL-3.0 16 3 1 Updated Jul 5, 2024
  • awsservicemap Public

    Go module that returns supported regions for a service or supported services for a region

    Go 15 MIT 6 0 1 Updated Jun 4, 2024