Skip to content
@BishopFox

Bishop Fox

The leader in offensive security, providing continuous pen testing, red teaming, attack surface management, and traditional security assessments.

Pinned Loading

  1. sliver Public

    Adversary Emulation Framework

    Go 9.4k 1.3k

  2. unredacter Public

    Never ever ever use pixelation as a redaction technique

    TypeScript 8k 765

  3. GitGot Public

    Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

    Python 1.5k 215

  4. eyeballer Public

    Convolutional neural network for analyzing pentest screenshots

    Python 1.2k 142

  5. cloudfox Public

    Automating situational awareness for cloud penetration tests.

    Go 2.1k 203

  6. jsluice Public

    Extract URLs, paths, secrets, and other interesting bits from JavaScript

    Go 1.6k 110

Repositories

Showing 10 of 76 repositories
  • sliver Public

    Adversary Emulation Framework

    Go 9,412 GPL-3.0 1,274 219 (6 issues need help) 20 Updated May 21, 2025
  • cloudfoxable Public

    Create your own vulnerable by design AWS penetration testing playground

    Python 375 MIT 42 0 0 Updated Apr 21, 2025
  • raink Public

    Use LLMs for document ranking

    Go 129 MIT 7 1 0 Updated Apr 17, 2025
  • sj Public

    A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

    Go 654 MIT 91 3 (1 issue needs help) 0 Updated Apr 15, 2025
  • cloudfox Public

    Automating situational awareness for cloud penetration tests.

    Go 2,118 MIT 203 8 (1 issue needs help) 3 Updated Mar 13, 2025
  • sonicrack Public

    Decrypt encrypted SonicOSX firmware images

    Python 15 GPL-3.0 2 0 0 Updated Feb 24, 2025
  • BrokenHill Public

    A productionized greedy coordinate gradient (GCG) attack tool for large language models (LLMs)

    Python 113 MIT 18 1 1 Updated Dec 18, 2024
  • local-llm-ctf Public

    A small go harness that uses Ollama to orchestrate LLMs in a restricted process flow

    Go 10 MIT 1 0 0 Updated Sep 10, 2024
  • cve-2024-21762-check Public

    Safely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762

    Python 102 GPL-3.0 17 3 1 Updated Jul 5, 2024
  • awsservicemap Public

    Go module that returns supported regions for a service or supported services for a region

    Go 17 MIT 6 0 1 Updated Jun 4, 2024
View all repositories