A curated collection of AI agent research papers released in 2026, covering agent engineering, memory, evaluation, workflows, and autonomous systems.

A simple, decentralized mesh VPN with WireGuard support.

Command-line tool to scan Google search results for vulnerabilities

A PoC UDRL for Cobalt Strike built with Crystal Palace that combines Raphael Mudge's page streaming technique with a modular call gate (Draugr)

A C# PE loader for x64 and x86 PE files.

Cobalt Strike BOF to freeze EDR/AV processes and dump LSASS using WerFaultSecure.exe PPL bypass

CyberStrikeAI is an AI-native security testing platform built in Go. It integrates 100+ security tools, an intelligent orchestration engine, role-based testing with predefined security roles, a ski…

Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testing only!

The Azure Execution Tool

practice made claude perfect

Send a phone call from AI agent, in an API call. Or, directly call the bot from the configured phone number!

Erebus is an Initial Access wrapper for the Mythic Command & Control Server. It converts existing Mythic shellcode into payloads specifically used for phishing and IA operations.

Eigent: The Open Source Cowork Desktop to Unlock Your Exceptional Productivity.

Analyze secretsdump output and hashcat potfiles to find shared passwords and weak credentials in Active Directory

Calling the undocumented DPAPI RPC interface directly, no more calling public CryptUnprotectData!

Visualize, collaborate, and evolve the software architecture with always actual and live diagrams from your code

Dump LSASS via physical memory read primitives in vulnerable kernel drivers

Living Off The Land API

Guardian is a production-ready AI-powered penetration testing automation CLI tool that leverages Google Gemini and LangChain to orchestrate intelligent, step-by-step penetration testing workflows w…

The different ways to dump lsass

Generate and Manage KeyCredentialLinks

Sandboxed devcontainer for running Claude Code in bypass mode safely. Built for security audits and untrusted code review.

Tool that gathers a customizable set of ETW telemetry and generates user-defined detections

Local-first sandbox for AI agents.

Get your repo ready for AI.

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug b…

AdaptixFramework Extension Kit

Leantime is a goals focused project management system for non-project managers. Building with ADHD, Autism, and dyslexia in mind.

PentestAgent is an AI agent framework for black-box security testing, supporting bug bounty, red-team, and penetration testing workflows.