Stars
A lightweight alternative to Clawdbot / OpenClaw that runs in containers for security. Connects to WhatsApp, has memory, scheduled jobs, and runs directly on Anthropic's Agents SDK
Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows
Sandboxed devcontainer for running Claude Code in bypass mode safely. Built for security audits and untrusted code review.
A fast and efficient way to interact with Microsoft security advisory data.
Low-level unprivileged sandboxing tool used by Flatpak and similar projects
Open-source offensive security platform for conducting phishing campaigns that weaponizes iCalendar automatic event processing.
AWS Attack Path Scanner - Discover privilege escalation paths across 10+ AWS services
BloodyAD is an Active Directory Privilege Escalation Framework
An extremely fast Python package and project manager, written in Rust.
A simple Bash script to discover all domains associated with a specific Microsoft 365 tenant - new replacement for check_mdi
rep+ — Burp-style HTTP Repeater for Chrome DevTools with built‑in AI to explain requests and suggest attacks
ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets by identifying active user profiles on domain machines.
Auto-resize X screen on resolution change for Kali with XFCE and Parrot with Mate on KVM
Home of the Renovate CLI: Cross-platform Dependency Automation by Mend.io
A Claude Code skill for autonomous skill extraction and continuous learning. Have Claude Code get smarter as it works.
AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.
Agent OS is a system for injecting your codebase standards and writing better specs for spec-driven development.
HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug b…
Security operations toolkit for AI coding agents. Give Claude Code 25+ skills to catch vulnerabilities, scan containers, detect secrets, and enforce policies automatically.
Raptor turns Claude Code into a general-purpose AI offensive/defensive security agent. By using Claude.md and creating rules, sub-agents, and skills, and orchestrating security tool usage, we confi…
Open-source AI hackers to find and fix your app’s vulnerabilities.
Wirebrowser is an advanced debugging and inspection tool built on the Chrome DevTools Protocol, unifying network interception, API replay, automation, and deep runtime/memory analysis in a single w…
🧙♂️ Node.js Command & Control for Script-Jacking Vulnerable Electron Applications
CVE-2025-55182 security test kit: CLI scanner + Chrome extension + Nuclei templates + Docker lab.
A vulnerability scanner for container images and filesystems