Open detection standard -- like Sigma, but for AI agents. 425 rules, shipped in Microsoft AGT, Cisco AI Defense, MISP, OWASP A-S-R-H. 97.1% recall on NVIDIA garak. NIST OSCAL Path 1.

Single source of truth for GenAI and agentic AI security incidents, mapped to OWASP LLM Top 10, OWASP Agentic Top 10 (ASI), NIST AI RMF, and MITRE ATLAS.

A pytest-native safety and security testing framework for agentic AI applications

Security Governance for Agentic AI

An overview of LLMs for cybersecurity.

OpenShell is the safe, private runtime for autonomous AI agents.

Your code contains API keys, passwords, and personal data. AgentVeil detects 39 PII & secret types, masks them before AI sees them — then restores on response.

OWASP Autonomous Penetration Testing Standard

Fast service fingerprinting CLI for 170+ protocols (TCP/UDP/SCTP) - built by Praetorian

Agent observability and replay tooling for AI safety & interpretability research.

Kooky cURL-powered replacement for reverse shell via /dev/tcp

A catalog of glob-based command obfuscation for Linux · macOS · Windows CMD/PowerShell

Agent Orchestration Command Center

Action-aware permissions for coding agents. A deterministic safety guard that keeps you in the flow.

AI Code Security Anti-Patterns distilled from 150+ sources to help LLMs generate safer code.

A lightweight sandboxing tool for enforcing filesystem and network restrictions on arbitrary processes at the OS level, without requiring a container.

Raptor turns Claude Code into a general-purpose AI offensive/defensive security agent. By using Claude.md and creating rules, sub-agents, and skills, and orchestrating security tool usage, we confi…

Curated resources, research, and tools for securing AI systems

[Experimental] jail for Go modules

LEAKED SYSTEM PROMPTS FOR CHATGPT, CLAUDE, GEMINI, GROK, PERPLEXITY, CURSOR, LOVABLE, REPLIT, AND MORE! - AI SYSTEMS TRANSPARENCY FOR ALL! 👐

Automatic Exploit Generation with LLMs

Specification and documentation for Agent Skills

Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows

A comprehensive benchmark and analytics platform for evaluating Kubernetes security scanners. Features 235+ intentionally vulnerable manifests across 12 security categories, CCSS integration, Helm …

An Easy-to-use, Scalable and High-performance Agentic RL Framework based on Ray (PPO & DAPO & REINFORCE++ & VLM & TIS & vLLM & Ray & Async RL)

micromize is a security hardening tool designed to detect and break the post-exploit kill chain for containerized applications, leveraging BPF LSM.

Post-exploit a compromised etcd, gain persistence and remote shell to nodes.

A flexible, AI powered C2 framework built with operators in mind

A mock exams for CKAD, CKA, and CKS featuring timed sessions and hands-on labs with pre-configured clusters.