A collection of MCP servers.

Portable file server with accelerated resumable uploads, dedup, WebDAV, FTP, TFTP, zeroconf, media indexer, thumbnails++ all in one file, no deps

Web Extension for saving a faithful copy of a complete web page in a single HTML file

SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.

Virtual Machine for the Web

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

一款内网综合扫描工具，方便一键自动化、全方位漏扫扫描。

Rust for Windows

An open-source post-exploitation framework for students, researchers and developers.

A list of public penetration test reports published by several consulting firms and academic security groups.

Offline, privacy-first grammar checker. Fast, open-source, Rust-powered

Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.

🕷️ An undetectable, powerful, flexible, high-performance Python library to make Web Scraping Easy and Effortless as it should be!

✨ Open-source AI hackers for your apps 👨🏻‍💻

Open Source Vulnerability Management Platform

RogueMaster Flipper Zero Firmware

A Workflow Engine for Offensive Security

📫 SMTP Server + Web Interface for viewing and testing emails during development.

Low-level unprivileged sandboxing tool used by Flatpak and similar projects

The Network Execution Tool

Adversary simulation and Red teaming platform with AI

The Deepfake Offensive Toolkit

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug b…

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

一个攻防知识库。A knowledge base for red teaming and offensive security.

Set of tools to assess and improve LLM security.

A fast and hackable fuzzy finder for the terminal.

The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, …

Simple (relatively) things allowing you to dig a bit deeper than usual.