A curated list of awesome skills, hooks, slash-commands, agent orchestrators, applications, and plugins for Claude Code by Anthropic

The ultimate pentesting companion. Keep all your pentesting artifacts in one place.

Windows security research toolkit for LPE, persistence, COM hijacking, and attack surface enumeration.

RoguePlanet Windows Defender Vulnerability

AI-powered Docker security scanner that explains vulnerabilities in plain English. An OWASP Lab Project.

Skills for threat modeling, scanning, triage, patching, plus an autonomous scanning harness you can /customize

AI-native red-team workbench for authorized penetration testing and vulnerability research, with specialist agents, sandboxed tooling, evidence records, and replayable timelines.

claude-red is a curated library of offensive security skills designed for the Claude skills system. Each skill is a structured SKILL.md file that primes Claude with expert-level methodology for a s…

Prompt, run, edit, and deploy full-stack web applications. -- bolt.new -- Help Center: https://support.bolt.new/ -- Community Support: https://discord.com/invite/stackblitz

Prompt, run, edit, and deploy full-stack web applications using any LLM you want!

Making Docker and Kubernetes management easy.

A Claude skill that writes the accurate prompts for any AI tool. Zero tokens or credits wasted. Full context and memory retention

AI Agent Governance Toolkit — Policy enforcement, zero-trust identity, execution sandboxing, and reliability engineering for autonomous AI agents. Covers 10/10 OWASP Agentic Top 10.

Simple and flexible tool for managing secrets

Fast, developer-friendly JS/TS dependency vulnerability scanner with local lockfile scanning, OSV matching, direct vs transitive visibility, --fix, JSON output, and practical remediation guidance.

A pytest-native safety and security testing framework for agentic AI applications

A powerful and user-friendly binary analysis platform!

The agent that grows with you

AI-first security scanner with 79 analyzers, 40,000+ detection rules, and repo poisoning detection for AI/ML, LLM agents, and MCP servers. Scan any GitHub repo with: medusa scan --git user/repo

Open-source media request and discovery manager for Jellyfin, Plex, and Emby.

Per-process network monitoring for your terminal with deep packet inspection. Cross-platform, sandboxed.

The Open-Source Multimodal AI Agent Stack: Connecting Cutting-Edge AI Models and Agent Infra

Automated penetration testing & attack surface management platform. Recon, scan, exploit, report — 600+ exploits, 90+ integrations, 10K+ detections.

Open Infrastructure Map, a view of infrastructure data in OpenStreetMap

Open-source AI agent firewall for MCP security: agent egress control, DLP, SSRF, and prompt injection defense.

Open-source AI agent firewall for MCP security and agent egress. Scans mediated HTTP, MCP, A2A, and WebSocket traffic for exfiltration, SSRF, and prompt injection, and emits mediator-signed action …

A complete private computer on a USB stick. PAI is a bootable Debian 12 Linux distro that runs Ollama locally on any x86_64 or ARM64 machine — full desktop, local AI, hardened networking, all in RA…

🚀 The open-source alternative to Twilio.

Fast, modern traceroute with real-time TUI, per-hop stats, ASN/geo lookup, ECMP detection, and MPLS label parsing. A better mtr.

Monitor network traffic per executable