PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.

The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Cursor and beyond.

From a goal to a task DAG, automatically. TypeScript-native multi-agent orchestration with MCP and live tracing. Three runtime dependencies.

DNS Enumeration Script

BugBounty-Recon-Methodology

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

Autonomous multi-agent pipelines from YAML. Any LLM. Zero boilerplate.

Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature

Cybersecurity oriented awesome list

Scan Node.js projects for vulnerable axios versions using live OSV API data — zero dependencies, CI-ready

Real-time architectural sensor that helps AI agents close the feedback loop, enabling recursive self-improvement of code quality. Pure Rust.

Burp Plugin to Bypass WAFs through the insertion of Junk Data

Fully autonomous AI Agents system capable of performing complex penetration testing tasks

AI-powered bug bounty hunting from your terminal - recon, 20 vuln classes, autonomous hunting, and report generation. All inside Claude Code.

JWTLens - Burp Suite extension for automated JWT security testing. 62 checks: passive scanning, algorithm confusion, signature bypass, KID injection, weak secret brute force, and a built-in JWT For…

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

Grafana scanner with all public CVEs that I collected in one script to make grafana testing easier

OpenRAG is a comprehensive, single package Retrieval-Augmented Generation platform built on Langflow, Docling, and Opensearch.

A cyber security toolkit blending manual testing with AI Agents

OpenAnt from Knostic is the leading open source LLM-based vulnerability discovery product, helping defenders proactively find verified security flaws while minimizing both false positives and false…

Open Cyber Threat Intelligence Platform

Burp Suite extension that adds built-in MCP tooling, AI-assisted analysis, privacy controls, passive and active scanning and more

List of Mine Private wordlist i use for fuzzing

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

A Burp Suite extension for GraphQL security testing.

When "403 Forbidden" stands between you and your target, 400OK breaks through with 22 bypass techniques and 4,400+ payloads.