CVE-2025-49844 (RediShell)

Damn Vulnerable MCP Server

A super fast CLI tool to decode and encode JWTs built in Rust

Personal AI Infrastructure for upgrading humans.

This MCP server provides browser automation capabilities through Puppeteer, allowing interaction with both new browser instances and existing Chrome windows.

Playwright MCP server

DSPy: The framework for programming—not prompting—language models

The Event Maturity Matrix (EMM) is a comprehensive framework that provides clarity regarding the capabilities and nuances of SaaS audit logging.

Simple Python library/structure to ablate features in LLMs which are supported by TransformerLens

Find authentication (authn) and authorization (authz) security bugs in web application routes.

Conference presentation slides

A list of tools that make developer experience with cloud providers easier

🌟 The Multi-Agent Framework: First AI Software Company, Towards Natural Language Programming

A command line tool that validates AWS IAM Policies in a Terraform template against AWS IAM best practices

💀 Don't fear the Reaper 👻

The Simple Agent Development Kit.

Anthropic's educational courses

Automated web vulnerability scanning with LLM agents

Subdomain enumeration and information gathering tool

NGINX configuration static analyzer

an open source, extensible AI agent that goes beyond code suggestions - install, execute, edit, and test with any LLM

Python implementation of GhostPack's Seatbelt situational awareness tool

CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec, Compliance/Audit Management, Privacy and supporting +100 frameworks worldwide with auto-mapping: NIST CSF, ISO 27001, SOC2, CIS, PC…

An encyclopedia for offensive and defensive security knowledge in cloud native technologies.

E-mails, subdomains and names Harvester - OSINT

IPv6 Internet Wide Scanning

Semgrep queries developed by Trail of Bits.

Security automation content in SCAP, Bash, Ansible, and other formats

Code auditing productivity multiplier.