Hands-on MCP security lab: 10 real incidents reproduced with vulnerable/secure MCP servers, pytest regressions, and Claude/Cursor battle-tested exploit walkthroughs

Python 57 7 Updated Dec 3, 2025

stakpak / agent

DevOps agent that won't accidentally tweet your AWS credentials 🦀

Rust 770 86 Updated Dec 20, 2025

gadievron / raptor

Raptor turns Claude Code into a general-purpose AI offensive/defensive security agent. By using Claude.md and creating rules, sub-agents, and skills, and orchestrating security tool usage, we confi…

Python 871 100 Updated Dec 20, 2025

iamsinghmanish / My-CVEs

A repository showcasing my discovered CVEs, including vulnerability details, exploit insights, and responsible disclosure timelines.

4 1 Updated Feb 5, 2025

Security-Knowledge-Framework / Labs

Monorepo of Labs for the Security Knowledge Framework (SKF)

CSS 41 13 Updated Jun 12, 2025

INT2ECALL / awesome-cloud-security

7 2 Updated Dec 25, 2024

peachycloudsecurity / awesome-cloud-security-interview

This repository is a carefully chosen collection of cloud security-related interview questions and scenarios. This resource will help you explore different areas of safeguarding cloud systems, whet…

18 15 Updated Apr 1, 2024

jbranchaud / til

📝 Today I Learned

Vim Script 13,992 766 Updated Dec 17, 2025

Simpsonpt / AppSecEzine

AppSec Ezine Public Repository.

1,210 105 Updated Nov 14, 2025

someengineering / cloud-security-list

A list of cloud security tools and vendors.

180 28 Updated Sep 6, 2024

jacobdjwilson / awesome-annual-security-reports

A curated list of annual cyber security reports

913 111 Updated Dec 20, 2025

rohitg00 / devops-interview-questions

Creating this repository as a central hub for all DevOps interview questions to help you land your next job.

1,699 875 Updated May 28, 2025

SkySentinel-AI / fail2ban-aws-project

Automated Fail2Ban Monitoring with AWS CloudWatch, SNS, and CloudWatch Dashboards — integrated via CI/CD pipeline.

Shell 1 1 Updated Nov 11, 2025

Pennyw0rth / NetExec-Lab

Lab used for workshop and CTF

PowerShell 387 41 Updated Dec 3, 2025

aira-security / Vulnerable-AI-Chatbot

An intentionally vulnerable AI chatbot to learn and practice AI Security.

HTML 12 13 Updated Nov 6, 2025

aira-security / mcp-checkpoint

MCP Checkpoint continuously secures and monitors Model Context Protocol operations through static and dynamic scans, revealing hidden risks in agent-to-tool communications.

Python 101 7 Updated Nov 19, 2025

ice3810 / AWS-S3-Security-Hardening-Project

Verification of Least Privilege, Encryption, and Network Security on AWS S3

1 1 Updated Nov 9, 2025

deep1792 / red-team-cheat-sheets

Python 12 11 Updated Nov 6, 2025

usestrix / strix

Open-source AI agents for penetration testing

Python 18,055 1,852 Updated Dec 16, 2025

AImaginationLab / vulnerable-llms

An interactive security testing platform that demonstrates real vulnerabilities in Large Language Models.

Python 5 3 Updated Jun 14, 2025

Adversis / NextjsServerActionAnalyzer

A Burp Suite extension for analyzing Next.js Server Actions - server-side functions identified by hash IDs and `Next-Action` headers.

Python 39 7 Updated Aug 8, 2025

ivan-sincek / malware-apk

As a bug hunter, are your bug bounty reports getting rejected because you don't use a "malicious" Proof of Concept (PoC) app to exploit the vulnerabilities? I've got you covered!

Java 121 32 Updated Dec 14, 2025

ethicxlhuman / n8n-for-bug-bounty

n8n workflows related to bug bounty

45 8 Updated Oct 27, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

attacker-codeninja

Achievements

Achievements

Block or report attacker-codeninja

Starred repositories

appsecco / vulnerable-mcp-servers-lab

ShipSecAI / studio

CyberSecurityUP / Offensive-AI-Agent-Prompts

danielmiessler / Personal_AI_Infrastructure

schwartz1375 / Threat-Hunting-in-AWS

schwartz1375 / genai-security-training

cosai-oasis / ws4-secure-design-agentic-systems

PawelKozy / mcp-breach-to-fix-labs