A tool for creating and running Linux containers using lightweight virtual machines on a Mac. It is written in Swift, and optimized for Apple silicon.

An 8-stage vulnerability-discovery agent.

An 8-stage vulnerability-discovery agent.

LLM inference server with continuous batching & SSD caching for Apple Silicon — managed from the macOS menu bar

CLI proxy that reduces LLM token consumption by 60-90% on common dev commands. Single Rust binary, zero dependencies

🐹 Clean, uninstall, analyze, optimize, and monitor your Mac from the terminal.

CLI and Go SDK for ingesting findings into Plextrac.

🪨 why use many token when few token do trick — Claude Code skill that cuts 65% of tokens by talking like caveman

Official electron build of draw.io

EmDash is a full-stack TypeScript CMS based on Astro; the spiritual successor to WordPress

Implement your own USB device in Python, supported by a hardware peripheral such as Cynthion or GreatFET

Curated, community-vetted Claude Code plugin marketplace

Opinionated defaults, documentation, and workflows for Claude Code at Trail of Bits

A Vulnerablity Radar That Runs With GIthub Actions

AI-powered offensive security agent with 7,300+ actionable security skills. Autonomous pentesting powered by MITRE ATT&CK (2,000+ Atomic tests), CIS Benchmarks (1,500+ controls), OWASP, NIST. Lazy-…

Go parser for Sigma detection rules (YAML) - extracts conditions, fields, and detection logic from Sigma rules

Hunt for AI coding artifacts containing secrets.

</> htmx - high power tools for HTML

A growing collection of MCP servers bringing offensive security tools to AI assistants. Nmap, Ghidra, Nuclei, SQLMap, Hashcat and more.

CraftedSignal CLI for detections-as-code

A comprehensive guide for enhancing security and privacy on iOS and iPadOS devices.

Go parser for Splunk Processing Language (SPL) - extracts conditions, fields, and search terms from SPL queries

Go parser for Kusto Query Language (KQL) - extracts conditions, fields, and tables from KQL queries

Governance Platform by @NC3-LU

A hunting script for Sha1-Hulud compromise.

BOF to steal Teams cookies

A GitHub Action that runs a command in a gVisor sandbox

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

AuditKit - Multi-Cloud Compliance Scanner & Evidence Collection

Backend for all data schema and automation running OpenTide instances