Stars
Security audit tool for Claude Desktop and Claude Code on macOS — single-command visibility into MCP servers, extensions, plugins, connectors, scheduled tasks, and permissions.
SDK providing threat detection and security monitoring for Android devices. Shield your app with free RASP for Android. Detect reverse engineering, root (Magisk), jailbreak, Frida, emulators, bots,…
The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Cursor and beyond.
Salesforce identity and permission graph collector for BloodHound CE. Maps users, profiles, permission sets, roles, groups, sharing rules, connected apps, and field-level security into attack-path …
Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
Project LLM Verification Standard
Claude Code skills that turn any codebase into an interactive knowledge graph you can explore, search, and ask questions about (Multi-platform e.g., Codex are supported).
Firewall for AI agents. DLP scanning, SSRF protection, bidirectional MCP scanning, tool poisoning detection, and prompt injection blocking.
DeepTeam is a framework to red team LLMs and LLM systems.
AI-Powered Reverse Engineering Plugin for IDA Pro
Alipay DeepLink + JSBridge Security Research - 17 Verified Vulnerabilities | 支付宝DeepLink安全研究 | Full Report: innora.ai/zfb
A toolkit for managing Play Integrity & System Environment
Software simulation for Android hardware-backed key pairs with key attestation
Claude Code skill for AI-assisted bug bounty hunting - recon, IDOR, XSS, SSRF, OAuth, GraphQL, LLM injection, and report generation
Automated prompt injection testing framework for LLM-integrated applications with dual-LLM architecture.
Open source repository of plugins primarily intended for knowledge workers to use in Claude Cowork
Proxifier Alternative to redirect any Windows/MacOS/Linux TCP and UDP traffic to HTTP/Socks5 proxy
The AI Security Verification Standard (AISVS) focuses on providing developers, architects, and security professionals with a structured checklist to verify the security of AI-driven applications.
Offensive security toolkit for Claude Code
A Docker lab integrating Splunk SIEM with Ollama LLM via MCP for AI security operations. Features Promptfoo OWASP evaluation, TA-ollama and TA-mcp-jsonrpc add-ons, dual bind-mount log ingestion, an…
A BloodHound OpenGraph collector that models Windows local privilege escalation as interconnected attack paths.
ASPX Web Shell with COFF Loader