A growing collection of MCP servers bringing offensive security tools to AI assistants. Nmap, Ghidra, Nuclei, SQLMap, Hashcat and more.

Trail of Bits Claude Code skills for security research, vulnerability detection, and audit workflows

AI Smart Contract Security Analysis and PoC Generation Framework

MCP server for AI-driven security pipelines

PentestAgent is an AI agent framework for black-box security testing, supporting bug bounty, red-team, and penetration testing workflows.

General purpose unopinionated Solidity fuzzing library for stateful and stateless fuzzing

Sol-azy is a modular CLI toolchain for static analysis and reverse engineering of Solana sBPF programs

Sierra decompiler and analyzer

Aplos an extremely simple fuzzer for Windows binaries.

Sui smart contract fuzzer

A natural language interface for computers

Go implementation of the Ethereum protocol

Static Analyzer for Teal

Radamsa fuzzer ported to rust lang

Cairo/Starknet smart contract fuzzer

LLM inference in C/C++

Aleo analyzer and disassembler

cairo-vm is a Rust implementation of the Cairo VM. Cairo (CPU Algebraic Intermediate Representation) is a programming language for writing provable programs, where one party can prove to another th…

Coverage-guided, in-process fuzzing for Node.js

Coverage-based fuzzer for python applications

Grammar-based fuzzing corpus generator

Cairo/Starknet security toolkit (bytecode analyzer, disassembler, decompiler, symbolic execution, SBMC)

StarkNet smart contract fuzzer

Binary Ninja plugin for visualizing coverage over time

jsfunfuzz patched to fuzz v8

JavaScript Fuzzing framework for v8

Grammar-based Fuzzer that uses WebIDL as a grammar.

Rust Weaponization for Red Team Engagements.

libdft for Intel Pin 3.x and 64 bit platform. (Dynamic taint tracking, taint analysis)