Stars
Automated mass refactoring of source code.
Static Value-Flow Analysis Framework for Source Code
An intentionally vulnerable Javascript app containing notable vulnerabilities in its dependencies.
A flexible HTTP fetching Model Context Protocol server.
AI agent for autonomous cyber operations
Runtime software composition analysis with eBPF and Vulnerability Analysis
AI-powered workflow automation and AI Agents platform for AppSec, Fuzzing & Offensive Security. Automate vulnerability discovery with intelligent fuzzing, AI-driven analysis, and a marketplace of s…
The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebases using a variety of static analysis security testing (SAST…
SOCKS5 proxy tool that uses Azure Blob Storage as a means of communication.
Time-Based Detection and Response for Safety-Critical Real-Time Embedded Systems - EDR Kernel Extension for FreeRTOS
UNIX-like reverse engineering framework and command-line toolset
SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.
Monorepo of Labs for the Security Knowledge Framework (SKF)
CISO Assistant is a one-stop-shop GRC platform for Risk Management, AppSec, Compliance & Audit, TPRM, Privacy, and Reporting. It supports 100+ global frameworks with automatic control mapping, incl…
Crews Control is an abstraction layer on top of crewAI, designed to facilitate the creation and execution of AI-driven projects without writing code. By defining an execution.yaml file, users can o…
An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRIDE methodology.
Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc
Open source templates you can use to bootstrap your security programs
All-in-one AI automation platform (workflows, agents, cases, tables) for security, IT, and infra teams.
A CLI tool to convert your codebase into a single LLM prompt with source tree, prompt templating, and token counting.
Manifold Markets: A market for every question
Semgrep queries developed by Trail of Bits.
Langflow is a powerful tool for building and deploying AI-powered agents and workflows.