Web UI consciousness monitor for Hermes — the AI agent with persistent memory

Brute Force Gate Remote using Flipper Zero

ExchangeHound is a defensive BloodHound OpenGraph collector for on-prem Microsoft Exchange that maps mailbox delegation and Exchange privilege relationships to help blue teams find abuse paths and …

Aftermath is a free macOS IR framework

AI-first security scanner with 76 analyzers, 9,600+ detection rules, and repo poisoning detection for AI/ML, LLM agents, and MCP servers. Scan any GitHub repo with: medusa scan --git user/repo

Universal preflight security scanner for AI coding agents — Detects hooks injection, credential exfiltration & backdoors in .cursorrules, CLAUDE.md, AGENTS.md and more.

Security scanner for Agent Skills — uncover hidden threats before deployment.

Drop a single binary into a compromised Kubernetes pod and instantly map every realistic attack path to cluster-admin, node escape, secret theft, and cloud IAM takeover.

RAG pipeline security testing toolkit - 27 techniques across 6 kill chain phases, mapped to MITRE ATLAS

A CI/CD Red Team Framework for demonstrating Build Pipeline security risks.

A native Android application that converts any website URL into a standalone Android App.

A Cobalt Strike BOF implementation of the SilentHarvest registry dumping technique

Nim implementation for sud0Ru's Credential Dumping from SAM/SECURITY Hives Method (a.k.a. SilentHarvest)

☁️ Live reload for Go apps

Userland exec PoC to be used as attack vector technique

Fine-tune LLMs on your Mac with Apple Silicon. SFT, DPO, GRPO, Vision, TTS, STT, Embedding, and OCR fine-tuning — natively on MLX. Unsloth-compatible API.

Claude Code on your Tailscale tailnet, powered by the iii engine.

Phantom-Evasion-Loader is a standalone, pure x64 Assembly injection engine engineered to minimize the detection surface of modern EDR/XDR solutions and Kernel-level monitors like Falco (eBPF). It l…

Feature-packed native macOS screenshot & recording tool: annotate, auto-redact PII, record GIFs, OCR + translate, scroll capture, beautify, and more. No Electron, no subscription.

π RuView: WiFi DensePose turns commodity WiFi signals into real-time human pose estimation, vital sign monitoring, and presence detection — all without a single pixel of video.

Yet another Ransomware gang tracker

TLDSweep is a domain intelligence OSINT tool that sweeps 800+ TLDs to find registered variants of a domain, flag newly registered lookalikes, and alert via Telegram and Discord.

A self-hosted web dashboard for the Hermes AI agent stack. Provides a browser-based terminal, file explorer, session overview, cron management, system metrics, and an agent status panel — all behin…

ExportHider: Generating Export Table during Runtime to Hide the Exported Functions from the DLL File.

Context-Aware RAG library for Knowledge Graph ingestion and retrieval functions.

Bloodhound Reporting for Blue and Purple Teams

API discovery tool that maps attack surfaces from captured traffic and generates specs for REST, GraphQL, SOAP, and WebSocket APIs

Single-file, browser-based Active Directory attack graph tool for SharpHound and AzureHound collection data. No server. No install. No Neo4j. Upload a ZIP, get an interactive attack graph.

Power BI CLI - semantic models (.NET TOM) and PBIR reports for token-efficient AI agent usage, built for Claude Code