This repository is maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), AI security,…

Cybersecurity AI (CAI), the framework for AI Security

An encyclopedia for offensive and defensive security knowledge in cloud native technologies.

certs.hacker26.com website

Resources for the Build Your Own AI Lab course by Omar Santos @santosomar

Scan MCP servers for potential threats & security findings.

Project CodeGuard is an AI model-agnostic security framework and ruleset that embeds secure-by-default practices into AI coding workflows (generation and review). It ships core security rules, tran…

SAFE-MCP is a comprehensive security framework for documenting and mitigating threats in the AI Agent ecosystem.

The CoSAI Risk Map is a framework for identifying, analyzing, and mitigating security risks in Artificial Intelligence systems. As traditional software security practices are not always sufficient …

Fair-code workflow automation platform with native AI capabilities. Combine visual building with custom code, self-host or cloud, 400+ integrations.

Community-supported MCP server for the Cisco OpenVuln API

Repository for CoSAI Workstream 4, Secure Design Patterns for Agentic Systems

This repository contains resources and materials for the "AI Agents and Retrieval Augmented Generation (RAG) for Cybersecurity Operations" and other courses by Omar Santos.

This is a learning created by Omar Santos (@santosomar) for different Cybersecurity training sessions. It includes many intentionally vulnerable applications running in Docker containers and thousa…

an open source, extensible AI agent that goes beyond code suggestions - install, execute, edit, and test with any LLM

A simple tool to calculate the quorum for OASIS TCs (definitely JavaScript-free)

No fortress, purely open ground. OpenManus is Coming.

All-in-one LLM CLI tool featuring Shell Assistant, Chat-REPL, RAG, AI Tools & Agents, with access to OpenAI, Claude, Gemini, Ollama, Groq, and more.

Enchanted is iOS and macOS app for chatting with private self hosted language models such as Llama2, Mistral or Vicuna using Ollama.

GitHub action to automatically merge pull requests that are ready

This repository is dedicated to providing comprehensive mappings of the OWASP Top 10 vulnerabilities for Large Language Models (LLMs) to a variety of industry standards and cybersecurity frameworks.

DSPy: The framework for programming—not prompting—language models

Build resilient language agents as graphs.

Repository for CoSAI workstream 3, AI Risk Governance

Repository for CoSAI workstream 2, Preparing Defenders for a Changing Cybersecurity Landscape

Repository for CoSAI Workstream 1, Software Supply Chain Security for AI Systems

Repository for the work of the CoSAI Technical Steering Committee (TSC)

KEV EPSS Data

SpideyX a multipurpose Web Penetration Testing tool with asynchronous concurrent performance with multiple mode and configurations.

A demonstration on how to use AI with certspy