Recent

A specialized WPA3 dictionary cracker that leverages the wpa_supplicant control interface for high-speed online brute-force attacks against SAE networks.

Autonomous security research framework that turns Claude Code into an agent for adversarial code analysis, fuzzing, and exploit generation.

Extract credentials from PPL-protected LSASS by leveraging a vulnerable, Microsoft-signed Defender driver (KslD.sys) for arbitrary memory access.

The ultimate Red Team toolkit for phishing operations.

AWS security scanner with attack chain detection. 47 checks, Terraform remediation for every finding, scan diff. Free. pip install cloud-audit

Runtime-first Windows thick client assessment tool. Identifies verified privilege escalation paths using Procmon and AccessCheck validation.

AI geolocation platform identifying indoor/outdoor photo locations like hotel rooms and street views with verifiable evidence for OSINT and recon.

Open-source VAPT platform for red teams to plan, collaborate, and automate reporting for penetration testing projects and vulnerability management.

End-to-end platform for AI security testing and automated red teaming. Identify vulnerabilities like prompt injection and data leakage across AI systems.

An automated, highly vulnerable Active Directory lab for practicing advanced internal penetration testing and red team attack techniques.

Neutral benchmark for evaluating prompt injection detection systems across 4,300+ inputs including jailbreaks and adversarial prompting.

Automated testing platform to secure LLM agents against prompt injection, data leaks, and hallucinations through continuous adversarial red teaming.