AI Goat - Learn AI security by attacking and defending a real AI-powered e-commerce application. Built for Red Teamers, security researchers, AI enthusiasts, and students to learn about adversarial attacks on AI/LLM systems. It is strictly for educational use, and the authors disclaim responsibility for any misuse.
☆25Mar 14, 2026Updated last week
Alternatives and similar repositories for AIGoat
Users that are interested in AIGoat are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A collection of skills, agents, commands, and workflows for security researchers. Compatible with Claude Code, Claude Desktop, OpenCode, …☆33Feb 25, 2026Updated last month
- Offensive security toolkit for Claude Code☆70Mar 15, 2026Updated last week
- ExecEvasion is a lightweight execution-evasion toolkit that generates command variants designed to bypass naive filters and WAF rules by …☆49Jan 31, 2026Updated last month
- Repository for tools used for the OSCP☆23Sep 18, 2025Updated 6 months ago
- ☆12Jan 31, 2020Updated 6 years ago
- Vulnerable Windows Application☆18Nov 27, 2023Updated 2 years ago
- A Security Operations playbook to assist blue teamers from day-to-day tasks to Digital Forensics and Incident Response (DFIR) activities.☆22Mar 18, 2026Updated last week
- ICSGoat: A Damn Vulnerable ICS Infrastructure☆32Aug 26, 2024Updated last year
- ☆38Aug 6, 2025Updated 7 months ago
- Kerberos CNAME abuse PoC☆86Jan 27, 2026Updated last month
- Touch Gesture Library, created under the guidance of the Sway project.☆14Dec 27, 2019Updated 6 years ago
- Hacking WordPress Plugins - Authenticated Shell Upload, by compromising admin console and upload a malicious plugin with PHP (reverse she…☆21Sep 22, 2024Updated last year
- A penetration testing Swiss Army Knife that's suitable for CTF challenges, bug bounty hunting and red team assessments.☆32Mar 17, 2026Updated last week
- Trigger commands based on touchscreen gestures from libinput events☆11Jun 2, 2020Updated 5 years ago
- DeepSeek Pentest AI - Burp Suite extension☆57Sep 14, 2025Updated 6 months ago
- Massive collection of 772+ PowerShell scripts for Azure management. CI/CD with PSScriptAnalyzer, security scanning, and IaC validation. E…☆38Oct 3, 2025Updated 5 months ago
- Have you ever wanted to search a link or IP address on multiple OSINT pages at once?☆59Jul 7, 2025Updated 8 months ago
- ☆62Oct 3, 2025Updated 5 months ago
- This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)☆46Feb 2, 2023Updated 3 years ago
- Interract with Microsoft SQL Server (MS SQL | MSSQL) servers and their linked instances in restricted environments, without the need for …☆54Mar 11, 2026Updated 2 weeks ago
- a C# implementation for a shellcode loader that capable to bypass Cortex XDR and Sophos EDR.☆93May 24, 2025Updated 10 months ago
- ☆108Feb 14, 2026Updated last month
- The JSON REST API for the National Vulnerability Database☆24Dec 26, 2022Updated 3 years ago
- HTML parser for PEAS output with additional features☆137Feb 15, 2026Updated last month
- ☆123Updated this week
- The Azure Execution Tool☆140Feb 6, 2026Updated last month
- Weaponize signed .NET ClickOnce applications for initial access by hijacking a dependency DLL via AppDomainManager injection and loading …☆147Feb 14, 2026Updated last month
- Analyze Android native `.so` files☆121Jul 28, 2025Updated 7 months ago
- Automated Active Directory lab running on Proxmox☆88Aug 8, 2025Updated 7 months ago
- Agentic pentest tooling. Currently achieving around 78% on XBOW's benchmark in full black-box. Completely Self-hosted. Every model availa…☆202Mar 8, 2026Updated 2 weeks ago
- A comprehensive modern architecture model is proposed to integrate platform solutions and tooling to support a professional Red Team.☆190Mar 4, 2026Updated 3 weeks ago
- Python implementation of RSI indicator as defined in TradingView☆63Apr 22, 2021Updated 4 years ago
- A security system to protect your vibecoded apps☆257Updated this week
- LLM security testing framework for detecting prompt injection, jailbreaks, and adversarial attacks — 190+ probes, 28 providers, single Go…☆138Mar 14, 2026Updated last week
- world's first Opensource fully Autonomous AI Security Engineer☆241Nov 18, 2025Updated 4 months ago
- Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS☆186Jun 22, 2022Updated 3 years ago
- GarudRecon automates domain recon with top open-source tools to discover assets, enumerate subdomains, and detect XSS, SQLi, LFI, RCE & m…☆198Jan 24, 2026Updated 2 months ago
- Quick scripts I developed to streamline OSCP tasks☆216Jun 14, 2025Updated 9 months ago
- This is the sample code to get started with the fyers trading apis☆99Feb 10, 2026Updated last month