FuzzingLabs / mcp-security-hubLinks
A growing collection of MCP servers bringing offensive security tools to AI assistants. Nmap, Ghidra, Nuclei, SQLMap, Hashcat and more.
☆392Updated this week
Alternatives and similar repositories for mcp-security-hub
Users that are interested in mcp-security-hub are comparing it to the libraries listed below
Sorting:
- A collection of servers which are deliberately vulnerable to learn Pentesting MCP Servers.☆218Updated last month
- A modular framework for benchmarking LLMs and agentic strategies on security challenges across HackTheBox, TryHackMe, PortSwigger Labs, C…☆197Updated this week
- A research project to add some brrrrrr to Burp☆197Updated last year
- ☆244Updated last month
- AIGoat: A deliberately Vulnerable AI Infrastructure. Learn AI security through solving our challenges.☆259Updated 4 months ago
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆283Updated 8 months ago
- A security system to protect your vibecoded apps☆244Updated this week
- Verizon Burp Extensions: AI Suite☆142Updated 9 months ago
- AI / LLM Red Team Field Manual & Consultant’s Handbook☆231Updated last week
- Burp Suite extension for testing Passkey systems.☆75Updated 10 months ago
- An AWS IAM Privilege Escalation Path Library☆113Updated last week
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆142Updated 3 months ago
- Hands-on MCP security lab: 10 real incidents reproduced with vulnerable/secure MCP servers, pytest regressions, and Claude/Cursor battle-…☆81Updated 2 months ago
- A web CTF for training developers in bug hunting and secure coding!☆100Updated last year
- Search engine for CTF writeups with instant results.☆152Updated 11 months ago
- FrogPost: postMessage Security Testing Tool☆108Updated 2 months ago
- An AI-powered agentic red team framework that automates offensive security operations, from reconnaissance to exploitation to post-exploi…☆332Updated this week
- LLM security testing framework for detecting prompt injection, jailbreaks, and adversarial attacks — 190+ probes, 28 providers, single Go…☆91Updated this week
- Payloads for AI Red Teaming and beyond☆314Updated 5 months ago
- ☆101Updated last week
- Secrets Ninja is an GUI tool for validating & investigating API keys discovered during pentesting & bug bounty hunting.☆159Updated 2 months ago
- ☆139Updated 2 weeks ago
- ☆136Updated last month
- Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scena…☆224Updated last year
- Collection of all previous 1337UP CTF challenges.☆79Updated last year
- gubble is a tool designed to audit Google Workspace group settings. It analyzes settings such as who can join, view membership, post mess…☆81Updated 8 months ago
- boostsecurityio/lotp☆138Updated 2 weeks ago
- Feed it a number. Your cloned voice does the social engineering, while you sip your coffee. A ghost that talks on the phone for you.☆109Updated 8 months ago
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆235Updated last year
- A tool to help pentesters quickly identify privileged principals and second-order privilege escalation opportunities in unfamiliar AWS ac…☆142Updated 2 months ago