Alternatives and similar repositories for vulnerablemcp

Users that are interested in vulnerablemcp are comparing it to the libraries listed below

• doyensec / Unsafe-Unpacking
  Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide
  ☆41Updated 7 months ago
• 5stars217 / malicious_models
  using ML models for red teaming
  ☆43Updated last year
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆41Updated 6 months ago
• tuannq2299 / semgrep-rules
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆23Updated 3 years ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆49Updated 2 years ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆87Updated last year
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆49Updated 2 years ago
• PalisadeResearch / intercode
  https://arxiv.org/abs/2412.02776
  ☆59Updated 8 months ago
• abhisek / supply-chain-security-gateway
  Reference architecture and proof of concept implementation for supply chain security gateway
  ☆23Updated 2 years ago
• rbowes-r7 / refreshing-soap-exploit
  A PoC exploit for CVE-2022-41622 - a CSRF in F5 BIG-IP control plane that leads to remote root
  ☆21Updated 2 years ago
• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆50Updated 3 years ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆89Updated 2 months ago
• t0xodile / the-single-packet-shovel
  ☆21Updated 2 months ago
• nodyhub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆47Updated 10 months ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆21Updated 4 months ago
• stacscan / stacs
  Static Token And Credential Scanner
  ☆96Updated 2 years ago
• TecR0c / DoubleTrouble
  This repository offers insights and a proof-of-concept tool to exploit two significant deserialization vulnerabilities in Inductive Autom…
  ☆45Updated last year
• nccgroup / cq
  ☆116Updated 2 years ago
• tstromberg / supplychain-attack-data
  Data about all known supply-chain attacks through history
  ☆58Updated 2 months ago
• pentagridsec / archive_pwn
  A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes
  ☆43Updated last year
• kapilduraphe / mcp-watch
  A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP se…
  ☆54Updated 2 months ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆32Updated 5 months ago
• s0rcy / semgrep-rules
  Collection of Semgrep rules for security analysis
  ☆10Updated last year
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆33Updated 2 years ago
• 0ca / BoxPwnr
  An experimental project exploring the use of Large Language Models (LLMs) to solve HackTheBox machines autonomously.
  ☆57Updated 3 months ago
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆105Updated 6 months ago
• ghostsecurityarchive / waf-btk
  WAF bypass PoC
  ☆48Updated last year
• Neuroengine-vulns / autokaker
  Automated vulnerability discovery and annotation
  ☆67Updated last year
• scipag / websocket_fuzzer
  Simple WebSocket fuzzer
  ☆33Updated 2 years ago
• nccgroup / cowcloud
  ☆58Updated 2 years ago