Terminal-first toolkit that automates bug bounty workflows — recon, hunting across 20 vulnerability classes, validation, and submission-ready report generation; runs as a Claude Code plugin or standalone CLI with support for free local AI providers (Ollama, Groq, DeepSeek).
A 23-skill Claude Code toolkit that composes an LLM-driven virtual engineering team (CEO, designer, eng manager, QA, security, release) into slash-command workflows — includes real-browser QA, a persistent GBrain memory, multi-agent integrations, and team auto-update semantics.
Scans AI agent skills for security issues—detecting vulnerabilities, malicious patterns, and supply-chain risks before installation. Combines static AST checks (64 patterns across 16 categories) with optional LLM semantic review, OSV live CVE lookups, and JSON/Markdown/SARIF outputs for CI or manual review.
Provides a pytest-native framework to write safety and security tests for agentic AI applications. Defines adversarial attacks, benign-failure suites, and harm-category assertions with evaluation-driven checks and CI-friendly reporting, so red-teaming becomes testable and automatable.
Multimodal image-text-to-text fork of Gemma 4 (31B) using a 'CRACK v2' abliteration — tuned for conversational vision inputs and thinking-mode support in JANG v2 safetensors format. Recommended to run in vMLX; published by dealignai.
Provides hardware-isolated, sub-60ms, ultra-low-overhead sandboxes to run untrusted LLM/agent code. Offers event-level snapshots, kernel-level egress control, credential vaulting, and drop-in E2B SDK compatibility for high-density AI agent deployment.
Removes safety refusals from a Gemma 4 E4B–based model and publishes uncensored, locally runnable GGUF/safetensors variants while preserving all tensors and fixing prior corruption. Intended for red‑teaming and offline research; not recommended for production.
Runs goal-driven penetration tests by orchestration of an LLM agent and an MCP toolchain to perform reconnaissance, vulnerability discovery, exploitation, and structured PoC/report generation; supports multiple LLM providers and local MCP integrations; for authorized security testing only.
Performs agent-driven security scans of codebases using LLM coding agents to find and triage vulnerabilities. Combines fast regex discovery, per-file AI investigation and revalidation, with optional sandboxed parallel execution and Vercel AI Gateway integration for large monorepos.
Generates production-ready offensive-security artifacts from prompts—Nuclei templates, CVE PoCs, exploit scripts and pentest tooling—fine-tuned on bug-bounty reports and CVE writeups and quantized for consumer/server GPU deployment.
25,000 chat-formatted synthetic SFT examples distilled to emulate the reasoning style and agentic behavior of Anthropic's Claude Mythos, focused on cybersecurity, advanced coding, mathematical reasoning, and long-horizon agent tasks. Includes metadata for targeted curriculum fine-tuning and is Apache-2.0 licensed.
Provides a locally runnable 26.9B Qwen3.6 checkpoint that surgically reduces refusal behavior in weight space while preserving capability; ships bfloat16 safetensors and a GGUF quant ladder for local runtimes and red-team evaluation.