687 matches found
vantix
Vantix Vantix is a Codex-native offensive-security control pl...
Decepticon
⚡ Decepticon — Autonomous Multi-Agent Offensive Security !L...
redhound-arsenal
Red Hound Arsenal Agent-consumable security skill library for...
Is “Hackback” Official US Cybersecurity Strategy?
The 2026 US "Cyber Strategy for America" document is mostly the same thing we've seen out of the White House for over a decade, but with a more aggressive tone. But one sentence stood out: "We will unleash the private sector by creating incentives to identify and disrupt adversary networks and...
Wa3r-OffSec-Kit
🔐 Wa3r-OffSec-Kit - Practical Security Tools and Notes !Dow...
cyberops-security-suite
CyberOps Security Suite A comprehensive cybersecurity operati...
PT-2026-25586
Summary Prior to Memray 1.19.2, Memray rendered the command line of the tracked process directly into generated HTML reports without escaping. Because there was no escaping, attacker-controlled command line arguments were inserted as raw HTML into the generated report. This allowed JavaScript...
Offensive-Security-KnowledgeBase
Offensive-Security-KnowledgeBase Str...
Cyber-Guide
!Typing SVGhttps://readme-typing-svg.herokuapp.com?font=Fira...
PT-2026-22504
Name of the Vulnerable Software and Affected Versions MaxSite CMS versions up to 109.1 Description A code injection issue exists in MaxSite CMS due to a flaw in the eval function within the file application/maxsite/admin/plugins/editor markitup/preview-ajax.php of the MarkItUp Preview AJAX Endpoi...
From arcades to Azure: Felix’s security research journey
When you talk with Felix, you quickly get the sense that he has always been propelled by curiosity and by a need for something that truly challenges him. Today, he is a successful independent security researcher who uncovers vulnerabilities across Microsoft cloud services. However, his path into...
A Content-Based Framework for Cybersecurity Refusal Decisions in Large Language Models
Large language models and LLM-based agents are increasingly used for cybersecurity tasks that are inherently dual-use. Existing approaches to refusal, spanning academic policy frameworks and commercially deployed systems, often rely on broad topic-based bans or offensive-focused taxonomies. As a...
KOREX
⚡ KOREX FRAMEWORK ⚡ Advanced Security Operations Framework "Kore...
Introducing AI Cyber Model Arena: A Real-World Benchmark for AI Agents in Cybersecurity
Wiz Research’s AI Cyber Model Arena benchmarks offensive AI security on 257 real-world challenges zero-days, CVEs, API/web, and cloud across AWS/Azure/GCP/K8s demonstrating what AI models and agents can really do...
CyberExplorer: Benchmarking LLM Offensive Security Capabilities in a Real-World Attacking Simulation Environment
Real-world offensive security operations are inherently open-ended: attackers explore unknown attack surfaces, revise hypotheses under uncertainty, and operate without guaranteed success. Existing LLM-based offensive agent evaluations rely on closed-world settings with predefined goals and binary...
Top AI Tools for Red Teaming in 2026
Red teaming has undergone a radical evolution. Modern organizations can no longer rely solely on human creativity or…...
Ofensive-security-Portfolio
This repository contains my Offensive Cyber Security / Penetrati...
Ofensive-security
This repository contains my Offensive Cyber Security / Penetrati...
To Defend against Cyber Attacks, We Must Teach AI Agents to Hack
For over a decade, cybersecurity has relied on human labor scarcity to limit attackers to high-value targets manually or generic automated attacks at scale. Building sophisticated exploits requires deep expertise and manual effort, leading defenders to assume adversaries cannot afford tailored...
red-team-arsenal
🎯 Red Team Arsenal !Versionhttps://img.shields.io/badge/...