Repositories list

• Wazuh-Openclaw-Autopilot

  Public
  Autonomous SOC layer for Wazuh using OpenClaw agents with MCP . Auto-triage alerts, correlate incidents, generate response plans with human-in-the-loo…

  agentmcpautonomous+ 9

  agentmcpautonomoussiemagentssocautonomous-agentssecurity-automationwazuhthreat-detection+ 2

  JavaScript

  •

  MIT License

  •6•22•2•0•Updated Mar 28, 2026Mar 28, 2026

• Shai-Hulud-2.0-Detector

  Public
  Detect npm packages compromised in the Shai-Hulud 2.0 supply chain attack (Nov 2025). Scans for 790+ malicious packages, suspicious scripts, TruffleHog activity…

  nodejsnpmsecurity+ 17

  nodejsnpmsecuritysarifdevsecopsvulnerability-scannermalware-detectioncredential-theftgithub-actionsopen-source-security+ 10

  TypeScript

  •

  MIT License

  •34•122•0•1•Updated Mar 28, 2026Mar 28, 2026

• pfsense-mcp-server

  Public
  pfSense MCP Server enables security administrators to manage their pfSense firewalls using natural language through AI assistants like Claude Desktop. Simply as…

  mcppfsensehacktoberfest+ 5

  mcppfsensehacktoberfestclaudepfsense-firewallgenaimcp-serversmcp-server

  Python

  •

  MIT License

  •6•53•0•1•Updated Mar 27, 2026Mar 27, 2026

• Wazuh-MCP-Server

  Public
  AI-powered security operations for Wazuh SIEM—use any MCP-compatible client to ask security questions in plain English. Faster threat detection, incident triage…

  pythonaimcp+ 15

  pythonaimcphacktoberfestwazuhclaudedxthacktoberfest-acceptedhacktoberfest2025claude-ai+ 8

  Python

  •

  MIT License

  •44•151•2•1•Updated Mar 27, 2026Mar 27, 2026

• kubekavach

  Public
  Developer-first K8s security scanner with instant pod replay. Debug prod issues locally in seconds. AI-powered explanations. CERT-IN compliant for Indian orgs.

  kubernetessecuritycontainer+ 4

  kubernetessecuritycontainerkubernetes-clustercybersecurityindiacert-in

  TypeScript

  •

  Other

  •0•4•0•34•Updated Feb 17, 2026Feb 17, 2026

• Ubuntu-Security-Hardening-Script

  Public
  This script automates the scanning process using the OpenSCAP Security Guid to hardening Ubuntu systems, aligning with DISA-STIG compliance for Ubuntu 24.04. LT…

  linuxubuntushell-script+ 10

  linuxubuntushell-scriptubuntu-serveropenscapsecurity-toolslinux-securitylinux-hardeningserver-securitydisa-stig+ 3

  Shell

  •

  MIT License

  •10•79•0•0•Updated Feb 15, 2026Feb 15, 2026

• ocsas

  Public
  OCSAS is a security checklist and hardening guide for OpenClaw users. It helps you deploy OpenClaw safely by telling you exactly what settings to configure and …

  securityopensourceopenclaw

  securityopensourceopenclaw

  Ruby

  •

  Apache License 2.0

  •0•3•0•0•Updated Jan 30, 2026Jan 30, 2026

• ossasai

  Public
  OSSASAI is a security framework for AI agents — the bots that can run commands, browse the web, and access your files. It tells you what security controls to lo…

  Shell

  •

  Apache License 2.0

  •0•1•0•0•Updated Jan 30, 2026Jan 30, 2026

• react2shell-scanner

  Public
  Security scanner for CVE-2025-55182 - Critical RCE vulnerability in React Server Components. Scan npm/pnpm/yarn lockfiles, Docker images, SBOMs, and live URL…

  reactjsscannernextjs+ 2

  reactjsscannernextjscve-2025-55182react2shell

  TypeScript

  •

  MIT License

  •7•55•0•0•Updated Dec 7, 2025Dec 7, 2025

• shadowgate

  Public
  High-performance stealth redirector and deception gateway. Traffic filtering with GeoIP, ASN, rate limiting, and boolean rule logic. Reverse proxy with health…

  golangsecuritydevops+ 8

  golangsecuritydevopshoneypotload-balancerreverse-proxypenetration-testingtraffic-filteringred-teamsecurity-tools+ 1

  Go

  •

  MIT License

  •0•9•0•0•Updated Dec 7, 2025Dec 7, 2025

• .github

  Public
  0•0•0•0•Updated Dec 7, 2025Dec 7, 2025

• mcpscc

  Public
  Security Command Center for Model Context Protocol (MCP) servers. Detect prompt injection, tool poisoning, secrets, and vulnerabilities. The Trivy of MCP securi…

  pythonclisecurity+ 13

  pythonclisecuritymcpscannerowaspsecurity-toolsdevsecopsvulnerability-scannersast+ 6

  Python

  •

  Apache License 2.0

  •1•5•0•0•Updated Dec 5, 2025Dec 5, 2025

• genai-api-pentest-platform

  Public
  The GenAI API Pentest Platform is a API security testing tool that leverages multiple Large Language Models (LLMs) to perform intelligent, context-aware API sec…

  apicybersecuritypentesting+ 5

  apicybersecuritypentestingapi-securityapi-pentestllmgenaigenai-security

  Python

  •

  MIT License

  •6•15•1•0•Updated Aug 21, 2025Aug 21, 2025

• Sonicwall-MCP-Server

  Public
  A comprehensive Model Context Protocol (MCP) server for analyzing SonicWall firewall logs from SonicOS 7.x and 8.x. This server provides intelligent log analysi…

  mcpsonicwallmcp-server+ 1

  mcpsonicwallmcp-servermodelcontextprotocol

  TypeScript

  •

  MIT License

  •0•4•0•0•Updated Aug 19, 2025Aug 19, 2025

• Claude-Code-Subagents-Collection

  Public
  A meticulously crafted collection of 75+ specialized Claude Code sub-agents designed for accuracy, efficiency, and comprehensive software development support.

  claudesubagentclaude-code+ 3

  claudesubagentclaude-codeclaudecodesubagentsclaudecode-subagents

  MIT License

  •6•22•0•0•Updated Aug 9, 2025Aug 9, 2025

• MCP-Developer-SubAgent

  Public
  A specialized framework for Model Context Protocol (MCP) development featuring 8 Claude Code sub-agents, security hooks, and production-ready FastMCP server …

  mcpclaudemodelcontextprotocol+ 9

  mcpclaudemodelcontextprotocolfastmcpclaudecodesubagentsclaudecode-mcpclaudecodeingclaudecode-subagentsclaudecode-hooks+ 2

  Python

  •

  MIT License

  •8•26•0•1•Updated Aug 9, 2025Aug 9, 2025

• LetsEncrypt-IP-SSL-Manager

  Public
  This tool simplifies the process of obtaining and managing Lets' Encrypt IP certificates with automatic renewal, comprehensive validation, and user ready featur…

  linuxletsencryptopen-source+ 4

  linuxletsencryptopen-sourcesslssl-certificatesletsencrypt-certificateslets-encrypt

  Shell

  •

  MIT License

  •1•5•0•0•Updated Jul 27, 2025Jul 27, 2025

• mcp-poisoning-poc

  Public
  This repository demonstrates a variety of **MCP Poisoning Attacks** affecting real-world AI agent workflows.

  mcpcybersecuritymcpe-server+ 5

  mcpcybersecuritymcpe-serverllmaisecurityagentic-aiagenticworkflowmcp-server

  Python

  •

  MIT License

  •5•14•0•1•Updated Jun 14, 2025Jun 14, 2025

• CVE-2024-3094-Vulnerability-Checker-Fixer

  Public
  Shell scripts to identify and fix installations of xz-utils affected by the CVE-2024-3094 vulnerability. Versions 5.6.0 and 5.6.1 of xz-utils are known to be vu…

  linuxsshansible+ 12

  linuxsshansibleansible-playbookopensourceansible-playbooksvulnerabilitiesvulnerability-detectionxzvulnerability-scanners+ 5

  Shell

  •

  MIT License

  •6•26•0•0•Updated Apr 7, 2024Apr 7, 2024

• nginx-ssl-automation-letsencrypt

  Public
  This is a simple shell script for automating the installation and renewal of Let's Encrypt SSL certificates on Linux servers using Nginx.

  letsencryptnginxssl+ 7

  letsencryptnginxssldevopshttpsssl-certificatecertbotssl-certificatesnginx-configurationcertificate-management

  Shell

  •

  MIT License

  •1•9•0•0•Updated Apr 7, 2024Apr 7, 2024