Learn to code securely while having fun through our popular open source in-editor experience, designed for developers, students, and anyone curious about security. Get started for free in under 2 minutes, playing right from your browser.

Reconmap is a collaboration-first security operations platform for infosec teams and MSSPs, enabling end‑to‑end engagement management, from reconnaissance through execution and reporting. With built-in command automation, output parsing, and AI‑assisted summaries, it delivers faster, more structured, and high‑quality security assessments.

An open-source knowledge base of defensive countermeasures to protect AI/ML systems. Features interactive views and maps defenses to known threats from frameworks like MITRE ATLAS, MAESTRO, and OWASP.

Open-source EDR for AI agents. Monitor processes, files, network, and behavior of autonomous AI agents.

Security scanner MCP server for AI coding agents. Prompt injection firewall, package hallucination detection (4.3M+ packages), 1000+ vulnerability rules with AST & taint analysis, auto-fix.

AspGoat is an intentionally vulnerable ASP.NET Core application for learning and practicing web application security.

AIGoat - Open-source AI security playground for LLM red teaming. AI Goat provides hands-on labs covering the full OWASP LLM Top 10 with progressive defenses.

The open-source agent firewall. Prevent AI agents from leaking data, using dangerous tools, and importing poisoned dependencies.

200 AI agent skills, hardened with targeted behavioral guardrails. Free drop-in replacements.

🛡️ A firewall for your agent's brain. Open-source security proxy that protects AI agents from prompt injection attacks. 4-stage pipeline, community threat feed, no bypass mode.

Complete security layer for OpenClaw - CLI Scanner + Live Dashboard. Secrets detection, config hardening, prompt injection scanning, MCP server auditing. Zero telemetry.

🔐 50+ MCP Security Servers for AI-Powered Pentesting | Integrate Nmap, Burp Suite, Nuclei, Shodan, BloodHound, Semgrep, Trivy | Model Context Protocol for Cybersecurity

Open-source AI security firewall. 81 engines for PII detection, prompt injection defense, MCP security, and egress classification. Local-first. Zero cloud dependency.

Hands-on workshop to explore Gravitee’s AI Management Platform: expose, secure, and govern AI Agents, LLMs and MCP servers

NSAuditor AI — Open-source, AI-powered network security scanner. 27 plugins, CVE matching, MITRE ATT&CK mapping, verified vulnerabilities, continuous monitoring, MCP integration. Zero data exfiltration. MIT licensed.

Emoji steganography tool that hides secret text inside emojis using Unicode Tag Characters, The hidden data is completely invisible, the emoji looks identical to the original.

Define what your agent can't do. Because if it gets compromised, those limits are all you've got.

The most comprehensive open-source mapping of OWASP GenAI risks to industry frameworks - 65 mapping files, 25 frameworks, 1,514 controls, 114 incidents, ML classifier pipeline. Source lists: LLM Top 10, Agentic Top 10, DSGAI 2026. EU AI Act, NIST, ISO, SOC 2, FedRAMP, DORA, OT/ICS, MITRE ATLAS.

Permission layer for AI agents — wallet signing, vault access, budgets, and human approvals.

Open source security for LLM inference