Skip to content
@BishopFox

Bishop Fox

The leader in offensive security, providing continuous pen testing, red teaming, attack surface management, and traditional security assessments.

Pinned Loading

  1. sliver sliver Public

    Adversary Emulation Framework

    Go 10k 1.4k

  2. unredacter unredacter Public

    Never ever ever use pixelation as a redaction technique

    TypeScript 8.1k 793

  3. GitGot GitGot Public

    Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

    Python 1.5k 215

  4. eyeballer eyeballer Public

    Convolutional neural network for analyzing pentest screenshots

    Python 1.2k 145

  5. cloudfox cloudfox Public

    Automating situational awareness for cloud penetration tests.

    Go 2.2k 212

  6. jsluice jsluice Public

    Extract URLs, paths, secrets, and other interesting bits from JavaScript

    Go 1.6k 119

Repositories

Showing 10 of 76 repositories
  • cloudfox Public

    Automating situational awareness for cloud penetration tests.

    BishopFox/cloudfox’s past year of commit activity
    Go 2,199 MIT 212 9 (1 issue needs help) 1 Updated Sep 22, 2025
  • sj Public

    A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

    BishopFox/sj’s past year of commit activity
    Go 695 MIT 95 3 (1 issue needs help) 0 Updated Sep 19, 2025
  • sliver Public

    Adversary Emulation Framework

    BishopFox/sliver’s past year of commit activity
    Go 10,021 GPL-3.0 1,365 239 (6 issues need help) 24 Updated Sep 18, 2025
  • iam-vulnerable Public

    Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.

    BishopFox/iam-vulnerable’s past year of commit activity
    HCL 519 MIT 93 0 0 Updated Sep 11, 2025
  • cloudfoxable Public

    Create your own vulnerable by design AWS penetration testing playground

    BishopFox/cloudfoxable’s past year of commit activity
    Python 398 MIT 43 0 0 Updated Aug 26, 2025
  • raink Public

    Use LLMs for document ranking

    BishopFox/raink’s past year of commit activity
    Go 148 MIT 7 1 0 Updated Apr 17, 2025
  • sonicrack Public

    Decrypt encrypted SonicOSX firmware images

    BishopFox/sonicrack’s past year of commit activity
    Python 18 GPL-3.0 2 0 0 Updated Feb 25, 2025
  • BrokenHill Public

    A productionized greedy coordinate gradient (GCG) attack tool for large language models (LLMs)

    BishopFox/BrokenHill’s past year of commit activity
    Python 138 MIT 21 1 1 Updated Dec 18, 2024
  • local-llm-ctf Public

    A small go harness that uses Ollama to orchestrate LLMs in a restricted process flow

    BishopFox/local-llm-ctf’s past year of commit activity
    Go 11 MIT 1 0 0 Updated Sep 10, 2024
  • cve-2024-21762-check Public

    Safely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762

    BishopFox/cve-2024-21762-check’s past year of commit activity
    Python 103 GPL-3.0 17 3 1 Updated Jul 5, 2024
View all repositories