AI EDR for developer workstations and autonomous agent fleets. Build Swarm Detection & Response platforms with Clawdstrike.

Threat modeling and AI-reasoning vulnerability detection harness for Claude Code — STRIDE + AI + MAESTRO

Free OpenClaw security scanner. 3,000+ agents audited. 3-Layer Audit Protocol. OWASP ASI 10/10 coverage. AI agent integrity layer.

Outside-in replication of Anthropic's Mythos Preview / Project Glasswing — open-source agentic vulnerability-discovery scaffold on Claude Opus 4.7. Eight-phase sink-guided pipeline, ~$1/run, OSS self-scan and coordinated disclosure.

Portable security rules for the action boundary of AI agents

A awesome curated list of security resources, hardening tools, threat research, and governance frameworks specifically for Claude Code

Awesome LLM security tools, research, and documents

Free security assessment for your OpenClaw 🦞 environment. Scans gateway config, tool permissions, MCP servers, plugins, and chained attack paths.

Detect and Deny - Deterministic Function-Level Guardrails for AI Agents

Open-source AI security firewall. 81 engines for PII detection, prompt injection defense, MCP security, and egress classification. Local-first. Zero cloud dependency.

Open-Source Prompt Injection Scanner for AI agents. 225 detection patterns across 17 categories, 15 languages. REST API, EU AI Act compliance mapping, <10ms latency.

A curated, structured, and continuously updated map of security risks, controls, benchmarks, architectures, and research for agentic, multi-agent, tool-using, self-improving AI systems. 🌟 Star if you like it!

Detect bugs that have already been fixed in one codebase and determine whether the same issues apply to the target codebase.

AI agent credential broker — temporary, task-scoped tokens with automatic revocation. Free for internal use

Local, provider-agnostic coding-agent CLI for learning agentic security — a small, auditable trust boundary you can read.

Governance for AI agents: a deny-by-default policy layer for Claude Code and agent/skill builds. Every tool call is authorized, contained, and audited. Apache-2.0.

An always-on runtime control plane for autonomous AI agents. It enforces intent alignment, permissions, provenance, and risk controls at execution time. Built for agentic systems operating at machine speed, AVARA introduces identity, accountability, and human-in-the-loop safety into multi-agent + tool ecosystems.

Claude Code skill for adversarial-grade security audits: full architectural context, ultra-granular function analysis, and novel code vulnerabilities discovery.

Maps an AI coding agent's actions — or a repository — to OWASP Agentic Top 10 and compliance framework controls, surfacing candidate findings with citations. Rust scanner + agent skill, SARIF output.

LLM security scanner: prompt injection detection (pattern + embedding), PII/secret output scanning, RAG poisoning checks, PyRIT/Garak red-teaming, mapped to OWASP LLM Top 10