Practical examples of "Flawed Machine Learning Security" together with ML Security best practice across the end to end stages of the machine learning model lifecycle from training, to packaging, to…

A flowchart/questionnaire vanilla javascript library

Build Container Images In Kubernetes

Agentic LLM Vulnerability Scanner

RCE PoC for Tensorflow using a malicious Lambda layer

A tool for generating files and folders ("boilerplate") from a set of templates

An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRIDE methodology.

RAG (Retrieval Augmented Generation) Framework for building modular, open source applications for production by TrueFoundry

Analyze Docker images size

Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!

Every practical and proposed defense against prompt injection.

boostsecurityio/poutine

Awesome secure by default libraries to help you eliminate bug classes!

The open source Tines / Splunk SOAR alternative.

Luigi is a Python module that helps you build complex pipelines of batch jobs. It handles dependency resolution, workflow management, visualization etc. It also comes with Hadoop support built in.

18 Lessons, Get Started Building with Generative AI 🔗 https://microsoft.github.io/generative-ai-for-beginners/

12 weeks, 26 lessons, 52 quizzes, classic Machine Learning for all

Modular web-application honeypot platform built using go and gin

Pipelined Query Language

Portable, Serverless & Lightweight SQLite-based Graph Database in Arturo

Beyond Accuracy: Behavioral Testing of NLP models with CheckList

The Python Risk Identification Tool for generative AI (PyRIT) is an open access automation framework to empower security professionals and machine learning engineers to proactively find risks in th…

SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens

Collection of cheat sheets useful for pentesting

using ML models for red teaming

PromptInject is a framework that assembles prompts in a modular fashion to provide a quantitative analysis of the robustness of LLMs to adversarial prompt attacks. 🏆 Best Paper Awards @ NeurIPS ML …

Collection of prompt injections used in the Giskard Scanner