Skip to content
@BishopFox

Bishop Fox

The leader in offensive security, providing continuous pen testing, red teaming, attack surface management, and traditional security assessments.

Pinned Loading

  1. sliver sliver Public

    Adversary Emulation Framework

    Go 10.5k 1.4k

  2. unredacter unredacter Public

    Never ever ever use pixelation as a redaction technique

    TypeScript 8.2k 798

  3. GitGot GitGot Public

    Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

    Python 1.5k 219

  4. eyeballer eyeballer Public

    Convolutional neural network for analyzing pentest screenshots

    Python 1.3k 147

  5. cloudfox cloudfox Public

    Automating situational awareness for cloud penetration tests.

    Go 2.3k 217

  6. jsluice jsluice Public

    Extract URLs, paths, secrets, and other interesting bits from JavaScript

    Go 1.7k 131

Repositories

Showing 10 of 79 repositories
  • cloudfox Public

    Automating situational awareness for cloud penetration tests.

    BishopFox/cloudfox’s past year of commit activity
    Go 2,269 MIT 217 9 (1 issue needs help) 1 Updated Jan 5, 2026
  • sliver Public

    Adversary Emulation Framework

    BishopFox/sliver’s past year of commit activity
    Go 10,493 GPL-3.0 1,437 250 (6 issues need help) 9 Updated Jan 5, 2026
  • cloudfoxable Public

    Create your own vulnerable by design AWS penetration testing playground

    BishopFox/cloudfoxable’s past year of commit activity
    Python 410 MIT 47 1 0 Updated Jan 2, 2026
  • badPods Public

    A collection of manifests that will create pods with elevated privileges.

    BishopFox/badPods’s past year of commit activity
    Shell 669 MIT 113 0 0 Updated Dec 30, 2025
  • awsservicemap Public

    Go module that returns supported regions for a service or supported services for a region

    BishopFox/awsservicemap’s past year of commit activity
    Go 18 MIT 7 0 0 Updated Dec 12, 2025
  • CVE-2025-6980-check Public

    Safely test Arista NGFW for information disclosure

    BishopFox/CVE-2025-6980-check’s past year of commit activity
    Python 2 MIT 0 0 0 Updated Dec 4, 2025
  • fortiweb-auth-bypass-check Public
    BishopFox/fortiweb-auth-bypass-check’s past year of commit activity
    Python 4 MIT 0 0 0 Updated Dec 3, 2025
  • sj Public

    A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

    BishopFox/sj’s past year of commit activity
    Go 711 MIT 97 4 (1 issue needs help) 0 Updated Nov 25, 2025
  • shining-mask Public
    BishopFox/shining-mask’s past year of commit activity
    Python 11 0 0 0 Updated Oct 30, 2025
  • iam-vulnerable Public

    Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.

    BishopFox/iam-vulnerable’s past year of commit activity
    HCL 537 MIT 95 0 0 Updated Sep 11, 2025
View all repositories