Skip to content
@BishopFox

Bishop Fox

The leader in offensive security, providing continuous pen testing, red teaming, attack surface management, and traditional security assessments.

Pinned Loading

  1. sliver sliver Public

    Adversary Emulation Framework

    Go 10.6k 1.4k

  2. unredacter unredacter Public

    Never ever ever use pixelation as a redaction technique

    TypeScript 8.2k 799

  3. GitGot GitGot Public

    Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

    Python 1.5k 219

  4. eyeballer eyeballer Public

    Convolutional neural network for analyzing pentest screenshots

    Python 1.3k 149

  5. cloudfox cloudfox Public

    Automating situational awareness for cloud penetration tests.

    Go 2.3k 220

  6. jsluice jsluice Public

    Extract URLs, paths, secrets, and other interesting bits from JavaScript

    Go 1.7k 132

Repositories

Showing 10 of 79 repositories
  • sliver Public

    Adversary Emulation Framework

    BishopFox/sliver’s past year of commit activity
    Go 10,592 GPL-3.0 1,438 256 (6 issues need help) 7 Updated Jan 25, 2026
  • cloudfox Public

    Automating situational awareness for cloud penetration tests.

    BishopFox/cloudfox’s past year of commit activity
    Go 2,281 MIT 220 9 (1 issue needs help) 1 Updated Jan 23, 2026
  • sj Public

    A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

    BishopFox/sj’s past year of commit activity
    Go 713 MIT 96 4 (1 issue needs help) 0 Updated Jan 15, 2026
  • cloudfoxable Public

    Create your own vulnerable by design AWS penetration testing playground

    BishopFox/cloudfoxable’s past year of commit activity
    Python 428 MIT 51 1 0 Updated Jan 2, 2026
  • badPods Public

    A collection of manifests that will create pods with elevated privileges.

    BishopFox/badPods’s past year of commit activity
    Shell 672 MIT 115 0 0 Updated Dec 30, 2025
  • awsservicemap Public

    Go module that returns supported regions for a service or supported services for a region

    BishopFox/awsservicemap’s past year of commit activity
    Go 18 MIT 7 0 0 Updated Dec 13, 2025
  • CVE-2025-6980-check Public

    Safely test Arista NGFW for information disclosure

    BishopFox/CVE-2025-6980-check’s past year of commit activity
    Python 2 MIT 0 0 0 Updated Dec 5, 2025
  • fortiweb-auth-bypass-check Public
    BishopFox/fortiweb-auth-bypass-check’s past year of commit activity
    Python 4 MIT 0 0 0 Updated Dec 3, 2025
  • shining-mask Public
    BishopFox/shining-mask’s past year of commit activity
    Python 11 0 0 0 Updated Oct 30, 2025
  • iam-vulnerable Public

    Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.

    BishopFox/iam-vulnerable’s past year of commit activity
    HCL 539 MIT 97 0 0 Updated Sep 11, 2025
View all repositories