GenSecAI is a non-profit community dedicated to using generative AI to defend against AI-powered attacks. We build open-source tools to secure our digital future from emerging AI threats, making AI security accessible to everyone.

AI-powered security operations with Wazuh SIEM + Claude Desktop. Transform your SOC with natural language threat detection, automated incident response & compliance monitoring.

• Features: Real-time monitoring, ML anomaly detection, conversational security analysis
• Tech Stack: Python, Wazuh, MCP Protocol
• Status: Production-ready

Developer-first K8s security scanner with instant pod replay. Debug production issues locally in seconds with AI-powered explanations.

• Features: CERT-IN compliant for Indian organizations, instant pod replay, AI-powered explanations
• Tech Stack: Go, Kubernetes, AI/ML
• Use Case: Kubernetes security scanning and compliance

Manage pfSense firewalls using natural language through AI assistants like Claude Desktop.

• Features: 5-level RBAC, REST/XML-RPC/SSH support, built-in compliance checks
• Tech Stack: Python, pfSense, MCP Protocol
• Benefits: Natural language firewall management

API security testing tool that leverages multiple Large Language Models (LLMs) to perform intelligent, context-aware API security assessments.

• Features: Multi-LLM support, context-aware testing, automated vulnerability discovery
• Tech Stack: Python, Multiple LLMs
• Target: API security testing

Automates the scanning process using OpenSCAP Security Guide to harden Ubuntu systems, aligning with DISA-STIG compliance.

• Features: Ubuntu 24.04 LTS minimum, DISA-STIG compliance, automated hardening
• Tech Stack: Shell scripting, OpenSCAP
• Purpose: System hardening and compliance

Modern web application utilizing Next.js 13 App Router to perform robust Registration Data Access Protocol (RDAP) queries.

• Features: Domain/IP/ASN/entity lookup, modern UI, future-proof alternative to whois
• Tech Stack: JavaScript, Next.js 13
• Benefits: Structured registration data access

Demonstrates various MCP Poisoning Attacks affecting real-world AI agent workflows.

• Purpose: Security research and awareness
• Target: AI agent security
• Type: Proof of Concept

Shell scripts to identify and fix installations of xz-utils affected by the CVE-2024-3094 vulnerability.

• Features: Detection, downgrade/upgrade options, Ansible playbook included
• Versions Affected: xz-utils 5.6.0 and 5.6.1
• Solution: Stable version 5.4.6 or latest

A comprehensive Model Context Protocol (MCP) server for analyzing SonicWall firewall logs from SonicOS 7.x and 8.x.

• Features: Intelligent log analysis, threat detection, security insights through MCP-compliant interface
• Tech Stack: TypeScript, MCP, SSE/HTTP transport
• Compatibility: SonicOS 7.x and 8.x

A meticulously crafted collection of 75+ specialized Claude Code sub-agents for comprehensive software development support.

• Features: 75+ specialized agents, accuracy-focused, efficiency-optimized
• Tech Stack: Claude Code framework
• Purpose: Enhanced AI-assisted development

Specialized framework for Model Context Protocol (MCP) development featuring 8 Claude Code sub-agents and production-ready templates.

• Features: Security hooks, FastMCP server templates, markdown-driven agents
• Tech Stack: Python, FastMCP, MCP
• Benefits: Immediate MCP development assistance

Simplifies obtaining and managing Let's Encrypt IP certificates with automatic renewal and comprehensive validation.

• Features: Automatic renewal, comprehensive validation, user-ready features
• Tech Stack: Shell scripting, Let's Encrypt
• Use Case: SSL certificate management for IP addresses

Simple shell script for automating the installation and renewal of Let's Encrypt SSL certificates on Linux servers using Nginx.

• Features: Automated installation, automatic renewal, Nginx integration
• Tech Stack: Shell scripting, Nginx, Let's Encrypt
• Purpose: Simplify SSL certificate management

We believe in the power of community-driven security research. Our projects are:

• ✅ 100% Open Source - All tools are freely available
• 🌍 Globally Collaborative - Contributors from around the world
• 🔬 Research-Focused - Advancing the state of AI security
• 🛠️ Practical & Production-Ready - Real-world solutions

1. Browse our repositories for tools that match your needs
2. Check individual project documentation for installation guides
3. Join our community discussions to share insights and get help

1. Fork the repository you're interested in
2. Create a feature branch (git checkout -b feature/AmazingFeature)
3. Commit your changes (git commit -m 'Add some AmazingFeature')
4. Push to the branch (git push origin feature/AmazingFeature)
5. Open a Pull Request

• 🏢 13+ Active Projects - Covering various aspects of AI security
• 👥 Growing Community - Security researchers, developers, and enthusiasts
• 🌐 Global Reach - Contributors and users worldwide
• 🔒 Enterprise-Ready - Tools used in production environments

• Website: gensecai.org
• Email: ask@gensecai.org
• Twitter: @GensecAI
• GitHub: github.com/gensecaihq

1. AI-First Security: We leverage AI to defend against AI threats
2. Open Source Philosophy: Democratizing AI security for everyone
3. Practical Solutions: Production-ready tools, not just research
4. Community Driven: Built by the community, for the community
5. Compliance Focus: Tools designed with regulatory requirements in mind

Most of our projects are released under open-source licenses (MIT, Apache 2.0, etc.). Please check individual repositories for specific licensing information.

As a non-profit organization, we rely on community support to continue our work. You can help by:

• ⭐ Starring our repositories
• 🐛 Reporting bugs and suggesting features
• 💻 Contributing code and documentation
• 📢 Spreading the word about our projects
• 💰 Supporting our infrastructure costs