Tools
Research tools and experimental frameworks developed by Twenty Eight Labs.
4
Tooling Tracks
82%
Highest Maturity
3
Active Categories
Application Security
LiveQuick Web Security Review
A quick preliminary passive review for public endpoints that scores security headers, TLS certificate posture, CORS exposure, cache policy, CSP, HSTS, client-side signals, service exposure, and version disclosure before a deeper pentest.
Build maturity82%
OWASP-style security header scoringTLS certificate metadata reviewAtomix AI preliminary threat analysis
Open Quick Web Security Review →
Architecture
In ProgressAI Threat Modeler
A structured approach for identifying threat surfaces in AI-enabled architectures, including agents and tool-using models.
Build maturity74%
Asset and trust boundary mappingAgent/tool abuse path analysisControl recommendation templates
Open AI Threat Modeler →
AI Security
ExperimentalLLM Prompt Tester
A framework for testing prompt injection, instruction leakage, and unsafe model behaviors across LLM deployments.
Build maturity62%
Prompt injection scenario designInstruction hierarchy checksUnsafe output pattern tracking
Open LLM Prompt Tester →
Application Security
PrototypeAPI Attack Mapper
Maps common API abuse patterns and misconfigurations in modern web and cloud-native applications.
Build maturity55%
Endpoint behavior catalogingAuth and authorization checksAbuse case prioritization
Open API Attack Mapper →