Adversa
LLM red-team harness that scans for OWASP LLM Top 10 and MITRE ATLAS vulnerabilities, providing prioritized findings in table, JSON, SARIF, or via an MCP server for AI agents.
README
<a name="top"></a> <div align="center">
<img src="https://capsule-render.vercel.app/api?type=rect&color=0:6b46c1,100:2b6cb0&height=120§ion=header&text=ADVERSA&fontSize=48&fontColor=ffffff&fontAlignY=58" width="100%" alt="ADVERSA"/>
ADVERSA
LLM red-team harness — OWASP LLM Top 10 + MITRE ATLAS attack packs
<img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=18&duration=3500&pause=1000&color=6B46C1¢er=true&vCenter=true&width=720&lines=LLM+redteam+harness++OWASP+LLM+Top+10++MITRE+ATLAS+attack+pa;Self-hostable+%C2%B7+MCP-native+%C2%B7+CI-ready+%C2%B7+polyglot" width="720"/>
AI Security & Governance — securing LLMs, agents, and the MCP supply chain.
</div>
pip install cognis-adversa
adversa scan . # → prioritized findings in seconds
Contents
- Why adversa? · Features · Quick start · Example · Architecture · AI stack · How it compares · Integrations · Install anywhere · Related · Contributing
<a name="why"></a>
Why adversa?
LLM red-team harness — OWASP LLM Top 10 + MITRE ATLAS attack packs — without standing up heavyweight infrastructure.
adversa is single-purpose, scriptable, and self-hostable: point it at a target, get prioritized results in the format your workflow already speaks (table · JSON · SARIF), gate CI on it, and let agents drive it over MCP.
<div align="right"><a href="#top">↑ back to top</a></div>
<a name="features"></a>
Features
- ✅ Severity Rank
- ✅ Builtin Probes
- ✅ Load Probes
- ✅ Detect Success
- ✅ Run Probes
- ✅ Transcript Target
- ✅ Load Transcript
- ✅ Runs on Linux/macOS/Windows · Docker · devcontainer
- ✅ Ports in Python, JavaScript, Go, and Rust (
ports/)
<div align="right"><a href="#top">↑ back to top</a></div>
<a name="quick-start"></a>
Quick start
pip install cognis-adversa
adversa --version
adversa scan . # scan current project
adversa scan . --format json # machine-readable
adversa scan . --fail-on high # CI gate (non-zero exit)
<div align="right"><a href="#top">↑ back to top</a></div>
<a name="example"></a>
Example
$ adversa scan .
[HIGH ] ADV-001 example finding (./src/app.py)
[MEDIUM ] ADV-002 another signal (./config.yaml)
2 findings · risk score 5 · 38ms
<div align="right"><a href="#top">↑ back to top</a></div>
<a name="architecture"></a>
Architecture
flowchart LR
A[Input: file / dir / API] --> B[Collectors]
B --> C[Rules / Analyzers]
C --> D[Scorer]
D --> E{Reporters}
E --> F[Table]
E --> G[JSON / SARIF]
E --> H[MCP tool -. drives .-> AI agents]
<div align="right"><a href="#top">↑ back to top</a></div>
<a name="ai-stack"></a>
Use it from any AI stack
adversa is interoperable with every popular way of using AI:
- MCP server —
adversa mcp(Claude Desktop, Cursor, Cognis.Studio, uncensored-fleet) - OpenAI-compatible / JSON — pipe
adversa scan . --format jsoninto any agent or LLM - LangChain · CrewAI · AutoGen · LlamaIndex — wrap the CLI/JSON as a tool in one line
- CI / scripts — exit codes + SARIF for non-AI pipelines
<div align="right"><a href="#top">↑ back to top</a></div>
<a name="how-it-compares"></a>
How it compares
| Cognis adversa | leondz | |
|---|---|---|
| Self-hostable, no account | ✅ | varies |
| Single command, zero config | ✅ | ⚠️ |
| JSON + SARIF for CI | ✅ | varies |
| MCP-native (AI agents) | ✅ | ❌ |
| Polyglot ports (JS/Go/Rust) | ✅ | ❌ |
| Open license | ✅ COCL | varies |
Built in the spirit of leondz/garak, re-framed the Cognis way. Missing a credit? Open a PR.
<div align="right"><a href="#top">↑ back to top</a></div>
<a name="integrations"></a>
Integrations
Pipes into your stack: SARIF for code-scanning, JSON for anything, an MCP server (adversa mcp) for AI agents, and a webhook forwarder for SIEM/Slack/Jira. See docs/INTEGRATIONS.md.
<div align="right"><a href="#top">↑ back to top</a></div>
<a name="install-anywhere"></a>
Install — every way, every platform
pip install "git+https://github.com/cognis-digital/adversa.git" # pip (works today)
pipx install "git+https://github.com/cognis-digital/adversa.git" # isolated CLI
uv tool install "git+https://github.com/cognis-digital/adversa.git" # uv
pip install cognis-adversa # PyPI (when published)
docker run --rm ghcr.io/cognis-digital/adversa:latest --help # Docker
brew install cognis-digital/tap/adversa # Homebrew tap
curl -fsSL https://raw.githubusercontent.com/cognis-digital/adversa/main/install.sh | sh
| Linux | macOS | Windows | Docker | Cloud |
|---|---|---|---|---|
scripts/setup-linux.sh |
scripts/setup-macos.sh |
scripts/setup-windows.ps1 |
docker run ghcr.io/cognis-digital/adversa |
DEPLOY.md (AWS/Azure/GCP/k8s) |
<div align="right"><a href="#top">↑ back to top</a></div>
<a name="related"></a>
Related Cognis tools
aegis— AI Agent Permission & Access Auditor — surfaces the lethal trifecta of credentials + injection + reachpromptmirror— Prompt-injection & indirect-injection scanner for any LLM context inputledgermind— Local LLM cost & token forensics proxy with anomaly detectionguardpost— Runtime agent firewall — PII redaction, rate limits, policy enforcementhallumark— LLM hallucination & grounding auditor for RAG systemsaicard— Auto-generated NIST AI RMF / EU AI Act Annex IV model & system cards
Explore the suite → 🗂️ all 170+ tools · ⭐ awesome-cognis · 🔗 cognis-sources · 🤖 uncensored-fleet · 🧠 hermes
<div align="right"><a href="#top">↑ back to top</a></div>
<a name="contributing"></a>
Contributing
PRs, new rules, and demo scenarios are welcome under the collaboration-pull model — see CONTRIBUTING.md and SECURITY.md.
⭐ If
adversasaved you time, star it — it genuinely helps others find it.
License
Source-available under the Cognis Open Collaboration License (COCL) v1.0 — free for personal, internal-evaluation, research, and educational use; commercial / production use requires a license (licensing@cognis.digital). See LICENSE.
<div align="center"><sub><b><a href="https://cognis.digital">Cognis Digital</a></b> · one of 170+ tools in the <a href="https://github.com/cognis-digital/cognis-neural-suite">Cognis Neural Suite</a> · <i>Making Tomorrow Better Today</i></sub></div>
Recommended Servers
playwright-mcp
A Model Context Protocol server that enables LLMs to interact with web pages through structured accessibility snapshots without requiring vision models or screenshots.
Magic Component Platform (MCP)
An AI-powered tool that generates modern UI components from natural language descriptions, integrating with popular IDEs to streamline UI development workflow.
Audiense Insights MCP Server
Enables interaction with Audiense Insights accounts via the Model Context Protocol, facilitating the extraction and analysis of marketing insights and audience data including demographics, behavior, and influencer engagement.
VeyraX MCP
Single MCP tool to connect all your favorite tools: Gmail, Calendar and 40 more.
graphlit-mcp-server
The Model Context Protocol (MCP) Server enables integration between MCP clients and the Graphlit service. Ingest anything from Slack to Gmail to podcast feeds, in addition to web crawling, into a Graphlit project - and then retrieve relevant contents from the MCP client.
Kagi MCP Server
An MCP server that integrates Kagi search capabilities with Claude AI, enabling Claude to perform real-time web searches when answering questions that require up-to-date information.
E2B
Using MCP to run code via e2b.
Neon Database
MCP server for interacting with Neon Management API and databases
Exa Search
A Model Context Protocol (MCP) server lets AI assistants like Claude use the Exa AI Search API for web searches. This setup allows AI models to get real-time web information in a safe and controlled way.
Qdrant Server
This repository is an example of how to create a MCP server for Qdrant, a vector search engine.