McKern3l/RAGdrag

RAG pipeline security testing toolkit - 27 techniques across 6 kill chain phases, mapped to MITRE ATLAS

41
/ 100
Emerging

Operationalizes a six-phase kill chain (fingerprint → probe → exfiltrate → poison → hijack → evade) with CLI commands targeting RAG endpoints directly—fingerprinting vector databases, mapping chunk sizes and retrieval thresholds, extracting knowledge bases, and testing guardrail bypasses without requiring target instrumentation. Includes 27 pre-mapped techniques with payload templates for enterprise chatbots, support systems, and knowledge bases, plus a credential capture listener for exploiting URL fetcher vulnerabilities.

No Package No Dependents
Maintenance 13 / 25
Adoption 5 / 25
Maturity 9 / 25
Community 14 / 25

How are scores calculated?

Stars

13

Forks

3

Language

Python

License

MIT

Category

rag-quality-assurance

Last pushed

Mar 25, 2026

Commits (30d)

0

GitHub
Rag Quality Assurance · 8 tools

Get this data via API

curl "https://pt-edge.onrender.com/api/v1/quality/rag/McKern3l/RAGdrag"

Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.

Higher-rated alternatives

Bessouat40/RAGLight

RAGLight is a modular framework for Retrieval-Augmented Generation (RAG). It makes it easy to...

73

datallmhub/ragctl

A powerful CLI tool to manage, test, and optimize RAG pipelines. Streamline your...

54

superagent-ai/super-rag

Super performant RAG pipelines for AI apps. Summarization, Retrieve/Rerank and Code Interpreters...

47

feld-m/rag_blueprint

A modular framework for building and deploying Retrieval-Augmented Generation (RAG) systems with...

38

mburaksayici/RAG-Boilerplate

RAG boilerplate with semantic/propositional chunking, hybrid search (BM25 + dense), LLM...

37

Explore RAG Tools

All categories Trending RAG directory Insights