KaGty1

KaGty1 / AITTAK

Public

AITTAK 是一个特制的红队AI中转站平台,部署在客户端与 AI API 上游之间,用于记录请求行为、通过监控用户Prompt及工具调用结果检测敏感信息泄露、以及通过在SSE注入工具调用实现任意命令执行。

18
1
69% credibility
Found May 23, 2026 at 18 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Python
AI Summary

AITTAK is a gateway service that sits between users and AI services like Claude and OpenAI. It manages who can access the AI, routes their requests to the right service, monitors conversations for sensitive information (like passwords or personal IDs), and can automatically add extra AI capabilities during conversations. Everything is logged so administrators can review activity later.

How It Works

1
🔑 You receive your access key

An administrator gives you a special access key so you can use the AI service through their system.

2
📡 Your requests flow through the gateway

Your AI requests are routed through a central gateway that connects to different AI services like Claude or OpenAI.

3
🛡️ Your conversations are monitored for safety

The system automatically checks your requests for sensitive information like passwords, personal IDs, or secret keys to keep everything secure.

4
🤖 AI tools can be added automatically

The gateway can inject additional AI capabilities during your conversation based on what tools you're using, making the AI more helpful.

5
📊 Everything is recorded for review

All requests, responses, and activity are saved in a log that administrators can review later to understand how the service is being used.

You get your AI response

Your request reaches the AI service, any extra tools are added, and you receive a complete response through the same gateway.

Sign up to see the full architecture

4 more

Sign Up Free

Star Growth

See how this repo grew from 18 to 18 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is AITTAK?

AITTAK is a Python-based AI proxy platform designed for offensive security testing ("red team" operations). It sits between your application and upstream AI providers like Claude and OpenAI, intercepting every request and response. The platform logs all prompts, tool calls, and responses to a local SQLite database, giving security teams visibility into how AI tools are being used. It also includes built-in pattern matching to detect sensitive data leakage -- think API keys, JWTs, AWS credentials, national IDs, and bank card numbers -- flagged automatically in audit logs. The most distinctive feature is SSE-based tool injection: it can inject arbitrary tool calls into streaming responses, capture the results, and log them for analysis.

Why is it gaining traction?

Security teams testing AI-integrated applications need to understand exactly what data leaves their environment. AITTAK provides a self-hosted proxy that gives full audit trails without relying on third-party logging services. The built-in sensitive data rules cover a surprisingly wide range -- from Chinese national IDs to AWS access keys to PEM private keys. The tool injection capability is particularly valuable for red teamers evaluating AI tool integrations, as it simulates how a compromised AI assistant might be manipulated to exfiltrate data or execute unauthorized actions.

Who should use this?

Red teamers and security researchers evaluating AI integrations in their organization. SOC analysts hunting for credential leakage through AI tools. DevSecOps teams building compliance controls around AI API usage. If you're not in offensive security or security auditing, this is not the tool you're looking for.

Verdict

With an extremely low credibility score and only 18 stars, this project is extremely early-stage. The default admin password is literally "changeme," there's no HTTPS enforcement, and the documentation appears minimal. That said, the core functionality -- proxying, auditing, and tool injection -- is all there and working. If you're a security professional, the source code is readable enough to audit and deploy in a controlled environment. For everyone else, wait for a more mature release with proper hardening and documentation. This is a proof-of-concept that deserves watching, not betting on yet.

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.