six2dez

six2dez / drift

Public

Security AI helper for Caido: pipes your local Claude Code / Gemini / Codex / Copilot CLI through 18 MCP tools for manual web security testing. Local-first, no API keys.

16
0
100% credibility
Found Apr 22, 2026 at 16 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
TypeScript
AI Summary

Drift is a Caido plugin that lets local AI tools like Claude Code assist with manual web security testing by connecting them directly to your active Caido session.

How It Works

1
πŸ” Discover Drift in Caido

You find the Drift plugin while browsing tools to supercharge your web security testing in Caido.

2
πŸ“¦ Install the plugin

Download and install the simple zip file into Caido's plugin section with one click.

3
βš™οΈ Point to your AI helpers

In settings, enter the location of tools like Claude Code that you already have on your computer.

4
πŸš€ Start your assistant

Flip the switch to connect your AI helper to your current Caido testing session β€” it grabs your live project and history automatically.

5
βœ… Run a quick check

Hit the test button to confirm everything sees your Caido data and tools correctly.

6
πŸ’¬ Chat for help

Right-click a request or response in Caido, pick 'Review Request', and watch your AI suggest smart next tests.

πŸŽ‰ Get your test plan

Your AI drafts tests, findings, and reports tailored to your traffic β€” speeding up your security hunt safely and locally.

Sign up to see the full architecture

5 more

Sign Up Free

Star Growth

See how this repo grew from 16 to 16 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is drift?

Drift is a TypeScript Caido plugin that pipes local AI CLIs like Claude Code, Gemini CLI, Codex CLI, and Copilot CLI into your testing session via 18 MCP tools. It lets you chat with AI about live requests, build test plans, review responses, and draft findingsβ€”all without API keys or data leaving your machine. Unlike remote copilots, it grabs Caido context (projects, filters, scopes) automatically for grounded security analysis.

Why is it gaining traction?

Drift stands out by proxying your authenticated local CLIs through Caido's MCP protocol, exposing tools like search_history, send_request, and create_finding with safety gates (group toggles, confirmations). Context menus trigger review prompts with raw HTTP attachments, queues handle overlaps, and diagnostics/self-tests verify setup. Privacy-focused testers dig the no-cloud drift protocol, dodging avira security helper not showing up headaches on Mac.

Who should use this?

Manual web pentestors on Caido who want AI for request reviews, hypothesis validation, or report drafting without copy-pasting. Bug bounty hunters tired of generic chatbots, or teams needing local drift detection for sensitive drifts in traffic. Skip if you're not in Caido or prefer full scans over targeted manual aid.

Verdict

Early with 16 stars and 1.0% credibility score, but solid docs, prompt examples, and tests make it usable now. Try for Caido workflows; monitor for experimental CLI stability.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.