Security Policy this a defensive repository and we dont have any kind of offensive tool. Reporting a Vulnerability simply open a pull request!