Burp-DeepSeek : A Beta-Stage Burp Suite Extension For AI-Driven Security Analysis
Burp-DeepSeek is an innovative extension designed for PortSwigger's Burp Suite, aimed at enhancing the capabilities of bug hunters and security researchers. By leveraging the DeepSeek API, this tool provides AI-driven analysis of HTTP requests and responses, helping users identify vulnerabilities, suspicious endpoints, and sensitive data exposures. Although still in beta mode, Burp-DeepSeek promises to be a valuable addition to...
Kata Containers : Bridging The Gap Between Containers And Virtual Machines
Kata Containers is an open source project and community working to build a standard implementation of lightweight Virtual Machines (VMs) that feel and perform like containers, but provide the workload isolation and security advantages of VMs. License The code is licensed under the Apache 2.0 license. See the license file for further details. Platform Support Kata Containers currently runs on 64-bit systems supporting...
obfusgator.zig : A Zig-based Code Obfuscator
In the realm of software development, code obfuscation is a crucial technique used to protect source code from unauthorized viewing and modification. "obfusgator.zig" leverages the Zig programming language to provide a robust tool for developers seeking to obfuscate their Zig projects effectively. This article delves into how "obfusgator.zig" works and demonstrates its usage on various Zig applications. A zig program...
Exploring Kernel Vulnerabilities : A Deep Dive Into io_uring Buffer Management
The io_uring_register syscall supports various registration ops to allow a user to register different resources that io_uring can use. Specifically, with IORING_REGISTER_PBUF_RING combined with the IOU_PBUF_RING_MMAP flag, the kernel allocates pages for an io_buffer_list and attaches it to the io_ring_ctx under a given bgid. int io_register_pbuf_ring(struct io_ring_ctx *ctx, void __user *arg) { struct io_uring_buf_reg reg; struct io_buffer_list *bl, *free_bl = NULL; int ret; if (copy_from_user(®,...
Chroma : Powering LLM Apps With An Efficient Embedding Database
Chroma - the open-source embedding database. The fastest way to build Python or JavaScript LLM apps with memory! pip install chromadb # python client # for javascript, npm install chromadb! # for client-server mode, chroma run --path /chroma_db_path The core API is only 4 functions (run our Google Colab or Replit template): import chromadb # setup Chroma in-memory, for easy prototyping. Can add persistence easily! client...
code2prompt : Streamlining LLM Prompt Generation From Codebases
code2prompt is a command-line tool (CLI) that converts your codebase into a single LLM prompt with a source tree, prompt templating, and token counting. Table Of Contents Features Installation Usage Templates User Defined Variables Tokenizers Python SDK Contribution License Support The Author Features You can run this tool on the entire directory and it would generate a well-formatted Markdown prompt detailing the source tree structure, and all the code. You can then...
EntropyReducer : Reduce Entropy And Obfuscate Youre Payload
EntropyReducer is to reduce the entropy ff youre payload and obfuscate it with serialized linked lists How Does It Work EntropyReducer algorithm is determined by BUFF_SIZE and NULL_BYTES values. The following is how would EntropyReducer organize your payload if BUFF_SIZE was set to 4, and NULL_BYTES to 2. Obfuscation Algorithm EntropyReducer first checks if the input raw payload is of a size that's...
LoaderJsfinder – Fetches JavaScript Files
loaderjsfinder fetches JavaScript files quickly and comprehensively. jsFinder is a command-line tool written in Go that scans web pages to find JavaScript files linked in the HTML source code. It searches for any attribute that can contain a JavaScript file (e.g., src, href, data-main, etc.) and extracts the URLs of the files to a text file. The tool is designed...
NucleiFuzzer = Nuclei + Paramspider + waybackurls + gauplus + hakrawler + katana + Fuzzing Templates
NucleiFuzzer is an advanced automation tool designed to streamline and optimize web application security testing by integrating a suite of powerful URL discovery and vulnerability scanning tools. It combines ParamSpider, Waybackurls, Katana, Gauplus, and Hakrawler to comprehensively gather and enumerate potential entry points for web applications. Leveraging the power of Nuclei, it scans these endpoints using fuzzing-templates to effectively...
Bypass-403 A Simple Script For Bypassing 403
Bypass-403 is a A simple script just made for self use for bypassing 403 It can also be used to compare responses on verious conditions as shown in the below snap Usage ./bypass-403.sh https://example.com admin ./bypass-403.sh website-here path-here Features Use 24 known Bypasses for 403 with the help of curl Installation git clone https://github.com/iamj0ker/bypass-403 cd bypass-403 chmod +x bypass-403.sh sudo apt install figlet - If you are unable to see the...
