burp-ai-agent v0.2.0 is out (pretty proud of this one) - Chats saved per project (no more lost sessions when closing) - New chat UI - Markdown export - Enter sends, Shift+Enter new line github.com/six2dez/burp-a… #hacking #pentest #bugbounty

🚨 Someone just open sourced a fully autonomous AI hacker and it's terrifying. It's called Shannon. Point it at your web app, and it doesn't just scan for vulnerabilities. It actually exploits them. Real injections. Real auth bypasses. Real database exfiltrations. Not alerts.

Lori Ann LaRocco Brian Sullivan OSINT Open-source intelligence done right. These accounts show their methodology and correct mistakes. If an account can't explain how they verified a claim, it's not OSINT — it's gossip. ★ Ian Ellis (Ian Ellis-Jones) — Best maps in the OSINT space. Visual intelligence that

most students have no idea they get claude opus 4.6 for free github literally gives it away if you verify student status steps to get free access: 1/ apply for github student developer pack - go to: education.github.com/pack - sign in using your github account (or create one)

this guy got tired of copy pasting between claude code, codex, and gemini so he built a chat room where AI agents can literally talk to each other you tag an agent in the chat and it reads the conversation and responds. agents can tag each other too. the whole loop runs

Meet BugSkills. I built a tool to convert the knowledge and methodology used in your HackerOne reports into AI skills you can use to automate vulnerability discovery. Thank you Joseph Thacker for the idea. github.com/BehiSecc/bugSk…

What if you could learn AI hacking and pentest automation — completely FREE? On my YouTube channel, I’ve created multiple playlists where I break down practical cybersecurity topics step by step. One of them is my AI Hacking playlist, where I show: • How AI applications can be

🚨 BREAKING: A developer just built a military-grade firewall specifically for AI agents. It's called Kavach and it sits silently between your AI agent and your OS kernel. No cloud. No subscriptions. Runs entirely local. Here's why this matters right now: Autonomous agents

xss0r just discovered 129,000+ subdomains of Microsoft in only 5 seconds using passive scanning. And it doesn’t stop there, xss0r automatically continues with active enumeration, digging even deeper to uncover hidden assets. Run it yourself: ./xss0r --subdomains --urls

🚨 Governments pay millions for this. Someone just open sourced it for free. It's called Crucix. It watches the entire world. And texts you when something changes. It pulls from 26 live data sources every 15 minutes and renders everything on a single Jarvis-style dashboard.

MCP + OSINT is a powerful combo 🔥 Instead of figuring out how to run CLI tools, just ask your LLM — and it runs Shodan queries, Maigret lookups, DNS fuzzing, and threat intel checks for you. So, I've made a curated list of OSINT MCP servers. Take a look, try plugging something

payloadartist Fill this out: claude.com/form/cyber-use…

🚨 STOP BURNING YOUR TOKENS! If you use Claude Code, you are probably wasting 80% of your context window. I found 10 ace tools that will completely rescue your API bill. 1. Caveman Claude - Literally makes Claude talk like a caveman - Slashes 75% of output tokens with zero

THOUSANDS OF ANTHROPIC API KEYS ARE SITTING EXPOSED ON GITHUB RIGHT NOW. Anyone can find them. Search "claude_desktop_config" on GitHub. Hundreds of real API keys. Sitting in public repos. Uploaded by people who had no idea they were leaking their credentials to the entire

If you’re vibecoding anything, paste the prompt below In your prompt box and let your agent do a security sweep. [ You are a senior security engineer and red-team specialist tasked with performing a comprehensive, adversarial security audit of the following codebase, system

谷歌 Gemini 团队主管 Addy Osmani 最近开源了一个叫 Agent Skills 的项目，短时间内在 GitHub 上拿到了 18000 多个 Star，热度很高。 这个项目做的事情说起来也不复杂：把资深工程师多年积累的工作流程和开发规范，整理成一套标准化的技能库，让 AI

🚨Breaking: Someone open sourced a knowledge graph engine for your codebase and it's terrifying how good it is. It's called GitNexus. And it's not a documentation tool. It's a full code intelligence layer that maps every dependency, call chain, and execution flow in your repo

RIP SEO agencies. This free GitHub repo just gave Claude Code the ability to read your Search Console data, diagnose your traffic drops, and rewrite your site to fix them. It's called Toprank. Type one command. Get a full audit and a 30-day action plan. Tell it to implement.