artificialguybr/vo3-data
Viewer β’ Updated β’ 114 β’ 5 β’ 2
ArtificialGuy/JV.K
artificialguybr
AI & ML interests
I'm ArtificialGuy π
I'm a AI enthusiast and developer from Brazil. Check and enjoy my models and projects!
Recent Activity
reacted to SeaWolf-AI's post with π₯ about 13 hours ago
π― Chitos β The Security Scanner That Actually Proves It
Most security scanners hand you a suspect list and walk away. That gap between detection and proof is where attackers live β and it's exactly the gap that Chitos was built to close.
Chitos is the successor to Mythos, a static analyzer built for quick code health checks. Mythos was good at pattern matching β spotting dangerous sinks, mapping CWEs, producing readable reports. But static analysis has a structural ceiling. A rule that sees eval(user_input) can tell you that looks dangerous. It cannot tell you whether the input is reachable, whether sanitization three layers up covers this path, or whether there's a live exploit chain for your exact framework version. Chitos was built to answer those questions.
π Phase 1 applies 50 language-agnostic rules across Python, JavaScript, Go, Java, C/C++, Rust, PHP, YAML and more β covering injection sinks, deserialization gadgets, credential leakage, broken crypto, and prototype pollution. Every candidate is re-verified before reaching the report. Findings that can't be substantiated are excluded, not handed to you as noise.
π¬ Phase 2 dispatches an autonomous web-search agent to hunt live CVE databases, exploit advisories, and public PoC repositories. It formulates hypotheses, verifies them, and synthesizes a structured threat narrative. This phase needs a user-supplied Claude API key β Phases 1 and 3 run entirely free.
π― Phase 3 is where Chitos diverges from everything else. Against targets you own or are authorized to test, it fires real payloads β XSS, SQLi, path traversal, command injection β mutates on block, captures hard evidence, and connects every proven finding into a kill-chain showing which vulnerabilities to remediate first.
No installation. No account. No code sent to third-party APIs.
Article: https://huggingface.co/blog/FINAL-Bench/chitos
Try it now π https://chitos.vidraft.net
liked a model 16 days ago
prefeitura-rio/Rio-3.5-Open-397B liked a Space 18 days ago
multimodalart/ZONOS2Organizations
