burp-mcp-ultimate
A Burp Suite extension that exposes the entire Montoya API as an MCP server, so an AI agent can actually drive a hunt instead of just summarising proxy history.
Projects
Tools and experiments I build, usually because a hunt or a workflow needed something that didn't exist yet.
AgentBrowser
A browser runtime built for AI agents instead of retrofitted from one: an API that speaks goals, a real visible cursor, per-site memory, and a replayable audit trail.
ProjectTriage
An autonomous, hypothesis-driven pentesting agent that hunts like a researcher rather than a scanner: reasoning modules and scaffolding over a large tool surface.
BountyHound
An autonomous bug bounty research pipeline: five security tools wrapped as job servers behind one MCP entry point, with a validation boundary that keeps an agent from reporting what it never verified.
Somnus
A local-first reverse-engineering orchestrator that drives Ghidra, angr, Frida and AFL++ through a small local model to triage binaries, with no API keys and no network.
PrismLLM
A research exploration into running large mixture-of-experts models on modest hardware: mixed-precision experts, low-rank compression, and predictive expert prefetch.