HN Showcase
Back to browse
How I Built a Security Scanner That Writes its own Exploits

How I Built a Security Scanner That Writes its own Exploits

by valeriobaudo·Mar 17, 2026·2 points·0 comments
Visit ProjectView on HN

AI Analysis

●●●BangerWizardryBig BrainBold Bet

Dual-container testing validates exploits against vulnerable and patched instances before deployment.

Strengths
  • Eight-stage pipeline with quality gates ensures 5/5 vulnerable, 0/5 patched test results
  • WAF bypass variant generation for Cloudflare and other popular setups
  • Solo founder running entire automation on $200/mo Claude Max subscription
Weaknesses
  • Blog post about internal infrastructure, not a standalone tool users can adopt
  • Security scanner category already crowded with established enterprise players
Category
Security
Target Audience

Security engineers, solo security tool founders

Similar To

Snyk · Tenable · Rapid7

Similar Projects

Security●●Solid

MCPShield – Supply chain security scanner for MCP servers

Think “Snyk for MCP configs”: Levenshtein-based typosquat detection, CVE lookups, hardcoded-credential scans and permission checks, plus CI-friendly exit codes. Auto-discovery for clients like Claude, Cursor and VS Code shows practical attention to workflows. It’s an early release — the value hinges on maintaining the package/CVE databases and tuning detection heuristics.

Niche GemShip It
ethanmizrahi
133mo ago