Bugbunny:保护 VibeCoded 应用程序的安全性
安全性一直以来都是一个被忽视的问题,尤其是在当前的Vibe编码趋势下。我花了一年的时间开发了一款针对Vibe编码应用的自主渗透测试代理,现在您无需再等待数天或花费数千美元来审核您的应用。我使用该代理在大型生产系统中检测漏洞,并成功发现了超过15个CVE(公共漏洞和暴露)。以下是一些例子:
- CVE-2025-58434 (9.8/10) - Flowise 完全账户接管
- CVE-2025-61622 (9.8/10) - Apache Pyfory 远程代码执行
还有更多待处理的CVE。
目前,该服务处于测试阶段,我正在寻求反馈,任何人都可以免费对其Vibe编码应用进行渗透测试。
网址是:bugbunny.ai
如果您觉得这个工具有用,请告诉我您的想法。
查看原文
Security has always been an after thought, especially with the current vibecoding trend. I have spent the past year working on an autonomous pentest agent for vibe coded apps, now you do not need to wait for days or spend thousands to get your app audited. I have used the agent to detect vulnerabilities in large production systems and have been able to get over 15 CVEs in the process. some examples below<p>CVE-2025-58434 (9.8/10) - Flowise Full Account take over<p>CVE-2025-61622 (9.8/10) - Apache Pyfory RCE<p>A lot more pending CVEs.<p>Right now the service is currently in beta stage, I am currently seeking feedback and its free for anyone to pentest there vibe coded app<p>The URL is: bugbunny.ai<p>Please let me know what you think if you find it useful.