Skip to content
View Teycir's full-sized avatar
23 followers · 0 following

Achievements

Achievement: StarstruckAchievement: Pull SharkAchievement: YOLO

Achievements

Achievement: StarstruckAchievement: Pull SharkAchievement: YOLO

Block or report Teycir

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Teycir/README.md

⬡ Core Domains

API Security CVE research · OWASP · Burp extensions
Cryptography Circuit audits · SMT validation . E2E encryption
Red team tools Async scanners · SARIF · CVE tooling
Privacy Tools ZK proofs · XChaCha20 · Deniability

⚡ Tech Stack


📊 GitHub Stats



🏆 Active CVE Disclosures

ID Target Severity Vector Status
GHSA-wr6f-c7g2-gmfj circomlib — Underconstrained Decoder ZK circuit logic Published
GHSA-22mg-j6pf-g6v4 zkevm-prover — Unauthenticated gRPC Network exposure Published
Pending zk-email-verify — Signature replay Cross-instance replay Coordinated
Pending eigen-zkvm — FFT missing canonical bound Circuit arithmetic Coordinated

All findings formally validated with Z3/CVC5 SMT solvers before disclosure. No technical details released without a GHSA in place.

🌐 Privacy web applications

Project Description Tech
Timeseal Time-locked encryption vault · Dead Man's Switch · AES-256 split-key TypeScript Next.js CF Workers
Sanctum Zero-trust vault · XChaCha20-Poly1305 · Argon2id · Plausible deniability TypeScript Next.js CF Workers
Ghostreceipt ZK payment proofs · PII redaction · Multi-chain consensus oracle TypeScript Next.js CF Workers
GhostChat True P2P encrypted chat · WebRTC · serverless · self-destructing TypeScript Next.js CF Workers
xmrproof Monero payment verification · 100% client-side TypeScript Next.js CF Workers
TrustCircle File timestamping vault on IPFS TypeScript Next.js CF Workers

🔌 Privacy Chrome Extensions

Project Description Tech
Sanitizit Auto-redact PII before sharing with AI assistants TypeScript
ScrambleText Homoglyph transforms to evade AI/moderation systems TypeScript
LibreWolfTorRouting One-click Tor routing for LibreWolf TypeScript

🛠️ Burp Suite Extensions

Project Description Tech
BurpAPISecuritySuite 15 attack types · 108+ payloads · BOLA/IDOR detection · AI integration · OWASP API Top 10 Python
BurpWpsScan WordPress deep scanning extension Python
BurpCopyIssues Easy issue copy extension Python
BurpComplianceScanner Compliance and regulatory scan automation Python

🔍 Security Scanners & OSINT

Project Description Tech
DiffCatcher Git repo discovery · diff capture · code element extraction Rust
ZkPatternMatcher YAML-pattern vuln detection for ZK circuits Rust
SeekYou OSINT on IP / domain / ASN TypeScript Next.js CF Workers
IotScanner IoT device vulnerability scanner Python
McPwn MCP vulnerability scanner Python
honeypotscan Honeypot token scanner · 13 scam patterns · ETH/Polygon/Arbitrum TypeScript Next.js CF Workers
Checkapis Checks LLM API validity and status in batches then reports TypeScript Next.js CF Workers

🤖 MCP Security

Project Description Tech
McPwn Automated MCP server security scanner · RCE · path traversal · prompt injection · protocol fuzzing · semantic detection · SARIF output Python
burp-mcp-server MCP server for Burp Suite Professional · vulnerability scanning · issue retrieval · HTTP proxying via AI assistants JavaScript
nmap-mcp MCP server for Nmap · stealth recon · vuln/NSE scanning · OS detection · firewall evasion · red team ops Python
nuclei-mcp MCP server for Nuclei · multi-target scanning · severity filtering · template browsing · rate control TypeScript
frida-mcp MCP server for Frida · dynamic instrumentation · SSL pinning bypass · Java/ObjC hooking · mobile red teaming Python
adb-mcp MCP server for Android Debug Bridge · USB/network device control via AI assistants Python
ripgrep-mcp MCP server exposing ripgrep · fast regex code search for AI-driven code audits Python

A suite of MCP servers turning best-in-class security tools into AI-callable primitives — scan, instrument, and audit from any MCP-compatible client.

🔐 ZK POC

Project Description Tech
zklibreports Public ZK audit reports and security analyses Shell
circomlib-exploit PoC for underconstrained Decoder vulnerability Shell
zk-email-verify-exploit PoC for cross-instance signature replay Shell
zkevm-prover-exploit PoC for unauthenticated gRPC exposure Shell
fft-exploit-poc FFT circuit missing canonical bound PoC Shell

Popular repositories Loading

  1. BurpAPISecuritySuite BurpAPISecuritySuite Public

    Burp Suite extension for API security testing with 15 attack types, 108+ payloads, intelligent fuzzing, BOLA/IDOR detection, AI integration, and automated reconnaissance. Supports REST/GraphQL/SOAP…

    Python 69 9

  2. Timeseal Timeseal Public

    Time-locked encryption vault with Dead Man's Switch. Send encrypted messages that unlock at a specific date or auto-release if you go silent. AES-256, split-key crypto, ephemeral seals. Perfect for…

    TypeScript 56 6

  3. Sanctum Sanctum Public

    Zero-trust encrypted vault with cryptographic plausible deniability. Duress-proof storage for activists, journalists, and whistleblowers. RAM-only, IPFS-backed.

    TypeScript 48 5

  4. Mcpwn Mcpwn Public

    Automated security scanner for Model Context Protocol servers that detects RCE, path traversal, prompt injection, and protocol vulnerabilities.

    Python 24 7

  5. BurpCopyIssues BurpCopyIssues Public

    Burp suite extension that lets you easily copy issues

    Python 17 1

  6. GhostChat GhostChat Public

    True peer-to-peer encrypted chat where messages vanish like ghosts. No servers, no storage, no accounts. Messages travel directly via WebRTC and exist only in memory. Self-destructing messages, pan…

    TypeScript 17 5