Veilgate – Deception proxy

In my day job I do pentest almost everyday and now we are actually using AI agents against real targets like banks, fintech, and saas those are behind paid waf and multilayered infra still just a LLMloop was breaking everything, and the raise of opensource agents are autonomously doing all the pentest without any intervention tools like strix, CAI, hexStrix, people just buy tokens and run pentest now a day even i made a mobile agent loop for my office work. Even the waf methods became old now a simple block won’t stop AI agents from bypassing or trying on other routes even spa application are victim in both blackbox and greybox assessment. So I have built and open sourced it which is called veilgate where it will not block rather have three diff modes observe(scoring each req), challenge(proof of work) and trapit(honeypot) it won’t block any req rather keep on loop and feeding fake vulnerabilities. submitted by /u/deffer_function [link] [comments]Technical Information Security Content & DiscussionRead More