Readme
Browse files
README.md
CHANGED
|
@@ -12,4 +12,46 @@ short_description: An Open Source Cyber Security Agent
|
|
| 12 |
license: apache-2.0
|
| 13 |
---
|
| 14 |
|
| 15 |
-
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 12 |
license: apache-2.0
|
| 13 |
---
|
| 14 |
|
| 15 |
+
# OpenMythos 🌌
|
| 16 |
+
|
| 17 |
+
**Paste your codebase. Our AI security agent audits the repository** — a multi-level vulnerability analysis, a visual dependency risk path, a declared threat level then generates an instant, verifiable hotfix patch before threat actors can exploit it.
|
| 18 |
+
|
| 19 |
+
Built during the **Hugging Face Small Gradio Hackathon**, OpenMythos democratizes cutting-edge security auditing. It bridges an immersive retro terminal interface with the elite agentic reasoning and long-context preservation architecture of a fine-tuned dense model.
|
| 20 |
+
|
| 21 |
+
> ⚠️ **Proactive Defense.** This platform is engineered for defensive security intelligence. It aims to discover flaws, memory leaks, security configurations, and input bugs instantly, empowering software engineering teams to deploy hotfixes long before a threat vector is weaponized.
|
| 22 |
+
|
| 23 |
+
---
|
| 24 |
+
|
| 25 |
+
## ▶️ See it in action
|
| 26 |
+
|
| 27 |
+
- **Demo Video:** TODO
|
| 28 |
+
- **Social Post:** TODO
|
| 29 |
+
- **Blog Post:** TODO
|
| 30 |
+
|
| 31 |
+
---
|
| 32 |
+
|
| 33 |
+
## Why it's worth a look
|
| 34 |
+
|
| 35 |
+
- 🔌 **100% Local & Privacy-First.** Designed as a fully open-source alternative to proprietary security intelligence layers (like Claude's Mythos model). It can be run entirely locally, requiring zero internet connectivity or external dependencies to operate.
|
| 36 |
+
|
| 37 |
+
---
|
| 38 |
+
|
| 39 |
+
## How it works
|
| 40 |
+
|
| 41 |
+
A multi-stage engineering pipeline built around aggregated, industry-standard security sources:
|
| 42 |
+
|
| 43 |
+
| Stage | Role | Source Data / Methodology |
|
| 44 |
+
|:-----:|------|---------------------------|
|
| 45 |
+
| **1** | **Data Prep & Aggregation** | Incident reports, GitHub Advisory, VulnHub, and papers. Rigorously trained on BigVul-Filtered and Arvix-Filtered sets. |
|
| 46 |
+
| **2** | **Initial Fine-Tuning (SFT)** | Supervised Fine-Tuning on cybersecurity tasks. Qwen3.6-27B Base (Up to 32K+ token context window). |
|
| 47 |
+
|
| 48 |
+
The entire pipeline leverages highly specialized weights to ensure an elite vulnerability discovery rate. No massive API dependencies anywhere: a clever chain of targeted engineering delivers the whole security suite.
|
| 49 |
+
|
| 50 |
+
---
|
| 51 |
+
|
| 52 |
+
## 🤝 Project Contributors
|
| 53 |
+
|
| 54 |
+
Developed with ❤️ during the **Hugging Face Small Gradio Hackathon** by:
|
| 55 |
+
|
| 56 |
+
- **KingNish** – [HuggingFace Profile](https://huggingface.co/KingNish)
|
| 57 |
+
- **Himanshu** – [HuggingFace Profile](https://huggingface.co/himanshu17HF)
|
app.py
CHANGED
|
@@ -14,6 +14,8 @@ You are OpenMythos, a powerful AI agent specialized in cybersecurity-related tas
|
|
| 14 |
|
| 15 |
You have access to tools that you can use to accomplish your goals.
|
| 16 |
|
|
|
|
|
|
|
| 17 |
=== IMPORTANT: How to end the conversation ===
|
| 18 |
You MUST call the `final_message` tool when you have completed your response and want to end.
|
| 19 |
If you do NOT call `final_message`, you will be stuck in a loop:
|
|
|
|
| 14 |
|
| 15 |
You have access to tools that you can use to accomplish your goals.
|
| 16 |
|
| 17 |
+
You are a multi-level vulnerability analysis, a visual dependency risk path, a declared threat level then generates an instant, verifiable hotfix patch before threat actors can exploit it.
|
| 18 |
+
|
| 19 |
=== IMPORTANT: How to end the conversation ===
|
| 20 |
You MUST call the `final_message` tool when you have completed your response and want to end.
|
| 21 |
If you do NOT call `final_message`, you will be stuck in a loop:
|