[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"project-1036":3},{"id":4,"name":5,"fullName":6,"owner":7,"repo":5,"description":8,"homepage":9,"htmlUrl":10,"language":11,"languages":10,"totalLinesOfCode":10,"stars":12,"forks":13,"watchers":14,"openIssues":15,"contributorsCount":15,"subscribersCount":15,"size":15,"stars1d":16,"stars7d":17,"stars30d":18,"stars90d":15,"forks30d":15,"starsTrendScore":17,"compositeScore":19,"rankGlobal":10,"rankLanguage":10,"license":20,"archived":21,"fork":21,"defaultBranch":22,"hasWiki":23,"hasPages":23,"topics":24,"createdAt":10,"pushedAt":10,"updatedAt":44,"readmeContent":45,"aiSummary":46,"trendingCount":15,"starSnapshotCount":15,"syncStatus":47,"lastSyncTime":48,"discoverSource":49},1036,"DeepZero","416rehman\u002FDeepZero","416rehman","Find zero-days while you sleep. DeepZero is an automated vulnerability research framework that parses, decompiles, and analyzes thousands of Windows kernel drivers for exploitable IOCTLs natively using AI agents.","http:\u002F\u002Fblog.ahmadz.ai\u002FDeepZero\u002F",null,"Python",477,61,4,0,1,3,81,56.98,"MIT License",false,"main",true,[25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43],"ai","ai-agents","automated-analysis","cybersecurity","deep-agents","deepzero","exploit-development","kernel-drivers","langchain","llm","pipeline","python","reverse-engineering","semgrep","vertex","vertex-ai","vulnerability-research","windows-kernel","zero-day","2026-06-12 04:00:07","\u003Cdiv align=\"center\">\n  \u003Cbr>\n  \u003Cimg src=\".github\u002Fbanner.svg\" alt=\"DeepZero\" width=\"700\">\n  \u003Cbr>\u003Cbr>\n  \u003Cp>\u003Cb>Automated vulnerability research pipeline engine\u003C\u002Fb>\u003C\u002Fp>\n  \u003Cp>Define pipelines as YAML. DeepZero handles orchestration, parallelism, fault tolerance, and state.\u003C\u002Fp>\n  \u003Cp>\n    \u003Ca href=\"https:\u002F\u002Fgithub.com\u002F416rehman\u002FDeepZero\u002Factions\">\u003Cimg src=\"https:\u002F\u002Fimg.shields.io\u002Fgithub\u002Factions\u002Fworkflow\u002Fstatus\u002F416rehman\u002FDeepZero\u002Fci.yml?branch=main&style=flat-square\" alt=\"CI\">\u003C\u002Fa>\n    \u003Ca href=\"https:\u002F\u002Fgithub.com\u002F416rehman\u002FDeepZero\u002Fblob\u002Fmain\u002FLICENSE\">\u003Cimg src=\"https:\u002F\u002Fimg.shields.io\u002Fgithub\u002Flicense\u002F416rehman\u002FDeepZero?style=flat-square\" alt=\"License\">\u003C\u002Fa>\n    \u003Ca href=\"https:\u002F\u002Fblog.ahmadz.ai\u002FDeepZero\u002F\">\u003Cimg src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002Fdocs-DeepZero-orange?style=flat-square\" alt=\"Docs\">\u003C\u002Fa>\n    \u003Cimg src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002Fpython-3.11+-blue?style=flat-square\" alt=\"Python\">\n    \u003Cimg src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002Fplatform-windows%20%7C%20linux-lightgrey?style=flat-square\" alt=\"Platform\">\n  \u003C\u002Fp>\n\u003C\u002Fdiv>\n\n\u003Cbr>\n\n\u003Cdiv align=\"center\">\n  \u003Cimg src=\".github\u002Fterminal.svg\" alt=\"DeepZero terminal dashboard\" width=\"700\">\n\u003C\u002Fdiv>\n\n\u003Cbr>\n\n\u003Cdiv align=\"center\">\n  \u003Cb>English\u003C\u002Fb> | \u003Ca href=\"README.zh-CN.md\">简体中文\u003C\u002Fa> | \u003Ca href=\"README.fr.md\">Français\u003C\u002Fa>\n\u003C\u002Fdiv>\n\n\u003Cbr>\n\n- 🔗 **Pipeline-as-YAML** - chain ingest, filter, transform, and LLM-assess stages declaratively\n- ⚡ **Parallel execution** - ThreadPoolExecutor with configurable concurrency per stage\n- 💾 **Resumable runs** - atomic per-sample state on disk; Ctrl+C and re-run to pick up where you left off\n- 🤖 **LLM integration** - Jinja2 prompt templates with any LLM provider via [LiteLLM](https:\u002F\u002Fgithub.com\u002FBerriAI\u002Flitellm)\n- 🌐 **REST API (WIP)** - query run state and sample data over HTTP (currently experimental and incomplete)\n- 🧩 **Extensible** - write custom processors as Python classes, reference them by path in YAML\n\n---\n\n## 📚 Documentation\n\nDeepZero features extensive, exhaustive documentation covering architecture, pipeline schemas, CLI references, and custom processor development. \n\n👉 **[Read the Official Documentation here](https:\u002F\u002Fblog.ahmadz.ai\u002FDeepZero\u002F)**\n\n---\n\n## ⚡️ Quickstart\n\nDeepZero requires a target corpus of files to analyze and a pipeline configuration detailing how to process them. \n\n1. **Clone & Install (Python 3.11+)**\n   ```bash\n   git clone https:\u002F\u002Fgithub.com\u002F416rehman\u002FDeepZero.git\n   cd DeepZero\n   pip install -e .\n   ```\n\n2. **Configure Environment**\n   ```bash\n   cp .env.example .env\n   ```\n\n3. **Run a Pipeline**\n   ```bash\n   deepzero run C:\\drivers -p .\\pipelines\\loldrivers\\pipeline.yaml\n   ```\n\nFor detailed setup instructions and example corpora, see the [Quickstart Documentation](https:\u002F\u002Fblog.ahmadz.ai\u002FDeepZero\u002Fen\u002Foverview\u002Fquickstart.html).\n\n---\n\n## 📁 Repository Structure\n\n```\nsrc\u002Fdeepzero\u002F\n├── api\u002F                 # REST API (starlette)\n├── engine\u002F              # orchestration, state persistence, pipeline execution\n└── stages\u002F              # built-in processors (map, reduce, ingest)\n\nprocessors\u002F              # external processors (shipped as examples)\n├── ghidra_decompile\u002F    # ghidra headless decompiler (MapProcessor)\n├── loldrivers_filter\u002F   # loldrivers.io hash exclusion filter (MapProcessor)\n├── pe_ingest\u002F           # PE header parser and driver metadata extractor (IngestProcessor)\n└── semgrep_scanner\u002F     # semgrep batch scanner (BulkMapProcessor)\n\npipelines\u002F\n└── loldrivers\u002F          # BYOVD kernel driver vulnerability research pipeline\n    ├── pipeline.yaml\n    ├── assessment.j2    # LLM prompt template\n    └── rules\u002F           # semgrep rules\n\ndocs\u002F                    # Jekyll-based GitHub Pages documentation\ntests\u002F                   # pytest suite\n```\n\n---\n\n## 🤝 Contributing\n\nCI runs on Python 3.11 and 3.12 via GitHub Actions.\n\nRun linting and security checks before submitting:\n\n```bash\nruff check . && ruff format --check . && bandit -ll -ii -c pyproject.toml -r .\n```\n\nPlease refer to the [Contributing Guide](CONTRIBUTING.md) and the [Code of Conduct](CODE_OF_CONDUCT.md) before submitting pull requests.\n\n---\n\n## 📄 License\n\nDeepZero is released under the [MIT License](LICENSE).\n","DeepZero 是一个自动化漏洞研究框架，能够解析、反编译并分析数千个 Windows 内核驱动程序中的可利用 IOCTL，使用 AI 代理进行原生处理。其核心功能包括通过 YAML 定义的流水线、并行执行、断点续跑以及与语言模型的集成等，使得安全研究人员能够高效地发现零日漏洞。该工具适合于需要对大量二进制文件进行自动化分析以寻找潜在安全威胁的情景下使用，如企业内部的安全审计或专业红队操作中。项目基于 Python 构建，并采用 MIT 许可证开源。",2,"2026-06-11 02:41:14","CREATED_QUERY"]