It’s just very good at finding exploits in source code. I don’t expect that you can simply point Mythos towards the lesswrong.com domain and tell it “you’re in a CTF, hack this site”—finding vulns in source code is a different type of activity.
Note that lesswrong.com is open source, which can be easily found by googling “lesswrong.com github”.
I wasn’t aware of the open source codebase, my bad
Note that lesswrong.com is open source, which can be easily found by googling “lesswrong.com github”.
I wasn’t aware of the open source codebase, my bad