pentesting 0.1.0 → 0.1.2

package/README.md

@@ -1,210 +1,167 @@
-# Pentest
+# Pentesting
 
-Autonomous Penetration Testing AI Agent.
+> 🎯 DEF CON-level Autonomous Penetration Testing AI Agent
 
-```
-██████╗ ███████╗███╗   ██╗████████╗███████╗███████╗████████╗
-██╔══██╗██╔════╝████╗  ██║╚══██╔══╝██╔════╝██╔════╝╚══██╔══╝
-██████╔╝█████╗  ██╔██╗ ██║   ██║   █████╗  ███████╗   ██║   
-██╔═══╝ ██╔══╝  ██║╚██╗██║   ██║   ██╔══╝  ╚════██║   ██║   
-██║     ███████╗██║ ╚████║   ██║   ███████╗███████║   ██║   
-╚═╝     ╚══════╝╚═╝  ╚═══╝   ╚═╝   ╚══════╝╚══════╝   ╚═╝   
-```
-
-## Features
+<p align="center">
+  <img src="assets/logo.png" alt="Pentesting Logo" width="200"/>
+</p>
 
-- **Autonomous AI Agent**: Analyzes, plans, executes tools, and interprets results automatically
-- **PTES Methodology**: Systematic penetration testing following industry standards
-- **30+ Integrated Tools**: Nmap, SQLmap, Metasploit, Burp Suite, and more
-- **Privilege Escalation**: Built-in Linux/Windows rooting techniques
-- **Rabbit Hole Detection**: Self-reflection when stuck, tries alternative approaches
-- **Real-time Thinking Display**: Watch the agent's thought process in TUI
+[![npm version](https://badge.fury.io/js/pentesting.svg)](https://www.npmjs.com/package/pentesting)
+[![Docker](https://img.shields.io/badge/Docker-pentesting--tools-blue)](https://hub.docker.com/r/agnusdei1207/pentesting-tools)
 
-## Requirements
+## Features
 
-- Node.js 18+
-- Anthropic API Key
-- Kali Linux or macOS (for pentesting tools)
+- **7-Phase Workflow**: Recon → Enum → Vuln Analysis → Exploitation → PrivEsc → Lateral → Reporting
+- **Parallel Agent Orchestration**: 2-4 specialized agents working simultaneously
+- **Ralph-Style Loops**: Self-referential iteration until objective completion
+- **Confidence Scoring**: Findings rated 0-100 to filter false positives
+- **MCP Integration**: Model Context Protocol for extended tool capabilities
+- **Docker Toolkit**: 50+ pre-installed pentesting tools
 
-## Installation
+## Quick Start
 
-### 1. Clone and Install
+### Install
 
 ```bash
-git clone https://github.com/agnusdei1207/pentesting.git
-cd pentesting
-npm install
+npm install -g pentesting
 ```
 
-### 2. Install SecLists and Wordlists
+### Configure
 
 ```bash
-# SecLists (required for directory bruteforce, fuzzing, etc.)
-git clone --depth 1 https://github.com/danielmiessler/SecLists.git /opt/SecLists
-
-# Alternative: Using apt (Kali/Debian)
-sudo apt install -y seclists
-
-# RockYou wordlist (for password cracking)
-sudo apt install -y wordlists
-sudo gunzip /usr/share/wordlists/rockyou.txt.gz 2>/dev/null || true
+export ANTHROPIC_API_KEY=your_api_key
 ```
 
-### 3. Install Pentest Tools
+### Run
 
 ```bash
-# Core tools
-sudo apt install -y nmap masscan gobuster nikto sqlmap hydra john hashcat
-
-# Web tools
-sudo apt install -y ffuf nuclei whatweb wfuzz
-
-# Exploitation
-sudo apt install -y metasploit-framework exploitdb
-
-# Post-exploitation
-sudo apt install -y crackmapexec evil-winrm impacket-scripts chisel
-
-# Browser automation
-npm install -g playwright
-npx playwright install chromium
+pentesting
+# or
+npx pentesting
 ```
 
-### 4. Set API Key
+## Docker Environment
 
 ```bash
-export ANTHROPIC_API_KEY="your-api-key"
-```
+# Pull pre-built toolkit (50+ tools)
+docker pull agnusdei1207/pentesting-tools:latest
 
-## Build
+# Run with host network (required for target access)
+docker run -d --name pentesting-tools --network host \
+  -v $(pwd)/workspace:/pentest \
+  agnusdei1207/pentesting-tools:latest
 
-```bash
-npm run build
+# Execute tools
+docker exec -it pentesting-tools nmap -sCV 10.0.0.1
 ```
 
-## Global Installation
+## Plugin System
+
+Based on Claude-Code plugin architecture:
 
-```bash
-npm run build
-npm link
+```
+plugins/pentesting-core/
+├── agents/           # 9 specialized AI agents
+├── commands/         # 5 slash commands
+├── hooks/            # Event handlers
+└── skills/           # 9 domain skills
 ```
 
-Now you can run `pentesting` from anywhere.
+### Agents
 
-## Usage
+| Agent | Specialty |
+|-------|-----------|
+| target-explorer | Reconnaissance |
+| exploit-researcher | CVE/Exploit research |
+| privesc-master | Privilege escalation |
+| web-hacker | OWASP Top 10 |
+| crypto-solver | Cryptography |
+| forensics-analyst | Digital forensics |
+| reverse-engineer | Binary analysis |
+| attack-architect | Strategy planning |
+| finding-reviewer | Validation |
 
-### Quick Start
+### Commands
 
 ```bash
-# Interactive mode
-pentesting
-
-# With target
-pentesting -t 192.168.1.1
-
-# Auto-approve all tools (dangerous!)
-pentesting --dangerously-skip-permissions
+/pentest-loop <target> <objective>    # Autonomous attack loop
+/scan <target>                         # Quick enumeration
+/exploit <query>                       # Search/run exploits
+/vuln-review                          # Review findings
 ```
 
-### CLI Commands
-
-| Command | Description |
-|---------|-------------|
-| `pentesting` | Start interactive TUI |
-| `pentesting -t <ip>` | Start with target |
-| `pentesting --dangerously-skip-permissions` | Auto-approve all tool executions |
-| `pentesting run <objective>` | Run single objective |
-| `pentesting scan <target>` | Quick scan target |
+## Architecture
 
-### Interactive Commands
+```
+┌──────────────────────────────────────────────────────────────┐
+│                  AutonomousHackingAgent                      │
+├──────────────────────────────────────────────────────────────┤
+│  ┌─────────────┐  ┌─────────────┐  ┌─────────────┐          │
+│  │   Claude    │  │   Plugin    │  │    MCP      │          │
+│  │    API      │  │   System    │  │   Client    │          │
+│  └─────────────┘  └─────────────┘  └─────────────┘          │
+│         │                │                │                  │
+│  ┌──────┴────────────────┴────────────────┴───────┐         │
+│  │              Tool Executor                       │         │
+│  │  (bash, nmap, sqlmap, msfconsole, etc.)        │         │
+│  └─────────────────────────────────────────────────┘         │
+├──────────────────────────────────────────────────────────────┤
+│  Hook System │ Command Parser │ Web Search │ Agents         │
+└──────────────────────────────────────────────────────────────┘
+```
 
-| Command | Description |
-|---------|-------------|
-| `/target <ip>` | Set target IP or hostname |
-| `/start` | Start autonomous mode |
-| `/start <objective>` | Start with specific objective |
-| `/hint <text>` | Provide hint to agent |
-| `/pause` | Pause execution |
-| `/resume` | Resume execution |
-| `/findings` | Show discovered vulnerabilities |
-| `/reset` | Reset session |
+## Configuration
+
+### MCP Servers
+
+Create `.pentest/mcp.json`:
+
+```json
+{
+  "mcpServers": {
+    "filesystem": {
+      "command": "npx",
+      "args": ["-y", "@modelcontextprotocol/server-filesystem", "/"]
+    },
+    "pentesting-tools": {
+      "command": "docker",
+      "args": ["exec", "-i", "pentesting-tools", "/bin/bash"]
+    }
+  }
+}
+```
 
-### Keyboard Shortcuts
+### Environment Variables
 
-| Key | Action |
-|-----|--------|
-| `T` | Toggle thought display |
-| `P` | Pause |
-| `R` | Resume |
-| `Ctrl+C` | Exit |
+| Variable | Description | Default |
+|----------|-------------|---------|
+| ANTHROPIC_API_KEY | Claude API key | Required |
+| PENTEST_MODEL | Claude model | claude-sonnet-4-20250514 |
+| PENTEST_MAX_TOKENS | Max response tokens | 8192 |
 
-### Examples
+## Development
 
 ```bash
-# Full autonomous mode (auto-approve everything)
-pentesting --dangerously-skip-permissions -t 10.10.10.5
-
-# Run specific objective
-pentesting run "Find SQL injection vulnerabilities" -t http://target.com -o report.json
-
-# Quick vulnerability scan
-pentesting scan 192.168.1.1 -s vuln
-```
-
-## Attack Phases
+# Clone
+git clone https://github.com/agnusdei1207/pentesting.git
+cd pentesting
 
-1. **Reconnaissance** - OSINT, DNS, subdomain enumeration
-2. **Scanning** - Port scanning, service detection
-3. **Enumeration** - Deep service enumeration, user discovery
-4. **Vulnerability Analysis** - CVE mapping, vulnerability scanning
-5. **Exploitation** - Initial access, web attacks
-6. **Privilege Escalation** - Linux/Windows rooting
-7. **Pivoting** - Internal network discovery, tunneling
-8. **Persistence** - Backdoor installation
-9. **Data Exfiltration** - Sensitive data extraction
-10. **Reporting** - Findings documentation
+# Install
+npm install
 
-## Project Structure
+# Build
+npm run build
 
+# Dev mode
+npm run dev
 ```
-pentesting/
-├── src/
-│   ├── cli/                    # TUI components
-│   ├── config/                 # Constants, theme
-│   ├── core/
-│   │   ├── agent/              # Autonomous agent
-│   │   ├── prompts/            # AI prompts
-│   │   └── tools/              # Tool definitions
-│   └── mcp/                    # MCP server config
-├── skills/                     # Pentest skill files
-└── dist/                       # Build output
-```
-
-## Integrated Tools
-
-| Category | Tools |
-|----------|-------|
-| Reconnaissance | nmap, masscan, rustscan, theHarvester, amass |
-| Web | gobuster, ffuf, nikto, sqlmap, nuclei |
-| Exploitation | metasploit, searchsploit, hydra |
-| PrivEsc | linpeas, winpeas, mimikatz, bloodhound |
-| Post-Exploit | chisel, impacket, crackmapexec |
-
-## Environment Variables
-
-| Variable | Description |
-|----------|-------------|
-| `ANTHROPIC_API_KEY` | Anthropic API key (required) |
-| `PENTEST_MODEL` | Model override (default: claude-sonnet-4-20250514) |
 
-## Disclaimer
+## Legal
 
-**This tool is for authorized penetration testing and security research only.**
+⚠️ **Only use on systems you own or have explicit permission to test.**
 
-- Always obtain written permission before testing
-- Unauthorized testing is illegal
-- Developers are not responsible for misuse
+This tool is for authorized penetration testing and CTF competitions only.
 
 ## License
 
-MIT License
+MIT