pentesting 0.1.10 → 0.1.12

package/dist/index.js

@@ -200,10 +200,139 @@ Analyze your situation honestly:
 
 Based on this reflection, propose 3 completely different approaches to try next.`;
 
+// src/config/agent-constants.ts
+var AGENT_STATUS = {
+  IDLE: "idle",
+  RUNNING: "running",
+  PAUSED: "paused",
+  STUCK: "stuck",
+  WAITING_INPUT: "waiting_input",
+  COMPLETED: "completed"
+};
+var PHASE_ID = {
+  RECON: "recon",
+  SCAN: "scan",
+  ENUM: "enum",
+  VULN: "vuln",
+  EXPLOIT: "exploit",
+  PRIVESC: "privesc",
+  PIVOT: "pivot",
+  PERSIST: "persist",
+  EXFIL: "exfil",
+  REPORT: "report"
+};
+var PHASE_STATUS = {
+  PENDING: "pending",
+  IN_PROGRESS: "in_progress",
+  COMPLETED: "completed",
+  FAILED: "failed",
+  SKIPPED: "skipped"
+};
+var THOUGHT_TYPE = {
+  OBSERVATION: "observation",
+  HYPOTHESIS: "hypothesis",
+  PLAN: "plan",
+  ACTION: "action",
+  RESULT: "result",
+  REFLECTION: "reflection",
+  STUCK: "stuck",
+  BREAKTHROUGH: "breakthrough"
+};
+var AGENT_EVENT = {
+  // Lifecycle
+  PLUGINS_LOADED: "plugins_loaded",
+  HOOKS_LOADED: "hooks_loaded",
+  COMMANDS_LOADED: "commands_loaded",
+  MCP_SERVER_ADDED: "mcp_server_added",
+  // Execution
+  ITERATION: "iteration",
+  THOUGHT: "thought",
+  RESPONSE: "response",
+  TOOL_CALL: "tool_call",
+  TOOL_RESULT: "tool_result",
+  COMMAND_EXECUTE: "command_execute",
+  // State changes
+  TARGET_SET: "target_set",
+  PHASE_CHANGE: "phase_change",
+  AGENT_SWITCH: "agent_switch",
+  PAUSED: "paused",
+  RESUMED: "resumed",
+  RESET: "reset",
+  // Discoveries
+  FINDING: "finding",
+  CREDENTIAL: "credential",
+  COMPROMISED: "compromised",
+  // Completion
+  COMPLETE: "complete",
+  REPORT: "report",
+  ERROR: "error",
+  HINT_RECEIVED: "hint_received"
+};
+var CLI_COMMAND = {
+  HELP: "help",
+  TARGET: "target",
+  START: "start",
+  STOP: "stop",
+  FINDINGS: "findings",
+  CLEAR: "clear",
+  EXIT: "exit"
+};
+var MESSAGE_TYPE = {
+  USER: "user",
+  ASSISTANT: "assistant",
+  TOOL: "tool",
+  THINKING: "thinking",
+  ERROR: "error",
+  SYSTEM: "system",
+  RESULT: "result"
+};
+var TOOL_NAME = {
+  // System
+  BASH: "bash",
+  READ_FILE: "read_file",
+  WRITE_FILE: "write_file",
+  LIST_DIRECTORY: "list_directory",
+  // Network
+  NMAP_SCAN: "nmap_scan",
+  TCPDUMP_CAPTURE: "tcpdump_capture",
+  // Web
+  WEB_REQUEST: "web_request",
+  DIRECTORY_BRUTEFORCE: "directory_bruteforce",
+  SQL_INJECTION: "sql_injection",
+  BROWSER_AUTOMATION: "browser_automation",
+  // Exploit
+  SEARCHSPLOIT: "searchsploit",
+  METASPLOIT: "metasploit",
+  GENERATE_PAYLOAD: "generate_payload",
+  // Credential
+  BRUTEFORCE_LOGIN: "bruteforce_login",
+  CRACK_HASH: "crack_hash",
+  DUMP_CREDENTIALS: "dump_credentials",
+  // Privilege Escalation
+  CHECK_SUDO: "check_sudo",
+  FIND_SUID: "find_suid",
+  RUN_PRIVESC_ENUM: "run_privesc_enum",
+  // Post-Exploitation
+  SETUP_TUNNEL: "setup_tunnel",
+  LATERAL_MOVEMENT: "lateral_movement",
+  // Reporting
+  REPORT_FINDING: "report_finding",
+  TAKE_SCREENSHOT: "take_screenshot"
+};
+var SENSITIVE_TOOLS = [
+  TOOL_NAME.WRITE_FILE,
+  TOOL_NAME.BRUTEFORCE_LOGIN,
+  TOOL_NAME.METASPLOIT,
+  TOOL_NAME.SQL_INJECTION,
+  TOOL_NAME.DUMP_CREDENTIALS,
+  TOOL_NAME.GENERATE_PAYLOAD,
+  TOOL_NAME.LATERAL_MOVEMENT
+];
+
 // src/core/tools/tool-definitions.ts
 var SYSTEM_TOOLS = [
   {
-    name: "bash",
+    name: TOOL_NAME.BASH,
     description: `Execute any bash command. This is your primary tool for interacting with the system.
     
 IMPORTANT:
@@ -224,7 +353,7 @@ IMPORTANT:
     }
   },
   {
-    name: "read_file",
+    name: TOOL_NAME.READ_FILE,
     description: "Read file contents. Use for configs, source code, logs, data files.",
     input_schema: {
       type: "object",
@@ -237,7 +366,7 @@ IMPORTANT:
     }
   },
   {
-    name: "write_file",
+    name: TOOL_NAME.WRITE_FILE,
     description: "Write content to file. Use for scripts, payloads, configs, reports.",
     input_schema: {
       type: "object",
@@ -250,7 +379,7 @@ IMPORTANT:
     }
   },
   {
-    name: "list_directory",
+    name: TOOL_NAME.LIST_DIRECTORY,
     description: "List directory contents with file details.",
     input_schema: {
       type: "object",
@@ -265,7 +394,7 @@ IMPORTANT:
 ];
 var NETWORK_TOOLS = [
   {
-    name: "nmap_scan",
+    name: TOOL_NAME.NMAP_SCAN,
     description: `Network scanning with nmap.
     
 SCAN TYPES:
@@ -294,7 +423,7 @@ SCAN TYPES:
     }
   },
   {
-    name: "tcpdump_capture",
+    name: TOOL_NAME.TCPDUMP_CAPTURE,
     description: `Capture network traffic with tcpdump.
     
 Use for:
@@ -317,7 +446,7 @@ Use for:
 ];
 var WEB_TOOLS = [
   {
-    name: "web_request",
+    name: TOOL_NAME.WEB_REQUEST,
     description: `Make HTTP requests with full control. Use curl under the hood.
     
 Use for:
@@ -340,7 +469,7 @@ Use for:
     }
   },
   {
-    name: "directory_bruteforce",
+    name: TOOL_NAME.DIRECTORY_BRUTEFORCE,
     description: `Directory/file bruteforcing with gobuster or ffuf.
     
 MODES:
@@ -361,7 +490,7 @@ MODES:
     }
   },
   {
-    name: "sql_injection",
+    name: TOOL_NAME.SQL_INJECTION,
     description: `SQL injection testing with sqlmap.
     
 Automatically:
@@ -384,7 +513,7 @@ Automatically:
     }
   },
   {
-    name: "browser_automation",
+    name: TOOL_NAME.BROWSER_AUTOMATION,
     description: `Headless browser automation with Playwright.
     
 Use for:
@@ -413,7 +542,7 @@ Use for:
 ];
 var EXPLOIT_TOOLS = [
   {
-    name: "searchsploit",
+    name: TOOL_NAME.SEARCHSPLOIT,
     description: "Search Exploit-DB for exploits matching service/version.",
     input_schema: {
       type: "object",
@@ -427,7 +556,7 @@ var EXPLOIT_TOOLS = [
     }
   },
   {
-    name: "metasploit",
+    name: TOOL_NAME.METASPLOIT,
     description: `Execute Metasploit commands.
     
 Use for:
@@ -444,7 +573,7 @@ Use for:
     }
   },
   {
-    name: "generate_payload",
+    name: TOOL_NAME.GENERATE_PAYLOAD,
     description: `Generate custom payloads with msfvenom.
     
 PAYLOAD TYPES:
@@ -469,7 +598,7 @@ PAYLOAD TYPES:
 ];
 var CREDENTIAL_TOOLS = [
   {
-    name: "bruteforce_login",
+    name: TOOL_NAME.BRUTEFORCE_LOGIN,
     description: `Password bruteforce attack with hydra.
     
 SERVICES: ssh, ftp, telnet, http-get, http-post-form, smb, rdp, mysql, mssql, vnc`,
@@ -488,7 +617,7 @@ SERVICES: ssh, ftp, telnet, http-get, http-post-form, smb, rdp, mysql, mssql, vn
     }
   },
   {
-    name: "crack_hash",
+    name: TOOL_NAME.CRACK_HASH,
     description: `Crack password hashes with john or hashcat.
     
 HASH MODES (hashcat):
@@ -513,7 +642,7 @@ HASH MODES (hashcat):
 ];
 var PRIVESC_TOOLS = [
   {
-    name: "run_privesc_enum",
+    name: TOOL_NAME.RUN_PRIVESC_ENUM,
     description: `Run privilege escalation enumeration scripts.
     
 SCRIPTS:
@@ -532,7 +661,7 @@ SCRIPTS:
     }
   },
   {
-    name: "check_sudo",
+    name: TOOL_NAME.CHECK_SUDO,
     description: "Check sudo permissions and potential escalation paths.",
     input_schema: {
       type: "object",
@@ -542,7 +671,7 @@ SCRIPTS:
     }
   },
   {
-    name: "find_suid",
+    name: TOOL_NAME.FIND_SUID,
     description: "Find SUID/SGID binaries and check for escalation.",
     input_schema: {
       type: "object",
@@ -554,7 +683,7 @@ SCRIPTS:
 ];
 var POST_EXPLOIT_TOOLS = [
   {
-    name: "setup_tunnel",
+    name: TOOL_NAME.SETUP_TUNNEL,
     description: `Set up network tunneling for pivoting.
     
 TOOLS:
@@ -574,7 +703,7 @@ TOOLS:
     }
   },
   {
-    name: "dump_credentials",
+    name: TOOL_NAME.DUMP_CREDENTIALS,
     description: `Extract credentials from compromised system.
     
 METHODS:
@@ -593,7 +722,7 @@ METHODS:
     }
   },
   {
-    name: "lateral_movement",
+    name: TOOL_NAME.LATERAL_MOVEMENT,
     description: `Move laterally to other systems.
     
 METHODS:
@@ -617,7 +746,7 @@ METHODS:
 ];
 var REPORT_TOOLS = [
   {
-    name: "report_finding",
+    name: TOOL_NAME.REPORT_FINDING,
     description: "Document a security finding with proper categorization.",
     input_schema: {
       type: "object",
@@ -635,7 +764,7 @@ var REPORT_TOOLS = [
     }
   },
   {
-    name: "take_screenshot",
+    name: TOOL_NAME.TAKE_SCREENSHOT,
     description: "Capture evidence screenshot of terminal or browser.",
     input_schema: {
       type: "object",
@@ -1252,13 +1381,25 @@ var AGENT_CONFIG = {
   maxIterations: 200,
   maxToolCallsPerIteration: 10,
   autoApprove: false,
-  sensitiveTools: ["credential_attack", "write_file", "metasploit", "generate_payload"],
+  sensitiveTools: SENSITIVE_TOOLS,
   defaultTimeout: 6e4,
   longRunningTimeout: 6e5,
   stuckThreshold: 5,
   stuckTimeThreshold: 3e5,
   maxPhaseAttempts: 20
 };
+var PENTEST_PHASES = [
+  { id: PHASE_ID.RECON, name: "Reconnaissance", description: "Information gathering" },
+  { id: PHASE_ID.SCAN, name: "Scanning", description: "Port and service scanning" },
+  { id: PHASE_ID.ENUM, name: "Enumeration", description: "Deep service enumeration" },
+  { id: PHASE_ID.VULN, name: "Vulnerability Analysis", description: "Vulnerability identification" },
+  { id: PHASE_ID.EXPLOIT, name: "Exploitation", description: "Gaining access" },
+  { id: PHASE_ID.PRIVESC, name: "Privilege Escalation", description: "Elevating privileges" },
+  { id: PHASE_ID.PIVOT, name: "Pivoting", description: "Lateral movement" },
+  { id: PHASE_ID.PERSIST, name: "Persistence", description: "Maintaining access" },
+  { id: PHASE_ID.EXFIL, name: "Data Exfiltration", description: "Data extraction" },
+  { id: PHASE_ID.REPORT, name: "Reporting", description: "Documentation" }
+];
 
 // src/core/agent/agent-loader.ts
 import * as fs2 from "fs/promises";
@@ -1840,93 +1981,6 @@ async function searchExploits(query) {
   return searchDuckDuckGo(`${query} site:exploit-db.com OR site:github.com exploit`);
 }
 
-// src/config/agent-constants.ts
-var AGENT_STATUS = {
-  IDLE: "idle",
-  RUNNING: "running",
-  PAUSED: "paused",
-  STUCK: "stuck",
-  WAITING_INPUT: "waiting_input",
-  COMPLETED: "completed"
-};
-var PHASE_ID = {
-  RECON: "recon",
-  SCAN: "scan",
-  ENUM: "enum",
-  VULN: "vuln",
-  EXPLOIT: "exploit",
-  PRIVESC: "privesc",
-  PIVOT: "pivot",
-  PERSIST: "persist",
-  EXFIL: "exfil",
-  REPORT: "report"
-};
-var PHASE_STATUS = {
-  PENDING: "pending",
-  IN_PROGRESS: "in_progress",
-  COMPLETED: "completed",
-  FAILED: "failed",
-  SKIPPED: "skipped"
-};
-var THOUGHT_TYPE = {
-  OBSERVATION: "observation",
-  HYPOTHESIS: "hypothesis",
-  PLAN: "plan",
-  ACTION: "action",
-  RESULT: "result",
-  REFLECTION: "reflection",
-  STUCK: "stuck",
-  BREAKTHROUGH: "breakthrough"
-};
-var AGENT_EVENT = {
-  // Lifecycle
-  PLUGINS_LOADED: "plugins_loaded",
-  HOOKS_LOADED: "hooks_loaded",
-  COMMANDS_LOADED: "commands_loaded",
-  MCP_SERVER_ADDED: "mcp_server_added",
-  // Execution
-  ITERATION: "iteration",
-  THOUGHT: "thought",
-  RESPONSE: "response",
-  TOOL_CALL: "tool_call",
-  TOOL_RESULT: "tool_result",
-  COMMAND_EXECUTE: "command_execute",
-  // State changes
-  TARGET_SET: "target_set",
-  PHASE_CHANGE: "phase_change",
-  AGENT_SWITCH: "agent_switch",
-  PAUSED: "paused",
-  RESUMED: "resumed",
-  RESET: "reset",
-  // Discoveries
-  FINDING: "finding",
-  CREDENTIAL: "credential",
-  COMPROMISED: "compromised",
-  // Completion
-  COMPLETE: "complete",
-  REPORT: "report",
-  ERROR: "error",
-  HINT_RECEIVED: "hint_received"
-};
-var CLI_COMMAND = {
-  HELP: "help",
-  TARGET: "target",
-  START: "start",
-  STOP: "stop",
-  FINDINGS: "findings",
-  CLEAR: "clear",
-  EXIT: "exit"
-};
-var MESSAGE_TYPE = {
-  USER: "user",
-  ASSISTANT: "assistant",
-  TOOL: "tool",
-  THINKING: "thinking",
-  ERROR: "error",
-  SYSTEM: "system",
-  RESULT: "result"
-};
-
 // src/core/agent/autonomous-agent.ts
 function toContentBlockParam(block) {
   switch (block.type) {
@@ -1963,16 +2017,16 @@ function toMessageParam(msg) {
   };
 }
 var DEFAULT_PHASES = [
-  { id: "recon", name: "Reconnaissance", shortName: "Recon", status: "pending", attempts: 0 },
-  { id: "scan", name: "Scanning", shortName: "Scan", status: "pending", attempts: 0 },
-  { id: "enum", name: "Enumeration", shortName: "Enum", status: "pending", attempts: 0 },
-  { id: "vuln", name: "Vulnerability Analysis", shortName: "Vuln", status: "pending", attempts: 0 },
-  { id: "exploit", name: "Exploitation", shortName: "Exploit", status: "pending", attempts: 0 },
-  { id: "privesc", name: "Privilege Escalation", shortName: "PrivEsc", status: "pending", attempts: 0 },
-  { id: "pivot", name: "Pivoting", shortName: "Pivot", status: "pending", attempts: 0 },
-  { id: "persist", name: "Persistence", shortName: "Persist", status: "pending", attempts: 0 },
-  { id: "exfil", name: "Data Exfiltration", shortName: "Exfil", status: "pending", attempts: 0 },
-  { id: "report", name: "Reporting", shortName: "Report", status: "pending", attempts: 0 }
+  { id: PHASE_ID.RECON, name: "Reconnaissance", shortName: "Recon", status: PHASE_STATUS.PENDING, attempts: 0 },
+  { id: PHASE_ID.SCAN, name: "Scanning", shortName: "Scan", status: PHASE_STATUS.PENDING, attempts: 0 },
+  { id: PHASE_ID.ENUM, name: "Enumeration", shortName: "Enum", status: PHASE_STATUS.PENDING, attempts: 0 },
+  { id: PHASE_ID.VULN, name: "Vulnerability Analysis", shortName: "Vuln", status: PHASE_STATUS.PENDING, attempts: 0 },
+  { id: PHASE_ID.EXPLOIT, name: "Exploitation", shortName: "Exploit", status: PHASE_STATUS.PENDING, attempts: 0 },
+  { id: PHASE_ID.PRIVESC, name: "Privilege Escalation", shortName: "PrivEsc", status: PHASE_STATUS.PENDING, attempts: 0 },
+  { id: PHASE_ID.PIVOT, name: "Pivoting", shortName: "Pivot", status: PHASE_STATUS.PENDING, attempts: 0 },
+  { id: PHASE_ID.PERSIST, name: "Persistence", shortName: "Persist", status: PHASE_STATUS.PENDING, attempts: 0 },
+  { id: PHASE_ID.EXFIL, name: "Data Exfiltration", shortName: "Exfil", status: PHASE_STATUS.PENDING, attempts: 0 },
+  { id: PHASE_ID.REPORT, name: "Reporting", shortName: "Report", status: PHASE_STATUS.PENDING, attempts: 0 }
 ];
 var AutonomousHackingAgent = class extends EventEmitter3 {
   client;
@@ -2136,7 +2190,7 @@ ${await this.commandRegistry.getHelp()}`;
     if (phase) {
       const oldStatus = phase.status;
       phase.status = status;
-      if (status === "in_progress" && !phase.startTime) {
+      if (status === PHASE_STATUS.IN_PROGRESS && !phase.startTime) {
         phase.startTime = /* @__PURE__ */ new Date();
       } else if ((status === PHASE_STATUS.COMPLETED || status === PHASE_STATUS.FAILED) && !phase.endTime) {
         phase.endTime = /* @__PURE__ */ new Date();
@@ -2151,7 +2205,7 @@ ${await this.commandRegistry.getHelp()}`;
       const nextPhase = this.state.phases[currentIndex + 1];
       this.setPhaseStatus(this.state.currentPhase, PHASE_STATUS.COMPLETED);
       this.state.currentPhase = nextPhase.id;
-      this.setPhaseStatus(nextPhase.id, "in_progress");
+      this.setPhaseStatus(nextPhase.id, PHASE_STATUS.IN_PROGRESS);
       this.think(THOUGHT_TYPE.PLAN, `Advancing to next phase: ${nextPhase.shortName}`);
       this.resetStuckCounter();
       return true;
@@ -2269,7 +2323,7 @@ What went wrong and what different approach should be tried?
       return;
     }
     this.state.status = AGENT_STATUS.RUNNING;
-    this.setPhaseStatus("recon", "in_progress");
+    this.setPhaseStatus(PHASE_ID.RECON, PHASE_STATUS.IN_PROGRESS);
     const mainObjective = objective || `
 Target ${this.state.target.primary} - performing full penetration test.
 Goal: Deep penetration to obtain root/system privileges, extract internal data, map entire network.
@@ -2293,7 +2347,7 @@ Goal: Deep penetration to obtain root/system privileges, extract internal data,
           const reflection = await this.performSelfReflection();
           const shouldSkip = await this.decideNextAction(reflection);
           if (shouldSkip) {
-            this.setPhaseStatus(this.state.currentPhase, "skipped");
+            this.setPhaseStatus(this.state.currentPhase, PHASE_STATUS.SKIPPED);
             if (!this.advanceToNextPhase()) {
               this.think(THOUGHT_TYPE.OBSERVATION, "All phases completed or skipped");
               break;
@@ -2527,7 +2581,7 @@ Use report_finding tool for important discoveries.
   }
   // ===== Final Report Generation =====
   async generateFinalReport() {
-    this.setPhaseStatus("report", "in_progress");
+    this.setPhaseStatus(PHASE_ID.REPORT, PHASE_STATUS.IN_PROGRESS);
     const report = `
 # Penetration Test Report
 ## Executive Summary
@@ -2929,7 +2983,7 @@ var App = ({ autoApprove = false, target }) => {
         " \u2502",
         state.findings.length,
         " findings \u2502",
-        state.currentPhase !== "idle" && ` ${state.currentPhase} \u2502`
+        state.currentPhase !== AGENT_STATUS.IDLE && ` ${state.currentPhase} \u2502`
       ] }),
       /* @__PURE__ */ jsxs(Text, { dimColor: true, children: [
         "/help \u2502 Ctrl+C ",

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "pentesting",
-  "version": "0.1.10",
+  "version": "0.1.12",
   "description": "Autonomous Penetration Testing AI Agent",
   "type": "module",
   "main": "dist/index.js",