pentesting 0.14.1 → 0.16.2

package/README.md

@@ -1,12 +1,12 @@
 <div align="center">
 
 ```
-  ██████╗ ███████╗███╗   ██╗████████╗███████╗███████╗████████╗██╗███╗   ██╗ ██████╗ 
-  ██╔══██╗██╔════╝████╗  ██║╚══██╔══╝██╔════╝██╔════╝╚══██╔══╝██║████╗  ██║██╔════╝ 
+  ██████╗ ███████╗███╗   ██╗████████╗███████╗███████╗████████╗██╗███╗   ██╗ ██████╗
+  ██╔══██╗██╔════╝████╗  ██║╚══██╔══╝██╔════╝██╔════╝╚══██╔══╝██║████╗  ██║██╔════╝
   ██████╔╝█████╗  ██╔██╗ ██║   ██║   █████╗  ███████╗   ██║   ██║██╔██╗ ██║██║  ███╗
   ██╔═══╝ ██╔══╝  ██║╚██╗██║   ██║   ██╔══╝  ╚════██║   ██║   ██║██║╚██╗██║██║   ██║
   ██║     ███████╗██║ ╚████║   ██║   ███████╗███████║   ██║   ██║██║ ╚████║╚██████╔╝
-  ╚═╝     ╚══════╝╚═╝  ╚═══╝   ╚═╝   ╚══════╝╚══════╝   ╚═╝   ╚═╝╚═╝  ╚═══╝ ╚═════╝ 
+  ╚═╝     ╚══════╝╚═╝  ╚═══╝   ╚═╝   ╚══════╝╚══════╝   ╚═╝   ╚═╝╚═╝  ╚═══╝ ╚═════╝
   ────────────────────────────────────────────────────────────────────────────────
                   A U T O N O M O U S   S E C U R I T Y   A G E N T
 ```
@@ -23,6 +23,7 @@
 ```bash
 npm install -g pentesting
 
+# Required environments
 export PENTEST_API_KEY="your_api_key"
 export PENTEST_BASE_URL="https://api.z.ai/api/anthropic"
 export PENTEST_MODEL="glm-4.7"
@@ -30,38 +31,121 @@ export PENTEST_MODEL="glm-4.7"
 pentesting
 ```
 
-## Purpose
+---
+
+## Features
+
+### 🤖 Multi-Agent Architecture
+
+Autonomous penetration testing with specialized agents:
+
+```
+Orchestrator → Recon → Vuln → Exploit → Post
+                ↓         ↓        ↓       ↓
+              Web      Infra    Report
+```
 
-This project is a pentesting tool that can be used to test the security of a system.
+Each agent is a simple `while(true) { think → tool → observe }` loop with:
+- **Specialized prompts** (not code)
+- **Dedicated tool sets**
+- **State slicing** for token efficiency
+
+### 🎯 CTF Expert Knowledge
+
+Built-in security expertise including:
+- **Essential options**: `nmap -Pn` (never forget)
+- **CVE detection**: Apache 2.4.49 → CVE-2021-41773
+- **Service-specific exploits**: Samba, VSFTPD, MS17-010
+- **Web attack vectors**: SQLi, XSS, SSRF, XXE
+- **AD infrastructure**: BloodHound, CrackMapExec
+
+### 🔍 Transparent Execution
+
+Full visibility into agent decision-making:
+
+```
+Orchestrator agentLoop
+│ think: "Start with reconnaissance"
+│ tool_call: delegate('recon', 'Subnet scan')
+│
+├─▶ RECON agentLoop
+│   │ tool_call: nmap -Pn 10.10.10.0/24 [confirm → y]
+│   │ observe: 3 hosts discovered
+│   │ escalate ↑: recon → vuln
+│   └─▶ return "Apache 2.4.49 found"
+│
+└─▶ VULN agentLoop
+    │ tool_call: curl --path-as-is ... [review → yes]
+    │ observe: /etc/passwd exposure confirmed
+    └─▶ return "CVE-2021-41773 Critical confirmed"
+```
 
-## issue report
+### 🛡️ Safety First
 
-email: agnusdei1207@gmail.com
-linkedin: https://www.linkedin.com/in/sang-woo-park-158685393/en
+- **Scope enforcement**: Never attack outside approved targets
+- **Approval gates**: `auto` / `confirm` / `review`
+- **Audit logging**: Every action recorded
+- **Authorized users only**: No unnecessary prompt defenses
+
+---
 
 ## TUI Commands
 
 ```
-/target <ip>      Set target
-/start            Start autonomous pentest
-/research <box>   Search writeups & exploits  
-/findings         Show findings
-/yolo             Toggle auto-approve
-/help             Show all commands
+/target <cidr>        Set engagement scope
+/start                Start autonomous pentest
+/findings             Show all findings
+/loot                 Show credentials & sessions
+/state                Show current engagement state
+/yolo                 Toggle auto-approve mode
+/exit                 Exit session
+/help                 Show all commands
 ```
 
 ---
 
 ## Environment
 
-| Variable | Description |
-|----------|-------------|
-| `PENTEST_API_KEY` | API key (required) |
-| `PENTEST_BASE_URL` | Custom API endpoint |
-| `PENTEST_MODEL` | LLM model (default: claude-sonnet-4-20250514) |
+| Variable | Description | Default |
+|----------|-------------|---------|
+| `PENTEST_API_KEY` | API key (required) | - |
+| `PENTEST_BASE_URL` | Custom API endpoint | - |
+| `PENTEST_MODEL` | LLM model | `glm-4.7` |
+
+---
+
+## Architecture
+
+```
+┌─────────────────────────────────────────────────────────────┐
+│                      Orchestrator                           │
+│  "Delegate, don't execute directly"                         │
+│  • delegate_to_agent • escalate • get_state • set_scope   │
+└────────────┬────────────────────────────────────────────────┘
+             │
+    ┌────────┼────────┬────────┬────────┬────────┐
+    │        │        │        │        │        │
+    ▼        ▼        ▼        ▼        ▼        ▼
+  Recon    Vuln   Exploit    Post     Web    Infra
+  "Info"    "Verify" "Approved" "Shell"  "Web"   "AD"
+```
+
+**Key principles:**
+1. Agent = `while(true) { think → tool → observe }`
+2. Agent difference = prompt + tool set (not code)
+3. Communication = danger↑ via Orchestrator, ↓ direct call
+4. All prompts get Scope + State injection
+5. Approval = `auto` | `confirm` | `review`
+
+---
+
+## Issue Report
+
+**Email**: agnusdei1207@gmail.com
+**LinkedIn**: [sang-woo-park](https://www.linkedin.com/in/sang-woo-park-158685393/en)
 
 ---
 
-## Documentation
+## License
 
-- **[ARCHITECTURE.md](docs/ARCHITECTURE.md)** — System architecture & data flow
+MIT License - see [LICENSE](LICENSE) for details.