pentesting 0.3.1 → 0.4.0

package/dist/auto-update-H72IBVEQ.js

@@ -0,0 +1,24 @@
+import {
+  checkForUpdate,
+  checkForUpdateAsync,
+  compareSemver,
+  doUpdate,
+  fetchLatestVersion,
+  formatUpdateNotification,
+  readVersionCache,
+  semverTuple,
+  writeVersionCache
+} from "./chunk-LZGHM27D.js";
+import "./chunk-IU6YJKJT.js";
+import "./chunk-3RG5ZIWI.js";
+export {
+  checkForUpdate,
+  checkForUpdateAsync,
+  compareSemver,
+  doUpdate,
+  fetchLatestVersion,
+  formatUpdateNotification,
+  readVersionCache,
+  semverTuple,
+  writeVersionCache
+};

package/dist/chunk-3RG5ZIWI.js

@@ -0,0 +1,10 @@
+var __require = /* @__PURE__ */ ((x) => typeof require !== "undefined" ? require : typeof Proxy !== "undefined" ? new Proxy(x, {
+  get: (a, b) => (typeof require !== "undefined" ? require : a)[b]
+}) : x)(function(x) {
+  if (typeof require !== "undefined") return require.apply(this, arguments);
+  throw Error('Dynamic require of "' + x + '" is not supported');
+});
+
+export {
+  __require
+};

package/dist/chunk-IU6YJKJT.js

@@ -0,0 +1,182 @@
+// src/config/agent-constants.ts
+var AGENT_STATUS = {
+  IDLE: "idle",
+  RUNNING: "running",
+  PAUSED: "paused",
+  STUCK: "stuck",
+  WAITING_INPUT: "waiting_input",
+  COMPLETED: "completed"
+};
+var PHASE_ID = {
+  RECON: "recon",
+  SCAN: "scan",
+  ENUM: "enum",
+  VULN: "vuln",
+  EXPLOIT: "exploit",
+  PRIVESC: "privesc",
+  PIVOT: "pivot",
+  PERSIST: "persist",
+  EXFIL: "exfil",
+  REPORT: "report"
+};
+var PHASE_STATUS = {
+  PENDING: "pending",
+  IN_PROGRESS: "in_progress",
+  COMPLETED: "completed",
+  FAILED: "failed",
+  SKIPPED: "skipped"
+};
+var THOUGHT_TYPE = {
+  OBSERVATION: "observation",
+  HYPOTHESIS: "hypothesis",
+  PLAN: "plan",
+  ACTION: "action",
+  RESULT: "result",
+  REFLECTION: "reflection",
+  STUCK: "stuck",
+  BREAKTHROUGH: "breakthrough"
+};
+var AGENT_EVENT = {
+  // Lifecycle
+  PLUGINS_LOADED: "plugins_loaded",
+  HOOKS_LOADED: "hooks_loaded",
+  COMMANDS_LOADED: "commands_loaded",
+  MCP_SERVER_ADDED: "mcp_server_added",
+  // Execution
+  ITERATION: "iteration",
+  THOUGHT: "thought",
+  RESPONSE: "response",
+  TOOL_CALL: "tool_call",
+  TOOL_RESULT: "tool_result",
+  COMMAND_EXECUTE: "command_execute",
+  APPROVAL_NEEDED: "approval_needed",
+  TOKEN_USAGE: "token_usage",
+  // State changes
+  TARGET_SET: "target_set",
+  PHASE_CHANGE: "phase_change",
+  AGENT_SWITCH: "agent_switch",
+  PAUSED: "paused",
+  RESUMED: "resumed",
+  RESET: "reset",
+  // Discoveries
+  FINDING: "finding",
+  CREDENTIAL: "credential",
+  COMPROMISED: "compromised",
+  // Completion
+  COMPLETE: "complete",
+  REPORT: "report",
+  ERROR: "error",
+  HINT_RECEIVED: "hint_received",
+  CONTEXT_COMPACTED: "context_compacted"
+};
+var CLI_COMMAND = {
+  HELP: "help",
+  TARGET: "target",
+  START: "start",
+  STOP: "stop",
+  FINDINGS: "findings",
+  CLEAR: "clear",
+  EXIT: "exit"
+};
+var MESSAGE_TYPE = {
+  USER: "user",
+  ASSISTANT: "assistant",
+  TOOL: "tool",
+  THINKING: "thinking",
+  ERROR: "error",
+  SYSTEM: "system",
+  RESULT: "result"
+};
+var TOOL_NAME = {
+  // System
+  BASH: "bash",
+  READ_FILE: "read_file",
+  WRITE_FILE: "write_file",
+  LIST_DIRECTORY: "list_directory",
+  // Network
+  NMAP_SCAN: "nmap_scan",
+  TCPDUMP_CAPTURE: "tcpdump_capture",
+  // Web
+  WEB_REQUEST: "web_request",
+  DIRECTORY_BRUTEFORCE: "directory_bruteforce",
+  SQL_INJECTION: "sql_injection",
+  BROWSER_AUTOMATION: "browser_automation",
+  // Exploit
+  SEARCHSPLOIT: "searchsploit",
+  METASPLOIT: "metasploit",
+  GENERATE_PAYLOAD: "generate_payload",
+  // Credential
+  BRUTEFORCE_LOGIN: "bruteforce_login",
+  CRACK_HASH: "crack_hash",
+  DUMP_CREDENTIALS: "dump_credentials",
+  // Privilege Escalation
+  CHECK_SUDO: "check_sudo",
+  FIND_SUID: "find_suid",
+  RUN_PRIVESC_ENUM: "run_privesc_enum",
+  // Post-Exploitation
+  SETUP_TUNNEL: "setup_tunnel",
+  LATERAL_MOVEMENT: "lateral_movement",
+  // Reporting
+  REPORT_FINDING: "report_finding",
+  TAKE_SCREENSHOT: "take_screenshot"
+};
+var SENSITIVE_TOOLS = [
+  TOOL_NAME.WRITE_FILE,
+  TOOL_NAME.BRUTEFORCE_LOGIN,
+  TOOL_NAME.METASPLOIT,
+  TOOL_NAME.SQL_INJECTION,
+  TOOL_NAME.DUMP_CREDENTIALS,
+  TOOL_NAME.GENERATE_PAYLOAD,
+  TOOL_NAME.LATERAL_MOVEMENT
+];
+
+// src/config/constants.ts
+var APP_NAME = "pentesting";
+var APP_VERSION = "0.4.0";
+var APP_DESCRIPTION = "Autonomous Penetration Testing AI Agent";
+var LLM_API_KEY = process.env.PENTEST_API_KEY || process.env.ANTHROPIC_API_KEY || "";
+var LLM_BASE_URL = process.env.PENTEST_BASE_URL || void 0;
+var LLM_MODEL = process.env.PENTEST_MODEL || "claude-sonnet-4-20250514";
+var LLM_MAX_TOKENS = parseInt(process.env.PENTEST_MAX_TOKENS || "16384", 10);
+var AGENT_CONFIG = {
+  maxIterations: 200,
+  maxToolCallsPerIteration: 10,
+  autoApprove: false,
+  sensitiveTools: SENSITIVE_TOOLS,
+  defaultTimeout: 6e4,
+  longRunningTimeout: 6e5,
+  stuckThreshold: 5,
+  stuckTimeThreshold: 3e5,
+  maxPhaseAttempts: 20
+};
+var PENTEST_PHASES = [
+  { id: PHASE_ID.RECON, name: "Reconnaissance", description: "Information gathering" },
+  { id: PHASE_ID.SCAN, name: "Scanning", description: "Port and service scanning" },
+  { id: PHASE_ID.ENUM, name: "Enumeration", description: "Deep service enumeration" },
+  { id: PHASE_ID.VULN, name: "Vulnerability Analysis", description: "Vulnerability identification" },
+  { id: PHASE_ID.EXPLOIT, name: "Exploitation", description: "Gaining access" },
+  { id: PHASE_ID.PRIVESC, name: "Privilege Escalation", description: "Elevating privileges" },
+  { id: PHASE_ID.PIVOT, name: "Pivoting", description: "Lateral movement" },
+  { id: PHASE_ID.PERSIST, name: "Persistence", description: "Maintaining access" },
+  { id: PHASE_ID.EXFIL, name: "Data Exfiltration", description: "Data extraction" },
+  { id: PHASE_ID.REPORT, name: "Reporting", description: "Documentation" }
+];
+
+export {
+  AGENT_STATUS,
+  PHASE_ID,
+  PHASE_STATUS,
+  THOUGHT_TYPE,
+  AGENT_EVENT,
+  CLI_COMMAND,
+  MESSAGE_TYPE,
+  TOOL_NAME,
+  APP_NAME,
+  APP_VERSION,
+  APP_DESCRIPTION,
+  LLM_API_KEY,
+  LLM_BASE_URL,
+  LLM_MODEL,
+  LLM_MAX_TOKENS,
+  AGENT_CONFIG
+};

package/dist/chunk-LZGHM27D.js

@@ -0,0 +1,134 @@
+import {
+  APP_NAME,
+  APP_VERSION
+} from "./chunk-IU6YJKJT.js";
+
+// src/core/update/auto-update.ts
+import { execSync } from "child_process";
+import { existsSync, readFileSync, writeFileSync, mkdirSync } from "fs";
+import { join } from "path";
+import { homedir } from "os";
+var UPDATE_CHECK_INTERVAL = 24 * 60 * 60 * 1e3;
+var VERSION_CACHE_FILE = join(homedir(), ".pentest", "latest_version.json");
+function semverTuple(version) {
+  const match = version.match(/^(\d+)\.(\d+)\.(\d+)/);
+  if (!match) return [0, 0, 0];
+  return [parseInt(match[1]), parseInt(match[2]), parseInt(match[3])];
+}
+function compareSemver(a, b) {
+  const [a1, a2, a3] = semverTuple(a);
+  const [b1, b2, b3] = semverTuple(b);
+  if (a1 !== b1) return a1 < b1 ? -1 : 1;
+  if (a2 !== b2) return a2 < b2 ? -1 : 1;
+  if (a3 !== b3) return a3 < b3 ? -1 : 1;
+  return 0;
+}
+function readVersionCache() {
+  try {
+    if (!existsSync(VERSION_CACHE_FILE)) return null;
+    const data = JSON.parse(readFileSync(VERSION_CACHE_FILE, "utf-8"));
+    return data;
+  } catch {
+    return null;
+  }
+}
+function writeVersionCache(info) {
+  try {
+    const dir = join(homedir(), ".pentest");
+    if (!existsSync(dir)) {
+      mkdirSync(dir, { recursive: true });
+    }
+    writeFileSync(VERSION_CACHE_FILE, JSON.stringify(info, null, 2));
+  } catch {
+  }
+}
+function fetchLatestVersion(packageName = APP_NAME) {
+  try {
+    const output = execSync(`npm view ${packageName} version`, {
+      encoding: "utf-8",
+      timeout: 1e4,
+      stdio: ["pipe", "pipe", "pipe"]
+    });
+    return output.trim();
+  } catch {
+    return null;
+  }
+}
+function checkForUpdate(forceCheck = false) {
+  const currentVersion = APP_VERSION;
+  const cached = readVersionCache();
+  const now = Date.now();
+  if (!forceCheck && cached && now - cached.checkedAt < UPDATE_CHECK_INTERVAL) {
+    const hasUpdate2 = compareSemver(cached.version, currentVersion) > 0;
+    return {
+      hasUpdate: hasUpdate2,
+      currentVersion,
+      latestVersion: cached.version
+    };
+  }
+  const latestVersion = fetchLatestVersion();
+  if (!latestVersion) {
+    return {
+      hasUpdate: false,
+      currentVersion,
+      latestVersion: null,
+      error: "Failed to fetch latest version"
+    };
+  }
+  writeVersionCache({
+    version: latestVersion,
+    checkedAt: now
+  });
+  const hasUpdate = compareSemver(latestVersion, currentVersion) > 0;
+  return {
+    hasUpdate,
+    currentVersion,
+    latestVersion
+  };
+}
+async function checkForUpdateAsync() {
+  return new Promise((resolve) => {
+    setImmediate(() => {
+      resolve(checkForUpdate());
+    });
+  });
+}
+function formatUpdateNotification(result) {
+  if (!result.hasUpdate || !result.latestVersion) return null;
+  return `
+\u250C\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2510
+\u2502  \u{1F195} A new version of ${APP_NAME} is available!   \u2502
+\u2502                                                \u2502
+\u2502  Current: ${result.currentVersion.padEnd(10)}  Latest: ${result.latestVersion.padEnd(10)}  \u2502
+\u2502                                                \u2502
+\u2502  Run: npm update -g ${APP_NAME}                  \u2502
+\u2514\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2518
+`.trim();
+}
+function doUpdate() {
+  try {
+    execSync(`npm update -g ${APP_NAME}`, {
+      encoding: "utf-8",
+      timeout: 12e4,
+      stdio: "inherit"
+    });
+    return { success: true, message: `Updated ${APP_NAME} successfully!` };
+  } catch (e) {
+    return {
+      success: false,
+      message: `Failed to update: ${e instanceof Error ? e.message : String(e)}`
+    };
+  }
+}
+
+export {
+  semverTuple,
+  compareSemver,
+  readVersionCache,
+  writeVersionCache,
+  fetchLatestVersion,
+  checkForUpdate,
+  checkForUpdateAsync,
+  formatUpdateNotification,
+  doUpdate
+};