PyPI - aiptx - Versions diffs - 2.0.7__py3-none-any.whl - Mend

aiptx 2.0.7__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (187) hide show

aipt_v2/__init__.py +110 -0
aipt_v2/__main__.py +24 -0
aipt_v2/agents/AIPTxAgent/__init__.py +10 -0
aipt_v2/agents/AIPTxAgent/aiptx_agent.py +211 -0
aipt_v2/agents/__init__.py +46 -0
aipt_v2/agents/base.py +520 -0
aipt_v2/agents/exploit_agent.py +688 -0
aipt_v2/agents/ptt.py +406 -0
aipt_v2/agents/state.py +168 -0
aipt_v2/app.py +957 -0
aipt_v2/browser/__init__.py +31 -0
aipt_v2/browser/automation.py +458 -0
aipt_v2/browser/crawler.py +453 -0
aipt_v2/cli.py +2933 -0
aipt_v2/compliance/__init__.py +71 -0
aipt_v2/compliance/compliance_report.py +449 -0
aipt_v2/compliance/framework_mapper.py +424 -0
aipt_v2/compliance/nist_mapping.py +345 -0
aipt_v2/compliance/owasp_mapping.py +330 -0
aipt_v2/compliance/pci_mapping.py +297 -0
aipt_v2/config.py +341 -0
aipt_v2/core/__init__.py +43 -0
aipt_v2/core/agent.py +630 -0
aipt_v2/core/llm.py +395 -0
aipt_v2/core/memory.py +305 -0
aipt_v2/core/ptt.py +329 -0
aipt_v2/database/__init__.py +14 -0
aipt_v2/database/models.py +232 -0
aipt_v2/database/repository.py +384 -0
aipt_v2/docker/__init__.py +23 -0
aipt_v2/docker/builder.py +260 -0
aipt_v2/docker/manager.py +222 -0
aipt_v2/docker/sandbox.py +371 -0
aipt_v2/evasion/__init__.py +58 -0
aipt_v2/evasion/request_obfuscator.py +272 -0
aipt_v2/evasion/tls_fingerprint.py +285 -0
aipt_v2/evasion/ua_rotator.py +301 -0
aipt_v2/evasion/waf_bypass.py +439 -0
aipt_v2/execution/__init__.py +23 -0
aipt_v2/execution/executor.py +302 -0
aipt_v2/execution/parser.py +544 -0
aipt_v2/execution/terminal.py +337 -0
aipt_v2/health.py +437 -0
aipt_v2/intelligence/__init__.py +194 -0
aipt_v2/intelligence/adaptation.py +474 -0
aipt_v2/intelligence/auth.py +520 -0
aipt_v2/intelligence/chaining.py +775 -0
aipt_v2/intelligence/correlation.py +536 -0
aipt_v2/intelligence/cve_aipt.py +334 -0
aipt_v2/intelligence/cve_info.py +1111 -0
aipt_v2/intelligence/knowledge_graph.py +590 -0
aipt_v2/intelligence/learning.py +626 -0
aipt_v2/intelligence/llm_analyzer.py +502 -0
aipt_v2/intelligence/llm_tool_selector.py +518 -0
aipt_v2/intelligence/payload_generator.py +562 -0
aipt_v2/intelligence/rag.py +239 -0
aipt_v2/intelligence/scope.py +442 -0
aipt_v2/intelligence/searchers/__init__.py +5 -0
aipt_v2/intelligence/searchers/exploitdb_searcher.py +523 -0
aipt_v2/intelligence/searchers/github_searcher.py +467 -0
aipt_v2/intelligence/searchers/google_searcher.py +281 -0
aipt_v2/intelligence/tools.json +443 -0
aipt_v2/intelligence/triage.py +670 -0
aipt_v2/interactive_shell.py +559 -0
aipt_v2/interface/__init__.py +5 -0
aipt_v2/interface/cli.py +230 -0
aipt_v2/interface/main.py +501 -0
aipt_v2/interface/tui.py +1276 -0
aipt_v2/interface/utils.py +583 -0
aipt_v2/llm/__init__.py +39 -0
aipt_v2/llm/config.py +26 -0
aipt_v2/llm/llm.py +514 -0
aipt_v2/llm/memory.py +214 -0
aipt_v2/llm/request_queue.py +89 -0
aipt_v2/llm/utils.py +89 -0
aipt_v2/local_tool_installer.py +1467 -0
aipt_v2/models/__init__.py +15 -0
aipt_v2/models/findings.py +295 -0
aipt_v2/models/phase_result.py +224 -0
aipt_v2/models/scan_config.py +207 -0
aipt_v2/monitoring/grafana/dashboards/aipt-dashboard.json +355 -0
aipt_v2/monitoring/grafana/dashboards/default.yml +17 -0
aipt_v2/monitoring/grafana/datasources/prometheus.yml +17 -0
aipt_v2/monitoring/prometheus.yml +60 -0
aipt_v2/orchestration/__init__.py +52 -0
aipt_v2/orchestration/pipeline.py +398 -0
aipt_v2/orchestration/progress.py +300 -0
aipt_v2/orchestration/scheduler.py +296 -0
aipt_v2/orchestrator.py +2427 -0
aipt_v2/payloads/__init__.py +27 -0
aipt_v2/payloads/cmdi.py +150 -0
aipt_v2/payloads/sqli.py +263 -0
aipt_v2/payloads/ssrf.py +204 -0
aipt_v2/payloads/templates.py +222 -0
aipt_v2/payloads/traversal.py +166 -0
aipt_v2/payloads/xss.py +204 -0
aipt_v2/prompts/__init__.py +60 -0
aipt_v2/proxy/__init__.py +29 -0
aipt_v2/proxy/history.py +352 -0
aipt_v2/proxy/interceptor.py +452 -0
aipt_v2/recon/__init__.py +44 -0
aipt_v2/recon/dns.py +241 -0
aipt_v2/recon/osint.py +367 -0
aipt_v2/recon/subdomain.py +372 -0
aipt_v2/recon/tech_detect.py +311 -0
aipt_v2/reports/__init__.py +17 -0
aipt_v2/reports/generator.py +313 -0
aipt_v2/reports/html_report.py +378 -0
aipt_v2/runtime/__init__.py +53 -0
aipt_v2/runtime/base.py +30 -0
aipt_v2/runtime/docker.py +401 -0
aipt_v2/runtime/local.py +346 -0
aipt_v2/runtime/tool_server.py +205 -0
aipt_v2/runtime/vps.py +830 -0
aipt_v2/scanners/__init__.py +28 -0
aipt_v2/scanners/base.py +273 -0
aipt_v2/scanners/nikto.py +244 -0
aipt_v2/scanners/nmap.py +402 -0
aipt_v2/scanners/nuclei.py +273 -0
aipt_v2/scanners/web.py +454 -0
aipt_v2/scripts/security_audit.py +366 -0
aipt_v2/setup_wizard.py +941 -0
aipt_v2/skills/__init__.py +80 -0
aipt_v2/skills/agents/__init__.py +14 -0
aipt_v2/skills/agents/api_tester.py +706 -0
aipt_v2/skills/agents/base.py +477 -0
aipt_v2/skills/agents/code_review.py +459 -0
aipt_v2/skills/agents/security_agent.py +336 -0
aipt_v2/skills/agents/web_pentest.py +818 -0
aipt_v2/skills/prompts/__init__.py +647 -0
aipt_v2/system_detector.py +539 -0
aipt_v2/telemetry/__init__.py +7 -0
aipt_v2/telemetry/tracer.py +347 -0
aipt_v2/terminal/__init__.py +28 -0
aipt_v2/terminal/executor.py +400 -0
aipt_v2/terminal/sandbox.py +350 -0
aipt_v2/tools/__init__.py +44 -0
aipt_v2/tools/active_directory/__init__.py +78 -0
aipt_v2/tools/active_directory/ad_config.py +238 -0
aipt_v2/tools/active_directory/bloodhound_wrapper.py +447 -0
aipt_v2/tools/active_directory/kerberos_attacks.py +430 -0
aipt_v2/tools/active_directory/ldap_enum.py +533 -0
aipt_v2/tools/active_directory/smb_attacks.py +505 -0
aipt_v2/tools/agents_graph/__init__.py +19 -0
aipt_v2/tools/agents_graph/agents_graph_actions.py +69 -0
aipt_v2/tools/api_security/__init__.py +76 -0
aipt_v2/tools/api_security/api_discovery.py +608 -0
aipt_v2/tools/api_security/graphql_scanner.py +622 -0
aipt_v2/tools/api_security/jwt_analyzer.py +577 -0
aipt_v2/tools/api_security/openapi_fuzzer.py +761 -0
aipt_v2/tools/browser/__init__.py +5 -0
aipt_v2/tools/browser/browser_actions.py +238 -0
aipt_v2/tools/browser/browser_instance.py +535 -0
aipt_v2/tools/browser/tab_manager.py +344 -0
aipt_v2/tools/cloud/__init__.py +70 -0
aipt_v2/tools/cloud/cloud_config.py +273 -0
aipt_v2/tools/cloud/cloud_scanner.py +639 -0
aipt_v2/tools/cloud/prowler_tool.py +571 -0
aipt_v2/tools/cloud/scoutsuite_tool.py +359 -0
aipt_v2/tools/executor.py +307 -0
aipt_v2/tools/parser.py +408 -0
aipt_v2/tools/proxy/__init__.py +5 -0
aipt_v2/tools/proxy/proxy_actions.py +103 -0
aipt_v2/tools/proxy/proxy_manager.py +789 -0
aipt_v2/tools/registry.py +196 -0
aipt_v2/tools/scanners/__init__.py +343 -0
aipt_v2/tools/scanners/acunetix_tool.py +712 -0
aipt_v2/tools/scanners/burp_tool.py +631 -0
aipt_v2/tools/scanners/config.py +156 -0
aipt_v2/tools/scanners/nessus_tool.py +588 -0
aipt_v2/tools/scanners/zap_tool.py +612 -0
aipt_v2/tools/terminal/__init__.py +5 -0
aipt_v2/tools/terminal/terminal_actions.py +37 -0
aipt_v2/tools/terminal/terminal_manager.py +153 -0
aipt_v2/tools/terminal/terminal_session.py +449 -0
aipt_v2/tools/tool_processing.py +108 -0
aipt_v2/utils/__init__.py +17 -0
aipt_v2/utils/logging.py +202 -0
aipt_v2/utils/model_manager.py +187 -0
aipt_v2/utils/searchers/__init__.py +269 -0
aipt_v2/verify_install.py +793 -0
aiptx-2.0.7.dist-info/METADATA +345 -0
aiptx-2.0.7.dist-info/RECORD +187 -0
aiptx-2.0.7.dist-info/WHEEL +5 -0
aiptx-2.0.7.dist-info/entry_points.txt +7 -0
aiptx-2.0.7.dist-info/licenses/LICENSE +21 -0
aiptx-2.0.7.dist-info/top_level.txt +1 -0

aipt_v2/core/ptt.py ADDED Viewed

@@ -0,0 +1,329 @@
+"""
+AIPT PTT (Penetration Testing Tree) Tracker
+Hierarchical task tracking for pentest sessions.
+Inspired by PentestGPT's PTT concept.
+"""
+from __future__ import annotations
+from typing import Optional, List, Dict, Any
+from dataclasses import dataclass, field
+from enum import Enum
+from datetime import datetime
+import json
+class TaskStatus(str, Enum):
+    """Task status"""
+    PENDING = "pending"
+    IN_PROGRESS = "in_progress"
+    COMPLETED = "completed"
+    FAILED = "failed"
+    BLOCKED = "blocked"
+@dataclass
+class PTTNode:
+    """A node in the Penetration Testing Tree"""
+    id: str
+    name: str
+    description: str = ""
+    status: TaskStatus = TaskStatus.PENDING
+    phase: str = "recon"
+    parent_id: Optional[str] = None
+    children: List[str] = field(default_factory=list)
+    findings: List[dict] = field(default_factory=list)
+    metadata: Dict[str, Any] = field(default_factory=dict)
+    created_at: str = field(default_factory=lambda: datetime.now().isoformat())
+    updated_at: str = field(default_factory=lambda: datetime.now().isoformat())
+    def to_dict(self) -> dict:
+        return {
+            "id": self.id,
+            "name": self.name,
+            "description": self.description,
+            "status": self.status.value,
+            "phase": self.phase,
+            "parent_id": self.parent_id,
+            "children": self.children,
+            "findings": self.findings,
+            "metadata": self.metadata,
+            "created_at": self.created_at,
+            "updated_at": self.updated_at,
+        }
+    @classmethod
+    def from_dict(cls, data: dict) -> "PTTNode":
+        return cls(
+            id=data["id"],
+            name=data["name"],
+            description=data.get("description", ""),
+            status=TaskStatus(data.get("status", "pending")),
+            phase=data.get("phase", "recon"),
+            parent_id=data.get("parent_id"),
+            children=data.get("children", []),
+            findings=data.get("findings", []),
+            metadata=data.get("metadata", {}),
+            created_at=data.get("created_at", datetime.now().isoformat()),
+            updated_at=data.get("updated_at", datetime.now().isoformat()),
+        )
+class PTTTracker:
+    """
+    Penetration Testing Tree Tracker.
+    Maintains a hierarchical view of pentest tasks:
+    - Target (root)
+      - Phase (recon, enum, exploit, post)
+        - Task (specific action)
+          - Finding (discovered information)
+    Example:
+        ptt = PTTTracker()
+        ptt.initialize("192.168.1.0/24")
+        ptt.add_task("recon", "Port scan with nmap")
+        ptt.add_finding("recon", task_id, {"type": "port", "value": "80/tcp"})
+    """
+    def __init__(self):
+        self.nodes: Dict[str, PTTNode] = {}
+        self.root_id: Optional[str] = None
+        self._id_counter: int = 0
+    def _generate_id(self) -> str:
+        """Generate unique node ID"""
+        self._id_counter += 1
+        return f"node_{self._id_counter}"
+    def initialize(self, target: str) -> dict:
+        """
+        Initialize PTT for a new target.
+        Creates root node and phase nodes.
+        """
+        self.nodes = {}
+        self._id_counter = 0
+        # Create root node
+        root_id = self._generate_id()
+        self.root_id = root_id
+        root = PTTNode(
+            id=root_id,
+            name=target,
+            description=f"Pentest target: {target}",
+            phase="root",
+        )
+        self.nodes[root_id] = root
+        # Create phase nodes
+        phases = ["recon", "enum", "exploit", "post", "report"]
+        for phase in phases:
+            phase_id = self._generate_id()
+            phase_node = PTTNode(
+                id=phase_id,
+                name=phase.upper(),
+                description=f"{phase.title()} phase",
+                phase=phase,
+                parent_id=root_id,
+            )
+            self.nodes[phase_id] = phase_node
+            root.children.append(phase_id)
+        return self.to_dict()
+    def add_task(
+        self,
+        phase: str,
+        name: str,
+        description: str = "",
+        parent_id: Optional[str] = None,
+    ) -> str:
+        """
+        Add a task to a phase.
+        Args:
+            phase: Phase name (recon, enum, exploit, post)
+            name: Task name
+            description: Task description
+            parent_id: Optional parent task ID
+        Returns:
+            Task node ID
+        """
+        # Find phase node
+        phase_node = self._get_phase_node(phase)
+        if not phase_node:
+            raise ValueError(f"Phase not found: {phase}")
+        # Create task node
+        task_id = self._generate_id()
+        task = PTTNode(
+            id=task_id,
+            name=name,
+            description=description,
+            phase=phase,
+            parent_id=parent_id or phase_node.id,
+            status=TaskStatus.PENDING,
+        )
+        self.nodes[task_id] = task
+        # Add to parent's children
+        parent_node = self.nodes.get(parent_id or phase_node.id)
+        if parent_node:
+            parent_node.children.append(task_id)
+        return task_id
+    def update_task_status(self, task_id: str, status: TaskStatus) -> None:
+        """Update task status"""
+        if task_id in self.nodes:
+            self.nodes[task_id].status = status
+            self.nodes[task_id].updated_at = datetime.now().isoformat()
+    def add_finding(self, task_id: str, finding: dict) -> None:
+        """Add finding to a task"""
+        if task_id in self.nodes:
+            self.nodes[task_id].findings.append(finding)
+            self.nodes[task_id].updated_at = datetime.now().isoformat()
+    def add_findings(self, phase: str, findings: List[dict]) -> None:
+        """Add multiple findings to a phase"""
+        phase_node = self._get_phase_node(phase)
+        if phase_node:
+            for finding in findings:
+                phase_node.findings.append(finding)
+            phase_node.updated_at = datetime.now().isoformat()
+    def _get_phase_node(self, phase: str) -> Optional[PTTNode]:
+        """Get phase node by name"""
+        for node in self.nodes.values():
+            if node.phase == phase and node.parent_id == self.root_id:
+                return node
+        return None
+    def get_tasks_by_phase(self, phase: str) -> List[PTTNode]:
+        """Get all tasks in a phase"""
+        phase_node = self._get_phase_node(phase)
+        if not phase_node:
+            return []
+        return [
+            self.nodes[child_id]
+            for child_id in phase_node.children
+            if child_id in self.nodes
+        ]
+    def get_pending_tasks(self, phase: Optional[str] = None) -> List[PTTNode]:
+        """Get all pending tasks, optionally filtered by phase"""
+        pending = []
+        for node in self.nodes.values():
+            if node.status == TaskStatus.PENDING:
+                if phase is None or node.phase == phase:
+                    pending.append(node)
+        return pending
+    def get_all_findings(self) -> List[dict]:
+        """Get all findings across all nodes"""
+        findings = []
+        for node in self.nodes.values():
+            for finding in node.findings:
+                finding["task_id"] = node.id
+                finding["task_name"] = node.name
+                finding["phase"] = node.phase
+                findings.append(finding)
+        return findings
+    def get_phase_summary(self, phase: str) -> dict:
+        """Get summary for a phase"""
+        phase_node = self._get_phase_node(phase)
+        if not phase_node:
+            return {}
+        tasks = self.get_tasks_by_phase(phase)
+        return {
+            "phase": phase,
+            "status": phase_node.status.value,
+            "total_tasks": len(tasks),
+            "completed_tasks": len([t for t in tasks if t.status == TaskStatus.COMPLETED]),
+            "pending_tasks": len([t for t in tasks if t.status == TaskStatus.PENDING]),
+            "findings_count": len(phase_node.findings) + sum(len(t.findings) for t in tasks),
+        }
+    def to_prompt(self) -> str:
+        """Format PTT for LLM prompt"""
+        if not self.root_id:
+            return "No PTT initialized."
+        lines = []
+        root = self.nodes[self.root_id]
+        lines.append(f"Target: {root.name}")
+        lines.append("")
+        for phase in ["recon", "enum", "exploit", "post"]:
+            phase_node = self._get_phase_node(phase)
+            if not phase_node:
+                continue
+            status_emoji = {
+                TaskStatus.PENDING: "⏳",
+                TaskStatus.IN_PROGRESS: "🔄",
+                TaskStatus.COMPLETED: "✅",
+                TaskStatus.FAILED: "❌",
+                TaskStatus.BLOCKED: "🚫",
+            }
+            lines.append(f"## {phase.upper()} {status_emoji.get(phase_node.status, '⏳')}")
+            tasks = self.get_tasks_by_phase(phase)
+            if tasks:
+                for task in tasks:
+                    emoji = status_emoji.get(task.status, "⏳")
+                    lines.append(f"  - {emoji} {task.name}")
+                    if task.findings:
+                        for finding in task.findings[:3]:  # Limit findings shown
+                            lines.append(f"      • {finding.get('type', 'info')}: {finding.get('description', 'N/A')[:50]}")
+            if phase_node.findings:
+                lines.append(f"  Findings: {len(phase_node.findings)}")
+            lines.append("")
+        return "\n".join(lines)
+    def to_dict(self) -> dict:
+        """Export PTT to dictionary"""
+        return {
+            "root_id": self.root_id,
+            "nodes": {k: v.to_dict() for k, v in self.nodes.items()},
+        }
+    @classmethod
+    def from_dict(cls, data: dict) -> "PTTTracker":
+        """Create PTT from dictionary"""
+        tracker = cls()
+        tracker.root_id = data.get("root_id")
+        tracker.nodes = {
+            k: PTTNode.from_dict(v) for k, v in data.get("nodes", {}).items()
+        }
+        return tracker
+    def to_json(self) -> str:
+        """Export to JSON"""
+        return json.dumps(self.to_dict(), indent=2, default=str)
+    @classmethod
+    def from_json(cls, json_str: str) -> "PTTTracker":
+        """Create from JSON"""
+        return cls.from_dict(json.loads(json_str))
+    def save(self, filepath: str) -> None:
+        """Save PTT to file"""
+        with open(filepath, "w") as f:
+            f.write(self.to_json())
+    @classmethod
+    def load(cls, filepath: str) -> "PTTTracker":
+        """Load PTT from file"""
+        with open(filepath, "r") as f:
+            return cls.from_json(f.read())

aipt_v2/database/__init__.py ADDED Viewed

@@ -0,0 +1,14 @@
+"""
+AIPT Database Module - SQLAlchemy persistence layer
+"""
+from aipt_v2.database.models import Base, Project, Session, Finding
+from aipt_v2.database.repository import Repository
+__all__ = [
+    "Base",
+    "Project",
+    "Session",
+    "Finding",
+    "Repository",
+]

aipt_v2/database/models.py ADDED Viewed

@@ -0,0 +1,232 @@
+"""
+AIPT Database Models - SQLAlchemy ORM models for persistence
+Supports SQLite (development) and PostgreSQL (production)
+Models:
+- Project: Top-level container for pentests
+- Session: Individual scan/attack session
+- Finding: Discovered vulnerability/info
+- Task: PTT task tracking
+"""
+from datetime import datetime
+from typing import Optional
+from enum import Enum
+from sqlalchemy import (
+    Column, Integer, String, Text, DateTime,
+    ForeignKey, JSON, Boolean, Float, Enum as SQLEnum,
+    create_engine, Index
+)
+from sqlalchemy.orm import relationship, declarative_base
+from sqlalchemy.sql import func
+Base = declarative_base()
+class SeverityLevel(str, Enum):
+    """Finding severity levels"""
+    INFO = "info"
+    LOW = "low"
+    MEDIUM = "medium"
+    HIGH = "high"
+    CRITICAL = "critical"
+class TaskStatus(str, Enum):
+    """Task status values"""
+    TODO = "to-do"
+    IN_PROGRESS = "in-progress"
+    COMPLETED = "completed"
+    BLOCKED = "blocked"
+class PhaseType(str, Enum):
+    """Pentest phases"""
+    RECON = "recon"
+    ENUM = "enum"
+    EXPLOIT = "exploit"
+    POST = "post"
+    REPORT = "report"
+class Project(Base):
+    """
+    Top-level project container.
+    A project represents a complete pentest engagement.
+    """
+    __tablename__ = "projects"
+    id = Column(Integer, primary_key=True, autoincrement=True)
+    name = Column(String(255), nullable=False)
+    description = Column(Text, nullable=True)
+    target = Column(String(255), nullable=False)  # Primary target
+    scope = Column(JSON, default=list)  # List of in-scope targets
+    # Metadata
+    created_at = Column(DateTime, server_default=func.now())
+    updated_at = Column(DateTime, server_default=func.now(), onupdate=func.now())
+    status = Column(String(50), default="active")  # active, completed, archived
+    # Configuration
+    config = Column(JSON, default=dict)  # LLM settings, timeouts, etc.
+    # Relationships
+    sessions = relationship("Session", back_populates="project", cascade="all, delete-orphan")
+    findings = relationship("Finding", back_populates="project", cascade="all, delete-orphan")
+    # Indexes
+    __table_args__ = (
+        Index("idx_project_target", "target"),
+        Index("idx_project_status", "status"),
+    )
+    def __repr__(self):
+        return f"<Project(id={self.id}, name='{self.name}', target='{self.target}')>"
+class Session(Base):
+    """
+    Individual scan/attack session within a project.
+    Tracks a single run of the agent.
+    """
+    __tablename__ = "sessions"
+    id = Column(Integer, primary_key=True, autoincrement=True)
+    project_id = Column(Integer, ForeignKey("projects.id"), nullable=False)
+    # Session info
+    name = Column(String(255), nullable=True)
+    phase = Column(SQLEnum(PhaseType), default=PhaseType.RECON)
+    # Timing
+    started_at = Column(DateTime, server_default=func.now())
+    ended_at = Column(DateTime, nullable=True)
+    # Progress
+    iteration = Column(Integer, default=0)
+    max_iterations = Column(Integer, default=100)
+    status = Column(String(50), default="running")  # running, paused, completed, error
+    # State
+    state = Column(JSON, default=dict)  # Full agent state for resume
+    memory_summary = Column(Text, nullable=True)  # Compressed memory
+    # Relationships
+    project = relationship("Project", back_populates="sessions")
+    tasks = relationship("Task", back_populates="session", cascade="all, delete-orphan")
+    # Indexes
+    __table_args__ = (
+        Index("idx_session_project", "project_id"),
+        Index("idx_session_status", "status"),
+    )
+    def __repr__(self):
+        return f"<Session(id={self.id}, project_id={self.project_id}, phase='{self.phase}')>"
+class Finding(Base):
+    """
+    Discovered finding (vulnerability, service, credential, etc.)
+    """
+    __tablename__ = "findings"
+    id = Column(Integer, primary_key=True, autoincrement=True)
+    project_id = Column(Integer, ForeignKey("projects.id"), nullable=False)
+    session_id = Column(Integer, ForeignKey("sessions.id"), nullable=True)
+    # Finding details
+    type = Column(String(50), nullable=False)  # port, service, vuln, credential, host, path
+    value = Column(String(500), nullable=False)  # Primary identifier
+    description = Column(Text, nullable=True)
+    severity = Column(SQLEnum(SeverityLevel), default=SeverityLevel.INFO)
+    # Metadata
+    phase = Column(SQLEnum(PhaseType), nullable=True)
+    tool = Column(String(100), nullable=True)  # Tool that found this
+    raw_output = Column(Text, nullable=True)  # Original tool output
+    extra_data = Column(JSON, default=dict)  # Additional structured data (renamed from metadata - reserved in SQLAlchemy)
+    # Verification
+    verified = Column(Boolean, default=False)
+    false_positive = Column(Boolean, default=False)
+    notes = Column(Text, nullable=True)
+    # Timing
+    discovered_at = Column(DateTime, server_default=func.now())
+    # Relationships
+    project = relationship("Project", back_populates="findings")
+    # Indexes
+    __table_args__ = (
+        Index("idx_finding_project", "project_id"),
+        Index("idx_finding_type", "type"),
+        Index("idx_finding_severity", "severity"),
+        Index("idx_finding_value", "value"),
+    )
+    def __repr__(self):
+        return f"<Finding(id={self.id}, type='{self.type}', value='{self.value[:30]}')>"
+    def to_dict(self) -> dict:
+        """Convert to dictionary"""
+        return {
+            "id": self.id,
+            "type": self.type,
+            "value": self.value,
+            "description": self.description,
+            "severity": self.severity.value if self.severity else "info",
+            "phase": self.phase.value if self.phase else None,
+            "tool": self.tool,
+            "extra_data": self.extra_data,
+            "verified": self.verified,
+            "false_positive": self.false_positive,
+            "discovered_at": self.discovered_at.isoformat() if self.discovered_at else None,
+        }
+class Task(Base):
+    """
+    PTT task for tracking pentest progress
+    """
+    __tablename__ = "tasks"
+    id = Column(Integer, primary_key=True, autoincrement=True)
+    session_id = Column(Integer, ForeignKey("sessions.id"), nullable=False)
+    # Task details
+    task_id = Column(String(10), nullable=False)  # e.g., "R1", "E2"
+    description = Column(Text, nullable=False)
+    phase = Column(SQLEnum(PhaseType), nullable=False)
+    status = Column(SQLEnum(TaskStatus), default=TaskStatus.TODO)
+    # Timing
+    created_at = Column(DateTime, server_default=func.now())
+    started_at = Column(DateTime, nullable=True)
+    completed_at = Column(DateTime, nullable=True)
+    # Results
+    findings_count = Column(Integer, default=0)
+    notes = Column(Text, nullable=True)
+    # Relationships
+    session = relationship("Session", back_populates="tasks")
+    # Indexes
+    __table_args__ = (
+        Index("idx_task_session", "session_id"),
+        Index("idx_task_phase", "phase"),
+        Index("idx_task_status", "status"),
+    )
+    def __repr__(self):
+        return f"<Task(id={self.id}, task_id='{self.task_id}', status='{self.status}')>"
+def create_database(db_url: str = "sqlite:///aipt.db") -> None:
+    """Create database tables"""
+    engine = create_engine(db_url)
+    Base.metadata.create_all(engine)
+    return engine