aiptx 2.0.7__py3-none-any.whl

aipt_v2/models/scan_config.py

@@ -0,0 +1,207 @@
+"""
+AIPT Scan Configuration
+
+Defines scan modes and configuration options for the unified pipeline.
+"""
+from __future__ import annotations
+
+from dataclasses import dataclass, field
+from enum import Enum
+from typing import Any
+
+
+class ScanMode(Enum):
+    """
+    Scan intensity modes
+
+    QUICK: Fast reconnaissance + AI-autonomous testing only (Aipt)
+    STANDARD: Traditional scanners + AI testing (balanced)
+    COMPREHENSIVE: All scanners + aggressive AI testing + exploitation
+    STEALTH: Low-noise scanning with minimal active probing
+    """
+    QUICK = "quick"
+    STANDARD = "standard"
+    COMPREHENSIVE = "comprehensive"
+    STEALTH = "stealth"
+
+
+class ScannerType(Enum):
+    """Available scanners in the pipeline"""
+    # Traditional DAST
+    ACUNETIX = "acunetix"
+    BURP_SUITE = "burp"
+    ZAP = "zap"
+
+    # Template-based
+    NUCLEI = "nuclei"
+
+    # AI-Autonomous
+    STRIX = "aipt"
+
+    # Reconnaissance
+    NMAP = "nmap"
+    SUBFINDER = "subfinder"
+    HTTPX = "httpx"
+
+    # Fuzzing
+    FFUF = "ffuf"
+    SQLMAP = "sqlmap"
+
+
+@dataclass
+class ScanConfig:
+    """
+    Unified scan configuration for AIPT
+
+    This config controls all aspects of the scanning pipeline:
+    - Target specification
+    - Scanner selection and configuration
+    - AI agent settings
+    - Output and reporting options
+    """
+
+    # Target configuration
+    target: str  # Primary target URL or domain
+    scope: list[str] = field(default_factory=list)  # Additional in-scope URLs/patterns
+    exclude_patterns: list[str] = field(default_factory=list)  # URLs to exclude
+
+    # Scan mode
+    mode: ScanMode = ScanMode.STANDARD
+
+    # Phase configuration
+    enable_recon: bool = True
+    enable_traditional_scan: bool = True
+    enable_ai_pentest: bool = True  # NEW: Aipt AI-autonomous testing
+    enable_exploitation: bool = False  # Disabled by default for safety
+    enable_reporting: bool = True
+
+    # Scanner selection
+    enabled_scanners: list[ScannerType] = field(default_factory=lambda: [
+        ScannerType.NUCLEI,
+        ScannerType.STRIX,
+    ])
+
+    # Traditional scanner configs
+    acunetix_config: dict[str, Any] = field(default_factory=dict)
+    burp_config: dict[str, Any] = field(default_factory=dict)
+    zap_config: dict[str, Any] = field(default_factory=dict)
+    nuclei_config: dict[str, Any] = field(default_factory=dict)
+
+    # Aipt AI configuration
+    aipt_config: "AiptConfig" = field(default_factory=lambda: AiptConfig())
+
+    # Authentication
+    auth_config: dict[str, Any] | None = None
+
+    # Rate limiting
+    max_requests_per_second: int = 10
+    max_concurrent_scans: int = 3
+
+    # Timeouts (in seconds)
+    phase_timeout: int = 3600  # 1 hour per phase
+    total_timeout: int = 14400  # 4 hours total
+
+    # Output configuration
+    output_dir: str = "./aipt_results"
+    report_formats: list[str] = field(default_factory=lambda: ["html", "json", "pdf"])
+
+    # Verbosity
+    verbose: bool = False
+    debug: bool = False
+
+    @classmethod
+    def quick(cls, target: str) -> "ScanConfig":
+        """Create a quick scan config (AI + Nuclei only)"""
+        return cls(
+            target=target,
+            mode=ScanMode.QUICK,
+            enable_recon=True,
+            enable_traditional_scan=False,
+            enable_ai_pentest=True,
+            enable_exploitation=False,
+            enabled_scanners=[ScannerType.NUCLEI, ScannerType.STRIX],
+            phase_timeout=1800,  # 30 min
+            total_timeout=3600,  # 1 hour
+        )
+
+    @classmethod
+    def standard(cls, target: str) -> "ScanConfig":
+        """Create a standard scan config"""
+        return cls(
+            target=target,
+            mode=ScanMode.STANDARD,
+            enabled_scanners=[
+                ScannerType.NUCLEI,
+                ScannerType.ZAP,
+                ScannerType.STRIX,
+            ],
+        )
+
+    @classmethod
+    def comprehensive(cls, target: str) -> "ScanConfig":
+        """Create a comprehensive scan config (all scanners + exploitation)"""
+        return cls(
+            target=target,
+            mode=ScanMode.COMPREHENSIVE,
+            enable_exploitation=True,
+            enabled_scanners=[
+                ScannerType.ACUNETIX,
+                ScannerType.BURP_SUITE,
+                ScannerType.ZAP,
+                ScannerType.NUCLEI,
+                ScannerType.STRIX,
+            ],
+            aipt_config=AiptConfig(
+                modules=["all"],
+                autonomous_exploitation=True,
+                max_agent_iterations=50,
+            ),
+            phase_timeout=7200,  # 2 hours
+            total_timeout=28800,  # 8 hours
+        )
+
+
+@dataclass
+class AiptConfig:
+    """
+    Aipt AI Agent Configuration
+
+    Controls how the AI-autonomous pentesting phase operates.
+    """
+
+    # LLM configuration
+    llm_provider: str = "openai"  # openai, anthropic, azure
+    llm_model: str = "gpt-4o"  # gpt-4o, claude-3-5-sonnet, etc.
+    llm_api_key: str | None = None  # If None, uses environment variable
+
+    # Prompt modules to load (vulnerability knowledge)
+    modules: list[str] = field(default_factory=lambda: [
+        "sql_injection",
+        "xss",
+        "rce",
+        "ssrf",
+        "auth_bypass",
+    ])
+
+    # Agent behavior
+    max_agent_iterations: int = 30  # Max tool calls per session
+    autonomous_exploitation: bool = False  # If True, attempts full exploitation
+    confirm_before_exploit: bool = True  # Require human confirmation
+
+    # Scope constraints
+    stay_in_scope: bool = True
+    allowed_methods: list[str] = field(default_factory=lambda: ["GET", "POST"])
+    disallowed_paths: list[str] = field(default_factory=lambda: [
+        "/admin",
+        "/logout",
+        "/delete",
+    ])
+
+    # Sandbox settings
+    use_docker_sandbox: bool = True
+    sandbox_network_mode: str = "bridge"
+    sandbox_timeout: int = 300  # 5 min per sandbox session
+
+    # Output
+    save_agent_traces: bool = True
+    trace_output_dir: str = "./aipt_traces"

aipt_v2/monitoring/grafana/dashboards/aipt-dashboard.json

@@ -0,0 +1,355 @@
+{
+  "annotations": {
+    "list": []
+  },
+  "editable": true,
+  "fiscalYearStartMonth": 0,
+  "graphTooltip": 0,
+  "id": null,
+  "links": [],
+  "liveNow": false,
+  "panels": [
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "prometheus"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              { "color": "green", "value": null },
+              { "color": "yellow", "value": 80 },
+              { "color": "red", "value": 90 }
+            ]
+          },
+          "unit": "percent"
+        }
+      },
+      "gridPos": { "h": 8, "w": 6, "x": 0, "y": 0 },
+      "id": 1,
+      "options": {
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": ["lastNotNull"],
+          "fields": "",
+          "values": false
+        },
+        "showThresholdLabels": false,
+        "showThresholdMarkers": true
+      },
+      "pluginVersion": "10.0.0",
+      "targets": [
+        {
+          "expr": "process_cpu_percent",
+          "refId": "A"
+        }
+      ],
+      "title": "CPU Usage",
+      "type": "gauge"
+    },
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "prometheus"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              { "color": "green", "value": null }
+            ]
+          },
+          "unit": "bytes"
+        }
+      },
+      "gridPos": { "h": 8, "w": 6, "x": 6, "y": 0 },
+      "id": 2,
+      "options": {
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": ["lastNotNull"],
+          "fields": "",
+          "values": false
+        },
+        "showThresholdLabels": false,
+        "showThresholdMarkers": true
+      },
+      "pluginVersion": "10.0.0",
+      "targets": [
+        {
+          "expr": "process_resident_memory_bytes",
+          "refId": "A"
+        }
+      ],
+      "title": "Memory Usage",
+      "type": "gauge"
+    },
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "prometheus"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              { "color": "green", "value": null }
+            ]
+          },
+          "unit": "s"
+        }
+      },
+      "gridPos": { "h": 8, "w": 6, "x": 12, "y": 0 },
+      "id": 3,
+      "options": {
+        "colorMode": "value",
+        "graphMode": "area",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": ["lastNotNull"],
+          "fields": "",
+          "values": false
+        },
+        "textMode": "auto"
+      },
+      "pluginVersion": "10.0.0",
+      "targets": [
+        {
+          "expr": "aipt_uptime_seconds",
+          "refId": "A"
+        }
+      ],
+      "title": "Uptime",
+      "type": "stat"
+    },
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "prometheus"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              { "color": "green", "value": null }
+            ]
+          }
+        }
+      },
+      "gridPos": { "h": 8, "w": 6, "x": 18, "y": 0 },
+      "id": 4,
+      "options": {
+        "colorMode": "value",
+        "graphMode": "area",
+        "justifyMode": "auto",
+        "orientation": "auto",
+        "reduceOptions": {
+          "calcs": ["lastNotNull"],
+          "fields": "",
+          "values": false
+        },
+        "textMode": "auto"
+      },
+      "pluginVersion": "10.0.0",
+      "targets": [
+        {
+          "expr": "aipt_http_requests_total",
+          "refId": "A"
+        }
+      ],
+      "title": "Total Requests",
+      "type": "stat"
+    },
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "prometheus"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 10,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "auto",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              { "color": "green", "value": null }
+            ]
+          }
+        }
+      },
+      "gridPos": { "h": 8, "w": 12, "x": 0, "y": 8 },
+      "id": 5,
+      "options": {
+        "legend": {
+          "calcs": [],
+          "displayMode": "list",
+          "placement": "bottom",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "single",
+          "sort": "none"
+        }
+      },
+      "targets": [
+        {
+          "expr": "rate(aipt_http_requests_total[5m])",
+          "legendFormat": "Requests/sec",
+          "refId": "A"
+        }
+      ],
+      "title": "Request Rate",
+      "type": "timeseries"
+    },
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "prometheus"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 10,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "auto",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              { "color": "green", "value": null },
+              { "color": "red", "value": 80 }
+            ]
+          }
+        }
+      },
+      "gridPos": { "h": 8, "w": 12, "x": 12, "y": 8 },
+      "id": 6,
+      "options": {
+        "legend": {
+          "calcs": [],
+          "displayMode": "list",
+          "placement": "bottom",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "single",
+          "sort": "none"
+        }
+      },
+      "targets": [
+        {
+          "expr": "aipt_scan_requests_total",
+          "legendFormat": "Scans",
+          "refId": "A"
+        },
+        {
+          "expr": "aipt_tool_invocations_total",
+          "legendFormat": "Tool Invocations",
+          "refId": "B"
+        }
+      ],
+      "title": "Scan & Tool Activity",
+      "type": "timeseries"
+    }
+  ],
+  "refresh": "5s",
+  "schemaVersion": 38,
+  "style": "dark",
+  "tags": ["aipt", "security", "pentest"],
+  "templating": {
+    "list": []
+  },
+  "time": {
+    "from": "now-1h",
+    "to": "now"
+  },
+  "timepicker": {},
+  "timezone": "",
+  "title": "AIPT v2 Dashboard",
+  "uid": "aipt-v2-main",
+  "version": 1,
+  "weekStart": ""
+}

aipt_v2/monitoring/grafana/dashboards/default.yml

@@ -0,0 +1,17 @@
+# =============================================================================
+# Grafana Dashboard Provisioning
+# =============================================================================
+
+apiVersion: 1
+
+providers:
+  - name: 'AIPT Dashboards'
+    orgId: 1
+    folder: ''
+    folderUid: ''
+    type: file
+    disableDeletion: false
+    editable: true
+    updateIntervalSeconds: 10
+    options:
+      path: /etc/grafana/provisioning/dashboards

aipt_v2/monitoring/grafana/datasources/prometheus.yml

@@ -0,0 +1,17 @@
+# =============================================================================
+# Grafana Datasource Configuration
+# =============================================================================
+# Auto-provision Prometheus as the default datasource
+
+apiVersion: 1
+
+datasources:
+  - name: Prometheus
+    type: prometheus
+    access: proxy
+    url: http://prometheus:9090
+    isDefault: true
+    editable: false
+    jsonData:
+      timeInterval: "15s"
+      httpMethod: POST

aipt_v2/monitoring/prometheus.yml

@@ -0,0 +1,60 @@
+# =============================================================================
+# Prometheus Configuration for AIPT v2
+# =============================================================================
+# Scrape configuration for AIPT metrics
+
+global:
+  scrape_interval: 15s
+  evaluation_interval: 15s
+
+  # Attach these labels to any time series or alerts
+  external_labels:
+    monitor: 'aipt-monitor'
+    environment: 'production'
+
+# Alertmanager configuration (optional)
+# alerting:
+#   alertmanagers:
+#     - static_configs:
+#         - targets:
+#           - alertmanager:9093
+
+# Rule files (optional)
+# rule_files:
+#   - "alerts/*.yml"
+
+scrape_configs:
+  # Prometheus self-monitoring
+  - job_name: 'prometheus'
+    static_configs:
+      - targets: ['localhost:9090']
+
+  # AIPT API metrics
+  - job_name: 'aipt-api'
+    metrics_path: '/metrics'
+    static_configs:
+      - targets: ['aipt-api:8000']
+    relabel_configs:
+      - source_labels: [__address__]
+        target_label: instance
+        replacement: 'aipt-api'
+
+  # AIPT Worker metrics (if enabled)
+  - job_name: 'aipt-worker'
+    metrics_path: '/metrics'
+    static_configs:
+      - targets: ['aipt-worker:8001']
+    relabel_configs:
+      - source_labels: [__address__]
+        target_label: instance
+        replacement: 'aipt-worker'
+
+  # PostgreSQL metrics (if using postgres_exporter)
+  # - job_name: 'postgres'
+  #   static_configs:
+  #     - targets: ['postgres-exporter:9187']
+
+  # Redis metrics (if using redis_exporter)
+  # - job_name: 'redis'
+  #   static_configs:
+  #     - targets: ['redis-exporter:9121']

aipt_v2/orchestration/__init__.py

@@ -0,0 +1,52 @@
+"""
+AIPT Orchestration Module
+
+Enhanced pipeline orchestration with:
+- Phase-based workflow management
+- Tool coordination and scheduling
+- Progress tracking and callbacks
+- Result aggregation and reporting
+
+The main Orchestrator class is re-exported from the original orchestrator.py
+for backward compatibility.
+"""
+from __future__ import annotations
+
+# Import from the original orchestrator (backward compatibility)
+try:
+    from aipt_v2.orchestrator import (
+        Orchestrator,
+        Phase,
+        PhaseResult,
+        OrchestratorConfig,
+        validate_domain,
+        validate_ip,
+    )
+except ImportError:
+    Orchestrator = None
+    Phase = None
+    PhaseResult = None
+    OrchestratorConfig = None
+
+# New orchestration components
+from .pipeline import Pipeline, PipelineStage, PipelineResult
+from .scheduler import TaskScheduler, ScheduledTask, TaskPriority
+from .progress import ProgressTracker, ProgressCallback
+
+__all__ = [
+    # Original orchestrator
+    "Orchestrator",
+    "Phase",
+    "PhaseResult",
+    "OrchestratorConfig",
+    "validate_domain",
+    # New components
+    "Pipeline",
+    "PipelineStage",
+    "PipelineResult",
+    "TaskScheduler",
+    "ScheduledTask",
+    "TaskPriority",
+    "ProgressTracker",
+    "ProgressCallback",
+]