pentester 0.0.1__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
pentester/__init__.py
ADDED
|
@@ -0,0 +1,8 @@
|
|
|
1
|
+
"""pentester — full-scale web/network/API penetration testing with AI on demand.
|
|
2
|
+
|
|
3
|
+
Name reserved for insom.ai. The full dynamic-analysis engine lands in upcoming
|
|
4
|
+
releases; this build ships a working CLI shell.
|
|
5
|
+
"""
|
|
6
|
+
|
|
7
|
+
__version__ = "0.0.1"
|
|
8
|
+
__all__ = ["__version__"]
|
pentester/__main__.py
ADDED
pentester/cli.py
ADDED
|
@@ -0,0 +1,54 @@
|
|
|
1
|
+
"""Command-line entry point for `pentester`.
|
|
2
|
+
|
|
3
|
+
Name reserved for insom.ai. This early release ships a working CLI shell; the
|
|
4
|
+
full-scale web/network/API dynamic-analysis engine (with AI on demand) is added
|
|
5
|
+
in later releases.
|
|
6
|
+
"""
|
|
7
|
+
import argparse
|
|
8
|
+
import sys
|
|
9
|
+
|
|
10
|
+
from . import __version__
|
|
11
|
+
|
|
12
|
+
_BANNER = r"""
|
|
13
|
+
██████╗ ███████╗███╗ ██╗████████╗███████╗███████╗████████╗███████╗██████╗
|
|
14
|
+
██╔══██╗██╔════╝████╗ ██║╚══██╔══╝██╔════╝██╔════╝╚══██╔══╝██╔════╝██╔══██╗
|
|
15
|
+
██████╔╝█████╗ ██╔██╗ ██║ ██║ █████╗ ███████╗ ██║ █████╗ ██████╔╝
|
|
16
|
+
██╔═══╝ ██╔══╝ ██║╚██╗██║ ██║ ██╔══╝ ╚════██║ ██║ ██╔══╝ ██╔══██╗
|
|
17
|
+
██║ ███████╗██║ ╚████║ ██║ ███████╗███████║ ██║ ███████╗██║ ██║
|
|
18
|
+
╚═╝ ╚══════╝╚═╝ ╚═══╝ ╚═╝ ╚══════╝╚══════╝ ╚═╝ ╚══════╝╚═╝ ╚═╝
|
|
19
|
+
full-scale web · network · api pentesting — AI on demand v{ver}
|
|
20
|
+
"""
|
|
21
|
+
|
|
22
|
+
|
|
23
|
+
def build_parser() -> argparse.ArgumentParser:
|
|
24
|
+
p = argparse.ArgumentParser(
|
|
25
|
+
prog="pentester",
|
|
26
|
+
description="Full-scale web/network/API penetration testing with AI on demand.",
|
|
27
|
+
)
|
|
28
|
+
p.add_argument("--version", action="version",
|
|
29
|
+
version=f"pentester {__version__}")
|
|
30
|
+
sub = p.add_subparsers(dest="command")
|
|
31
|
+
scan = sub.add_parser(
|
|
32
|
+
"scan", help="(coming soon) run a dynamic scan against a target")
|
|
33
|
+
scan.add_argument("target", nargs="?", help="target URL or host")
|
|
34
|
+
return p
|
|
35
|
+
|
|
36
|
+
|
|
37
|
+
def main(argv=None) -> int:
|
|
38
|
+
argv = list(sys.argv[1:] if argv is None else argv)
|
|
39
|
+
parser = build_parser()
|
|
40
|
+
args = parser.parse_args(argv)
|
|
41
|
+
print(_BANNER.format(ver=__version__))
|
|
42
|
+
if args.command == "scan":
|
|
43
|
+
print(f"[pentester] the dynamic-analysis engine is not implemented yet "
|
|
44
|
+
f"(target: {args.target or 'none given'}).")
|
|
45
|
+
print(" This package name is reserved for insom.ai — "
|
|
46
|
+
"watch the releases.")
|
|
47
|
+
else:
|
|
48
|
+
print(" Reserved for insom.ai. Engine arriving in upcoming releases.")
|
|
49
|
+
print(" Usage: pentester scan <target>")
|
|
50
|
+
return 0
|
|
51
|
+
|
|
52
|
+
|
|
53
|
+
if __name__ == "__main__":
|
|
54
|
+
raise SystemExit(main())
|
|
@@ -0,0 +1,91 @@
|
|
|
1
|
+
Metadata-Version: 2.4
|
|
2
|
+
Name: pentester
|
|
3
|
+
Version: 0.0.1
|
|
4
|
+
Summary: Full-scale web, network & API penetration testing with AI on demand — reserved for insom.ai.
|
|
5
|
+
Project-URL: Homepage, https://github.com/vulnz/pentester
|
|
6
|
+
Project-URL: Source, https://github.com/vulnz/pentester
|
|
7
|
+
Project-URL: Issues, https://github.com/vulnz/pentester/issues
|
|
8
|
+
Author: vulnz
|
|
9
|
+
License: MIT
|
|
10
|
+
License-File: LICENSE
|
|
11
|
+
Keywords: ai,appsec,dast,dynamic-analysis,pentest,pentesting,scanner,security,vulnerability
|
|
12
|
+
Classifier: Development Status :: 2 - Pre-Alpha
|
|
13
|
+
Classifier: Intended Audience :: Developers
|
|
14
|
+
Classifier: Intended Audience :: Information Technology
|
|
15
|
+
Classifier: License :: OSI Approved :: MIT License
|
|
16
|
+
Classifier: Operating System :: OS Independent
|
|
17
|
+
Classifier: Programming Language :: Python :: 3
|
|
18
|
+
Classifier: Topic :: Security
|
|
19
|
+
Requires-Python: >=3.8
|
|
20
|
+
Description-Content-Type: text/markdown
|
|
21
|
+
|
|
22
|
+
# pentester
|
|
23
|
+
|
|
24
|
+
```
|
|
25
|
+
██████╗ ███████╗███╗ ██╗████████╗███████╗███████╗████████╗███████╗██████╗
|
|
26
|
+
██╔══██╗██╔════╝████╗ ██║╚══██╔══╝██╔════╝██╔════╝╚══██╔══╝██╔════╝██╔══██╗
|
|
27
|
+
██████╔╝█████╗ ██╔██╗ ██║ ██║ █████╗ ███████╗ ██║ █████╗ ██████╔╝
|
|
28
|
+
██╔═══╝ ██╔══╝ ██║╚██╗██║ ██║ ██╔══╝ ╚════██║ ██║ ██╔══╝ ██╔══██╗
|
|
29
|
+
██║ ███████╗██║ ╚████║ ██║ ███████╗███████║ ██║ ███████╗██║ ██║
|
|
30
|
+
╚═╝ ╚══════╝╚═╝ ╚═══╝ ╚═╝ ╚══════╝╚══════╝ ╚═╝ ╚══════╝╚═╝ ╚═╝
|
|
31
|
+
full-scale web · network · api pentesting — AI on demand
|
|
32
|
+
```
|
|
33
|
+
|
|
34
|
+
**`pentester`** is a full-scale offensive security toolkit that brings **web**,
|
|
35
|
+
**network**, and **API** penetration testing under one command line — with
|
|
36
|
+
**AI on demand** to drive recon, mutate requests, and triage findings.
|
|
37
|
+
|
|
38
|
+
> 🚧 **Name reserved for [insom.ai](https://insom.ai).** This release secures
|
|
39
|
+
> the package on PyPI and ships a working CLI shell. The full dynamic-analysis
|
|
40
|
+
> engine lands in upcoming releases — watch this space.
|
|
41
|
+
|
|
42
|
+
[](https://pypi.org/project/pentester/)
|
|
43
|
+
[](https://pypi.org/project/pentester/)
|
|
44
|
+
[](LICENSE)
|
|
45
|
+
|
|
46
|
+
## What it will do
|
|
47
|
+
|
|
48
|
+
| Surface | Capabilities (shipping incrementally) |
|
|
49
|
+
|---------|----------------------------------------|
|
|
50
|
+
| **Web** | Crawling & spidering, authenticated sessions, fuzzing, OWASP-class detection (injection, XSS, SSRF, auth flaws), tech/CMS fingerprinting |
|
|
51
|
+
| **Network** | Host & port discovery, service fingerprinting, protocol enumeration, known-CVE matching, misconfiguration checks |
|
|
52
|
+
| **API** | REST / GraphQL / gRPC discovery, schema-aware fuzzing, auth / BOLA / mass-assignment testing |
|
|
53
|
+
| **AI on demand** | Attack-surface reasoning, request mutation, exploit-path suggestion, finding triage, and natural-language report narration — opt-in, bring-your-own model |
|
|
54
|
+
|
|
55
|
+
## Install
|
|
56
|
+
|
|
57
|
+
```bash
|
|
58
|
+
pip install pentester
|
|
59
|
+
# or, isolated and always on PATH:
|
|
60
|
+
pipx install pentester
|
|
61
|
+
```
|
|
62
|
+
|
|
63
|
+
## Usage
|
|
64
|
+
|
|
65
|
+
```bash
|
|
66
|
+
pentester --version
|
|
67
|
+
pentester scan https://example.com # engine coming soon
|
|
68
|
+
```
|
|
69
|
+
|
|
70
|
+
If the `pentester` command isn't found after a `pip install --user`, run it as
|
|
71
|
+
a module (works regardless of `PATH`):
|
|
72
|
+
|
|
73
|
+
```bash
|
|
74
|
+
python -m pentester --version
|
|
75
|
+
```
|
|
76
|
+
|
|
77
|
+
## Roadmap
|
|
78
|
+
|
|
79
|
+
- [ ] Live web/network/API target fingerprinting
|
|
80
|
+
- [ ] Active scanning & fuzzing engine
|
|
81
|
+
- [ ] Component & dependency vulnerability detection
|
|
82
|
+
- [ ] AI-assisted request mutation and finding triage
|
|
83
|
+
- [ ] HTML / JSON / SARIF reports with CI exit-code gating
|
|
84
|
+
|
|
85
|
+
## License
|
|
86
|
+
|
|
87
|
+
MIT — see [LICENSE](LICENSE).
|
|
88
|
+
|
|
89
|
+
---
|
|
90
|
+
|
|
91
|
+
© CQR Cybersecurity LLC · part of the [insom.ai](https://insom.ai) security platform.
|
|
@@ -0,0 +1,8 @@
|
|
|
1
|
+
pentester/__init__.py,sha256=lW6yoPLrFi4zRc2CJ-26JiCyC9wN-bu2hNhFRRjrPac,264
|
|
2
|
+
pentester/__main__.py,sha256=Nqh2CwcWM2A8bU3aqxemjQarjGOfQQcrkwliOAHTrSw,115
|
|
3
|
+
pentester/cli.py,sha256=tZcnuVOkQPMJPPN8x8LLmS1MEiogakuo2baS6A6e1GY,2808
|
|
4
|
+
pentester-0.0.1.dist-info/METADATA,sha256=8BhIoM-3OOuDrw8gTPV6pv6X1HEFM0OexH726dNnCwQ,4353
|
|
5
|
+
pentester-0.0.1.dist-info/WHEEL,sha256=mffPy8wBnZQn2VnJUU5jE99KsxaSfiyMHV9Yt0aLVxs,87
|
|
6
|
+
pentester-0.0.1.dist-info/entry_points.txt,sha256=fw_U3aaljuAYZfdHqgVjy3i07QAGh1vzjff3BSQEqrw,49
|
|
7
|
+
pentester-0.0.1.dist-info/licenses/LICENSE,sha256=VPOor-4Bi6hjGhSdWrnWsI8Yft1nkWFVMQCFyjcXBUY,1062
|
|
8
|
+
pentester-0.0.1.dist-info/RECORD,,
|
|
@@ -0,0 +1,21 @@
|
|
|
1
|
+
MIT License
|
|
2
|
+
|
|
3
|
+
Copyright (c) 2026 vulnz
|
|
4
|
+
|
|
5
|
+
Permission is hereby granted, free of charge, to any person obtaining a copy
|
|
6
|
+
of this software and associated documentation files (the "Software"), to deal
|
|
7
|
+
in the Software without restriction, including without limitation the rights
|
|
8
|
+
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
|
|
9
|
+
copies of the Software, and to permit persons to whom the Software is
|
|
10
|
+
furnished to do so, subject to the following conditions:
|
|
11
|
+
|
|
12
|
+
The above copyright notice and this permission notice shall be included in all
|
|
13
|
+
copies or substantial portions of the Software.
|
|
14
|
+
|
|
15
|
+
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
|
|
16
|
+
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
|
|
17
|
+
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
|
|
18
|
+
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
|
|
19
|
+
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
|
|
20
|
+
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
|
|
21
|
+
SOFTWARE.
|