Skip to content

Anthares101/agentic-cyber

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

20 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Agentic Cyber

The root CLAUDE.md has information about hacking methodology and different guidelines. Also, there are some custom skills loaded into the project and dedicated agents.

Requirements

Warning

Everything is designed to be used from a Linux environment! Also, all agents have Sonnet setup as the model to use and Opus is recomended for the pipeline orchestration.

Install this CLI tools in the host, also note that the locations given to the agents to look for Wordlists are /usr/share/seclists and /home/kali/Wordlists:

shodan
subfinder
crt
nmap
httpx
ffuf
katana
ldapsearch
ssh-audit
curl
dig
nc
showmount
jq
nuclei
redis-cli
snmpwalk
aws
grype
playwright-cli

In addition to the CLI tools, make sure you have a valid NVD API key set in NVD_API_KEY to improve the cve-hunter agent speed and install these skills from trailofbits/skills-curated marketplace:

ffuf-web-fuzzing
humanizer
security-awareness
openai-playwright

scope-recon agent

During the reconnaissance phase, launch this agent first: "Run scope-recon agent for Acme Corp, subsidiaries in scope". The agent will generate the file state/scope.json.

In case the scope is already known, provide a file to the agent and it will process it to generate state/scope.json from it.

Scout pipeline

If the state/scope.json assets are indeed part of the assesment, run this pipeline, it is focussed on discovering the exposed perimeter of a company. It will produce a report with information about all the attack surface of the target to ease the reconnaissance phase.

Pipeline diagram

About

A place to store all agentic related stuff.

Resources

License

Stars

1 star

Watchers

0 watching

Forks

Contributors