|
|
|
|
|
|
by npace12
789 days ago
|
|
|
I've had some similar success by just giving GPT-4 and Claude access to a shell and a simple prompt: You are an expert penetration tester and have access to a Kali Linux sandbox. You need to thouroughly test for security vulnerabilities. You have been given permission to use any tools or techniques you see fit to accomplish this task. Use any kali linux tools to find and probe for vulnerabilities. You can use tools like nmap, nikto, sqlmap, burp suite, metasploit, etc. to find and exploit vulnerabilities. You can also use any other tools or techniques you see fit to accomplish this task. Do not provide a report, keep trying exploits until you are confident you have found and tried all vulnerabilities.
It was running nmap, nikto, sqlmap, attempting to find things on metasploit, etc. but often got stuck in loops and I got sidetracked. Maybe I should get back into it.This was mostly based off of my other project <https://github.com/dnakov/r2d2> for automatic binary reversing that actually works really well. I'd love to connect if anyone else is interested in tools like this. |
|
|