AutoPwn
LLM-driven exploit-chaining agent that tries to go from scan input to a proven exploit
โก TL;DR
๐ฏ The Problem It Solves
The hardest part of a pentest isn't running individual exploits โ it's chaining them: a foothold here, a pivots there, until you reach the objective. AutoPwn wraps that chaining logic in an LLM agent that reads scan output, picks exploits, runs them, and pivots โ claiming to be "fully autonomous." In practice it's an LLM copilot with more ambition than reliability: it'll genuinely try to chain attacks, but it hallucinates, fizzles, and needs a human holding the kill switch.
๐ง How It Works
You give AutoPwn a target and an engagement type (full / web / network). It runs an initial scan (Nmap + optional vulnerability scan), feeds the output to the LLM, which proposes an exploit to try, executes it via Metasploit or direct shell, and iterates. The agent is built on top of a framework like LangChain/crewAI, with tool wrappers around common offensive tools. It is explicitly designed to chain across steps โ not just run one-shot exploits. The critical caveat: the LLM is doing both the planning and the tool-selection, so it is only as good as the LLM's reasoning about exploit feasibility.
๐ Installation & Quick Start
Installation
git clone https://github.com/AutoPwnProject/autopwn.git
cd autopwn
pip install -r requirements.txt
autopwn init # creates config.yaml
echo "openai_api_key: sk-..." >> config.yamlQuick Start
- git clone https://github.com/AutoPwnProject/autopwn && cd autopwn
- pip install -r requirements.txt
- autopwn init && edit config.yaml with your API key
- autopwn run --target 10.0.0.5 --engagement full
- Supervise every step โ do NOT leave it unattended
โ Pros
- โขMore ambition than single-shot exploit tools โ genuinely tries to chain
- โขActive development with a clear vision
- โขReport generation reduces post-engagement admin
- โขOpen-source and free
โ Cons
- โข"Fully autonomous" is misleading โ it fails without human supervision
- โขHigh false-positive rate on exploit selection
- โขToken costs can exceed $20/run on a real engagement
- โขBrittle chaining: one failed pivot breaks the whole run
๐ฌ Practitioner Verdict
"AutoPwn is PentestGPT's more reckless cousin. The ambition to chain exploits is real and interesting, but the reliability isn't there yet to trust it unsupervised. Use it in a lab to study LLM-based chaining, not on a paid engagement. If you supervise every step, you'll learn where these agents shine and where they fail โ which is valuable intel in itself."
๐ Specifications
- Language
- Python
- License
- MIT
- Platform
- Linux, macOS, Windows
- Kill Chain
- Exploitation / Lateral Movement
- MITRE ATT&CK
- T1595, T1592, T1210
๐ฐ Pricing Reality
AutoPwn is free (MIT). The real cost is API spend โ GPT-4 runs of a full engagement easily cost $10-20+, especially when the LLM loops and retries. No local-logic fallback.
๐ฅ Community Health
๐ท๏ธ Tags
๐ฌ Video Tutorials
AutoPwn AI Pentesting Demo
AutoPwn ยท 23K views ยท 18:30