๐Ÿ”’SecurityRepoIndex

AutoPwn

LLM-driven exploit-chaining agent that tries to go from scan input to a proven exploit

3.6/ 51,100 GitHub starsPythonMIT

โšก TL;DR

What
LLM-driven exploit-chaining agent that tries to go from scan input to a proven exploit
Who
Red Teams, Pentesters comfortable supervising an LLM
Catch
"Fully autonomous" is misleading โ€” it fails without human supervision
Verdict
โญโญโญโญ Recommended

๐ŸŽฏ The Problem It Solves

The hardest part of a pentest isn't running individual exploits โ€” it's chaining them: a foothold here, a pivots there, until you reach the objective. AutoPwn wraps that chaining logic in an LLM agent that reads scan output, picks exploits, runs them, and pivots โ€” claiming to be "fully autonomous." In practice it's an LLM copilot with more ambition than reliability: it'll genuinely try to chain attacks, but it hallucinates, fizzles, and needs a human holding the kill switch.

๐Ÿ”ง How It Works

You give AutoPwn a target and an engagement type (full / web / network). It runs an initial scan (Nmap + optional vulnerability scan), feeds the output to the LLM, which proposes an exploit to try, executes it via Metasploit or direct shell, and iterates. The agent is built on top of a framework like LangChain/crewAI, with tool wrappers around common offensive tools. It is explicitly designed to chain across steps โ€” not just run one-shot exploits. The critical caveat: the LLM is doing both the planning and the tool-selection, so it is only as good as the LLM's reasoning about exploit feasibility.

๐Ÿš€ Installation & Quick Start

Installation

git clone https://github.com/AutoPwnProject/autopwn.git
cd autopwn
pip install -r requirements.txt
autopwn init  # creates config.yaml
echo "openai_api_key: sk-..." >> config.yaml

Quick Start

  1. git clone https://github.com/AutoPwnProject/autopwn && cd autopwn
  2. pip install -r requirements.txt
  3. autopwn init && edit config.yaml with your API key
  4. autopwn run --target 10.0.0.5 --engagement full
  5. Supervise every step โ€” do NOT leave it unattended

โœ… Pros

  • โ€ขMore ambition than single-shot exploit tools โ€” genuinely tries to chain
  • โ€ขActive development with a clear vision
  • โ€ขReport generation reduces post-engagement admin
  • โ€ขOpen-source and free

โŒ Cons

  • โ€ข"Fully autonomous" is misleading โ€” it fails without human supervision
  • โ€ขHigh false-positive rate on exploit selection
  • โ€ขToken costs can exceed $20/run on a real engagement
  • โ€ขBrittle chaining: one failed pivot breaks the whole run

๐Ÿ’ฌ Practitioner Verdict

"AutoPwn is PentestGPT's more reckless cousin. The ambition to chain exploits is real and interesting, but the reliability isn't there yet to trust it unsupervised. Use it in a lab to study LLM-based chaining, not on a paid engagement. If you supervise every step, you'll learn where these agents shine and where they fail โ€” which is valuable intel in itself."
โ€” Emmanuel, Security Reviewer

๐Ÿ“Š Specifications

Language
Python
License
MIT
Platform
Linux, macOS, Windows
Kill Chain
Exploitation / Lateral Movement
MITRE ATT&CK
T1595, T1592, T1210

๐Ÿ’ฐ Pricing Reality

AutoPwn is free (MIT). The real cost is API spend โ€” GPT-4 runs of a full engagement easily cost $10-20+, especially when the LLM loops and retries. No local-logic fallback.

๐Ÿ‘ฅ Community Health

Stars1,100
Forks137
Contributors22
Health Score5.4/10

๐Ÿท๏ธ Tags

AgentsLLM

๐ŸŽฌ Video Tutorials

AutoPwn AI Pentesting Demo

AutoPwn ยท 23K views ยท 18:30