SourcePulse logo
HomeBrowse all repos

HackSynth  by aielte-research

LLM agent for autonomous cybersecurity penetration testing

Created 11 months ago
253 stars

Top 99.4% on SourcePulse

GitHubView on GitHub
Project Summary

HackSynth provides an LLM-based agent and evaluation framework for autonomous penetration testing. It is designed for researchers and engineers seeking to benchmark and develop LLM agents for cybersecurity tasks, offering a standardized approach to evaluating their capabilities in simulated environments.

How It Works

HackSynth employs a dual-module architecture comprising a Planner and a Summarizer. The Planner module is responsible for generating sequences of commands to execute within a target environment, while the Summarizer processes the feedback received from these commands. This iterative loop allows the agent to autonomously navigate, identify vulnerabilities, and achieve penetration testing objectives.

Quick Start & Requirements

To set up HackSynth, first create accounts on Hugging Face and Neptune.ai, then copy your API keys into a .env file. Install the environment using:

python -m venv cyber_venv
source cyber_venv/bin/activate
pip install -r requirements.txt

Ensure desired CUDA devices are configured. The project includes setup instructions for PicoCTF and OverTheWire benchmarks. To start the agent and benchmark, run:

python run_bench.py -b benchmark.json -c config.json

The paper detailing HackSynth is available on arXiv: https://arxiv.org/abs/2412.01778.

Highlighted Details

  • Features a novel LLM-based agent designed for autonomous penetration testing.
  • Introduces two new CTF-based benchmark sets utilizing PicoCTF and OverTheWire platforms.
  • Benchmarks comprise two hundred challenges across diverse domains and difficulties, offering a standardized evaluation framework.

Maintenance & Community

The project is contributed by Lajos Muzsai, David Imolai, and András Lukács. A related project, HackSynth-GRPO, focuses on reinforcement learning for cryptographic CTFs.

Licensing & Compatibility

HackSynth is released under the GNU AGPLv3 license. This strong copyleft license requires that any derivative works or modifications distributed must also be made available under the AGPLv3. This may impose restrictions on integration with closed-source commercial software.

Limitations & Caveats

The provided README does not explicitly detail any limitations, alpha status, or known bugs of the HackSynth framework.

Health Check
Last Commit

4 months ago

Responsiveness

Inactive

Pull Requests (30d)
0
Issues (30d)
0
Star History
16 stars in the last 30 days

Explore Similar Projects

CTFKnow by tszdanger

6.1%
278
Framework for evaluating LLMs on cybersecurity CTF challenges
Created 4 months ago
Updated 4 months ago

Halberd by vectra-ai-research

0.6%
319
Multi-cloud security testing platform for attack emulation
Created 1 year ago
Updated 2 months ago

Awesome-LLM4Security by liu673

0.4%
266
A curated repository of LLM applications in cybersecurity
Created 1 year ago
Updated 3 weeks ago
Starred by Dan Guido Dan Guido(Cofounder of Trail of Bits).

awesome-cybersecurity-agentic-ai by raphabot

0.9%
324
Awesome Cybersecurity Agentic AI
Created 5 months ago
Updated 1 month ago

finite-monkey-engine by BradMoonUESTC

0.3%
320
AI engine for smart contract audit
Created 1 year ago
Updated 2 weeks ago

awesome-gpt-security by cckuailong

0%
631
Curated security resources for LLMs and GPT
Created 2 years ago
Updated 2 months ago

deep-eye by zakirkun

59.0%
450
AI-driven vulnerability scanner and penetration testing framework
Created 2 weeks ago
Updated 1 week ago
Starred by Dan Guido Dan Guido(Cofounder of Trail of Bits).

Awesome-LLM4Cybersecurity by tmylla

1.2%
1k
Literature review of LLMs in cybersecurity
Created 1 year ago
Updated 6 months ago

pentagi by vxcontrol

1.9%
763
Autonomous AI agent system for penetration testing
Created 10 months ago
Updated 2 days ago
Starred by Tim J. Baek Tim J. Baek(Founder of Open WebUI), Daniel Han Daniel Han(Cofounder of Unsloth), and
1 more.

hackingBuddyGPT by ipa-lab

0.9%
856
LLM agentic framework for security researchers/pen-testers
Created 2 years ago
Updated 2 months ago
Starred by Dan Guido Dan Guido(Cofounder of Trail of Bits), Chip Huyen Chip Huyen(Author of "AI Engineering", "Designing Machine Learning Systems"), and
1 more.

cai by aliasrobotics

3.4%
5k
Cybersecurity AI (CAI) is an open framework for building AI-driven cybersecurity tools
Created 7 months ago
Updated 1 day ago

hexstrike-ai by 0x4m4

2.7%
4k
AI agents for autonomous penetration testing and cybersecurity research
Created 3 months ago
Updated 4 days ago
Feedback? Help us improve.