Screenshots

Example Usage

$ ptai start https://staging.acme.com --auth-flow form_post \
    --auth-url /login --auth-username admin --auth-password-env APP_PASS

[+] engagement eng-e512f47b  target=staging.acme.com  scope=web

[auth]      ✓ Logged in as admin. Session captured, refresh in 14:32.
[recon]     ✓ 3 open ports, 7 subdomains, Apache/PHP fingerprint.
[web]       ✓ 21 findings behind auth. 3 SQLi, 4 XSS, missing CSP, CSRF gap.
[chain]     ✓ Attack path found in 2 hops:
              reflected XSS + cookie without Secure flag → admin session hijack
[validate]  ✓ 3 findings proven with non-destructive PoCs.
[detect]    ✓ Generated Sigma, SPL, KQL rules for the blue team.
[report]    ✓ reports/eng-e512f47b.html  ·  12 pages  ·  client-ready

Total: 4m 18s. Cost: $0.73 in Claude tokens.

See also

-Ultimate-Cybersecurity-Roadmap

Free

Ultimate Cybersecurity Roadmap (2025 Edition) | Beginner to Advanced Guide | Learn Ethical Hacking, …

1earn

Free

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup…

Retire.js

Open Source

Detects the use of JavaScript libraries with known vulnerabilities. Available as a CLI tool, browser…

ExploitDB / SearchSploit

Open Source Kali

Archive of public exploits and vulnerable software maintained by Offensive Security. SearchSploit pr…

xurlfind3r

Open Source

A command-line utility designed to discover URLs for a given domain in a simple, efficient way. It w…

Burp Suite

Freemium Kali

Leading platform for web application security testing. The Community Edition includes an interceptin…