Automated Penetration Testing Toolkit Designed for Linux systems

Automated Penetration Testing Toolkit Designed for Linux systems

Posted on By CWS

AutoPentestX, an open-source automated penetration testing toolkit for Linux methods, allows complete safety assessments from a single command.

Developed by Gowtham Darkseid and launched in November 2025, it generates skilled PDF reviews whereas emphasizing protected, non-destructive testing.

AutoPentestX targets Kali Linux, Ubuntu, and Debian-based distributions, automating OS detection, port scanning, service enumeration, and vulnerability checks.

It integrates Nmap for community scans, Nikto and SQLMap for internet testing, and CVE lookups for danger scoring primarily based on CVSS metrics. The toolkit shops leads to an SQLite database and helps Metasploit RC scripts for handbook exploitation overview with out precise hurt.

ToolPurposeIntegration MethodNmapPort/OS scanning, service enumpython-nmap libraryNiktoWeb server vulnerabilitiesSubprocess execution SQLMapSQL injection detectionSubprocess executionMetasploitExploit simulationRC script generationCVE CIRCLVulnerability database queriesREST API callsReportLabPDF report generationPython library

This desk highlights the modular design, permitting skips for internet scans or exploits through command flags.

Set up requires Python 3.8+, root entry, and instruments like Nmap. Customers clone the repo, run ./set up.sh for dependencies, or go for handbook venv setup with pip set up -r necessities.txt.

Utilization is straightforward: ./autopentestx.sh launches full scans, outputting to reviews/, logs/, and database/ directories.

Choices embrace –no-safe-mode (not beneficial), –skip-web, and customized tester names. Scans take 5-Half-hour, producing PDFs with govt summaries, danger classifications (CRITICAL: CVSS 9.0+), and remediation recommendation.

Experiences function open ports tables, CVE particulars, and weighted scores factoring exploitability. Knowledge persists for historic evaluation, with JSON exports for integration. Protected mode ensures no disruption, logging all actions for audits.

Strictly for licensed testing, it consists of disclaimers in opposition to unauthorized use and compliance with legal guidelines. Future plans embrace multi-target assist and ML predictions.

Observe us on Google Information, LinkedIn, and X for day by day cybersecurity updates. Contact us to function your tales.

Cyber Security News Tags:, , , , , ,

Related Posts

Citrix NetScaler Targeted by Sophisticated Scanning Campaign Citrix NetScaler Targeted by Sophisticated Scanning Campaign Cyber Security News
CISA Warns of WhatsApp 0-Day Vulnerability Exploited in Attacks CISA Warns of WhatsApp 0-Day Vulnerability Exploited in Attacks Cyber Security News
Hackers Exploit Cline’s npm Token for 8 Hours Hackers Exploit Cline’s npm Token for 8 Hours Cyber Security News
Teaching Claude to Cheat Reward Hacking Coding Tasks Makes Them Behave Maliciously in Other Tasks Teaching Claude to Cheat Reward Hacking Coding Tasks Makes Them Behave Maliciously in Other Tasks Cyber Security News
Top 5 WMIC Commands Used By Malware  Top 5 WMIC Commands Used By Malware  Cyber Security News
Microsoft Outlook’s New Two-Click View for Encrypted Emails Protects From Accidental Exposure Microsoft Outlook’s New Two-Click View for Encrypted Emails Protects From Accidental Exposure Cyber Security News