Back to Details

zen-ai-pentest-framework

Compare original and translation side by side

🇺🇸

Original

English
🇨🇳

Translation

Chinese

Zen AI Pentest Framework

Zen AI渗透测试框架

Skill by ara.so — Security Skills collection.
ara.so提供的技能 — 安全技能合集。

Overview

概述

Zen-AI-Pentest is a production-ready, AI-powered autonomous penetration testing framework that orchestrates 72+ real security tools through an intelligent multi-agent system. It executes actual tools (Nmap, Nuclei, SQLMap, FFuF, etc.) with safety controls, not mocks or simulations.
Key capabilities:
  • Autonomous AI agents using ReAct pattern (Reason → Act → Observe → Reflect)
  • Real tool execution in Docker sandbox with 4-level safety controls
  • Risk engine with false positive reduction and CVSS/EPSS scoring
  • FastAPI backend with WebSocket real-time updates
  • PostgreSQL persistence and Redis caching
  • JWT authentication with RBAC
  • Professional PDF/HTML reporting with compliance mapping
  • CI/CD integration (GitHub Actions, GitLab CI, Jenkins)
Zen-AI-Pentest是一款可投入生产环境的、基于AI的自动化渗透测试框架,通过智能多Agent系统编排72余种真实安全工具。它在安全控制下执行真实工具(如Nmap、Nuclei、SQLMap、FFuF等),而非模拟或仿真工具。
核心功能:
  • 采用ReAct模式(推理→执行→观察→反思)的自主AI Agent
  • 在Docker沙箱中执行真实工具,具备4级安全控制
  • 具备误报减少和CVSS/EPSS评分的风险引擎
  • 支持WebSocket实时更新的FastAPI后端
  • PostgreSQL持久化存储和Redis缓存
  • 基于JWT的身份验证与RBAC权限控制
  • 支持合规映射的专业PDF/HTML报告生成
  • CI/CD集成(GitHub Actions、GitLab CI、Jenkins)

Installation

安装

Prerequisites

前置要求

  • Python 3.10+
  • Docker and Docker Compose
  • PostgreSQL 13+ (or use Docker Compose)
  • Redis (optional, for caching)
  • Python 3.10+
  • Docker和Docker Compose
  • PostgreSQL 13+(或使用Docker Compose)
  • Redis(可选,用于缓存)

Quick Start with Docker Compose

使用Docker Compose快速启动

bash
undefined
bash
undefined

Clone repository

Clone repository

git clone https://github.com/SHAdd0WTAka/Zen-Ai-Pentest.git cd Zen-Ai-Pentest
git clone https://github.com/SHAdd0WTAka/Zen-Ai-Pentest.git cd Zen-Ai-Pentest

Set environment variables

Set environment variables

cp .env.example .env
cp .env.example .env

Edit .env with your API keys and configuration

Edit .env with your API keys and configuration

Start full stack

Start full stack

docker-compose up -d
docker-compose up -d

Access web UI

Access web UI

http://localhost:3000 (default credentials: admin/admin)

http://localhost:3000 (default credentials: admin/admin)

Access API docs

Access API docs

http://localhost:8000/docs

http://localhost:8000/docs

undefined
undefined

Manual Installation

手动安装

bash
undefined
bash
undefined

Install Python dependencies

Install Python dependencies

pip install -r requirements.txt
pip install -r requirements.txt

Install security tools (Ubuntu/Debian)

Install security tools (Ubuntu/Debian)

sudo apt-get update sudo apt-get install -y nmap nuclei sqlmap ffuf whatweb wafw00f subfinder httpx nikto
sudo apt-get update sudo apt-get install -y nmap nuclei sqlmap ffuf whatweb wafw00f subfinder httpx nikto

Initialize database

Initialize database

python -m alembic upgrade head
python -m alembic upgrade head

Run API server

Run API server

uvicorn api.main:app --host 0.0.0.0 --port 8000 --reload
uvicorn api.main:app --host 0.0.0.0 --port 8000 --reload

In another terminal, run frontend

In another terminal, run frontend

cd frontend npm install npm run dev
undefined
cd frontend npm install npm run dev
undefined

Configuration

配置

Environment Variables

环境变量

Create 
.env
file in project root:
bash
undefined
在项目根目录创建
.env
文件:
bash
undefined

API Keys (REQUIRED)

API Keys (REQUIRED)

OPENAI_API_KEY=sk-... ANTHROPIC_API_KEY=sk-ant-...
OPENAI_API_KEY=sk-... ANTHROPIC_API_KEY=sk-ant-...

Database

Database

DATABASE_URL=postgresql://zen:zen_password@localhost:5432/zen_pentest REDIS_URL=redis://localhost:6379/0
DATABASE_URL=postgresql://zen:zen_password@localhost:5432/zen_pentest REDIS_URL=redis://localhost:6379/0

Security

Security

JWT_SECRET_KEY=your-random-secret-key-min-32-chars JWT_ALGORITHM=HS256 ACCESS_TOKEN_EXPIRE_MINUTES=30
JWT_SECRET_KEY=your-random-secret-key-min-32-chars JWT_ALGORITHM=HS256 ACCESS_TOKEN_EXPIRE_MINUTES=30

API Configuration

API Configuration

API_HOST=0.0.0.0 API_PORT=8000 CORS_ORIGINS=http://localhost:3000,http://localhost:5173
API_HOST=0.0.0.0 API_PORT=8000 CORS_ORIGINS=http://localhost:3000,http://localhost:5173

Safety Controls (0-3)

Safety Controls (0-3)

0: Read-only info gathering

0: Read-only info gathering

1: Active scanning (port scans)

1: Active scanning (port scans)

2: Vulnerability probing

2: Vulnerability probing

3: Exploit validation (requires VPN)

3: Exploit validation (requires VPN)

DEFAULT_SAFETY_LEVEL=1 REQUIRE_VPN_FOR_LEVEL_3=true
DEFAULT_SAFETY_LEVEL=1 REQUIRE_VPN_FOR_LEVEL_3=true

Notifications (optional)

Notifications (optional)

SLACK_WEBHOOK_URL=https://hooks.slack.com/services/... SMTP_HOST=smtp.gmail.com SMTP_PORT=587 SMTP_USER=your-email@gmail.com SMTP_PASSWORD=your-app-password
SLACK_WEBHOOK_URL=https://hooks.slack.com/services/... SMTP_HOST=smtp.gmail.com SMTP_PORT=587 SMTP_USER=your-email@gmail.com SMTP_PASSWORD=your-app-password

Agent Configuration

Agent Configuration

MAX_ITERATIONS=10 AGENT_TIMEOUT=300 ENABLE_MEMORY=true MEMORY_WINDOW=5
MAX_ITERATIONS=10 AGENT_TIMEOUT=300 ENABLE_MEMORY=true MEMORY_WINDOW=5

Tool Timeouts (seconds)

Tool Timeouts (seconds)

NMAP_TIMEOUT=300 NUCLEI_TIMEOUT=600 SQLMAP_TIMEOUT=900
undefined
NMAP_TIMEOUT=300 NUCLEI_TIMEOUT=600 SQLMAP_TIMEOUT=900
undefined

Configuration File

配置文件

config/config.yaml
:
yaml
agents:
  default_model: "gpt-4"
  fallback_model: "claude-3-opus"
  temperature: 0.7
  max_tokens: 4096
  
tools:
  enabled:
    - nmap
    - nuclei
    - sqlmap
    - ffuf
    - subfinder
  
  nmap:
    default_args: ["-sV", "-sC", "-T4"]
    max_ports: 10000
    
  nuclei:
    templates_dir: "/nuclei-templates"
    severity: ["critical", "high", "medium"]
    
reporting:
  formats: ["pdf", "html", "json"]
  templates_dir: "templates/reports"
  
compliance:
  frameworks: ["OWASP", "PCI-DSS", "GDPR"]
config/config.yaml
:
yaml
agents:
  default_model: "gpt-4"
  fallback_model: "claude-3-opus"
  temperature: 0.7
  max_tokens: 4096
  
tools:
  enabled:
    - nmap
    - nuclei
    - sqlmap
    - ffuf
    - subfinder
  
  nmap:
    default_args: ["-sV", "-sC", "-T4"]
    max_ports: 10000
    
  nuclei:
    templates_dir: "/nuclei-templates"
    severity: ["critical", "high", "medium"]
    
reporting:
  formats: ["pdf", "html", "json"]
  templates_dir: "templates/reports"
  
compliance:
  frameworks: ["OWASP", "PCI-DSS", "GDPR"]

Core API Usage

核心API使用

Authentication

身份验证

python
import requests

API_BASE = "http://localhost:8000"
python
import requests

API_BASE = "http://localhost:8000"

Login

Login

response = requests.post( f"{API_BASE}/api/v1/auth/login", json={"username": "admin", "password": "admin"} ) token = response.json()["access_token"]
response = requests.post( f"{API_BASE}/api/v1/auth/login", json={"username": "admin", "password": "admin"} ) token = response.json()["access_token"]

Use token in headers

Use token in headers

headers = { "Authorization": f"Bearer {token}", "Content-Type": "application/json" }
undefined
headers = { "Authorization": f"Bearer {token}", "Content-Type": "application/json" }
undefined

Create and Execute Scan

创建并执行扫描

python
undefined
python
undefined

Create a new scan

Create a new scan

scan_data = { "target": "example.com", "scan_type": "full", # Options: quick, full, custom "tools": ["nmap", "nuclei", "whatweb"], "safety_level": 1, # 0-3 "options": { "ports": "1-1000", "aggressive": False, "parallel": True } }
response = requests.post( f"{API_BASE}/api/v1/scans", json=scan_data, headers=headers ) scan_id = response.json()["scan_id"] print(f"Scan created: {scan_id}")
scan_data = { "target": "example.com", "scan_type": "full", # Options: quick, full, custom "tools": ["nmap", "nuclei", "whatweb"], "safety_level": 1, # 0-3 "options": { "ports": "1-1000", "aggressive": False, "parallel": True } }
response = requests.post( f"{API_BASE}/api/v1/scans", json=scan_data, headers=headers ) scan_id = response.json()["scan_id"] print(f"Scan created: {scan_id}")

Get scan status

Get scan status

status = requests.get( f"{API_BASE}/api/v1/scans/{scan_id}", headers=headers ).json() print(f"Status: {status['state']}") # IDLE, PLANNING, EXECUTING, etc.
status = requests.get( f"{API_BASE}/api/v1/scans/{scan_id}", headers=headers ).json() print(f"Status: {status['state']}") # IDLE, PLANNING, EXECUTING, etc.

Get results

Get results

results = requests.get( f"{API_BASE}/api/v1/scans/{scan_id}/results", headers=headers ).json()
print(f"Findings: {len(results['findings'])}") for finding in results['findings']: print(f" - {finding['severity']}: {finding['title']}")
undefined
results = requests.get( f"{API_BASE}/api/v1/scans/{scan_id}/results", headers=headers ).json()
print(f"Findings: {len(results['findings'])}") for finding in results['findings']: print(f" - {finding['severity']}: {finding['title']}")
undefined

WebSocket Real-Time Updates

WebSocket实时更新

python
import asyncio
import websockets
import json

async def monitor_scan(scan_id, token):
    uri = f"ws://localhost:8000/api/v1/ws/scans/{scan_id}?token={token}"
    
    async with websockets.connect(uri) as websocket:
        async for message in websocket:
            data = json.loads(message)
            print(f"[{data['type']}] {data['message']}")
            
            if data['type'] == 'completed':
                break
python
import asyncio
import websockets
import json

async def monitor_scan(scan_id, token):
    uri = f"ws://localhost:8000/api/v1/ws/scans/{scan_id}?token={token}"
    
    async with websockets.connect(uri) as websocket:
        async for message in websocket:
            data = json.loads(message)
            print(f"[{data['type']}] {data['message']}")
            
            if data['type'] == 'completed':
                break

Run

Run

asyncio.run(monitor_scan(scan_id, token))
undefined
asyncio.run(monitor_scan(scan_id, token))
undefined

Python SDK Usage

Python SDK使用

Basic Scan Workflow

基础扫描工作流

python
from zen_pentest import ZenClient
from zen_pentest.agents import AutonomousAgent
from zen_pentest.tools import ToolRegistry
python
from zen_pentest import ZenClient
from zen_pentest.agents import AutonomousAgent
from zen_pentest.tools import ToolRegistry

Initialize client

Initialize client

client = ZenClient( api_url="http://localhost:8000", api_key=os.getenv("ZEN_API_KEY") )
client = ZenClient( api_url="http://localhost:8000", api_key=os.getenv("ZEN_API_KEY") )

Quick scan

Quick scan

scan = client.create_scan( target="example.com", scan_type="quick" ) scan.wait_for_completion(timeout=600) report = scan.get_report(format="pdf") report.save("report.pdf")
scan = client.create_scan( target="example.com", scan_type="quick" ) scan.wait_for_completion(timeout=600) report = scan.get_report(format="pdf") report.save("report.pdf")

Advanced scan with custom agent

Advanced scan with custom agent

agent = AutonomousAgent( llm="gpt-4", tools=["nmap", "nuclei", "sqlmap"], safety_level=2, memory_enabled=True )
result = agent.run_scan( target="https://example.com", objectives=[ "Map attack surface", "Identify web vulnerabilities", "Test for SQL injection" ] )
print(f"State transitions: {result.state_history}") print(f"Findings: {len(result.findings)}") print(f"Risk score: {result.risk_score}")
undefined
agent = AutonomousAgent( llm="gpt-4", tools=["nmap", "nuclei", "sqlmap"], safety_level=2, memory_enabled=True )
result = agent.run_scan( target="https://example.com", objectives=[ "Map attack surface", "Identify web vulnerabilities", "Test for SQL injection" ] )
print(f"State transitions: {result.state_history}") print(f"Findings: {len(result.findings)}") print(f"Risk score: {result.risk_score}")
undefined

Custom Tool Integration

自定义工具集成

python
from zen_pentest.tools import BaseTool
from zen_pentest.schemas import ToolResult

class CustomScannerTool(BaseTool):
    name = "custom_scanner"
    description = "Custom vulnerability scanner"
    risk_level = 1
    
    def validate_input(self, target: str) -> bool:
        # Validate target (no private IPs, etc.)
        return self.is_public_target(target)
    
    def execute(self, target: str, **kwargs) -> ToolResult:
        # Your custom logic
        results = self._run_custom_scan(target)
        
        return ToolResult(
            success=True,
            data=results,
            metadata={"tool": self.name, "target": target}
        )
    
    def parse_output(self, raw_output: str) -> dict:
        # Parse tool output
        return {"vulnerabilities": [...]}
python
from zen_pentest.tools import BaseTool
from zen_pentest.schemas import ToolResult

class CustomScannerTool(BaseTool):
    name = "custom_scanner"
    description = "Custom vulnerability scanner"
    risk_level = 1
    
    def validate_input(self, target: str) -> bool:
        # Validate target (no private IPs, etc.)
        return self.is_public_target(target)
    
    def execute(self, target: str, **kwargs) -> ToolResult:
        # Your custom logic
        results = self._run_custom_scan(target)
        
        return ToolResult(
            success=True,
            data=results,
            metadata={"tool": self.name, "target": target}
        )
    
    def parse_output(self, raw_output: str) -> dict:
        # Parse tool output
        return {"vulnerabilities": [...]}

Register custom tool

Register custom tool

registry = ToolRegistry() registry.register(CustomScannerTool())
registry = ToolRegistry() registry.register(CustomScannerTool())

Use in scan

Use in scan

agent = AutonomousAgent(tools=["custom_scanner"]) result = agent.run_scan(target="example.com")
undefined
agent = AutonomousAgent(tools=["custom_scanner"]) result = agent.run_scan(target="example.com")
undefined

Multi-Agent Coordination

多Agent协作

python
from zen_pentest.agents import ResearcherAgent, AnalystAgent, CoordinatorAgent
python
from zen_pentest.agents import ResearcherAgent, AnalystAgent, CoordinatorAgent

Create specialized agents

Create specialized agents

researcher = ResearcherAgent( tools=["subfinder", "httpx", "whatweb"] )
analyst = AnalystAgent( tools=["nuclei", "ffuf", "nikto"] )
researcher = ResearcherAgent( tools=["subfinder", "httpx", "whatweb"] )
analyst = AnalystAgent( tools=["nuclei", "ffuf", "nikto"] )

Coordinate workflow

Coordinate workflow

coordinator = CoordinatorAgent( agents=[researcher, analyst], strategy="sequential" # or "parallel" )
result = coordinator.execute_mission( target="example.com", depth=3 )
coordinator = CoordinatorAgent( agents=[researcher, analyst], strategy="sequential" # or "parallel" )
result = coordinator.execute_mission( target="example.com", depth=3 )

Researcher findings feed into analyst

Researcher findings feed into analyst

for finding in result.findings: print(f"{finding.agent}: {finding.title} [{finding.severity}]")
undefined
for finding in result.findings: print(f"{finding.agent}: {finding.title} [{finding.severity}]")
undefined

CLI Usage

CLI使用

Basic Commands

基础命令

bash
undefined
bash
undefined

Run quick scan

Run quick scan

zen-pentest scan -t example.com --quick
zen-pentest scan -t example.com --quick

Full scan with specific tools

Full scan with specific tools

zen-pentest scan -t example.com
--tools nmap,nuclei,sqlmap
--safety-level 2
--output report.pdf
zen-pentest scan -t example.com
--tools nmap,nuclei,sqlmap
--safety-level 2
--output report.pdf

Check scan status

Check scan status

zen-pentest status --scan-id abc123
zen-pentest status --scan-id abc123

List all scans

List all scans

zen-pentest list --status running
zen-pentest list --status running

Generate report from existing scan

Generate report from existing scan

zen-pentest report --scan-id abc123
--format pdf
--output custom-report.pdf
--compliance OWASP,PCI-DSS
zen-pentest report --scan-id abc123
--format pdf
--output custom-report.pdf
--compliance OWASP,PCI-DSS

Export results

Export results

zen-pentest export --scan-id abc123
--format json
--output results.json
undefined
zen-pentest export --scan-id abc123
--format json
--output results.json
undefined

Advanced CLI Features

高级CLI功能

bash
undefined
bash
undefined

Custom agent configuration

Custom agent configuration

zen-pentest scan -t example.com
--agent-config config/custom-agent.yaml
--max-iterations 15
--memory enabled
zen-pentest scan -t example.com
--agent-config config/custom-agent.yaml
--max-iterations 15
--memory enabled

Resume interrupted scan

Resume interrupted scan

zen-pentest resume --scan-id abc123
zen-pentest resume --scan-id abc123

Benchmark mode

Benchmark mode

zen-pentest benchmark
--scenario htb-academy
--compare manual,autopentester
zen-pentest benchmark
--scenario htb-academy
--compare manual,autopentester

Tool inventory check

Tool inventory check

zen-pentest tools --check
zen-pentest tools --check

Database migration

Database migration

zen-pentest db upgrade head
undefined
zen-pentest db upgrade head
undefined

Common Patterns

常见模式

Safe Reconnaissance Scan

安全侦察扫描

python
undefined
python
undefined

Level 0: Read-only information gathering

Level 0: Read-only information gathering

client = ZenClient() scan = client.create_scan( target="example.com", safety_level=0, tools=["whois", "dns", "subfinder", "whatweb"] ) results = scan.execute()
client = ZenClient() scan = client.create_scan( target="example.com", safety_level=0, tools=["whois", "dns", "subfinder", "whatweb"] ) results = scan.execute()

Safe for production environments

Safe for production environments

print(f"Subdomains found: {len(results.subdomains)}") print(f"Technologies: {results.technologies}")
undefined
print(f"Subdomains found: {len(results.subdomains)}") print(f"Technologies: {results.technologies}")
undefined

Vulnerability Assessment with Validation

带验证的漏洞评估

python
undefined
python
undefined

Level 2: Active scanning + validation

Level 2: Active scanning + validation

scan = client.create_scan( target="https://example.com", safety_level=2, tools=["nuclei", "ffuf"], options={ "validate_findings": True, "false_positive_filter": True, "risk_scoring": True } )
results = scan.execute()
scan = client.create_scan( target="https://example.com", safety_level=2, tools=["nuclei", "ffuf"], options={ "validate_findings": True, "false_positive_filter": True, "risk_scoring": True } )
results = scan.execute()

Only validated, high-confidence findings

Only validated, high-confidence findings

critical_findings = [ f for f in results.findings if f.severity == "critical" and f.validated ]
for finding in critical_findings: print(f"CVSS {finding.cvss_score}: {finding.title}") print(f"Evidence: {finding.evidence_path}") print(f"Remediation: {finding.remediation}")
undefined
critical_findings = [ f for f in results.findings if f.severity == "critical" and f.validated ]
for finding in critical_findings: print(f"CVSS {finding.cvss_score}: {finding.title}") print(f"Evidence: {finding.evidence_path}") print(f"Remediation: {finding.remediation}")
undefined

CI/CD Integration

CI/CD集成

python
undefined
python
undefined

.github/workflows/security-scan.yml

.github/workflows/security-scan.yml

from zen_pentest.ci import GitHubAction
action = GitHubAction() result = action.run_scan( target=os.getenv("STAGING_URL"), fail_on_severity="high", report_format="sarif" )
from zen_pentest.ci import GitHubAction
action = GitHubAction() result = action.run_scan( target=os.getenv("STAGING_URL"), fail_on_severity="high", report_format="sarif" )

Automatically creates GitHub Security Advisory

Automatically creates GitHub Security Advisory

if result.has_findings: action.create_security_advisory(result.findings) exit(1 if result.severity >= "high" else 0)
undefined
if result.has_findings: action.create_security_advisory(result.findings) exit(1 if result.severity >= "high" else 0)
undefined

Compliance Reporting

合规报告

python
from zen_pentest.reporting import ComplianceMapper
python
from zen_pentest.reporting import ComplianceMapper

Generate compliance report

Generate compliance report

mapper = ComplianceMapper(frameworks=["OWASP", "PCI-DSS", "GDPR"]) compliance_report = mapper.map_findings(scan.findings)
print(f"OWASP Top 10 coverage: {compliance_report.owasp.coverage}%") print(f"PCI-DSS gaps: {compliance_report.pci_dss.gaps}")
mapper = ComplianceMapper(frameworks=["OWASP", "PCI-DSS", "GDPR"]) compliance_report = mapper.map_findings(scan.findings)
print(f"OWASP Top 10 coverage: {compliance_report.owasp.coverage}%") print(f"PCI-DSS gaps: {compliance_report.pci_dss.gaps}")

Export for auditors

Export for auditors

compliance_report.export("audit-report.pdf", template="official")
undefined
compliance_report.export("audit-report.pdf", template="official")
undefined

Troubleshooting

故障排除

Common Issues

常见问题

Tool execution fails:
bash
undefined
工具执行失败:
bash
undefined

Check tool installation

Check tool installation

zen-pentest tools --check
zen-pentest tools --check

Verify Docker sandbox

Verify Docker sandbox

docker ps | grep zen-pentest-sandbox
docker ps | grep zen-pentest-sandbox

Check tool permissions

Check tool permissions

zen-pentest tools --test nmap

**Database connection errors:**
```python
zen-pentest tools --test nmap

**数据库连接错误:**
```python

Test database connection

Test database connection

from zen_pentest.db import check_connection
if not check_connection(): print("Database unreachable. Check DATABASE_URL in .env")
from zen_pentest.db import check_connection
if not check_connection(): print("Database unreachable. Check DATABASE_URL in .env")

Reset database

Reset database

zen-pentest db reset --force

**Agent timeout:**
```python
zen-pentest db reset --force

**Agent超时:**
```python

Increase timeout and iterations

Increase timeout and iterations

agent = AutonomousAgent( timeout=600, # 10 minutes max_iterations=20, enable_checkpoints=True # Resume on failure )

**High memory usage:**
```bash
agent = AutonomousAgent( timeout=600, # 10 minutes max_iterations=20, enable_checkpoints=True # Resume on failure )

**内存占用过高:**
```bash

Limit concurrent scans

Limit concurrent scans

export MAX_CONCURRENT_SCANS=2
export MAX_CONCURRENT_SCANS=2

Disable memory feature

Disable memory feature

export ENABLE_MEMORY=false
export ENABLE_MEMORY=false

Clear Redis cache

Clear Redis cache

redis-cli FLUSHDB

**False positives:**
```python
redis-cli FLUSHDB

**误报问题:**
```python

Enable stricter validation

Enable stricter validation

scan = client.create_scan( target="example.com", options={ "validation_threshold": 0.8, # 80% confidence "llm_voting": True, # Multi-model consensus "require_evidence": True } )
undefined
scan = client.create_scan( target="example.com", options={ "validation_threshold": 0.8, # 80% confidence "llm_voting": True, # Multi-model consensus "require_evidence": True } )
undefined

Debug Mode

调试模式

bash
undefined
bash
undefined

Enable verbose logging

Enable verbose logging

export ZEN_DEBUG=true export LOG_LEVEL=DEBUG
export ZEN_DEBUG=true export LOG_LEVEL=DEBUG

Run scan with debug output

Run scan with debug output

zen-pentest scan -t example.com --debug --log-file debug.log
zen-pentest scan -t example.com --debug --log-file debug.log

Check logs

Check logs

tail -f logs/zen-pentest.log
undefined
tail -f logs/zen-pentest.log
undefined

Testing Installation

安装测试

python
undefined
python
undefined

Run self-test suite

Run self-test suite

from zen_pentest.tests import run_diagnostics
diagnostics = run_diagnostics() print(diagnostics.report())
from zen_pentest.tests import run_diagnostics
diagnostics = run_diagnostics() print(diagnostics.report())

Expected output:

Expected output:

✓ Database: Connected

✓ Database: Connected

✓ Redis: Available

✓ Redis: Available

✓ Tools: 72/72 installed

✓ Tools: 72/72 installed

✓ API: Responding

✓ API: Responding

✓ Agents: Initialized

✓ Agents: Initialized

undefined
undefined

Safety and Legal Considerations

安全与法律注意事项

IMPORTANT: Only scan systems you own or have explicit written permission to test.
python
undefined
重要提示: 仅可扫描您拥有或获得明确书面授权的系统。
python
undefined

Built-in safety checks

Built-in safety checks

from zen_pentest.safety import SafetyValidator
validator = SafetyValidator()
from zen_pentest.safety import SafetyValidator
validator = SafetyValidator()

Blocks private IPs, localhost, cloud metadata endpoints

Blocks private IPs, localhost, cloud metadata endpoints

if not validator.is_safe_target("10.0.0.1"): raise ValueError("Cannot scan private network")
if not validator.is_safe_target("10.0.0.1"): raise ValueError("Cannot scan private network")

Requires VPN for Level 3 (exploit validation)

Requires VPN for Level 3 (exploit validation)

if safety_level == 3 and not validator.is_vpn_active(): raise ValueError("VPN required for Level 3 scans")

Configure authorized targets in `config/authorized-targets.yaml`:

```yaml
authorized_targets:
  - domain: "*.example.com"
    owner: "Your Company"
    expiry: "2026-12-31"
    max_safety_level: 3
if safety_level == 3 and not validator.is_vpn_active(): raise ValueError("VPN required for Level 3 scans")

在`config/authorized-targets.yaml`中配置授权目标:

```yaml
authorized_targets:
  - domain: "*.example.com"
    owner: "Your Company"
    expiry: "2026-12-31"
    max_safety_level: 3

Resources

资源

Advanced Topics

高级主题

See additional documentation:
  • IMPLEMENTATION_SUMMARY.md - Architecture deep dive
  • README_ENHANCED_TOOLS.md - Tool integration guide
  • docs/TESTING.md - Testing framework
  • ROADMAP_2026.md - Future features
查看额外文档:
  • IMPLEMENTATION_SUMMARY.md - 架构深度解析
  • README_ENHANCED_TOOLS.md - 工具集成指南
  • docs/TESTING.md - 测试框架
  • ROADMAP_2026.md - 未来功能规划