protectai/vulnhuntr
Zero shot vulnerability discovery using LLMs
This tool helps security engineers and penetration testers automatically discover complex, multi-step vulnerabilities in Python codebases. By analyzing code call chains from user input to server output, it identifies security flaws that traditional static analysis tools often miss. The output includes a detailed report with vulnerability reasoning, a proof-of-concept exploit, and a confidence score.
2,583 stars. No commits in the last 6 months.
Use this if you need an advanced, automated way to find remotely exploitable vulnerabilities like RCE or XSS in your Python applications.
Not ideal if you need to analyze codebases written in languages other than Python, or if you are looking for simple, single-step vulnerabilities that standard static analysis can easily detect.
Stars
2,583
Forks
289
Language
Python
License
AGPL-3.0
Category
Last pushed
Feb 06, 2025
Commits (30d)
0
Get this data via API
curl "https://pt-edge.onrender.com/api/v1/quality/llm-tools/protectai/vulnhuntr"
Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.
Higher-rated alternatives
GreyDGL/PentestGPT
Automated Penetration Testing Agentic Framework Powered by Large Language Models
ipa-lab/hackingBuddyGPT
Helping Ethical Hackers use LLMs in 50 Lines of Code or less..
berylliumsec/nebula
AI-powered penetration testing assistant for automating recon, note-taking, and vulnerability analysis.
MorDavid/BruteForceAI
Advanced LLM-powered brute-force tool combining AI intelligence with automated login attacks
mbrg/power-pwn
An offensive/defense security toolset for discovery, recon and ethical assessment of AI Agents