vibe-pentest
CommunityRun black-box, multi-agent web pentesting and auto-generate reports.
System Documentation
What problem does it solve?
Vibe Pentest automates end-to-end black-box Web penetration testing for Web apps, APIs, and admin backends by orchestrating multiple agents in parallel and producing stable, evidence-based security reports.
Core Features & Use Cases
-
Black-box multi-agent workflow: Fingerprint target tech, detect admin/login surfaces, map attack surfaces, then run specialized agents (injection/auth/file/api/business/misc) in parallel.
-
Credential capture for authorized testing: Uses Playwright to let you log in and extracts cookies/tokens for session-aware verification.
-
Evidence-driven reporting: Verifies confirmed findings, links attack chains, and exports both JSON + HTML/DOCX reports with HTTP request/response evidence.
-
Use Case Example: You have an authorized scope for a target URL and a test account; you want an agent to crawl, test multiple vulnerability classes, re-verify findings, then output a professional Word/HTML report with actionable remediation guidance.
Quick Start
Ask an AI agent to run the vibe-pentest workflow against your authorized target and then export results to your workspace directory.
Dependency Matrix
Required Modules
Components
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: vibe-pentest Download link: https://github.com/ok-helloworld/vibe-pentest/archive/main.zip#vibe-pentest Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.