Zen AI Pentest Framework

Skill by ara.so — Security Skills collection.

Overview

Zen-AI-Pentest is a production-ready, AI-powered autonomous penetration testing framework that orchestrates 72+ real security tools through an intelligent multi-agent system. It executes actual tools (Nmap, Nuclei, SQLMap, FFuF, etc.) with safety controls, not mocks or simulations.

Key capabilities:

• Autonomous AI agents using ReAct pattern (Reason → Act → Observe → Reflect)
• Real tool execution in Docker sandbox with 4-level safety controls
• Risk engine with false positive reduction and CVSS/EPSS scoring
• FastAPI backend with WebSocket real-time updates
• PostgreSQL persistence and Redis caching
• JWT authentication with RBAC
• Professional PDF/HTML reporting with compliance mapping
• CI/CD integration (GitHub Actions, GitLab CI, Jenkins)

Installation