creator/Anthropic-Cybersecurity-Skills
1
0
Fork 0
mirror of https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git synced 2026-06-12 14:14:56 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
27c6414ca5ae1b96adc7b36e2e486db95cbcb7c0
Anthropic-Cybersecurity-Skills/skills/conducting-network-penetration-test/references/api-reference.md
T
mukul975 27c6414ca5 Add folder anatomy (scripts/agent.py + references/api-reference.md) for 648 cybersecurity skills 
Complete skill folder anatomy across all cybersecurity skills:
- scripts/agent.py: 80-150 line Python agents using real libraries (impacket,
  boto3, azure-mgmt-*, kubernetes, pefile, yara, scapy, shodan, stix2, etc.)
- references/api-reference.md: real API documentation with method signatures
- LICENSE: MIT license for all skill folders
2026-03-10 21:02:12 +01:00

2.2 KiB
Raw Blame History

API Reference: Network Penetration Testing Agent

Overview

Automates network penetration testing: host discovery, TCP SYN scanning with service detection, vulnerability scanning with NSE scripts, SMB enumeration, and SSL auditing. For authorized penetration testing only.

Dependencies

Package Version Purpose
python-nmap >=0.7.1 Nmap scan orchestration

CLI Usage

# Full pentest
python agent.py --target 192.168.1.0/24 --ports 1-10000 --output report.json

# Host discovery only
python agent.py --target 10.0.0.0/24 --discovery-only

Key Functions

host_discovery(target_network)

Discovers live hosts using ARP ping and ICMP echo with TCP ACK probes on common ports.

port_scan(target, ports, scan_type)

Performs TCP SYN scan with service version detection (-sV), OS detection (-O), and banner grabbing.

vulnerability_scan(target, ports)

Runs Nmap vulnerability scripts (vulners, vulscan) to identify CVEs for detected services.

smb_enumeration(target)

Enumerates SMB shares, users, and OS information via Nmap scripts on ports 139/445.

ssl_audit(target, port)

Audits SSL/TLS cipher suites and certificate details using ssl-enum-ciphers and ssl-cert.

dns_enumeration(domain)

Performs DNS subdomain brute-forcing using dns-brute NSE script.

classify_findings(scan_results, vuln_results)

Classifies vulnerabilities by severity (Critical, High, Medium) based on script output analysis.

Nmap Scan Types Used

Argument Purpose
-sn -PE -PA Host discovery (ping scan)
-sS -sV -O SYN scan with version and OS detection
--script=vulners CVE vulnerability lookup
--script=smb-enum-shares SMB share enumeration
--script=ssl-enum-ciphers SSL/TLS cipher audit
--script=dns-brute DNS subdomain enumeration

Output Schema

{
  "hosts": [{"ip": "...", "hostname": "..."}],
  "services": [{"ip": "...", "services": [{"port": 80, "service": "http"}]}],
  "vulnerabilities": [{"host": "...", "severity": "Critical", "details": {...}}],
  "summary": {"critical": 3, "high": 12, "medium": 45}
}
Reference in New Issue View Git Blame Copy Permalink