RepoRadar
Leave a Tip
Item detail

PentesterFlow/agent

PentesterFlow/agent is an Apache-2.0 human-in-the-loop agentic AI CLI for authorized penetration testers and bug hunters — it moves security engineers through recon, enumeration, validation, evidence collection, and reporting while keeping the analyst in control; the agent plans against a scoped target, uses real pentesting tools (built-in skills for recon, web vulns, SSRF, SSTI, JWT, GraphQL, rac

Open source Back to radar
Score8.2
Popularity508.0
Riskconditional
TierGold
Score breakdown
Usefulness8.6
Novelty10.0
Momentum10.0
Maturity8.9
Open-source/build7.4
Evidence7.2
Workflow potential9.3
Setup ease6.5

Popularity is tracked separately. Support, ads, sponsorships, and tips never affect these signals.

Why it matters

Useful for authorized penetration testers and bug-bounty hunters who want an agentic CLI that plans, validates, and reports while keeping the analyst in the loop on every sensitive action, red teams that need a curl-first, evidence-backed finding format (Markdown + JSON-lines audit log) that a security reviewer can audit, security engineering teams that want a continuous local knowledge base of le

Who should use it

BuildersPower users

Who should skip it

Skip if the source link, docs, or setup requirements do not match your workflow.

Risk explanation

Conditional risk: review permissions, runtime environment, and data boundaries before production use.

Evidence links

Closest alternatives / related signals

  • No close related item is available in the current public catalog.