SJCaldwell / phreakbot Public

forked from nat/natbot

Notifications You must be signed in to change notification settings
Fork 0
Star 5

Drive a browser with GPT-3 and fuzz requests for common vulns

5 stars 276 forks Branches Tags Activity

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 34 Commits
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
fuzzer.py		fuzzer.py
phreakbot.py		phreakbot.py
proxy.py		proxy.py
reporting.py		reporting.py
requirements.txt		requirements.txt

Repository files navigation

phreakbot

Drive a browser with GPT-3 with natbot
Fuzz parameters
Recognize vulners
Writeup results

Currently demoing against Damn Vulnerable Web App

To demo capabilities.

Have .env file with OPENAI_API_KEY set
Run DVWA with docker run --rm -it -p 80:80 vulnerables/web-dvwa
Run the proxy.py file
Run phreakbot.py

Ideas for improvement:

include text of current sitemap into prompt
Prompt chaining
Make a recorder to collect human feedback and do better few-shot

About

Drive a browser with GPT-3 and fuzz requests for common vulns

Report repository

Releases

No releases published

Packages

No packages published

Languages

Python 100.0%