Introduction to GPT_Vuln-analyzer
GPT_Vuln-analyzer is an innovative project that demonstrates the potential of artificial intelligence in identifying vulnerabilities within networks. Designed with both a Command-Line Interface (CLI) and a Graphical User Interface (GUI), this application allows users to conduct thorough network vulnerability analyses, DNS enumeration, and subdomain exploration. Utilizing powerful modules such as the OpenAI API, python-nmap, dnsresolver, and an engaging interface built with customtkinter and tkinter, GPT_Vuln-analyzer is a versatile tool for security professionals and enthusiasts alike.
Key Features
Network Vulnerability Analysis
One of the notable features of GPT_Vuln-analyzer is its ability to conduct comprehensive network vulnerability scans using nmap, a popular network scanning tool. The application offers various scanning profiles to suit different needs. Each profile incorporates different nmap commands to provide effective data on open ports, OS information, and potential vulnerabilities.
DNS and Subdomain Enumeration
GPT_Vuln-analyzer shines in the area of DNS enumeration, which involves querying the Domain Name System to gather information about a domain and its associated records. Additionally, the tool supports subdomain enumeration, which helps identify potential subdomains of a target domain that could pose security risks.
AI-Powered Analyses
The project takes advantage of AI models like OpenAI's GPT and other advanced AI solutions such as Bard and LLama2. These models process and analyze the data collected during network scans, DNS queries, or JWT token evaluations. With AI, the tool not only improves analytical accuracy but also offers insights from a security perspective, making it easier to identify critical vulnerabilities.
System Requirements
To run GPT_Vuln-analyzer, users need to have Python 3.10 or above and several associated packages listed in the requirements.txt file. Other dependencies include Docker, Wireshark, and additional APIs like IPGeolocation.
- OpenAI API
- Bard API via MakerSuite Palm
- Runpod serverless endpoints
- IPGeolocation API key
Setup and Usage
Package Installation
Users can quickly set up the GPT_Vuln-analyzer by importing necessary packages using either pip3 or pip installation commands. For the GUI-based usage, the application components can be defined for easy deployment.
Running the Application
Users have the option to operate the application through a GUI by executing the provided commands or through a detailed CLI mode. CLI users need to replace placeholders in the .env file with their API keys and can execute a variety of commands catering to different types of analyses, from DNS enumeration to packet analysis.
User Interaction
CLI Menu
The CLI interface presents users with an interactive menu, providing options for performing DNS enumeration, subdomain exploration, JWT analysis, and more. Each task is tailored to provide valuable security insights based on the scanned data.
AI Integration
The application features AI-driven options allowing users to choose among AI models, such as OpenAI, Bard, and LLama2, for their analyses. Each model offers unique strengths, with Bard excelling in speed and OpenAI renowned for comprehensive data interpretation.
Conclusion
GPT_Vuln-analyzer stands as a testament to the burgeoning use of AI in cybersecurity, making vulnerability assessments faster, more accurate, and accessible. Whether through a user-friendly GUI or a robust CLI, the application provides a comprehensive suite of tools for anyone interested in digital security.