Share
## https://sploitus.com/exploit?id=06A48C34-3736-5F41-A155-BAA9C3EE3639
# Ares โ AI Penetration Testing Engine
Autonomous AI pentesting: recon โ exploitation โ structured report.
**Zero external dependencies. Zero cloud LLM keys. Pure stdlib Go.**
## ๐ New Features in v2.0
Ares now includes 13 enterprise-grade security features:
- ๐ **Webhook Notifications** - Slack/Discord/Email alerts with HMAC-SHA256 signing
- ๐ซ **Ticketing System** - Jira/GitHub integration with automated PR-based remediation
- โฐ **Scan Scheduler** - Cron-based recurring scans with pause/resume capability
- ๐ **Demo/Onboarding Mode** - Guided tutorials for new users
- ๐ **API Discovery** - OpenAPI/Swagger + GraphQL endpoint auto-discovery
- ๐ **Bug Bounty Platform** - HackerOne/Bugcrowd integration with deduplication
- ๐ข **Multi-tenancy** - Organizational isolation with role-based access control
- ๐ **Air-gapped Mode** - Fully offline operation for secure environments
- ๐ป **VS Code Extension** - In-IDE scanning with fix application
- ๐งช **LLM Red-teaming** - 50+ injection prompts across attack categories
- โ๏ธ **Cloud Config Scanner** - Terraform/CloudFormation misconfiguration detection
- ๐ง **Code Fix Remediation** - Framework-specific patches for 6 vuln types across 7 languages
- ๐ **PR-based Remediation** - Automated pull requests for vulnerability fixes
**[โ Read the full USAGE guide](./USAGE.md)** for complete build, configuration, CLI, web dashboard, and development instructions.
---
## Quick Start
```powershell
# 1. Build
cd ares
.\build.ps1
# 2. Start Ollama
ollama serve
# 3. Run a scan
.\ares.exe -target example.com -dash-port 8080
# Open http://localhost:8080
```
## Web UI Only
```powershell
.\ares.exe -web -dash-port 8080
```
---
## TL;DR
| Task | Command |
|---|---|
| Build | `.\build.ps1` |
| CL scan | `.\ares.exe -target example.com` |
| Web UI | `.\ares.exe -web -dash-port 8080` |
| Scan + dashboard | `.\ares.exe -target example.com -dash-port 8080` |
| Full docs | `.\USAGE.md` |
| Frontend dev | `cd frontend && npm run dev` |
---
**DISCLAIMER**: For authorized security testing only. Unauthorized scanning is illegal.