โ ๏ธ OpenAI Broke API Access: I will update the tool when they release an official API or there's a workaround.
RedGPT is a ChatGPT based findings generator to help save penetration testers time and provide more readable findings.
It generates findings with the following properties:
- Description
- Remediation
- Risk Rating (With Likelihood + Impact)
- Sometimes extra helpful info like a risk rating justification
NOTE: It generally gives accurate findings but make sure to verify and add context in a real report.
You just need 2 things to run it:
- An API key from OpenAI (https://platform.openai.com/account/api-keys)
- Any finding title
git clone https://github.com/Stratus-Security/FinGen
cd RedGPT
pip3 install revChatGPT
python3 RedGPT.py --api_key "<api_key>" --title "Auto Complete Not Disabled"
Generate a single finding
python3 RedGPT.py --api_key "<api_key>" --title "Auto Complete Not Disabled"
We can also generate multiple findings at once
python3 RedGPT.py --api_key "<api_key>" --title "Auto Complete Not Disabled" --title "Blind SQL Injection" --title "Reflected Cross-Site Scripting"
If you want any features added feel free to open an issue or PR!