AgentPantheon
PentAGI logo

PentAGI开源无人值守的渗透测试代理,通过 Docker sandbox 的内存和 web 智能来运行 20+ 个安全工具

4.6 (5)
Daniel Nikulshyn审阅者 Daniel Nikulshyn·更新 2026年6月

概览

**PentAGI** 是一款开源的无人值守的渗透测试代理,运行 20+ 个安全工具在隔离的 Docker sandbox 环境中。它利用人工智能技术来自动化安全测试。这款工具是为信息安全专业人员和研究人员打造的,它们需要一个强大和灵活的解决方案来进行渗透测试。PentAGI 的关键功能包括 sandboxed 环境、自动化任务计划和各种工具和搜索系统的集成。这款工具还提供委派系统、全面监测和详细报告。

主要功能

  • 隔离的 Docker 环境
  • 20+ 个专业安全工具的内建套件
  • 智能内存系统长期存储
  • 知识图谱集成
  • 内建浏览器提供 web 智能
  • 外部搜索系统集成

价格

模型
Free
评分
4.6 / 5 (5)

使用场景

自动渗透测试

运行无人值守的代理,orchestrate 20+ 个安全工具,进行端到端的渗透测试在隔离的 Docker sandbox 环境中

安全研究在安全沙盒

进行攻击性安全研究和在包含于 Docker 环境中进行exploit工作流程的实验,不会损害宿主系统

持续漏洞扫描

利用长期内存和 web 智能跟踪结果跨会话并持续扫描目标寻找新漏洞

自有主机红队工具

部署一款开源的自有主机的替代品商业渗透测试平台内置红队操作和培训

优点 & 缺点

优点

  • 完全是由 AI 引擎驱动的无人值守代理
  • 隔离的安全 sandboxed Docker 环境
  • 集成 20+ 个专业安全工具
  • 长期存储研究结果
  • 知识图谱集成,支持语义关系追踪

缺点

  • 复杂的人工智能能力导致急剧学习曲线
  • 需要大量的计算资源
  • 可能产生大量的技术数据

评测

4.6

5 个评分的平均值。

5
3
4
2
3
0
2
0
1
0

登录以留下评测。

T

Tariq Aziz

Apr 22, 2026

Does the job

Pretty happy overall. The integrations just works and it is genuinely easy to set up. but no dealbreakers — I'd recommend it to a friend without hesitating.

L

Linda Petersen

Jan 29, 2026

Skeptical, then convinced

I went in skeptical — most tools in this space overpromise. It actually delivers on the core workflow, and support is responsive caught me off guard. The mobile experience lags is why this isn't a perfect score, still, I'd recommend giving it a real trial.

H

Hiroshi Tanaka

Sep 30, 2025

Compared a few options

Evaluated this against two competitors. Where it wins: the API and support is responsive. On balance the feature set — especially the integrations — justifies the 5 stars for our use case.

D

Daniel Schmidt

Sep 26, 2025

Years in this space

I've evaluated a lot of these over the years. What stands out here is the core workflow — handled better than most — and it saves real time. Worth the time if this is your use case.

F

Frank Müller

Sep 12, 2025

Solid for our team

We rolled this out across the team last quarter and the value for money is strong. The onboarding fits neatly into how we already work, and the dashboard removed a step we used to do by hand. The mobile experience lags, which is the main caveat, but it has held up under daily use.

问答

Is PentAGI really free and open-source, and what does the Docker sandbox provide?

Yes, PentAGI is open-source. It runs penetration testing agents inside an isolated Docker sandbox, which contains the 20+ included security tools so testing activity is separated from your host environment.

What kinds of security tasks can PentAGI's autonomous agents handle?

PentAGI is built for autonomous penetration testing. Its agents orchestrate 20+ integrated security tools, use memory to retain context across tasks, and leverage web intelligence to gather information during engagements.

What do I need to run PentAGI and how steep is the learning curve?

Because PentAGI runs in an isolated Docker sandbox, you'll need Docker installed and some familiarity with containerized environments. Prior penetration testing knowledge helps you interpret results from the 20+ bundled security tools effectively.

提问

Software Testing (QA) Agents 的替代品