AIAny
AI Agent2025
Icon for item

Decepticon

Autonomous Red Team agent that plans and executes realistic attack chains (reconnaissance, exploitation, pivoting, C2) while producing Rules of Engagement and an OPPLAN and running actions inside a hardened sandbox; intended for authorized red-team engagements and defensive verification.

Introduction

Adversaries increasingly automate offensive workflows; defensive teams need tools that simulate not just scanners but realistic attacker behaviour under operational discipline. Decepticon focuses on replicating full kill chains under documented rules — so you test detection and response against adversary-like sequences rather than isolated tool outputs.

What Sets It Apart
  • Engagement-first workflow: before any network activity, Decepticon generates a complete engagement package (RoE, ConOps, Deconfliction Plan, OPPLAN) with MITRE ATT&CK mapping, so exercises are auditable and constrained.
  • Realistic attack chains: agents cover reconnaissance, exploitation, privilege escalation, lateral movement and C2, chaining techniques adaptively rather than running checklist scans.
  • Interactive tooling and sandboxing: offensive tools run inside persistent interactive shells (tmux) within a dedicated Kali sandbox and isolated operational network; the management plane is separated from the sandbox to reduce risk.
  • Modular orchestration and model-aware fallbacks: 16 specialist agents, model/provider tiering, and runtime orchestration let teams balance cost, capability, and confidentiality.
Who It's For and Trade-offs

Great fit if you run authorized red-team exercises or purple-team validation and need attacker-like engagements that feed directly into defensive improvements. It is also useful for security researchers benchmarking detection coverage with realistic chains.

Look elsewhere if you only need lightweight vulnerability scanning or compliance-oriented automated reports: Decepticon assumes an operator-controlled environment, nontrivial infra (Docker, sandbox, optional Neo4j), and disciplined legal/authorization processes. It is not for unauthorized use and carries operational and legal responsibilities that teams must accept and manage.

Information

  • Websitegithub.com
  • OrganizationsPurpleAILAB
  • Published date2025/06/06

Categories

More Items

GitHub
AI Agent2026

Provides modular, AI-optimized SKILL.md instructions that ground LLMs in Android development workflows and can be installed into agent environments via the Android CLI; focuses on tasks where LLMs underperform.

GitHub
AI Agent2026

Build native desktop apps authored with declarative .native markup and TypeScript (or Zig) compiled to native code, with no browser or JS runtime in the binary. Ships a component catalog, deterministic rendering, hot reload, and an embedded automation server for AI agent workflows.

Turns fragile, implicit search progress into explicit, persistent, shared state for multi-agent information seeking — externalizes progress as Frontier Task, Evidence Graph, Coverage Map and Failure Memory, and uses pipeline-parallel scheduling plus a middleware harness to avoid repeated failed searches and improve utilization and throughput.