Dabbling in AI agents recently. Using Hugging Face 's smolagent module and the result was quite surprising. Below a video of my PoC pentesting agent creating/parametrizing/starting/fetching the results of a basic port scanner that's running in the browser via Octopwn 1/N

because I find this fascinating, here is a recording of the agent fetching group memberships.

Hey! wanna see AI performing kerberoast attack by itself? Sure you do! Mayfly 's GOAD environment is getting shredded This is so amazing, wish I had this when I was learning >_>

AI Agent is tasked to extract secrets from files on SMB shares. Found a file (secrets.ps1 name is quite telling), downloaded it but it contains base64 data. AI tried to decode it but safeguard kicked in for malicious import. AI's solution: I'll implement it myself then!

Steve Campbell spencer Michael Eder @[email protected] AI Agent finds secrets on fileshares. Launches scan (after parametrization), waits for scan, pulls data, checks data for interesting files, downloads file. A separate agent then chats with the downloaded file, and returns secrets if any.

Since now it's fixed, here is an AI agent finding and exploiting ADCS ESC1 misconfiguration, then impersonating a domain admin and pwning the AD by performing DCSync by itself. Let's gooooo!!! I really want to see this getting fully automated now XD