Anansi
Anansi is a modular Python-based penetration testing framework that unifies network scanning, service enumeration, CVE correlation, cloud security assessment, and AI-powered analysis into a single, extensible workflow. For authorized testing only.
Overview
Anansi is a modular penetration testing framework designed to eliminate the friction of juggling disparate security tools. Instead of stitching together nmap, recon-ng, CVE databases, and cloud scanners with ad-hoc scripts, Anansi provides a unified plugin architecture where each module handles a specific phase of an assessment — discovery, enumeration, vulnerability correlation, exploitation checks, and reporting.
Key Features
- Modular Plugin Architecture: Each security function is a self-contained module. Add, remove, or reorder capabilities without touching core logic.
- Network Scanning & Enumeration: Automated port scanning, service fingerprinting, and DNS enumeration with configurable scope controls.
- CVE Lookup & Correlation: Cross-references discovered services against CVE databases for automated vulnerability context.
- Cloud Security Assessment: Modules for evaluating cloud infrastructure posture and misconfiguration detection.
- AI-Powered Analysis: Optional LLM integration for natural-language summarization of findings, prioritization recommendations, and remediation suggestions.
- Real-Time Dashboard: Optional web-based dashboard for monitoring assessment progress and reviewing results in real time.
- Compliance Mapping: Maps findings to common compliance frameworks (NIST, CIS, ISO 27001) for audit-ready reporting.
Technical Architecture
- Core: Written in Python with a plugin-based module loader for extensibility.
- Scanning: Integrates with python-nmap, Scapy, and custom enumeration routines.
- CVE Data: Fetches and caches vulnerability data from the NVD API and other open feeds.
- AI Layer: Pluggable backend supporting local models (Ollama) or cloud APIs (OpenAI, Anthropic).
- Dashboard: Lightweight Flask web application with real-time WebSocket updates.
- Deployment: Installable via pip or Docker; CI/CD via GitHub Actions.
⚠️ Authorized Testing Only: Anansi is designed exclusively for authorized security assessments. Always obtain proper written permission before testing any system or network you do not own. Unauthorized access is illegal.