Skip to content

ASCIT31/Dark-Moon

v1.0.0 Feature

This release adds 3 notable features for engineering teams evaluating rollout.

Published 14d Offensive & Pentesting
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

ai-agents ai-security-tool autonomous-agents security llm multi-agent-systems
+4 more
offensive-security penetration-testing pentesting security-automation

Summary

AI summary

Updates Highlights, https://github.com/ASCIT31/Dark-Moon/blob/master/docs/full.md, and https://github.com/ASCIT31/Dark-Moon/blob/master/CONTRIBUTING.md across a mixed release.

Full changelog

Darkmoon v1.0.0

First public release of Darkmoon — the open-source AI-powered autonomous penetration testing platform.

Darkmoon orchestrates complete security assessments using AI agents that reason, plan, and coordinate specialized sub-agents through a controlled MCP execution layer. You give it a target, it runs the full assessment and produces an evidence-based report.

Highlights

  • Autonomous multi-agent pentesting — a primary agent plans the engagement and dispatches specialized sub-agents (Web, Active Directory, Kubernetes, Network, CMS, and more)
  • Controlled execution layer — the AI never runs tools directly; every action flows through the Darkmoon MCP server (binary allowlist + sandboxed Docker toolbox)
  • 50+ integrated security tools — Nuclei, NetExec, BloodHound, sqlmap, Naabu, httpx, ffuf, the impacket suite, and more
  • Typed workflows — port scanning, subdomain discovery, vulnerability scanning, web crawling, Kubernetes audit, AD enumeration
  • Cloud or local LLM — Anthropic, OpenAI, OpenRouter, or local models (Ollama, llama.cpp)
  • Automated reporting — structured, evidence-based reports aligned with NIST SP 800-115 and MITRE ATT&CK

Quick start

git clone https://github.com/ASCIT31/Dark-Moon.git
cd Dark-Moon
./install.sh          # configure your LLM provider + build the stack
./darkmoon.sh "TARGET: example.com"

Requires Docker + Docker Compose and an LLM API key.

Documentation

Licensed under GPL-3.0.

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track ASCIT31/Dark-Moon

Get notified when new releases ship.

Sign up free

About ASCIT31/Dark-Moon

All releases →

Related context

Beta — feedback welcome: [email protected]