CalvinBackup/NeuroSploit
1
0
Fork 0
mirror of https://github.com/CyberSecurityUP/NeuroSploit.git synced 2026-06-30 16:55:34 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
16e45eb0a3189c8a4e0eff9324c52e3111f16c0d
NeuroSploit/neurosploit-rs/templates/report.typ
T
CyberSecurityUP a8676fee0a v3.5.1: POMDP belief-state + value-of-information planner + grounded anti-hallucination 
Partial observability is now first-class:

- belief.rs — property-graph world model; nodes (host/service/vuln/exploit/cred)
  carry a probability, not a boolean. Bayesian observation updates; per-node
  Shannon entropy; mean-uncertainty + recon-frontier. Black-box = diffuse priors
  that sharpen with observation; white-box collapses toward deterministic (MDP).
- pomdp.rs — value_of_information(), decide() (recon vs exploit falls out of
  belief entropy), and may_assert() — the mathematical anti-hallucination gate:
  no exploitability claim while the belief is diffuse (high entropy) → observe first.
- grounding.rs — verification engine, hard rule "no claim without a tool receipt":
  empirical grounding for black-box (raw HTTP/OOB/error markers), symbolic for
  white-box (file:line into reviewed source). Ungrounded claims demoted + flagged
  receipt_missing (feeds future reward shaping).
- pipeline.finish(): grounding gate before reporting + belief-uncertainty readout.
- bump 3.5.0 → 3.5.1; README documents the v3.5.1 belief/grounding architecture
  and the infra/bandit/reward roadmap.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-06-24 21:41:18 -03:00

100 lines
3.6 KiB
Typst
Raw Blame History

// NeuroSploit v3.5.1 — Typst report template (blank, structured).
//
// The harness generates `report.typ` per run by prepending a `findings` array
// and a `meta` dict, then including this template's rendering logic. This file
// is the reference/blank template: it renders a cover, an executive summary with
// severity counts, and one section per finding. Compile with:
// typst compile report.typ report.pdf
//
// Expected inputs (defined above this template in the generated file):
// #let meta = (target: "", run_id: "", generated: "", model: "")
// #let findings = ( (severity: "", title: "", agent: "", cwe: "", cvss: "",
// endpoint: "", payload: "", evidence: "", impact: "",
// remediation: "", votes: "", confidence: 0.0), ... )
#let sevcolor = (
Critical: rgb("#c0392b"), High: rgb("#e67e22"), Medium: rgb("#f1c40f"),
Low: rgb("#3498db"), Info: rgb("#7f8c8d"),
)
#let sevbadge(s) = box(
fill: sevcolor.at(s, default: rgb("#7f8c8d")), inset: (x: 5pt, y: 2pt),
radius: 3pt, text(fill: white, weight: "bold", size: 8pt, upper(s)),
)
#let sevrank(s) = (Critical: 0, High: 1, Medium: 2, Low: 3, Info: 4).at(s, default: 5)
#set page(margin: 2cm, numbering: "1", footer: context [
#set text(size: 8pt, fill: gray)
NeuroSploit v3.5.1 · #meta.target · confidential
#h(1fr) #counter(page).display()
])
#set text(font: ("Helvetica Neue", "Helvetica", "Arial"), size: 10pt)
#set heading(numbering: none)
// ---- Cover ----
#v(3cm)
#align(center)[
#text(28pt, weight: "bold")[#text(fill: rgb("#7c5cff"))[Neuro]Sploit]
#v(2pt)
#text(15pt, fill: gray)[Penetration Test Report]
#v(1cm)
#text(13pt)[Target: #strong(meta.target)]
#v(4pt)
#text(10pt, fill: gray)[Run #meta.run_id · #meta.generated · models: #meta.model]
#v(8pt)
#text(9pt, fill: gray)[by #strong[Joas A Santos] & #strong[Red Team Leaders]]
]
#pagebreak()
// ---- Executive summary ----
= Executive Summary
#let counts = (:)
#for f in findings {
counts.insert(f.severity, counts.at(f.severity, default: 0) + 1)
}
#if findings.len() == 0 [
No validated findings were produced for this engagement. All candidate issues
were either unproven or rejected by multi-model adversarial validation.
] else [
This engagement produced #strong(str(findings.len())) validated finding(s),
each confirmed by multi-model voting.
#v(6pt)
#grid(columns: 5, gutter: 8pt,
..("Critical", "High", "Medium", "Low", "Info").map(s => box(
width: 100%, inset: 8pt, radius: 6pt, stroke: 0.5pt + sevcolor.at(s),
align(center)[
#text(18pt, weight: "bold", fill: sevcolor.at(s))[#str(counts.at(s, default: 0))]
#v(-4pt) #text(8pt, upper(s))
],
))
)
]
#v(10pt)
#line(length: 100%, stroke: 0.5pt + gray)
// ---- Findings ----
= Findings
#let sorted = findings.sorted(key: f => sevrank(f.severity))
#if sorted.len() == 0 [
#text(fill: gray)[_Nothing to report._]
]
#for (i, f) in sorted.enumerate() [
#block(breakable: false, width: 100%, inset: 10pt, radius: 6pt,
stroke: (left: 3pt + sevcolor.at(f.severity, default: gray), rest: 0.5pt + rgb("#dddddd")))[
#sevbadge(f.severity) #h(6pt) #text(12pt, weight: "bold")[#str(i + 1). #f.title]
#v(4pt)
#text(9pt, fill: gray)[
agent: #raw(f.agent) · CWE: #f.cwe · CVSS: #f.cvss · votes: #f.votes · confidence: #str(f.confidence)
]
#v(2pt) #text(9pt)[Endpoint: #raw(f.endpoint)]
#v(5pt) #strong[Payload] #linebreak() #raw(f.payload)
#v(3pt) #strong[Evidence] #linebreak() #raw(f.evidence)
#v(3pt) #strong[Impact:] #f.impact
#v(2pt) #strong[Remediation:] #f.remediation
]
#v(8pt)
]
Reference in New Issue View Git Blame Copy Permalink