### Init

In [None]:
import os

from dotenv import find_dotenv, load_dotenv
from langchain_core.messages import HumanMessage, SystemMessage
from langchain_core.runnables import RunnableConfig
from langchain_gigachat import GigaChat
from langchain_gigachat.chat_models import GigaChat
from langchain_ollama import ChatOllama
from langgraph.checkpoint.memory import InMemorySaver
from langgraph.prebuilt import create_react_agent
from langgraph.store.memory import InMemoryStore
from langgraph_supervisor import create_supervisor
from pydantic import BaseModel
from rich import print as print


from blanks.prompts import (
	critique_prompt,
	extract_prompt,
	prompt_shell_agent,
	research_agent_prompt,
	supervisor_planing_prompt,
	defender_prompt_short
)
from func.methods_1 import (
	get_pentest_artifact,
	get_shell_output,
	# planning,
	tavily_search_tool,
)
from func.plan import PentestArtifacts

load_dotenv(find_dotenv())
log_file = os.environ.get('LOG_FILE', "/logs/report_task_1.md")
key = os.environ.get('GIGACHAT_API_KEY')
scope = os.environ.get('GIGACHAT_SCOPE')
ssl = os.environ.get('GIGACHAT_VERIFY_SSL_CERTS')



TAVILY_API_KEY = os.environ.get('TAVILY_API_KEY')


model_gc = GigaChat(credentials=key,
				model='GigaChat-2-Max',
				scope='GIGACHAT_API_CORP',
				temperature = 0,
				verify_ssl_certs = False,
				profanity_check=False
				)

model_ai = ChatOllama(model='gpt-oss:latest')
model = model_gc


In [16]:

# hide-cell
from langchain_core.messages import convert_to_messages


def pretty_print_message(message, indent=False):
	pretty_message = message.pretty_repr(html=True)
	if not indent:
		print(pretty_message)
		return

	indented = "\n".join("\t" + c for c in pretty_message.split("\n"))
	print(indented)


def pretty_print_messages(update, last_message=False):
	is_subgraph = False
	if isinstance(update, tuple):
		ns, update = update
		# skip parent graph updates in the printouts
		if len(ns) == 0:
			return

		graph_id = ns[-1].split(":")[0]
		print(f"Update from subgraph {graph_id}:")
		print("\n")
		is_subgraph = True

	for node_name, node_update in update.items():
		update_label = f"Update from node {node_name}:"
		if is_subgraph:
			update_label = "\t" + update_label

		print(update_label)
		print("\n")

		messages = convert_to_messages(node_update["messages"])
		if last_message:
			messages = messages[-1:]

		for m in messages:
			pretty_print_message(m, indent=is_subgraph)
		print("\n")

In [None]:

ip = "10.62.34.10"
ip_port = "127.0.0.1:22222"

task1 = (f"На объекте воздействия {ip} настроены слабые связки логин/пароль по "
		 "четырем учетным записям." \
		  "Пароли словарные. ")


task = 'Получи данные от учетных записей на машине '



In [20]:
from typing import cast
from langmem import create_manage_memory_tool, create_search_memory_tool
from langchain_core.embeddings import Embeddings
import numpy as np
from langchain_gigachat.embeddings import GigaChatEmbeddings

embeddings = GigaChatEmbeddings(credentials=key, 
								
								scope='GIGACHAT_API_CORP',
								verify_ssl_certs=False)


checkpointer = InMemorySaver()
store = InMemoryStore(index={
				"dims": 1024,
				"embed": cast(Embeddings ,embeddings),
				
			})
config = {"configurable": {"thread_id": "abc105"}}


namespace = ('hachaton_memory')

memory_tools = [
	create_manage_memory_tool(namespace),
	create_search_memory_tool(namespace),
]


### Init agents

In [None]:
from operator import add
from pathlib import Path
from typing import Optional
from loguru import logger
from pydantic import Field
from typing_extensions import Annotated
from langgraph.graph.state import StateGraph
from langchain_core.messages import AnyMessage



from langgraph.graph import MessagesState
from langgraph.graph.message import add_messages
import pickle
from func.methods_1 import extract_pentest_artifacts
console_log = os.environ.get('CONSOLE_LOG_FILE', '/logs/my_console.md')
report_file = str(os.environ.get('LOG_FILE', 'report_task_1.md'))


def init_pentest_artifact() -> PentestArtifacts:
	"""Проверить хранилище данных о пентесте для получения информации.
	Args:
	task: str - текущая задача
	"""
	# global pentest_store
	pentest_store = PentestArtifacts()
	
	if os.path.exists('pentest_dump.pkl'):
		with open('pentest_dump.pkl', 'rb') as file:
			pentest_store = pickle.load(file)
			logger.debug("load from dump: " + str(pentest_store.model_dump()))
	else:
		pentest_store = PentestArtifacts()
		logger.debug("created new pentest_store")
		
	
	with open(report_file, "r") as file, open(console_log, "r") as file1, open("pentest_dump.pkl","wb") as dump:
		text = file.readlines()
		res = extract_pentest_artifacts('\n'.join(text))
		logger.debug(res)
		pentest_store.increment(res)

		text1 = file1.readlines()
		if len(text1) < 51:

			res = extract_pentest_artifacts('\n'.join(text1))
			pentest_store.increment(res)	
			logger.debug(res)
		else:
			for i in range(len(text1) // 10):
				# print(text[i*100:(i+1)*100])
				res = extract_pentest_artifacts('\n'.join(text1[i*50:(i+1)*50]))
				logger.debug(res)
				pentest_store.increment(res)	
		
		pickle.dump(pentest_store, dump)
		logger.debug(f"read from file {report_file}: " + str(pentest_store.model_dump()))
		logger.debug(f"read from file {console_log}: " + str(pentest_store.model_dump()))

	return pentest_store

In [None]:

model = model_gc

pentest_store = init_pentest_artifact()


shell_agent = create_react_agent(
	model=model,
	tools=[get_shell_output],
	# state_schema=PentestState,
	
	name="shell_comand_expert",
	prompt=prompt_shell_agent
)

web_search_agent = create_react_agent(
	model=model,
	tools=[tavily_search_tool],
	name="web_search_expert",
	prompt=research_agent_prompt
)


defender_agent = create_react_agent(
	model=model,
	tools=[get_shell_output, ], # *file_system_tools
	name="defender_expert",
	prompt=defender_prompt_short
)


critique_agent = create_react_agent(
	model=model,
	tools=[get_pentest_artifact],
	name="critique_expert",
	prompt= critique_prompt.format(task = task1, pentest_store = pentest_store)
)






workflow_plan = create_supervisor(
	agents = [shell_agent, critique_agent, web_search_agent], #fallback_agent], #
	model=model,
	# pre_model_hook=prehook_pentest_artifact,
	# state_schema=PentestState,
	tools=[get_pentest_artifact, get_shell_output,  ], # *file_system_tools,

	output_mode="full_history",
	prompt=supervisor_planing_prompt,
	
	
)
planing_attacker = workflow_plan.compile( checkpointer=checkpointer, store=store)

[32m2025-08-30 18:46:28.799[0m | [34m[1mDEBUG   [0m | [36m__main__[0m:[36minit_pentest_artifact[0m:[36m97[0m - [34m[1mload from dump: {'credentials': [], 'endpoints': [], 'services': [], 'cookies': [], 'vulnerabilities': []}[0m
[32m2025-08-30 18:46:29.436[0m | [34m[1mDEBUG   [0m | [36m__main__[0m:[36minit_pentest_artifact[0m:[36m106[0m - [34m[1mcredentials=[] endpoints=[] services=[] cookies=[] vulnerabilities=[][0m
[32m2025-08-30 18:46:34.964[0m | [34m[1mDEBUG   [0m | [36m__main__[0m:[36minit_pentest_artifact[0m:[36m114[0m - [34m[1mcredentials=[] endpoints=['10.62.34.10:22/spreading,\n        ', '10.62.34.10:53/spreading,\n        ', '10.62.34.10:80/spreading,\n        ', '10.62.34.10:112/spreading,\n        ', '10.62.34.10:212/spreading,\n        ', '10.62.34.10:239/spreading,\n        ', '10.62.34.10:700/spreading,\n        ', '10.62.34.10:901/spreading,\n        ', '10.62.34.10:945/spreading,\n        ', '10.62.34.10:5432/spreading,\n       

### Решение


In [22]:
planing_attackerconfig = {"configurable": {"thread_id": "106"}, "recursion_limit": 350 }
message = {
	"messages": [
		{
			"role": "user",
			"content": (f"Вот задание: {task1.format(ip)} "
				"Составь план решения задачи, вот примерный план:"
				f"1. Найди все сервисы на PC {ip}. "
				"2. Подбери по очереди пароль к каждому сервису. Список сервисов возьми в хранилище данных пентеста."
			   " Используй hydra и стандартные wordlist kali, для пользователей /usr/share/wordlists/metasploit/unix_users.txt"
			   " и для паролей /usr/share/wordlists/rockyou.txt. Не используй другие словари, не модифицируй словари."
			   "После нахождения паролей выведи подробный отчет о найденых паролях, уязвимых сервисах в файл logs/report_task_1.md")


		}
	]
}



for chunk in planing_attacker.stream(message, planing_attackerconfig):
	pretty_print_messages(chunk, last_message=True)

[32m2025-08-30 18:46:58.902[0m | [34m[1mDEBUG   [0m | [36mfunc.methods[0m:[36mget_pentest_artifact[0m:[36m103[0m - [34m[1mcreated new pentest_store[0m
[32m2025-08-30 18:46:59.613[0m | [34m[1mDEBUG   [0m | [36mfunc.methods[0m:[36mget_pentest_artifact[0m:[36m109[0m - [34m[1mcredentials=[] endpoints=[] services=[] cookies=[] vulnerabilities=[][0m
[32m2025-08-30 18:47:00.258[0m | [34m[1mDEBUG   [0m | [36mfunc.methods[0m:[36mget_pentest_artifact[0m:[36m117[0m - [34m[1mcredentials=[] endpoints=[] services=[] cookies=[] vulnerabilities=[][0m
[32m2025-08-30 18:47:00.259[0m | [34m[1mDEBUG   [0m | [36mfunc.methods[0m:[36mget_pentest_artifact[0m:[36m126[0m - [34m[1mread from file logs/report_task_1.md: {'credentials': [], 'endpoints': [], 'services': [], 'cookies': [], 'vulnerabilities': []}[0m
[32m2025-08-30 18:47:00.260[0m | [34m[1mDEBUG   [0m | [36mfunc.methods[0m:[36mget_pentest_artifact[0m:[36m127[0m - [34m[1mread from file

In [None]:
planing_attackerconfig = {"configurable": {"thread_id": "106"}, "recursion_limit": 350 }
message = {
	"messages": [
		{
			"role": "user",
			"content": (f"Вот задание: {task1.format(ip)} "
				"Проверь все пароли из файла logs/report_task_1.md. Точно установи какие пароли от какого сервиса путем подлючения"
				"Выполни проверку паролей самостоятельно. Напиши команды для смены пароля на более устойчивые")


		}
	]
}



for chunk in planing_attacker.stream(message, planing_attackerconfig):
	pretty_print_messages(chunk, last_message=True)

[32m2025-08-30 19:56:46.329[0m | [34m[1mDEBUG   [0m | [36mfunc.methods[0m:[36mget_pentest_artifact[0m:[36m100[0m - [34m[1mload from dump: {'credentials': [{'type': 'password', 'login': 'admin', 'password': 'protect', 'context': ''}, {'type': 'password', 'login': 'uftp', 'password': 'clock', 'context': ''}, {'type': 'password', 'login': 'admin', 'password': '666', 'context': ''}, {'type': 'password', 'login': 'admin', 'password': 'clock', 'context': ''}, {'type': 'password', 'login': 'admin', 'password': '123456', 'context': ''}, {'type': 'password', 'login': 'user', 'password': 'protect', 'context': ''}, {'type': 'password', 'login': 'user', 'password': '666', 'context': ''}, {'type': 'password', 'login': 'user', 'password': 'clock', 'context': ''}, {'type': 'password', 'login': 'user', 'password': '123456', 'context': ''}, {'type': 'password', 'login': 'uftp', 'password': 'protect', 'context': ''}, {'type': 'password', 'login': 'uftp', 'password': '666', 'context': ''}, {