Quick Start Guide
This guide will help you run your first penetration test with AIPTx.
Prerequisites
- An AIPTx account (Sign up here)
- Node.js 18+ or Python 3.9+
- Access to the target application you want to test
Only test applications you own or have explicit written authorization to test. Unauthorized testing is illegal.
Installation
npm install -g @aiptx/cli
brew install aiptx/tap/aiptx
Authentication
Authenticate the CLI with your API key:
Or set your API key as an environment variable:
export AIPTX_API_KEY=your_api_key_here
Run Your First Scan
Basic Web Application Scan
aiptx scan https://your-app.com
API Scan with OpenAPI Specification
aiptx scan https://api.your-app.com --openapi ./openapi.yaml
Authenticated Scan
aiptx scan https://your-app.com \
--auth-type bearer \
--auth-token "your_jwt_token"
Understanding Scan Output
During the scan, you’ll see real-time progress:
AIPTx v2.0.0 - AI-Powered Penetration Testing
Target: https://your-app.com
Mode: Full Scan
[*] Reconnaissance phase...
Found 47 endpoints
Identified 3 authentication flows
[*] Testing for vulnerabilities...
Testing: SQL Injection
Testing: Cross-Site Scripting
Testing: Authentication Bypass
[!] CRITICAL: SQL Injection found
Endpoint: POST /api/users/search
Parameter: query
PoC: ' OR '1'='1' --
[!] HIGH: Stored XSS found
Endpoint: POST /api/comments
Parameter: body
PoC: <script>alert(document.cookie)</script>
Scan complete in 12m 34s
Findings: 2 Critical, 1 High, 4 Medium, 7 Low
View Results
In Terminal
aiptx findings list --scan-id abc123
Generate Report
aiptx report generate --scan-id abc123 --format pdf
View in Dashboard
Open dashboard.aiptx.io to see detailed findings with:
- Full proof-of-concept exploits
- Step-by-step remediation guidance
- Compliance mapping
- Trend analysis
Next Steps
