Pipeline — Control Surface

Pipeline is the adaptive control surface for penetration testing engagements. It manages tool discovery, findings tracking, recommendations, attack planning, and execution orchestration.

Actions

Action	Purpose
status	View pipeline status: available tools, findings, current stage
refresh	Force re-probe all tools, re-discover available Kali tools
recommendations	Get recommended tools for a specific pentest stage
chains	View available tool chains for a target type
findings	View accumulated findings (optionally filtered by type)
attack-plan	Build an adaptive attack plan based on detected tech stack
execute	Execute a predefined tool chain step-by-step
reset	Reset pipeline state for a new engagement
save-state	Save current pipeline state
restore-state	Restore a previously saved pipeline state

Finding Types

The pipeline tracks 30+ finding types:

Category	Types
Host & Network	host, port, service, subdomain
Vulnerabilities	vulnerability, cors-misconfig, ssrf-response, deserialization, prototype-pollution
Credentials	credential, hash, api-key, jwt-token, oauth-token
Infrastructure	share, user, techno
Cloud	cloud-metadata, s3-bucket, iam-role, container-info, kubernetes-secret

Target Types

Type	Description
web-app	Web applications and APIs
network	Network infrastructure
ad-domain	Active Directory domains
wireless	Wireless networks
host	Individual hosts
general	Generic targets
cloud	Cloud infrastructure
container	Containerized environments
api	API endpoints
kubernetes	Kubernetes clusters

Usage

Session startup (mandatory)

Pipeline(action="status")
Pipeline(action="findings")

Getting recommendations

Pipeline(
  action="recommendations",
  stage="vuln-analysis"
)

Building an attack plan

Pipeline(
  action="attack-plan",
  target="http://target.com",
  techStack="nginx,php,mysql,wordpress",
  wafDetected="cloudflare"
)

Executing a tool chain

Pipeline(
  action="execute",
  chainName="web-audit",
  target="http://target.com"
)