Safety-gated multi-agent framework for authorized cyber operations and penetration testing
Project description
Oubliette Warden
Safety-gated, human-on-the-loop multi-agent framework for authorized cyber operations.
Oubliette Warden coordinates a team of AI agents to run authorized defensive cyber and penetration-testing workflows end to end — planning, reconnaissance/analysis, code generation & execution, and vulnerability research — with every tool invocation gated by the Oubliette Shield safety pipeline and every action reviewable by a human operator before it runs.
Part of the Oubliette platform — Shield defends · Dungeon attacks · Trap traps · Warden operates.
⚠️ Authorized use only
Warden can drive real offensive tooling (e.g. nmap, Metasploit). It is intended solely for authorized security testing on systems you own or are explicitly contracted to assess. Use is gated by a mandatory safety pipeline and human approval. Operating it against systems without authorization may violate the CFAA and other laws. Commercial licensing is sold under terms that require authorized-use attestation.
The agents
- Planner — turns a high-level objective into an ATT&CK-aligned task graph.
- Cyber Analysis — ingests scan/recon output (e.g. Nmap XML) into ranked, evidence-backed findings.
- Code Generation & Execution — emits parameterized tool invocations (nmap / Metasploit); every command passes the Shield safety gate before it runs, inside an emulated range (e.g. MITRE CALDERA).
- Vulnerability Research — citation-bound RAG over an NVD corpus with evidence-integrity enforcement.
- Operator UI — human-on-the-loop review/approve/reject of every agent action, with an audit trail.
Install
pip install oubliette-warden # core
pip install "oubliette-warden[research]" # + RAG research backends (Qdrant, Ollama)
Quickstart
oubliette-warden --help # run the orchestrated demo workflow
Or drive individual agents via python -m oubliette_warden.demo.{plan,analyze,codegen,gate}.
Safety model
- The CodeGen agent never executes directly — it proposes a command.
- The command passes the Shield 5-stage safety pipeline (blocks unsafe/destructive invocations).
- A human operator approves it in the Operator UI before execution.
- Execution is confined to an authorized/emulated target; everything is audit-logged and replayable.
License
Apache-2.0 (code). Commercial/Enterprise licensing and authorized-use terms via oubliettesecurity.com.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file oubliette_warden-0.1.0.tar.gz.
File metadata
- Download URL: oubliette_warden-0.1.0.tar.gz
- Upload date:
- Size: 69.5 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
9304ed4dd622f22d7876ee1cccdfd4edfb767f7106228cf8d7bec12bb8940477
|
|
| MD5 |
3affcf73069980db02b2f42c54058386
|
|
| BLAKE2b-256 |
f64d487930a6e2c7a780de88c384a99b4ad617446b1a3b672e30c07527022ce9
|
File details
Details for the file oubliette_warden-0.1.0-py3-none-any.whl.
File metadata
- Download URL: oubliette_warden-0.1.0-py3-none-any.whl
- Upload date:
- Size: 61.7 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
815de9c819262430432dcdef2f0ee92a66dc012a6b2fb4833a0be309d523766f
|
|
| MD5 |
bda3c25b61df2dd7cedbca2b43b1d9c3
|
|
| BLAKE2b-256 |
52e8113c5f2538e7a814b51a6a1b2d69de9b1a8191019fd2834d18d012390f1b
|
