vuln-monkey
v0.1.5
Published
AI-powered API security fuzzer that uses LLMs to discover logic flaws in your endpoints
Maintainers
cdbkkxReadme
Table of Contents
- Quick Start
- Demo
- Models & Backends
- How It Works
- Usage
- Risk Scoring
- Safety & Guardrails
- Tech Stack
- Development
Quick Start
Install globally:
npm install -g vuln-monkeyFuzz an API endpoint:
vuln-monkey "curl -X POST https://api.example.com/users \
-H 'Authorization: Bearer tok_xxx' \
-d '{\"name\":\"test\"}'"That's it. It uses your Claude Code subscription by default. Zero configuration.
Outputs:
- Terminal summary with severity colors.
- Markdown report with payload details.
- JSON export for CI/automation.
- All written to
./reports/.
Demo
$ vuln-monkey "curl -X POST https://api.example.com/users -H 'Authorization: Bearer tok_xxx' -d '{\"name\":\"test\"}'"
✔ Parsed 1 endpoint(s)
✔ Found 7 potential vulnerabilities
✔ Generated 56 payloads
[1/56] 200 23ms IDOR - Access user 2's profile
[2/56] 200 31ms IDOR - Access user 999
[3/56] 500 89ms Injection - SQL in name field
[4/56] 401 12ms Auth bypass - Missing token validation
[5/56] 200 28ms Mass assignment - Set role to admin
[6/56] 400 15ms Type juggling - Integer as name
[7/56] 429 8ms Rate limiting bypass - Rapid requests
...
VULN MONKEY REPORT
Target: https://api.example.com/users
Model: claude-cli
Endpoints scanned: 1
Payloads fired: 56
Duration: 14.23s
Findings: 3
CRITICAL CRASH: Injection - SQL in name field — https://api.example.com/users
HIGH ERROR: Type juggling - Integer as name — https://api.example.com/users
MEDIUM SUSPICIOUS: IDOR - Access user 2's profile — https://api.example.com/users
Risk score: 67/100
Risk rating: Needs Attention
Reports written:
Markdown: ./reports/vuln-monkey-2026-04-03T12-00-00.000Z-a3f2c1.md
JSON: ./reports/vuln-monkey-2026-04-03T12-00-00.000Z-a3f2c1.jsonModels & Backends
8 LLM backends. Use what you have.
| Backend | Requires | Command |
|:--------|:---------|:--------|
| claude-cli (default) | Claude Code CLI | vuln-monkey "curl ..." |
| gemini-cli | Gemini CLI | vuln-monkey --model gemini-cli "curl ..." |
| codex-cli | Codex CLI | vuln-monkey --model codex-cli "curl ..." |
Zero config. No API keys. Reads from your CLI subscriptions automatically.
# Uses Claude Code (default)
vuln-monkey "curl https://api.example.com/users"
# Switch to Gemini
vuln-monkey --model gemini-cli "curl https://api.example.com/users"
# Or Codex
vuln-monkey --model codex-cli "curl https://api.example.com/users"| Backend | API Provider | Env Var |
|:--------|:-------------|:--------|
| claude | Anthropic API | ANTHROPIC_API_KEY |
| gemini | Google Generative AI | GEMINI_API_KEY |
| openai | OpenAI (GPT-4o, etc) | OPENAI_API_KEY |
Requires API keys. Useful for CI pipelines.
ANTHROPIC_API_KEY=sk-... vuln-monkey --model claude "curl https://api.example.com/users"
OPENAI_API_KEY=sk-... vuln-monkey --model openai "curl https://api.example.com/users"
GEMINI_API_KEY=... vuln-monkey --model gemini "curl https://api.example.com/users"| Backend | Runs | Config |
|:--------|:-----|:-------|
| ollama | Ollama (localhost:11434) | Just ollama serve |
| local | Any OpenAI-compatible server | OPENAI_BASE_URL env var |
Compatible with Ollama, LM Studio, vLLM, llama.cpp, text-generation-webui, or anything serving /v1/chat/completions.
# Ollama — auto-connects to localhost:11434
ollama serve &
vuln-monkey --model ollama "curl https://api.example.com/users"
# LM Studio, vLLM, or custom OpenAI-compatible server
OPENAI_BASE_URL=http://localhost:1234/v1 vuln-monkey --model local "curl https://api.example.com/users"How It Works
┌──────────────────────┐
│ curl / OpenAPI spec │
└──────────┬───────────┘
│
┌──────────▼───────────┐
│ Parse endpoints │
└──────────┬───────────┘
│
┌──────────▼───────────┐
│ LLM analysis │ ◄─ Identifies IDOR, SQL injection,
└──────────┬───────────┘ auth bypass, mass assignment, etc.
│
┌──────────▼───────────┐
│ Generate payloads │ ◄─ Creates attack variants
└──────────┬───────────┘ (8-10 per vulnerability)
│
┌──────────▼───────────┐
│ Fire requests │ ◄─ Concurrent + SSRF protection
└──────────┬───────────┘
│
┌──────────▼───────────┐
│ Classify responses │ ◄─ pass / suspicious / error / crash
└──────────┬───────────┘
│
┌──────────▼───────────┐
│ Generate reports │ ◄─ Terminal, Markdown, JSON
└──────────────────────┘Usage
Input Modes
Curl command:
vuln-monkey "curl -X POST https://api.example.com/users -d '{\"name\":\"test\"}'"OpenAPI specification:
vuln-monkey --spec https://api.example.com/openapi.jsonDry run (preview payloads without firing):
vuln-monkey --dry-run "curl https://api.example.com/users"CLI Options
| Option | Description | Default |
|:-------|:-----------|:--------|
| --spec <url> | OpenAPI/Swagger spec URL | — |
| --model <name> | LLM backend (see Models) | claude-cli |
| --output <dir> | Report output directory | ./reports |
| --concurrency <n> | Parallel requests | 5 |
| --timeout <ms> | Request timeout in milliseconds | 10000 |
| --dry-run | Generate payloads without firing | false |
Examples
Fuzz a protected endpoint:
vuln-monkey "curl -X GET https://api.example.com/users/42 \
-H 'Authorization: Bearer token_xyz'"Fuzz an entire API using OpenAPI spec:
vuln-monkey --spec https://api.example.com/v1/openapi.json \
--model openai --concurrency 10Fuzz with a local LLM, 20s timeout:
vuln-monkey --model ollama --timeout 20000 \
"curl -X POST https://api.example.com/login -d '{\"password\":\"test\"}'"Preview payloads before execution:
vuln-monkey --dry-run "curl https://api.example.com/users"Risk Scoring
Findings are weighted by severity and summed into a 0-100 risk score.
| Severity | Weight | Risk 0-39 | Risk 40-69 | Risk 70-100 | |:---------|:------:|:---------:|:---------:|:----------:| | Critical | 25 | — | — | Fail | | High | 15 | — | Needs Attention | — | | Medium | 5 | Acceptable | — | — | | Low | 2 | Acceptable | — | — |
Scores aggregate across all findings. A single critical vulnerability = 25 points. Two critical + one high = 65 points (Needs Attention).
vuln-monkey identifies:
- IDOR / BOLA - Insecure Direct Object References
- Injection - SQL, NoSQL, command injection
- Auth Bypass - Missing/weak authentication
- Mass Assignment - Unintended field exposure
- Type Juggling - Type coercion vulnerabilities
- Rate Limiting Bypass - No/weak rate limits
- Race Conditions - Concurrency issues
- Overflow - Integer/buffer overflow
- Data Exposure - Excessive information disclosure
- CORS Misconfiguration - Broken CORS policies
- Info Disclosure - Stack traces, version leaks
Safety & Guardrails
vuln-monkey is a security testing tool with built-in protections:
| Protection | What It Does | |:-----------|:------------| | SSRF Guard | Blocks requests to localhost, private IPs, link-local, AWS metadata | | Redirect Control | Does not follow HTTP redirects | | Response Cap | 1 MB max response body to prevent memory exhaustion | | Credential Redaction | Authorization headers masked in Markdown reports | | Path Validation | Prevents report writes to sensitive system directories |
Legal notice: This tool is for authorized security testing only. Always get written permission before testing APIs you do not own or operate.
Tech Stack
Core: TypeScript, Node.js 20+, Zod validation
CLI: Commander, Chalk, Ora spinners
Testing: Vitest, 68 passing tests
LLM Support: Claude, Gemini, OpenAI, Ollama
Development
Clone and install:
git clone https://github.com/cdbkk/vuln-monkey.git
cd vuln-monkey
npm installRun tests:
npm test # run once
npm run test:watch # watch modeType check:
npx tsc --noEmitTry locally:
npm run dev -- --help
npm run dev -- "curl https://api.example.com/users"Requirements
- Node.js 20+
- One of:
- Claude Code CLI (
claudecommand) - Gemini CLI (
geminicommand) - Codex CLI (
codexcommand) - API key for Claude, Gemini, or OpenAI
- Local LLM running on localhost (Ollama, LM Studio, etc.)
- Claude Code CLI (
Contributing
Found a bug? Have a feature idea? Pull requests welcome.
See CONTRIBUTING.md for setup and guidelines.
License
MIT — Build what you want.