> ## Documentation Index
> Fetch the complete documentation index at: https://docs.decepticon.red/llms.txt
> Use this file to discover all available pages before exploring further.

# Autonomous Hacking

> What Autonomous Hacking means, why it replaces 'Vibe Hacking', and how it connects offense to defense.

## What is Autonomous Hacking?

Let's be honest. The "AI + hacking" space is exhausting.

Every other week, someone drops a demo: *"Look, GPT can run nmap!"* Cool. Then what? It either ends up as a party trick that no one actually uses in production — or worse, it crosses a line nobody should cross.

> *"Yet another AI pentesting tool... cool demo. But when does it actually do something a real attacker would?"*

Fair question. Here's our answer.

**Autonomous Hacking** is the next evolution in offensive security. It's not about making hacking/pentesting easier or more accessible. It's about making **real Red Team operations** executable at machine speed — with the rigor, documentation, and legal framework that separates professionals from script kiddies.

Traditional red teaming demands hundreds of hours of manual work, such as scanning, enumerating, pivoting, documenting, etc. Most of it is repetitive and all of it is exhausting. Meanwhile, the attack surface grows faster than any human team can cover.

Autonomous Hacking changes the equation. AI agents handle the grind: running scans, analyzing output, chaining techniques, and adapting in real time. The human sets the mission, defines the rules, and focuses on what machines still can't do — intuition, judgment, and creative thinking.

> *"Delegate the repetitive. Focus on the decisive."*

## From Vibe Hacking to Autonomous Hacking

When Decepticon was first conceived, we used the term **Vibe Hacking** — the idea that an AI agent could read the "vibe" of a target environment: understanding context, adapting strategies on the fly, and executing complex attack chains without rigid playbooks.

That core capability hasn't changed. What changed is the framing.

"Vibe Hacking" captured the *how* — contextual, adaptive, reasoning-based attacks. But it didn't capture the *why* — and the "why" is what matters most.

**Autonomous Hacking** encompasses the full picture:

1. **The How** — AI agents that reason about targets, adapt to defenses, and chain multi-stage attacks autonomously
2. **The Why** — Providing infinite offensive feedback to build impenetrable defense systems
3. **The Framework** — Operating within professional Red Team methodology: RoE, OPPLAN, ConOps, formal authorization

The term "autonomous" also communicates what makes this different from every other AI security tool: the agent doesn't just run a script. It *thinks*, *adapts*, and *persists* — like a real adversary.

## "But wait — aren't you guys just the same?"

Great question. Short answer: **No.**

Here's the thing most people miss about offensive security. There's a massive difference between *hacking* and *Red Team Testing*.

Red Team Testing is a **regulated, authorized, and professionally disciplined**. Before a single packet leaves the wire, there are documents. Agreements. Rules.

* **RoE (Rules of Engagement)** — Defines what you can and can't touch. Scope, timing, boundaries. Violate this and you're not a red teamer, you're a criminal.
* **ConOps (Concept of Operations)** — Threat actor profile, attack methodology, the "who are we pretending to be" document.
* **Deconfliction Plan** — Separates red team activity from real threats. Source IPs, user-agents, time windows, and a shared code for real-time deconfliction calls with the SOC.
* **OPPLAN (Operations Plan)** — The full mission plan. Objectives, kill chain phases, acceptance criteria. Every action maps to a purpose.

Decepticon supports all of this.

Every engagement starts with proper documentation. Every objective is tracked. Every action operates within defined boundaries.

<Info>
  The agent doesn't just hack. It operates under a formal operations plan, respects the Rules of Engagement, and produces auditable findings. This isn't an entertaining Proof of Concept. It's a professional Red Team platform that happens to be autonomous.
</Info>

## Why Decepticon?

Penetration testing finds vulnerabilities. Red teaming solves the most difficult problem: *can your organization survive a real attack?*

Most security tools stop at the scan report. Decepticon rather thinks in kill chains — reconnaissance, exploitation, privilege escalation, lateral movement, persistence — executing multi-stage operations the way a real adversary would, not the way a scanner does.

Four principles guide everything we build:

<CardGroup cols={2}>
  <Card title="Real Red Teaming, Not Checkbox Security" icon="crosshairs">
    Decepticon emulates actual adversary behavior — not just running CVE checks against a list of ports. It reads an operations plan, adapts to what it finds, and pursues objectives through whatever path opens up. The goal is to test your defenses the way they'll actually be tested.
  </Card>

  <Card title="Interactive Shell Sessions" icon="terminal">
    Real offensive security tools are interactive — sliver-client, msfconsole, evil-winrm, sqlmap, impacket-psexec. While most AI agents fire one-shot commands via subprocess.run() and call it a day, Decepticon runs every command inside persistent tmux sessions with automatic prompt detection. The agent actually operates the tools.
  </Card>

  <Card title="Complete Isolation — Real Red Team Infrastructure" icon="shield">
    Every command runs inside a hardened Kali Linux sandbox on a dedicated operational network, fully isolated from the management infrastructure. No cross-network access. LangGraph reaches the sandbox exclusively via Docker socket — not the network.
  </Card>

  <Card title="CLI-First" icon="monitor">
    Security work belongs in the terminal. Decepticon's interface is a real-time streaming CLI built with Ink. No browser tabs, no dashboards, no context switching. You see what the agent sees as it happens.
  </Card>
</CardGroup>

## The Bigger Picture: Offense Serves Defense

Here's what many "offensive AI" projects get wrong: they treat the attack as the destination.

**Decepticon is not the destination. It's Step 1.**

There are already plenty of offensive AI agents out there. The world doesn't need another "look, AI can hack things" demo. What the world actually needs is a system that turns offensive capabilities into **defensive evolution**:

<Steps>
  <Step title="Step 1: Autonomous Offensive Agent">
    Build a world-class hacking agent that executes realistic Red Team operations. **We are here.**
  </Step>

  <Step title="Step 2: Infinite Offensive Feedback">
    Deploy the agent to generate continuous, diverse attack scenarios — an endless stream of real-world threat simulation.
  </Step>

  <Step title="Step 3: Defensive Evolution">
    Channel that feedback into Blue Team capabilities — detection rules, response playbooks, hardening strategies. The defense evolves because the offense never stops.
  </Step>
</Steps>

Think of it as an **Offensive Vaccine**. Just as a biological vaccine exposes the body to weakened pathogens to build immunity, Decepticon exposes your infrastructure to relentless AI-driven attacks to build resilience.

The true value isn't in the attack. It's in the defense system that emerges from surviving it.

<Card title="Why Open Source?" icon="github" href="/en/vision/why-open-source">
  Learn how Decepticon's collective intelligence model turns this vision into a community-driven reality.
</Card>
