Features
Pentest Copilot is equipped with a comprehensive suite of capabilities designed to streamline and enhance the penetration testing process. Once a workspace is initialized, the following features become available to support methodical, technically robust assessments.
At the core of Pentest Copilot is an AI-powered browser-based assistant that provides intelligent, step-by-step guidance throughout the penetration testing lifecycle. The assistant integrates security best practices and real-time context-awareness to aid in achieving specific testing objectives efficiently.
A dynamic, editable checklist system is integrated directly into the Copilot interface. It maintains stateful context of the current assessment, offering visibility into both completed and pending steps. Custom checklist items can also be defined, enabling teams to tailor workflows and incorporate organization-specific procedures alongside automated guidance.
Tip
A Kali container must be running for terminal access to be available.
Upon workspace creation, a dedicated terminal session is provisioned with access to a Kali Linux container. This environment supports direct execution of security tools, manual command-line interaction, and observation of Pentest Copilot's automated activity.
This dual-purpose terminal allows monitoring of autonomous actions and simultaneous performance of independent operations, ensuring flexibility in complex testing scenarios.
Pentest Copilot supports secure network tunneling via OpenVPN. A VPN tab in the interface enables the upload and activation of .ovpn configuration files, allowing the Kali container to join remote or internal subnets securely.
Once connected, system logs confirm tunnel establishment, ensuring secure transport.
Terminal multiplexing permits real-time monitoring of both the main session and the VPN-dedicated interface, maintaining visibility into the active connection. Subnet access can be verified through standard network utilities (e.g., ping, nmap).
A full graphical interface of the Kali container is available via the left navigation pane or the Workspace dropdown. This VNC-based session provides GUI-level control for tool access, report generation, and visual workflows.
[!HINT]
The GUI session can be launched in a new tab for isolated, multi-tasked usage.
To support seamless interaction between the Kali container and the host machine, Pentest Copilot includes clipboard synchronization. This enables easy transfer of commands, output, and other data across environments via the GUI pull-out menu.
Further technical documentation is available for the Pentest-Checklist system and supported Tools within the Pentest Copilot ecosystem.