Update README.md
Browse files
README.md
CHANGED
|
@@ -0,0 +1,37 @@
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 1 |
+
---
|
| 2 |
+
base_model: meta-llama/Meta-Llama-3.1-8B-Instruct
|
| 3 |
+
language:
|
| 4 |
+
- en
|
| 5 |
+
license: mit
|
| 6 |
+
tags:
|
| 7 |
+
- lora
|
| 8 |
+
- security
|
| 9 |
+
- cybersecurity
|
| 10 |
+
- peft
|
| 11 |
+
---
|
| 12 |
+
|
| 13 |
+
# Security Testing Agent — LoRA
|
| 14 |
+
|
| 15 |
+
Defensive security testing assistant. Analyzes code for vulnerabilities and suggests fixes.
|
| 16 |
+
|
| 17 |
+
**Base model:** meta-llama/Meta-Llama-3.1-8B-Instruct
|
| 18 |
+
|
| 19 |
+
## Load it
|
| 20 |
+
|
| 21 |
+
```python
|
| 22 |
+
from peft import PeftModel
|
| 23 |
+
from transformers import AutoModelForCausalLM, AutoTokenizer
|
| 24 |
+
|
| 25 |
+
model = AutoModelForCausalLM.from_pretrained("meta-llama/Meta-Llama-3.1-8B-Instruct")
|
| 26 |
+
model = PeftModel.from_pretrained(model, "Xx-Vexento-xX/security-testing-agent-lora")
|
| 27 |
+
tokenizer = AutoTokenizer.from_pretrained("Xx-Vexento-xX/security-testing-agent-lora")
|
| 28 |
+
```
|
| 29 |
+
|
| 30 |
+
## Training
|
| 31 |
+
- 15 curriculum rounds across Python, JavaScript, Java, Go, PHP, Ruby, TypeScript, Rust, Kotlin, C#
|
| 32 |
+
- Vulnerability types: SQL Injection, XSS, CSRF, SSRF, Command Injection, IDOR, XXE, JWT weaknesses, Path Traversal, Prototype Pollution, and more
|
| 33 |
+
- RAG-aware: recognizes [REFERENCE CONTEXT] blocks for external knowledge injection
|
| 34 |
+
|
| 35 |
+
## Intended use
|
| 36 |
+
Authorized defensive security testing of your own code only.
|
| 37 |
+
Not for unauthorized access or offensive purposes.
|