This whitepaper presents "wish," an AI-powered shell environment specifically designed for penetration testing. Operating as an intelligent command-line interface, wish translates natural language inputs into executable shell commands, providing penetration testers with an intuitive and efficient workflow. The document outlines the tool's capabilities, architecture, and potential applications in offensive security operations. True to its name and motto "Your Wish, Our Command," wish empowers users by turning their natural language requests into precise technical actions.
Penetration testing education and practice, whether for OSCP certification, HackTheBox, TryHackMe, or CTF competitions, has traditionally relied heavily on copying and pasting commands from web pages and cheatsheets. While this approach serves an educational purpose, the emergence of Large Language Models (LLMs) presents an opportunity to make this process significantly more intelligent and efficient.
wish was designed to shift the focus from memorizing commands to developing situational awareness and strategic thinking. By simply expressing what needs to be accomplished as a natural language "wish," penetration testers receive contextually appropriate command suggestions, allowing them to concentrate on the higher-level aspects of security assessment rather than syntax details.
Speed is critical in penetration testing, where multiple attack vectors must often be explored to identify viable entry points. Traditional approaches using terminal multiplexers and manual command management can become cumbersome and time-consuming.
wish addresses this challenge by generating multiple commands simultaneously and executing them in parallel and asynchronously. Commands run in the background, with the system providing interruption notifications upon completion. This parallel and asynchronous processing approach allows penetration testers to continue strategizing while commands execute, significantly accelerating the testing workflow.
Penetration testing extends beyond initial access to include post-exploitation activities. However, shells obtained during this phase are typically limited in functionality, degrading the tester's experience and efficiency. Traditional post-exploitation workflows often force penetration testers to abandon their preferred tools and adapt to restrictive command-line environments.
wish transforms this experience by bringing its AI-powered shell capabilities directly into compromised environments. By integrating with Command and Control (C2) frameworks, wish enables penetration testers to continue using natural language commands even after successful exploitation. This means the same intuitive interface that translates "wishes" into executable commands on your local machine can now operate within the compromised target system. While the current implementation focuses on Sliver C2 integration, the architecture is designed to support various C2 frameworks, including custom solutions, in the future. This flexible integration approach ensures that penetration testers can maintain their efficient, AI-assisted workflow throughout the entire testing process, from initial reconnaissance to post-exploitation.
wish was developed as a component of the RapidPen project [1], an AI-driven system for automated penetration testing. RapidPen's architecture is divided into two main components: "Re" for task planning and "Act" for command execution. The effectiveness of the Act component significantly influences the success of initial access in the RapidPen system.
By extracting the Act component as an open-source tool, wish aims to refine and improve this critical functionality through community involvement. While RapidPen focuses on automation, wish acknowledges the continued importance of human-led penetration testing and serves as an assistant that enhances human capabilities rather than replacing them.
The primary objectives of wish are:
- Reduce cognitive load by translating natural language into executable commands
- Accelerate penetration testing workflows through parallel and asynchronous command execution
- Provide contextually relevant command suggestions based on specialized knowledge bases
- Enable seamless operation in both local and compromised environments
- Support the evolution of the RapidPen ecosystem while enhancing human-led security testing
- Natural Language Command Generation: Translate user "wishes" into executable shell commands
- Offensive Security-Focused Knowledge Base: Utilize specialized knowledge bases tailored for offensive security operations
- Parallel & Asynchronous Command Execution: Execute and track multiple commands simultaneously in the background, allowing users to continue working while waiting for results
- Log Analysis and Summarization: Automatically analyze and summarize command outputs
- C2 Integration: Operate within compromised environments through C2 framework integration, currently supporting Sliver C2 with plans for expanded framework support
wish is designed for:
- Professional penetration testers during initial access and post-exploitation phases
- Security students preparing for OSCP certification
- HackTheBox, TryHackMe, or CTF (Boot2Root) players looking to enhance their efficiency
wish positions itself as "Your (OSCP / HTB / THM / CTF) partner", adapting to the specific needs of different security learning and testing environments.
Professional penetration testers can leverage wish to streamline their workflow in time-sensitive engagements. By translating complex requirements into executable commands, wish reduces the cognitive load of recalling specific syntax and options. For example, during an external network assessment, a tester might simply express "scan the target network for web servers with potential vulnerabilities" and receive optimized nmap and vulnerability scanning commands tailored to the specific context.
OSCP certification candidates often struggle with the transition from guided learning to practical application. wish serves as a bridge by helping students convert their conceptual understanding into practical commands. When faced with a challenge like privilege escalation, students can describe their objective in natural language and receive suggested commands that not only solve the immediate problem but also reinforce learning through exposure to proper command syntax and methodology. As your trusted OSCP study partner, wish helps build the knowledge and skills needed to perform independently during the certification exam, while understanding that AI-assisted tools are not permitted during the actual examination.
HackTheBox, TryHackMe, and CTF players operate under time constraints where efficiency is crucial. wish accelerates the reconnaissance and enumeration phases by generating and executing multiple commands in parallel. For instance, when approaching a new Boot2Root challenge, players can initiate comprehensive enumeration by expressing "perform initial enumeration on this target" and receive a set of parallel commands covering port scanning, service identification, and common vulnerability checks. As your reliable HTB, THM, and CTF partner, wish helps you focus on strategy and problem-solving rather than command syntax, giving you a competitive edge in time-sensitive challenges.
shell_gpt is a command-line productivity tool that brings the power of large language models to the terminal. It allows users to generate shell commands from natural language descriptions, helping to reduce the cognitive load of remembering complex syntax and options.
Key features of shell_gpt include:
- Natural language to command translation
- Integration with various shells (bash, zsh, fish)
While shell_gpt excels at general-purpose command assistance, it is not specifically designed for offensive security operations. It typically generates one command at a time, which, while suitable for daily work, can be limiting for the rapid, multi-faceted exploration required in penetration testing scenarios.
wish builds upon this foundation by adding specialized offensive security knowledge bases and parallel command execution capabilities, significantly accelerating the penetration testing workflow.
Nebula is an AI-powered penetration testing assistant designed specifically for security professionals. Unlike wish which focuses on being a shell environment, Nebula has a broader scope beyond shell operations, covering various aspects of penetration testing. It represents an evolution in offensive security tooling by combining AI capabilities with penetration testing expertise.
Key features of Nebula include:
- Specialized for penetration testing workflows
- Suggestion of next actions based on command results
- Multiple command recommendations
- Offline operation using local models
While it can suggest multiple commands, the execution management of these commands is left to the user. Additionally, Nebula emphasizes offline operation, running models locally on the user's machine without sending data to external APIs.
This design choice enhances security and privacy but comes with limitations:
- Requires significant hardware resources (GPU recommended)
- Limited to local model capabilities (speed and accuracy)
wish addresses these limitations by providing a more focused shell experience with parallel and asynchronous command execution management, C2 integration for operation in compromised environments, and leveraging powerful cloud-based models while maintaining operational security.
| Feature | wish | shell_gpt | Nebula |
|---|---|---|---|
| Primary Purpose | AI-powered shell for penetration testing | AI-powered shell for general purpose | Penetration testing assistance |
| Command Generation & Execution | Multiple commands, parallel & asynchronous execution | Single command, sequential execution | Multiple commands (suggestion only) |
| Knowledge Base | GitHub documents (e.g. HackTricks) | None | Internet search & local knowledge base |
| LLM Model | OpenAI API | OpenAI API + Local models | Local models |
| Use in Compromised Environments | Possible (C2 integration) | Not possible | Not possible |
| UI | TUI | CLI | GUI |
The control and data flow between components illustrates how wish processes user inputs and generates results:
Prior to the main workflow, wish-knowledge-loader imports knowledge bases from GitHub repositories and other sources, processing and storing them in vector databases. This import process is performed independently of the command generation workflow and serves as a prerequisite for effective command generation.
The typical workflow follows these steps:
- User inputs a natural language "wish" in the TUI (wish-sh)
- wish-sh passes the wish to wish-command-generation
- wish-command-generation uses RAG to retrieve relevant knowledge from the pre-imported knowledge bases (managed by wish-knowledge-loader) and generate commands
- Generated command candidates are displayed to the user for confirmation
- wish-command-execution executes the confirmed commands and sets basic result information
- wish-log-analysis analyzes the command results and sets detailed information
- Status updates are displayed in the TUI, and results are stored in the wish history
This flow enables users to seamlessly experience the entire process from natural language input to executable commands and analyzed results.
The logical architecture illustrates not just the components of wish, but where they operate and what they interact with:
This architecture highlights several key aspects of the system's deployment and operation:
- Knowledge bases are imported and stored on the attack machine, where they are accessed by the command generation process
- Command execution interfaces with both local shells (bash, zsh, etc.) and remote C2 servers for compromised environments
- LLM operations rely on external services, currently using OpenAI's API
Core Components and Their Operational Context:
The package dependencies illustrate how components interact with each other:
graph TD
A[wish-models] --> |Basic data models| B[wish-command-execution]
A --> |Basic data models| C[wish-sh]
A --> |Basic data models| D[wish-log-analysis]
A --> |Basic data models| E[wish-command-generation]
A --> |Basic data models| F[wish-knowledge-loader]
B --> |Command execution functionality| C
D --> |Log analysis functionality| C
E --> |Command generation functionality| C
- wish-models: Core data models used throughout the system, implemented using Pydantic for validation and serialization
- wish-command-execution: Executes commands through local shells or C2 frameworks, enabling operation in both attack machines and compromised targets
- wish-log-analysis: Analyzes command outputs using external LLM services (OpenAI), transforming raw outputs into actionable insights
- wish-command-generation: Generates commands by querying external LLM services (OpenAI) with context from locally stored knowledge bases
- wish-knowledge-loader: Imports and processes knowledge bases from external sources (GitHub repositories), storing them locally on the attack machine
- wish-sh: Provides the Text-based User Interface (TUI) that runs on the attack machine, coordinating all other components
This architecture enables wish to operate seamlessly across different environments (local and remote) while leveraging both local resources and external services.
- Operating System: Linux, macOS, Windows (experimental)
- Python: Version 3.13+
- LLM Models: OpenAI API key required
- RAM: Minimum 8GB recommended (not tested on lower configurations)
- C2 Integration: Sliver C2 setup for compromised shell operation (optional)
wish-sh can be installed using pip:
pip install wish-shFor detailed installation instructions, including environment variable configuration and .env file setup, refer to the Setup Guide.
wish-sh requires an OpenAI API key, which can be set through environment variables:
export OPENAI_API_KEY=your-api-key-hereThe following environment variables are available for configuration:
| Variable | Description | Default | Required |
|---|---|---|---|
OPENAI_API_KEY |
OpenAI API key for LLM operations | - | Yes |
OPENAI_MODEL |
OpenAI model for command generation | gpt-4o | No |
WISH_HOME |
Directory for wish data storage | ~/.wish | No |
WISH_ENV_FILE |
Custom .env file path | $WISH_HOME/env | No |
LANGCHAIN_TRACING_V2 |
Enable LangSmith tracing | false | No |
LANGCHAIN_ENDPOINT |
LangSmith API endpoint | https://api.smith.langchain.com | No |
LANGCHAIN_API_KEY |
LangSmith API key | - | No* |
LANGCHAIN_PROJECT |
LangSmith project name | wish | No |
* Required only if LANGCHAIN_TRACING_V2 is set to true
For wish-knowledge-loader, the following additional environment variable is used:
| Variable | Description | Default | Required |
|---|---|---|---|
OPENAI_MODEL |
OpenAI model for embeddings | text-embedding-3-small | No |
These variables can be set directly in your shell or through a .env file. For detailed configuration instructions, refer to the Setup Guide.
To enhance wish-sh with domain-specific knowledge, you can use wish-knowledge-loader:
pip install wish-knowledge-loaderFor detailed knowledge base setup instructions, refer to the Knowledge Loader Guide.
For operation in compromised environments, wish-sh can be integrated with Sliver C2:
wish --sliver-config /path/to/config.cfgFor detailed C2 integration instructions, refer to the Command and Control Guide.
The wish TUI provides an intuitive interface for:
- Entering natural language "wishes"
- Reviewing suggested commands
- Executing commands and monitoring their status
- Analyzing command outputs
To start wish-sh, simply run:
wish # or wish-sh on macOSThe basic workflow involves:
- Type your wish in natural language (e.g., "Find all PDF files in the current directory")
- Review the suggested commands
- Execute or reject the commands
- Monitor execution and view results
For detailed usage instructions with examples, refer to the Basic Usage Guide.
wish utilizes specialized knowledge bases to improve command generation. These knowledge bases contain domain-specific information that helps wish-sh generate more accurate and relevant commands.
Key features include:
- Loading knowledge from GitHub repositories
- Using Retrieval-Augmented Generation (RAG) to incorporate knowledge into command generation
- Supporting multiple knowledge bases for different domains
Example knowledge base loading:
wish-knowledge-loader --repo-url https://github.com/HackTricks-wiki/hacktricks --glob "**/*.md" --title "HackTricks Wiki"For detailed information on available knowledge bases, adding custom knowledge bases, and examples of effective queries, refer to the Knowledge Loader Guide.
wish can be integrated with Command and Control (C2) frameworks to operate within compromised environments. This allows penetration testers to use natural language commands on remote systems.
Current capabilities include:
- Sliver C2 integration for remote command execution
- Session selection for multiple compromised systems
- Natural language command generation in compromised environments
Example usage with Sliver C2:
wish --sliver-config ~/wish_127.0.0.1.cfg --sliver-session SESSION_IDFor detailed information on Sliver C2 integration, plans for supporting additional C2 frameworks, and practical usage scenarios, refer to the Command and Control Guide.
wish supports integration with LangSmith for monitoring, debugging, and optimizing LLM operations. This integration provides:
- Tracing of LLM interactions
- Performance analysis (latency, token usage, cost)
- Debugging tools for LLM-based workflows
To enable LangSmith integration, configure the following environment variables:
LANGCHAIN_TRACING_V2=true
LANGCHAIN_ENDPOINT=https://api.smith.langchain.com
LANGCHAIN_API_KEY=your-langsmith-api-key-here
LANGCHAIN_PROJECT=wishFor detailed information on setting up and using LangSmith with wish-sh, refer to the LangSmith Integration Guide.
Current capabilities include:
- Functional TUI prototype with intuitive command interface
- Natural language to command generation using LLMs
- Multiple command suggestion and parallel execution tracking
- Automatic log analysis and summarization
- Knowledge base integration from GitHub repositories (e.g., HackTricks)
- OS-aware command generation (Linux, Windows, macOS) with system information collection
- Centralized settings management with support for custom .env file paths
- Comprehensive documentation and usage guides
- Sliver C2 integration for compromised shell operation, including:
- Remote system information collection
- Session management with validation and error handling
- Command execution on compromised hosts
- OpenAI API integration for command generation and log analysis
- LangSmith integration for monitoring and debugging LLM operations
- Wish History functionality:
- Persistent storage of command history
- Search and filtering capabilities
- Command reuse and modification
- More intuitive TUI with enhanced visual feedback
- Expanded environment-aware command suggestions:
- Available executables detection and utilization
- Dictionary files and wordlists awareness
- Target-specific configuration options
- Learning from successful command executions:
- Feedback loop for command effectiveness
- Adaptation to user preferences and patterns
- Portal interface for:
- C2 framework setup and management
- Knowledge base import and organization
- System configuration and monitoring
- Support for various LLM providers (local models, alternative APIs)
- Expanded C2 framework integration beyond Sliver C2:
- Support for Metasploit, Covenant, and other C2 frameworks
- Custom and proprietary C2 solution integration
- Unified C2 management interface
- Full integration with RapidPen for automated penetration testing workflows
- API for integration with other security tools and platforms
- Plugin system for community-developed extensions
- Open-source contribution framework
- User feedback incorporation mechanism
- Regular feature updates based on penetration testing trends
- [1] NAKATANI, Sho. RapidPen: Fully Automated IP-to-Shell Penetration Testing with LLM-based Agents. arXiv preprint arXiv:2502.16730, 2025.
- [2] shell_gpt: https://github.com/TheR1D/shell_gpt
- [3] Nebula: https://github.com/berylliumsec/nebula