Original Reddit post

Shannon is a new open source, fully autonomous AI hackbot that you launch on a site or service. It finds and exploits vulnerabilities. It goes without saying that defenders should be cautious in allowing it to exploit vulnerabilities, as operational issues can result. Ask any penetration tester, just looking for and confirming vulnerabilities can cause issues, so proceed with caution. I once caused huge operational interruption in a client of mine by simply pinging their IP-enabled sensors. In general, be careful to give any aggressive AI bot full autonomy over any mission-critical site or service if it is performing a task that can potentially cause operational issues until you can absolutely assure it won’t cause problems. Yes, bad guys will use and abuse good guy hackbots. But they probably didn’t need Shannon to start down that path. Shannon is just one small cog in the big machinery with defenders on one side and attackers on the other, using similar bot behavior. Make sure your use of such bots is done with due analysis of the risks and maturity. With that said, bots like this are absolutely the future and are needed. You will be at more risk without it. submitted by /u/rogeragrimes

Originally posted by u/rogeragrimes on r/ArtificialInteligence