METATRON – Open-Source AI Penetration Testing Assistant Brings Local LLM Analysis to Linux

Written in Python 3, METATRON is an open-source framework for penetration testing This article explores metatron open source. . It combines automated reconnaissance tools with a large language model (LLM) that is hosted on the same computer.

If the AI needs more data before making a decision, it can ask for more tool executions in the middle of the analysis. The project's main strength is its promise of zero-exfiltration, which means that all LLM inference happens on-device through Ollama. This keeps sensitive target data like internal IP ranges, banner information, and discovered vulnerabilities from leaving the tester's machine. The framework combines DuckDuckGo-based web search and CVE lookups without needing any API credentials.

This lets you compare discovered services and versions with public vulnerability databases in real time. You can get it on GitHub at GitHub.com/sooryathejas/METATRON under the MIT License.

The 9b model needs at least 8.4 GB of RAM to work. Follow METATron on LinkedIn and X to get daily updates on cybersecurity. Get in touch with us to tell us your stories.

You can get the tool for Parrot OS and other Linux distributions that are based on Debian. It uses nmap and other tools to scan ports, whois and dig to get DNS and registration information, whatweb to fingerprint technology, and curl to check HTTP headers. It has a five-table MariaDB schema that stores all scan data, with a central history table that is organized by session number.