Shanon: The Open Source AI Pentester Powered By Claude Code

Description

Shannon AI is an open source autonomous AI pen-testing tool (or hacker) that uses Claude to find security vulnerabilities like XSS, SQL injection, and SSRF through code analysis and browser automation. In this video, I demo Shannon running on the OWASP Juice Shop app, explain how it uses Temporal for durable execution across its five pentesting phases, break down the $66 cost in Claude API credits, and compare it to the upcoming Claude Code Security feature. We'll also look at Shannon Pro's enhanced data flow analysis capabilities. 🔗 Relevant Links My Shannon Reports - https://github.com/RichardBray/shannon-report Temporal - https://temporal.io/ ❤️ More about us Radically better observability stack: https://betterstack.com/ Written tutorials: https://betterstack.com/community/ Example projects: https://github.com/BetterStackHQ 📱 Socials Twitter: https://twitter.com/betterstackhq Instagram: https://www.instagram.com/betterstackhq/ TikTok: https://www.tiktok.com/@betterstack LinkedIn: https://www.linkedin.com/company/betterstack 📌 Chapters: 0:00 Intro 0:35 What is Shannon AI 1:08 Shannon Setup and Demo on OWASP Juice Box 2:16 What is Temporal.io? 2:49 How Shannon Does Pentesting 4:10 Shannon Pentest Report 5:23 Shannon Report Deep Dive 7:04 Shannon Pro by Keygraph 7:37 Final Thoughts