This is a vulnerability mining engine purely based on GPT, requiring no prior knowledge base, no fine-tuning, yet its effectiveness can overwhelmingly surpass most of the current related research.

The key lies in the design of prompts, which has shown excellent results. The core idea revolves around:

• Being task-driven, not question-driven.
• Driven by prompts, not by code.
• Focused on prompt design, not model design.

The essence is encapsulated in one word: "deception."

• This is a type of code understanding logic vulnerability mining that fully stimulates the capabilities of gpt. The control flow type vulnerability detection ability is ineffective and is suitable for real actual projects.
• Therefore, don’t run tests on meaningless academic vulnerabilities

1. In src/main.py, set switch_production_or_test to test to configure the environment for testing purposes.

2. Place the project within the directory src/dataset/agent-v1-c4. This structure is critical for the tool to locate and interact with the data correctly.

3. Refer to the configuration file at src/dataset/agent-v1-c4/datasets.json for guidance on setting up your datasets. Once configured, you can execute main.py to begin the scanning process.

4. setup the database with the connection string provided in the .env file.

5. create db with sql src/db.sql

Configure your environment by creating a .env file with the following contents:

• DATABASE_URL=postgresql://postgres:[email protected]:5432/postgres

  • This is your database connection string, which the tool will use to store and retrieve data. Ensure that the details match your PostgreSQL setup.

• OPENAI_API_KEY=sk-xxxxx

  • Replace sk-xxxxx with your actual OpenAI API key. This key enables the tool to interact with OpenAI services for various operations, such as data processing or analysis.

这是一个纯基于gpt的漏洞挖掘引擎，不需要任何前置知识库，不需要任何fine-tuning，但效果足可以碾压当前大部分相关研究的效果

核心关键在于prompt的设计，效果非常好

核心思路：

• task driven, not question driven
• prompt driven, not code driven
• prompt design, not model design

关键一个字在于“骗”

• 这是一种充分激发gpt能力的代码理解型的逻辑漏洞挖掘，控制流类型的漏洞检测能力效果差，适用于真正的实际项目
• 因此，不要拿那些无意义的学术型漏洞来跑测试

1. 在 src/main.py 文件中，将 switch_production_or_test 设置为 test，以配置环境为测试模式。

2. 将项目放置于 src/dataset/agent-v1-c4 目录下。这一结构对于工具正确定位和与数据交互至关重要。

3. 参照 src/dataset/agent-v1-c4/datasets.json 配置文件来设置你的数据集。配置完成后，运行 main.py 即可开始扫描过程。

4. 设置.env

5. 使用src/db.sql创建数据库

通过创建 .env 文件并填写以下内容来配置你的环境：

• DATABASE_URL=postgresql://postgres:[email protected]:5432/postgres

  • 这是你的数据库连接字符串，工具将使用它来存储和检索数据。确保详情与你的 PostgreSQL 设置相匹配。

• OPENAI_API_KEY=sk-xxxxx

  • 将 sk-xxxxx 替换为你的实际 OpenAI API 密钥。这个密钥使工具能够与 OpenAI 服务进行各种操作，如数据处理或分析。

1. gpt4效果会更好，gpt3尚未深入尝试
2. 这个tricky prompt理论上经过轻微变种，可以有效的扫描任何语言，但是尽量需要antlr相应语言的ast解析做支持，因为如果有code slicing，效果会更好
3. 目前只支持solidity，后续会支持更多语言

刚刚release，还没写完，后续再补充