AI PRP: AutoGPT RCE detector

[am0o0]

Hi @tooryx, Sorry for the delay, and thanks for your patience! :)
#536
google/security-testbeds#96

[am0o0]

@tooryx may I ask you to set this PR as my primary AI PRP PR?

[giacomo-doyensec]

Hello @am0o0, thanks for your contribution!

I’ve verified that the plugin generally works but I’d like to point out some improvements / edge cases ;

1. The plugin lacks a fingerprint detection phase, please check whether the service is an AutoGPT instance before sending the payload, this is to avoid sending the payload to all the web services that the scanner encounter.
2. The detection works only if the AutoGPT service is in a “clean state” (it’s not processing other requests), can you develop a workaround for this?
3. In the detect phase check if responses are consistent before sending the next one, if they aren’t return an error. I had multiple time-out or fails in detection due to the plugin assuming that the second and third request returned 200. This is related to (2).
4. Ensure to run the google-java-format tool (statements should be <=100 chars and the test code imports some unused libraries)
5. I think that the return false at ExposedAutoGptApiDetector.java#166 inside the catch statement is redundant as the next line would be executed anyway

[am0o0]

@giacomo-doyensec Hi
Thank you for reviewing my PR.
I tried to fix all the issues you mentioned, about issues 2 and 3 please review again if what I've added is enough for a clean state check.

[giacomo-doyensec]

Thank you for the quick reply!

It looks like the detector is working correctly now, I just added some changes to conform to Google's Java format.

[giacomo-doyensec]

LGTM - Approved
@maoning we can merge this and google/security-testbeds#96

Reviewer: Giacomo, Doyensec
Plugin: CVE-2024-6091 - AutoGPT RCE