Exploit definition
Exploit packs include the original payload, success assertion, and cleanup instructions. Waclaude replays them in sandboxes to prove the patch blocks the attack.
Regression augmentation
Add golden-path requests and negative tests to ensure functional and security regressions are caught alongside the exploit.
Distribution
Store packs in Git, object storage, or the Waclaude registry. Versioning keeps evidence reproducible for auditors.
Pack manifest example
pack:
id: CVE-2023-12345
version: 1.2.0
service: payments-api
exploit:
request: exploits/sql_injection.py
success_condition: response.contains('admin')
cleanup: scripts/reset_db.sh
regression:
- requests/checkout-success.json
- requests/cart-add.json
monitoring:
metrics:
- name: error_rate
threshold: 0.5
- name: p95_latency
threshold_ms: 250Need help?
Our team can translate pentest artifacts or bug bounty submissions into reusable packs.
Talk to a remediation engineer →