Arsenal
What Arsenal is
Arsenal is PentestPath's command suggestion layer. It proposes contextual commands based on the selected node and the tags or patterns matched in your session data.
What it includes
- bundled command cards for common pentest workflows
- search across the library
- context-aware ranking
- external references such as GTFOBins, LOLBAS, and HackTricks links
Built-in substitution
When you copy a command from the Arsenal panel, PentestPath currently resolves these placeholders in the UI:
$TARGET$TARGET_DOMAIN$TARGET_NAME$LHOST
See Arsenal Variables for the precise behavior and limitations.
Pro-only workflows
These workflows are gated behind the Pro edition:
- custom Arsenal entries
- Arsenal favorites
Usage advice
Treat Arsenal as an accelerator, not as an execution engine. Some bundled commands include additional placeholders or environment-specific values that you still need to adapt manually before use.