VENOMX

Exploit knowledge. Not luck.

A local security assistant for triage, recon, and reporting.

Learn More

What is VenomX?

VenomX is a local AI security assistant built for offensive and defensive security work. It combines a large language model with a structured knowledge base — giving you instant access to CVE data, exploit techniques, and attack frameworks, all running privately on your own hardware.

AI-Powered

Natural language interface to complex security knowledge.

Local & Private

Runs entirely on your hardware. Nothing leaves your machine.

Security-Focused

Built specifically for triage, recon, and reporting workflows.

How It Works

Four steps. Plain language in, actionable intelligence out.

Ask

Describe what you need in plain language.

Analyze

The AI understands your context and intent.

Retrieve

Relevant CVEs, techniques, and exploits surface instantly.

Report

Structured, actionable output ready to use.

The Model

VenomX runs on a custom-abliterated Nemotron 30B — a hybrid architecture optimized for security reasoning, served locally with no cloud dependency.

NemotronH Hybrid Architecture

52 layers combining Mamba2 SSM, Mixture-of-Experts, and Attention with 30B parameters and only 3B active per forward pass. Allowing strong reasoning at low inference cost.

Abliterated — Minimal Refusals

Refusal behavior removed via the heretic framework. Security research doesn't need guardrails designed for general consumers so VenomX answers what you ask.

FP8 · Dual-GPU · Tensor-Parallel

Served via vLLM across an dual GPUs at FP8 precision allowing computation to be fully on-premises with no external API calls.

Full technical breakdown  →

Knowledge Base

Every response is grounded in a structured security corpus with CVEs, exploits, and attack techniques retrieved and re-ranked before the model sees them.

250k+ Security Records

200k+ CVEs from NVD, 50k Exploit-DB entries, and 700 MITRE ATT&CK techniques — all embedded and HNSW-indexed in PostgreSQL + pgvector.

Hybrid Retrieval

Semantic vector search combined with SQL metadata filters allowing queries by CVSS score, severity, and affected product in a single PostgreSQL query. Pure-vector stores can't do this at scale.

Re-ranked Results

pgvector surfaces 20 candidates; a cross-encoder re-ranker rescores them and passes the top 5 to the LLM. Overall the single highest-impact quality step in the pipeline.

Full RAG architecture  →

The Interface

A customized OpenWebUI frontend built for security workflows — target management interface, structured vulnerability reports, and a dark-first branded theme. No consumer patterns, no cloud relay.

VenomX · OpenWebUI
You
Scan 192.168.1.0/24 and identify critical CVEs for any open services.
VX
✓ Scan complete — 14 hosts up, 47 open ports.

Critical findings:
CVE-2021-44228 · Log4j RCE · 192.168.1.42:8080 · CVSS 10.0
CVE-2022-26134 · Confluence OGNL · 192.168.1.55:8090 · CVSS 9.8

Next step: Confirm with exploit/multi/http/log4shell_header_injection
Full UI breakdown →

Agent & Tools

A FastAPI-orchestrated agent loop that plans multi-step strategies, executes security tools, parses their output, and reasons toward actionable results — all autonomously.

Plan

Plan

Tool

Execute

Obs

Observe

Rsn

Reason

Act

Act

nmap metasploit sqlmap hydra searchsploit gobuster
Full agent breakdown →

Infrastructure

A fully containerized Docker Compose stack deployed against an isolated lab network — reproducible services, controlled target VMs, and validated end-to-end test scenarios.

venomx-api
FastAPI agent backend — orchestrates the agent loop, executes tools, manages RAG retrieval
Core
openwebui
Chat frontend pointed at local FastAPI backend via OpenAI-compatible API
UI
postgres + pgvector
CVE, Exploit-DB, and MITRE embeddings — 800MB vector index, zero re-indexing on restart
Data
vllm-server
Nemotron 30B FP8 inference with dual-GPU tensor parallelism
Model
metasploit-rpc
MSGRPC daemon for programmatic module loading and session management
Tools
Full infra breakdown →

The Team

Four dual CS & AI major undergrads building VenomX.
Each owns a distinct domain of the stack.

Coleman Pagac

Coleman Pagac

Model & RAG Lead

Vector database, embeddings, CVE/exploit data pipeline, LLM orchestration & agent loop.

Khalid Mohammed

Khalid Mohammed

Agent & Tools Lead

Core intelligence architecture, multi-agent orchestration, & full tool integration.

Jordan Martin

Jordan Martin

UI & Experience Lead

OpenWebUI customization, frontend components, user-facing systems & UX design.

Nick

Nick

Integration & Infra Lead

DevOps, testing environment, lab VMs, Docker setup, report generation & demo scenarios.

Get in Touch

Have questions or want to learn more about VenomX? We'd love to hear from you.

contact@venomxai.com