Appearance
Proof-of-Concept (POC) Generation
Almanax can generate a theoretical exploit or reproduction script for any finding. Use it to prove impact to security teams, stakeholders or reproduce issues locally.
When should I generate a POC?
- You want to demonstrate a vulnerability is real and exploitable.
- You need concrete steps for QA or a bug-bounty submission.
- You’re preparing a security report and want to include replication details.
How it works
- Open a completed scan, navigate to Findings › the finding you care about.
- Click Generate POC.
- Almanax asks the LLM service to craft code + instructions tailored to the finding.
- When ready, the POC appears inline, you can copy it, and run it locally.
What’s inside a POC
| Section | Description |
|---|---|
| Code snippet | Minimal theoretical script / transaction that triggers the bug |
| Technical notes | How it works, assumptions, network requirements |
False Positive Reevaluation
Given the context of the code, the LLM reevaluates the finding and may determine it's a false positive. In this scenario the Technical Notes will give a short explanation on why the LLM thinks the bug may not be explotiable.
Regenerate POC
A user can regenerate a POC any time.
Limits & cost
- Available on Premium and Enterprise plans.
Troubleshooting
| Symptom | Fix |
|---|---|
| “POC generation disabled on your plan” | Upgrade or contact sales. |
| POC takes >2 min | The LLM may be rate-limited; retry in a few minutes. |