Automate Chinese Graded Protection Assessment with OpenOcta AI Skill on Kali

Installation

Download the latest .deb package from https://www.openocta.com and install it with: dpkg -i openocta_linux_amd64.deb After installation open a browser to ip:18900 to access the OpenOcta console.

Skill capabilities

Full automation : Provide target information; the skill runs the entire graded‑protection (等保) assessment without manual steps.

Direct tool invocation : Automatically unlocks security tools in Kali; missing tools are installed on demand.

Compliance report : Generates a report that conforms to Graded‑Protection 2.0, including remediation suggestions.

Open source : Source code available at https://github.com/openocta/openocta_skills and can be modified.

Assessment workflow

1. Information collection

Automatically performs domain information gathering, port scanning, and asset discovery.

2. Deep penetration testing

Executes comprehensive vulnerability scanning and security audits.

3. Exploit verification & privilege escalation

Verifies detected vulnerabilities and attempts exploitation to confirm impact.

4. Report generation, gap analysis & remediation roadmap

Compiles a compliance report, highlights gaps against the graded‑protection standards, and provides a remediation roadmap.