# HexStrike AI MCP Agents v6.0
-### ๐ฅ **MAJOR UPDATE** - Enhanced AI-Powered Cybersecurity Platform
+### AI-Powered Cybersecurity Automation Platform
[](https://www.python.org/)
[](LICENSE)
@@ -11,95 +11,58 @@
[](https://github.com/0x4m4/hexstrike-ai)
[](https://github.com/0x4m4/hexstrike-ai/releases)
[](https://github.com/0x4m4/hexstrike-ai)
-[](https://github.com/0x4m4/hexstrike-ai)
[](https://github.com/0x4m4/hexstrike-ai)
+[](https://github.com/0x4m4/hexstrike-ai)
-**๐ World's Most Advanced AI-Powered Penetration Testing Framework with Autonomous Agents, Intelligent Decision Engine, and 150+ Security Tools**
+**Advanced AI-powered penetration testing framework with 150+ security tools and 12+ autonomous AI agents**
-[๏ฟฝ What's New](#-whats-new-in-v60) โข [๐๏ธ Architecture](#๏ธ-architecture-overview) โข [๐ Installation](#quick-installation) โข [๐ ๏ธ Features](#comprehensive-feature-set) โข [๐ค AI Agents](#ai-agents--intelligent-automation) โข [๐ก API Reference](#api-reference) โข [โญ Star Us](https://github.com/0x4m4/hexstrike-ai)
+[๐ What's New](#whats-new-in-v60) โข [๐๏ธ Architecture](#architecture-overview) โข [๐ Installation](#installation) โข [๐ ๏ธ Features](#features) โข [๐ค AI Agents](#ai-agents) โข [๐ก API Reference](#api-reference)
---
-## ๐ฅ **What's New in v6.0**
+## What's New in v6.0
-### **๐ฏ Major Enhancements & New Capabilities**
+### Major Enhancements
-๐ Web Application Security Testing (35+ Tools)
+๐ Web Application Security Testing (40+ Tools)
-- **Gobuster** - Directory, file, and DNS enumeration with intelligent wordlists and extension discovery -- **Dirsearch** - Advanced directory and file discovery with enhanced logging and recursive scanning -- **Feroxbuster** - Recursive content discovery with intelligent filtering and rate limiting -- **FFuf** - Fast web fuzzer with advanced filtering, match conditions, and parameter discovery -- **Dirb** - Comprehensive web content scanner with recursive scanning and custom wordlists -- **HTTPx** - Fast HTTP probing and technology detection with custom headers and status analysis -- **Katana** - Next-generation crawling and spidering with JavaScript support and form extraction -- **Hakrawler** - Fast web endpoint discovery and crawling with JavaScript execution -- **Gau** - Get All URLs from multiple sources (Wayback, Common Crawl, VirusTotal, etc.) -- **Waybackurls** - Historical URL discovery from Wayback Machine with version filtering -- **Nuclei** - Fast vulnerability scanner with 4000+ templates, custom rules, and severity filtering -- **Nikto** - Web server vulnerability scanner with comprehensive checks and plugin support -- **SQLMap** - Advanced automatic SQL injection testing with tamper scripts and database-specific techniques -- **WPScan** - WordPress security scanner with vulnerability database and brute-force capabilities -- **Arjun** - HTTP parameter discovery with intelligent fuzzing and context-aware testing -- **ParamSpider** - Parameter mining from web archives with enhanced discovery techniques -- **X8** - Hidden parameter discovery with advanced techniques and custom wordlists -- **Jaeles** - Advanced vulnerability scanning with custom signatures and intelligent detection -- **Dalfox** - Advanced XSS vulnerability scanning with DOM analysis and custom payloads -- **Wafw00f** - Web application firewall fingerprinting and bypass technique identification -- **TestSSL** - SSL/TLS configuration testing and vulnerability assessment with cipher analysis -- **SSLScan** - SSL/TLS cipher suite enumeration and protocol analysis -- **SSLyze** - Fast and comprehensive SSL/TLS configuration analyzer with certificate validation -- **Anew** - Append new lines to files for efficient data processing and deduplication -- **QSReplace** - Query string parameter replacement for systematic testing and fuzzing -- **Uro** - URL filtering and deduplication for efficient testing and reduced noise -- **Whatweb** - Web technology identification with fingerprinting and version detection -- **JWT-Tool** - JSON Web Token testing with algorithm confusion and signature bypass +- **Gobuster** - Directory, file, and DNS enumeration with intelligent wordlists +- **Dirsearch** - Advanced directory and file discovery with enhanced logging +- **Feroxbuster** - Recursive content discovery with intelligent filtering +- **FFuf** - Fast web fuzzer with advanced filtering and parameter discovery +- **Dirb** - Comprehensive web content scanner with recursive scanning +- **HTTPx** - Fast HTTP probing and technology detection +- **Katana** - Next-generation crawling and spidering with JavaScript support +- **Hakrawler** - Fast web endpoint discovery and crawling +- **Gau** - Get All URLs from multiple sources (Wayback, Common Crawl, etc.) +- **Waybackurls** - Historical URL discovery from Wayback Machine +- **Nuclei** - Fast vulnerability scanner with 4000+ templates +- **Nikto** - Web server vulnerability scanner with comprehensive checks +- **SQLMap** - Advanced automatic SQL injection testing with tamper scripts +- **WPScan** - WordPress security scanner with vulnerability database +- **Arjun** - HTTP parameter discovery with intelligent fuzzing +- **ParamSpider** - Parameter mining from web archives +- **X8** - Hidden parameter discovery with advanced techniques +- **Jaeles** - Advanced vulnerability scanning with custom signatures +- **Dalfox** - Advanced XSS vulnerability scanning with DOM analysis +- **Wafw00f** - Web application firewall fingerprinting +- **TestSSL** - SSL/TLS configuration testing and vulnerability assessment +- **SSLScan** - SSL/TLS cipher suite enumeration +- **SSLyze** - Fast and comprehensive SSL/TLS configuration analyzer +- **Anew** - Append new lines to files for efficient data processing +- **QSReplace** - Query string parameter replacement for systematic testing +- **Uro** - URL filtering and deduplication for efficient testing +- **Whatweb** - Web technology identification with fingerprinting +- **JWT-Tool** - JSON Web Token testing with algorithm confusion - **GraphQL-Voyager** - GraphQL schema exploration and introspection testing -- **Burp Suite Extensions** - Custom extensions for advanced web application testing +- **Burp Suite Extensions** - Custom extensions for advanced web testing - **ZAP Proxy** - OWASP ZAP integration for automated security scanning - **Wfuzz** - Web application fuzzer with advanced payload generation - **Commix** - Command injection exploitation tool with automated detection -- **NoSQLMap** - NoSQL injection testing tool for MongoDB, CouchDB, and other NoSQL databases +- **NoSQLMap** - NoSQL injection testing for MongoDB, CouchDB, etc. - **Tplmap** - Server-side template injection exploitation tool -**๐ Advanced Browser Agent (NEW!):** -- **Headless Chrome Automation** - Full Chrome browser automation with Selenium WebDriver +**๐ Advanced Browser Agent:** +- **Headless Chrome Automation** - Full Chrome browser automation with Selenium - **Screenshot Capture** - Automated screenshot generation for visual inspection - **DOM Analysis** - Deep DOM tree analysis and JavaScript execution monitoring - **Network Traffic Monitoring** - Real-time network request/response logging -- **Security Header Analysis** - Comprehensive security header validation and reporting +- **Security Header Analysis** - Comprehensive security header validation - **Form Detection & Analysis** - Automatic form discovery and input field analysis - **JavaScript Execution** - Dynamic content analysis with full JavaScript support - **Proxy Integration** - Seamless integration with Burp Suite and other proxies @@ -336,54 +353,79 @@ Transform your AI agents into **world-class cybersecurity experts** with the mos๐ Authentication & Password Security (12+ Tools)
-- **Hydra** - Network login cracker supporting 50+ protocols with intelligent timing and rate limiting -- **John the Ripper** - Advanced password hash cracking with custom rules and wordlist optimization -- **Hashcat** - World's fastest password recovery tool with GPU acceleration and advanced attack modes -- **Medusa** - Speedy, parallel, modular login brute-forcer with protocol-specific optimizations -- **Patator** - Multi-purpose brute-forcer with advanced modules and intelligent retry mechanisms -- **NetExec** - Swiss army knife for pentesting networks (formerly CrackMapExec) with credential spraying -- **SMBMap** - SMB share enumeration and exploitation tool with permission testing -- **Evil-WinRM** - Windows Remote Management shell with advanced features and PowerShell integration -- **Hash-Identifier** - Hash type identification tool for determining hash algorithms +- **Hydra** - Network login cracker supporting 50+ protocols +- **John the Ripper** - Advanced password hash cracking with custom rules +- **Hashcat** - World's fastest password recovery tool with GPU acceleration +- **Medusa** - Speedy, parallel, modular login brute-forcer +- **Patator** - Multi-purpose brute-forcer with advanced modules +- **NetExec** - Swiss army knife for pentesting networks +- **SMBMap** - SMB share enumeration and exploitation tool +- **Evil-WinRM** - Windows Remote Management shell with PowerShell integration +- **Hash-Identifier** - Hash type identification tool - **HashID** - Advanced hash algorithm identifier with confidence scoring -- **CrackStation** - Online hash lookup integration for rapid hash cracking -- **Ophcrack** - Windows password cracker using rainbow tables and LM/NTLM hashes +- **CrackStation** - Online hash lookup integration +- **Ophcrack** - Windows password cracker using rainbow tables๐ฌ Binary Analysis & Reverse Engineering (25+ Tools)
-- **GDB** - GNU Debugger with Python scripting, enhanced logging, and exploit development support -- **GDB-PEDA** - Python Exploit Development Assistance for GDB with advanced debugging features -- **GDB-GEF** - GDB Enhanced Features for exploit development with modern interface -- **GDB-PWNdbg** - Advanced GDB plugin for exploit development with enhanced visualization -- **Radare2** - Advanced reverse engineering framework with comprehensive analysis and scripting -- **Ghidra** - NSA's software reverse engineering suite with headless analysis and decompilation +- **GDB** - GNU Debugger with Python scripting and exploit development support +- **GDB-PEDA** - Python Exploit Development Assistance for GDB +- **GDB-GEF** - GDB Enhanced Features for exploit development +- **Radare2** - Advanced reverse engineering framework with comprehensive analysis +- **Ghidra** - NSA's software reverse engineering suite with headless analysis - **IDA Free** - Interactive disassembler with advanced analysis capabilities -- **Binary Ninja** - Commercial reverse engineering platform with intermediate language -- **Binwalk** - Firmware analysis and extraction tool with recursive extraction and entropy analysis -- **ROPgadget** - ROP/JOP gadget finder with advanced search capabilities and chain generation -- **Ropper** - ROP gadget finder and exploit development tool with semantic analysis -- **One-Gadget** - Find one-shot RCE gadgets in libc with constraint analysis -- **Checksec** - Binary security property checker with comprehensive analysis and reporting -- **Strings** - Extract printable strings from binaries with filtering and encoding detection -- **Objdump** - Display object file information with Intel syntax and section analysis -- **Readelf** - ELF file analyzer with detailed header and section information -- **XXD** - Hex dump utility with advanced formatting and binary editing -- **Hexdump** - Hex viewer and editor with customizable output formats -- **Pwntools** - CTF framework and exploit development library with automation capabilities -- **Angr** - Binary analysis platform with symbolic execution and constraint solving -- **Libc-Database** - Libc identification and offset lookup tool with version detection -- **Pwninit** - Automate binary exploitation setup with template generation -- **Volatility** - Advanced memory forensics framework with comprehensive plugin support -- **MSFVenom** - Metasploit payload generator with advanced encoding and evasion -- **UPX** - Executable packer/unpacker for binary analysis and modification +- **Binary Ninja** - Commercial reverse engineering platform +- **Binwalk** - Firmware analysis and extraction tool with recursive extraction +- **ROPgadget** - ROP/JOP gadget finder with advanced search capabilities +- **Ropper** - ROP gadget finder and exploit development tool +- **One-Gadget** - Find one-shot RCE gadgets in libc +- **Checksec** - Binary security property checker with comprehensive analysis +- **Strings** - Extract printable strings from binaries with filtering +- **Objdump** - Display object file information with Intel syntax +- **Readelf** - ELF file analyzer with detailed header information +- **XXD** - Hex dump utility with advanced formatting +- **Hexdump** - Hex viewer and editor with customizable output +- **Pwntools** - CTF framework and exploit development library +- **Angr** - Binary analysis platform with symbolic execution +- **Libc-Database** - Libc identification and offset lookup tool +- **Pwninit** - Automate binary exploitation setup +- **Volatility** - Advanced memory forensics framework +- **MSFVenom** - Metasploit payload generator with advanced encoding +- **UPX** - Executable packer/unpacker for binary analysis
-
+
+๐ Advanced CTF & Forensics Tools (15 Tools)
+โ๏ธ Cloud & Container Security (20+ Tools)
+ +- **Prowler** - AWS/Azure/GCP security assessment with compliance checks +- **Scout Suite** - Multi-cloud security auditing for AWS, Azure, GCP, Alibaba Cloud +- **CloudMapper** - AWS network visualization and security analysis +- **Pacu** - AWS exploitation framework with comprehensive modules +- **Trivy** - Comprehensive vulnerability scanner for containers and IaC +- **Clair** - Container vulnerability analysis with detailed CVE reporting +- **Kube-Hunter** - Kubernetes penetration testing with active/passive modes +- **Kube-Bench** - CIS Kubernetes benchmark checker with remediation +- **Docker Bench Security** - Docker security assessment following CIS benchmarks +- **Falco** - Runtime security monitoring for containers and Kubernetes +- **Checkov** - Infrastructure as code security scanning +- **Terrascan** - Infrastructure security scanner with policy-as-code +- **CloudSploit** - Cloud security scanning and monitoring +- **AWS CLI** - Amazon Web Services command line with security operations +- **Azure CLI** - Microsoft Azure command line with security assessment +- **GCloud** - Google Cloud Platform command line with security tools +- **Kubectl** - Kubernetes command line with security context analysis +- **Helm** - Kubernetes package manager with security scanning +- **Istio** - Service mesh security analysis and configuration assessment +- **OPA** - Policy engine for cloud-native security and compliance + +
+
-
-๐ Advanced CTF & Forensics Tools (20+ Tools)
- **Volatility** - Advanced memory forensics framework with comprehensive plugins - **Volatility3** - Next-generation memory forensics with enhanced analysis @@ -401,693 +443,176 @@ Transform your AI agents into **world-class cybersecurity experts** with the mos - **Autopsy** - Digital forensics platform with timeline analysis - **Sleuth Kit** - Collection of command-line digital forensics tools -
-
-
-โ๏ธ Cloud & Container Security (20+ Tools)
- -- **Prowler** - AWS/Azure/GCP security assessment tool with comprehensive compliance checks -- **Scout Suite** - Multi-cloud security auditing tool for AWS, Azure, GCP, Alibaba Cloud, and Oracle Cloud -- **CloudMapper** - AWS network visualization and security analysis with attack path identification -- **Pacu** - AWS exploitation framework with comprehensive post-exploitation modules -- **Trivy** - Comprehensive vulnerability scanner for containers, filesystems, and infrastructure as code -- **Clair** - Container vulnerability analysis with detailed CVE reporting -- **Kube-Hunter** - Kubernetes penetration testing tool with active and passive scanning modes -- **Kube-Bench** - CIS Kubernetes benchmark checker with automated remediation suggestions -- **Docker Bench Security** - Docker security assessment tool following CIS benchmarks -- **Falco** - Runtime security monitoring for containers and Kubernetes with rule-based detection -- **Checkov** - Infrastructure as code security scanning for Terraform, CloudFormation, and Kubernetes -- **Terrascan** - Infrastructure security scanner with policy-as-code approach -- **CloudSploit** - Cloud security scanning and monitoring with continuous assessment -- **AWS CLI** - Amazon Web Services command line interface with security-focused operations -- **Azure CLI** - Microsoft Azure command line interface with security assessment capabilities -- **GCloud** - Google Cloud Platform command line with security and compliance tools -- **Kubectl** - Kubernetes command line tool with security context analysis -- **Helm** - Kubernetes package manager with security scanning for charts -- **Istio** - Service mesh security analysis and configuration assessment -- **OPA (Open Policy Agent)** - Policy engine for cloud-native security and compliance - -
-
-
-๐ต๏ธ Forensics & Steganography (15+ Tools)
- -- **Volatility** - Advanced memory forensics framework with comprehensive plugins for Windows, Linux, and macOS -- **Volatility3** - Next-generation memory forensics with enhanced analysis and modern architecture -- **Foremost** - File carving and data recovery with signature-based detection for multiple file types -- **PhotoRec** - File recovery software with advanced carving capabilities for 400+ file formats -- **TestDisk** - Disk partition recovery and repair tool with filesystem analysis -- **Steghide** - Steganography detection and extraction with password support for JPEG and BMP -- **Stegsolve** - Steganography analysis tool with visual inspection and bit-plane analysis -- **Zsteg** - PNG/BMP steganography detection tool with LSB analysis -- **Outguess** - Universal steganographic tool for JPEG images with statistical analysis -- **ExifTool** - Metadata reader/writer for various file formats with comprehensive tag support -- **Binwalk** - Firmware analysis and reverse engineering with extraction and entropy analysis -- **Scalpel** - File carving tool with configurable headers and footers for custom file types -- **Bulk Extractor** - Digital forensics tool for extracting features like email addresses and URLs -- **Autopsy** - Digital forensics platform with timeline analysis and case management -- **Sleuth Kit** - Collection of command-line digital forensics tools for filesystem analysis - -
-
๐ Advanced CTF & Competition Tools (25+ Tools)
- **Cryptography & Hash Analysis:** -- **John the Ripper** - Password cracker with custom rules and advanced attack modes -- **Hashcat** - GPU-accelerated password recovery with support for 300+ hash types +- **John the Ripper** - Password cracker with custom rules and advanced modes +- **Hashcat** - GPU-accelerated password recovery with 300+ hash types - **Hash-Identifier** - Hash type identification with confidence scoring -- **CyberChef** - Web-based analysis toolkit for encoding, encryption, and data manipulation +- **CyberChef** - Web-based analysis toolkit for encoding and encryption - **Cipher-Identifier** - Automatic cipher type detection and analysis - **Frequency-Analysis** - Statistical cryptanalysis for substitution ciphers - **RSATool** - RSA key analysis and common attack implementations - **FactorDB** - Integer factorization database for cryptographic challenges -**Steganography & Hidden Data:** -- **Steghide** - Advanced steganography with password protection and multiple algorithms -- **StegSolve** - Image steganography solver with bit-plane analysis and filters -- **Zsteg** - PNG/BMP steganography detection with comprehensive LSB analysis -- **Outguess** - JPEG steganography detection with statistical analysis -- **Binwalk** - Firmware and file analysis with recursive extraction capabilities -- **Strings** - String extraction with encoding detection and filtering - -**Miscellaneous & Esoteric:** -- **QR-Decoder** - QR code and barcode decoder with error correction -- **Audio-Analysis** - Audio spectrum analysis and hidden data detection -- **Brainfuck** - Brainfuck programming language interpreter -- **Whitespace** - Whitespace programming language interpreter -- **Base64/32/16** - Multi-format encoding/decoding utilities -- **ROT13** - Caesar cipher variants and rotation analysis -- **Morse Code** - Morse code encoder/decoder with audio support -- **Binary-Text** - Binary to text conversion with multiple encodings -- **Hex-ASCII** - Hexadecimal to ASCII conversion utilities -๐ฅ Bug Bounty & OSINT Arsenal (20+ Tools)
-- **Amass** - Advanced subdomain enumeration and OSINT gathering with multiple data sources -- **Subfinder** - Fast passive subdomain discovery with API integration for 30+ sources -- **Hakrawler** - Fast web endpoint discovery and crawling with JavaScript execution +- **Amass** - Advanced subdomain enumeration and OSINT gathering +- **Subfinder** - Fast passive subdomain discovery with API integration +- **Hakrawler** - Fast web endpoint discovery and crawling - **HTTPx** - Fast and multi-purpose HTTP toolkit with technology detection -- **ParamSpider** - Mining parameters from web archives with enhanced discovery techniques -- **Aquatone** - Visual inspection of websites across hosts with screenshot capabilities -- **Subjack** - Subdomain takeover vulnerability checker with service fingerprinting -- **DNSEnum** - DNS enumeration script with zone transfer and brute-force capabilities +- **ParamSpider** - Mining parameters from web archives +- **Aquatone** - Visual inspection of websites across hosts +- **Subjack** - Subdomain takeover vulnerability checker +- **DNSEnum** - DNS enumeration script with zone transfer capabilities - **Fierce** - Domain scanner for locating targets with DNS analysis -- **TheHarvester** - Email and subdomain harvesting from multiple public sources +- **TheHarvester** - Email and subdomain harvesting from multiple sources - **Sherlock** - Username investigation across 400+ social networks - **Social-Analyzer** - Social media analysis and OSINT gathering - **Recon-ng** - Web reconnaissance framework with modular architecture - **Maltego** - Link analysis and data mining for OSINT investigations -- **SpiderFoot** - OSINT automation with 200+ modules for data collection +- **SpiderFoot** - OSINT automation with 200+ modules - **Shodan** - Internet-connected device search with advanced filtering -- **Censys** - Internet asset discovery with certificate and service analysis -- **Have I Been Pwned** - Breach data analysis and credential exposure checking +- **Censys** - Internet asset discovery with certificate analysis +- **Have I Been Pwned** - Breach data analysis and credential exposure - **Pipl** - People search engine integration for identity investigation - **TruffleHog** - Git repository secret scanning with entropy analysis
-
+- **IntelligentDecisionEngine** - Tool selection and parameter optimization
+- **BugBountyWorkflowManager** - Bug bounty hunting workflows
+- **CTFWorkflowManager** - CTF challenge solving
+- **CVEIntelligenceManager** - Vulnerability intelligence
+- **AIExploitGenerator** - Automated exploit development
+- **VulnerabilityCorrelator** - Attack chain discovery
+- **TechnologyDetector** - Technology stack identification
+- **RateLimitDetector** - Rate limiting detection
+- **FailureRecoverySystem** - Error handling and recovery
+- **PerformanceMonitor** - System optimization
+- **ParameterOptimizer** - Context-aware optimization
+- **GracefulDegradation** - Fault-tolerant operation
+
+### Advanced Features
+
+- **Smart Caching System** - Intelligent result caching with LRU eviction
+- **Real-time Process Management** - Live command control and monitoring
+- **Vulnerability Intelligence** - CVE monitoring and exploit analysis
+- **Browser Agent** - Headless Chrome automation for web testing
+- **API Security Testing** - GraphQL, JWT, REST API security assessment
+- **Modern Visual Engine** - Real-time dashboards and progress tracking
---
-## ๏ฟฝ ***AI Agents & Intelligent Automation**
+## AI Agents
-### **๐ง Revolutionary Multi-Agent Architecture**
+### Autonomous Capabilities
-HexStrike v6.0 introduces **12+ specialized AI agents** that work together to provide autonomous cybersecurity capabilities. Each agent is an expert in specific domains, working collaboratively to deliver comprehensive security assessments.
-
-๐ง Advanced Vulnerability Intelligence (v6.0 NEW!)
+### AI Agents -- **CVE Intelligence** - Real-time CVE monitoring with AI exploitability analysis -- **Exploit Generation** - AI-powered exploit development from vulnerability data -- **Attack Chain Discovery** - Multi-stage attack path identification and optimization -- **Threat Intelligence** - Advanced IOC correlation across multiple sources -- **Zero-Day Research** - Automated vulnerability research and pattern recognition -- **Advanced Payloads** - Nation-state level evasion techniques and obfuscation -- **Threat Hunting** - AI-assisted threat hunting with vulnerability correlation +**12+ Specialized AI Agents:** -
-
-| Agent | Specialization | Capabilities |
-|-------|---------------|-------------|
-| ๐ฏ **IntelligentDecisionEngine** | Strategic Planning | Tool selection, parameter optimization, attack orchestration |
-| ๐ต๏ธ **BugBountyWorkflowManager** | Bug Bounty Hunting | Reconnaissance, vulnerability discovery, business logic testing |
-| ๐ **CTFWorkflowManager** | CTF Competition | Challenge solving, category detection, automated exploitation |
-| ๐ **CVEIntelligenceManager** | Vulnerability Intelligence | CVE monitoring, exploitability analysis, threat correlation |
-| ๐ ๏ธ **AIExploitGenerator** | Exploit Development | Automated exploit creation, payload generation, evasion techniques |
-| ๐ **VulnerabilityCorrelator** | Attack Chaining | Multi-stage attack discovery, path optimization, impact analysis |
-| ๐ **TechnologyDetector** | Fingerprinting | Technology stack identification, version detection, service analysis |
-| โก **RateLimitDetector** | Evasion | Rate limiting detection, timing optimization, stealth techniques |
-| ๐ **FailureRecoverySystem** | Resilience | Error handling, alternative strategies, graceful degradation |
-| ๐ **PerformanceMonitor** | Optimization | Resource management, performance tuning, system health |
-| ๐๏ธ **ParameterOptimizer** | Efficiency | Context-aware optimization, success probability calculation |
-| ๐ก๏ธ **GracefulDegradation** | Reliability | Fault tolerance, partial failure handling, system stability |
-| ๐ **BrowserAgent** | Web Automation | Headless browser automation, screenshot capture, DOM analysis |
-
-
-
-### **๐ Agent Collaboration Examples**
-
-#### **๐ต๏ธ Autonomous Bug Bounty Hunting**
+**Bug Bounty Hunting:**
```
-1. TechnologyDetector identifies target stack (React + Node.js + MongoDB)
+1. TechnologyDetector identifies target stack
2. IntelligentDecisionEngine selects optimal reconnaissance tools
3. BugBountyWorkflowManager executes multi-stage reconnaissance
-4. CVEIntelligenceManager correlates discovered services with known vulnerabilities
-5. AIExploitGenerator creates custom payloads for identified weaknesses
+4. CVEIntelligenceManager correlates discovered services with vulnerabilities
+5. AIExploitGenerator creates custom payloads
6. VulnerabilityCorrelator chains vulnerabilities for maximum impact
-7. ParameterOptimizer fine-tunes attack parameters for success
```
-#### **๐ Automated CTF Challenge Solving**
+**CTF Challenge Solving:**
```
1. CTFWorkflowManager analyzes challenge category and difficulty
-2. TechnologyDetector identifies challenge technologies and frameworks
+2. TechnologyDetector identifies challenge technologies
3. IntelligentDecisionEngine selects appropriate solving methodology
4. Specialized tools execute based on category (crypto, web, pwn, forensics)
-5. FailureRecoverySystem handles dead ends and tries alternative approaches
-6. AIExploitGenerator creates custom solutions for unique challenges
+5. FailureRecoverySystem handles dead ends and tries alternatives
```
-### ๐ง **Intelligent Decision Engine**
-Our revolutionary AI decision engine provides fully autonomous security testing capabilities:
+### Intelligent Decision Engine
-
-
+### Payload Generation
-๐ฏ Smart Target Analysis & Tool Selection
- -**Automated Target Profiling:** -- **Technology Detection** - Automatic identification of web technologies, frameworks, and CMS -- **Service Fingerprinting** - Comprehensive service version detection and vulnerability mapping -- **Attack Surface Analysis** - Intelligent assessment of potential entry points and risk levels -- **Cloud Provider Detection** - Automatic identification of AWS, Azure, GCP, and other cloud services - -**AI-Driven Tool Selection:** -- **Context-Aware Optimization** - Tools selected based on target type, technology stack, and objectives +- **Automated Target Profiling** - Technology detection and service fingerprinting +- **AI-Driven Tool Selection** - Context-aware optimization based on target characteristics - **Success Probability Calculation** - AI predicts tool effectiveness before execution -- **Resource-Aware Scheduling** - Intelligent resource allocation and concurrent execution management -- **Failure Recovery** - Automatic fallback to alternative tools when primary tools fail +- **Resource-Aware Scheduling** - Intelligent resource allocation and concurrent execution +- **Failure Recovery** - Automatic fallback to alternative tools -
-
-
-๐ฏ Intelligent Payload Generation
- -**Smart Attack Vector Creation:** -- **XSS Payloads** - Context-aware XSS payloads with filter bypass techniques and DOM manipulation -- **SQL Injection** - Database-specific payloads with blind, time-based, and union-based attacks -- **Command Injection** - OS-specific command injection with blind execution and data exfiltration -- **LFI/RFI** - Local/remote file inclusion with wrapper techniques and path traversal -- **SSTI** - Server-side template injection for Jinja2, Twig, Smarty, and other engines -- **XXE** - XML external entity attacks with data exfiltration and SSRF capabilities -- **CSRF** - Cross-site request forgery payload generation with token bypass techniques -- **NoSQL Injection** - MongoDB, CouchDB, and other NoSQL database injection payloads - -**Advanced Features:** -- ๐ง **Context Awareness** - AI adapts payloads to target technology and security controls -- ๐ฏ **Risk Assessment** - Automatic payload severity rating and business impact analysis -- ๐ **Encoding Variations** - URL, HTML, Unicode, Base64, and custom encoding techniques -- ๐ **Success Probability** - AI-calculated effectiveness scores based on target analysis -- ๐ก๏ธ **WAF Bypass** - Intelligent evasion techniques for common web application firewalls -- ๐ **Blind Attack Optimization** - Time-based and boolean-based blind attack optimization - -
-
-
-๐ Specialized AI Workflows
- -**Bug Bounty Hunting Workflows:** -- **Reconnaissance Automation** - Multi-stage subdomain enumeration, port scanning, and service detection -- **Vulnerability Discovery** - Automated testing for high-impact vulnerabilities (RCE, SQLi, XSS, IDOR) -- **Business Logic Testing** - AI-driven testing for authentication bypass and privilege escalation -- **API Security Assessment** - GraphQL introspection, JWT manipulation, and REST API fuzzing -- **OSINT Intelligence** - Comprehensive target intelligence gathering from multiple sources - -**CTF Competition Workflows:** -- **Challenge Category Detection** - Automatic identification of web, crypto, pwn, forensics, and misc challenges -- **Automated Solution Generation** - AI-powered challenge solving with step-by-step explanations -- **Tool Chain Optimization** - Dynamic tool selection based on challenge characteristics -- **Flag Pattern Recognition** - Intelligent flag format detection and extraction -- **Team Coordination** - Multi-member team optimization and task distribution - -**Red Team Operations:** -- **Attack Path Discovery** - Multi-stage attack chain identification and optimization -- **Persistence Mechanisms** - Automated deployment of persistence techniques across platforms -- **Lateral Movement** - Intelligent network traversal and privilege escalation -- **Data Exfiltration** - Covert channel identification and data extraction techniques - -
-
-
-๐งช Automated Vulnerability Testing
- -- **Intelligent Test Cases** - AI-guided vulnerability assessment -- **Response Analysis** - Automated vulnerability confirmation -- **False Positive Reduction** - Smart filtering and validation -- **Comprehensive Reports** - Detailed security assessments -- **Attack Chaining** - Multi-stage exploit development - -
-
-
-๐ Advanced Browser Agent & Web Automation (NEW!)
- -**๐ Revolutionary Browser Agent - Burp Suite Alternative:** - -HexStrike v6.0 introduces a **comprehensive Browser Agent** that serves as an advanced Burp Suite alternative with AI-powered automation capabilities. - -**Headless Browser Automation:** -- **Chrome WebDriver Integration** - Full Chrome browser automation with Selenium WebDriver -- **Headless & GUI Modes** - Support for both headless automation and visual debugging -- **Custom User Agents** - Configurable user agents for stealth and compatibility testing -- **Proxy Support** - Seamless integration with Burp Suite, OWASP ZAP, and custom proxies -- **SSL/TLS Handling** - Automatic certificate error handling for security testing environments - -**Advanced Web Inspection:** -- **Screenshot Capture** - Automated high-resolution screenshot generation for visual documentation -- **DOM Tree Analysis** - Deep inspection of HTML structure and dynamic content analysis -- **JavaScript Execution** - Full JavaScript support with execution monitoring and debugging -- **Network Traffic Logging** - Real-time request/response monitoring with detailed analysis -- **Performance Metrics** - Page load times, resource usage, and optimization insights - -**Security Analysis Features:** -- **Security Header Validation** - Comprehensive analysis of security headers (CSP, HSTS, X-Frame-Options) -- **Form Discovery & Analysis** - Automatic form detection with input field security analysis -- **Cookie Analysis** - Session cookie security assessment and security flag validation -- **Mixed Content Detection** - Identification of HTTP resources loaded on HTTPS pages -- **Clickjacking Detection** - X-Frame-Options and CSP frame-ancestors validation - -**AI-Powered Automation:** -- **Intelligent Navigation** - Smart page traversal with automatic link discovery -- **Dynamic Content Handling** - Automatic waiting for AJAX requests and dynamic content loading -- **Error Recovery** - Automatic retry mechanisms for failed page loads and network issues -- **Resource Optimization** - Intelligent caching and performance optimization - -**Burp Suite Alternative Features:** -- **Multi-Phase Testing** - Browser reconnaissance combined with HTTP framework testing -- **Intelligent Crawling** - AI-powered web application mapping and endpoint discovery -- **Custom Payload Generation** - Context-aware security payload creation and testing -- **Real-time Analysis** - Live vulnerability detection and security issue reporting -- **Screenshot Documentation** - Visual proof-of-concept generation for findings -- **Comprehensive Reporting** - Detailed security assessment reports with visual evidence - -
-
+- **XSS Payloads** - Context-aware with filter bypass techniques
+- **SQL Injection** - Database-specific payloads with blind and union-based attacks
+- **Command Injection** - OS-specific with blind execution capabilities
+- **LFI/RFI** - Local/remote file inclusion with wrapper techniques
+- **SSTI** - Server-side template injection for various engines
+- **XXE** - XML external entity attacks with data exfiltration
+- **CSRF** - Cross-site request forgery with token bypass
+- **NoSQL Injection** - MongoDB, CouchDB, and other NoSQL databases
---
-## ๐จ **Modern Visual Engine & User Experience**
+## API Reference
-### **๐ฅ Cinematic Hacker Interface**
+### Core System Endpoints
-HexStrike v6.0 features a completely redesigned visual experience with a **professional reddish hacker theme** that makes you feel like you're in a cyberpunk movie.
+| Endpoint | Method | Description |
+|----------|--------|-------------|
+| `/health` | GET | Server health check with tool availability |
+| `/api/command` | POST | Execute arbitrary commands with caching |
+| `/api/telemetry` | GET | System performance metrics |
+| `/api/cache/stats` | GET | Cache performance statistics |
+| `/api/intelligence/analyze-target` | POST | AI-powered target analysis |
+| `/api/intelligence/select-tools` | POST | Intelligent tool selection |
+| `/api/intelligence/optimize-parameters` | POST | Parameter optimization |
-#### **๐ฌ Visual Highlights:**
+### MCP Tools
-**Real-time Animated Dashboards:**
-```bash
-๐ฅ HexStrike AI - Advanced Penetration Testing Framework
-โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
-โ ๐ HexStrike AI - Advanced Penetration Testing Framework โ
-โ โก Enhanced with AI-Powered Intelligence & Automation โ
-โ ๐ฏ Bug Bounty | CTF | Red Team | Security Research โ
-โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
+**Network Security Tools:**
+- `nmap_scan()` - Advanced Nmap scanning with optimization
+- `rustscan_scan()` - Ultra-fast port scanning
+- `masscan_scan()` - High-speed port scanning
+- `autorecon_scan()` - Comprehensive reconnaissance
+- `amass_enum()` - Subdomain enumeration and OSINT
-๐ LIVE PROCESS DASHBOARD
-โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
-โ ๐ LIVE PROCESS DASHBOARD โ
-โ โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโฃ
-โ PID 87369 โ RUNNING โ 15.2s โ nmap -sV -sC example.com... โ
-โ [โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ] 80.5% | ETA: 3.2s โ
-โ โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโฃ
-โ PID 87401 โ RUNNING โ 8.7s โ nuclei -t cves/ -target example.com... โ
-โ [โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ] 35.1% | ETA: 16.8s โ
-โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
-```
+**Web Application Tools:**
+- `gobuster_scan()` - Directory and file enumeration
+- `feroxbuster_scan()` - Recursive content discovery
+- `ffuf_scan()` - Fast web fuzzing
+- `nuclei_scan()` - Vulnerability scanning with templates
+- `sqlmap_scan()` - SQL injection testing
+- `wpscan_scan()` - WordPress security assessment
-**Beautiful Vulnerability Cards:**
-```bash
-โญโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโฎ
-โ ๐ฅ CRITICAL VULNERABILITY DETECTED โ
-โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโค
-โ ๐ฏ Target: https://example.com/admin/login โ
-โ ๐ CVSS: 9.8/10.0 โ
-โ ๐ Type: SQL Injection (Authentication Bypass) โ
-โ ๐ Description: Union-based SQL injection in login form allows โ
-โ authentication bypass and database enumeration โ
-โฐโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโฏ
-```
+**Binary Analysis Tools:**
+- `ghidra_analyze()` - Software reverse engineering
+- `radare2_analyze()` - Advanced reverse engineering
+- `gdb_debug()` - GNU debugger with exploit development
+- `pwntools_exploit()` - CTF framework and exploit development
+- `angr_analyze()` - Binary analysis with symbolic execution
-**Enhanced Progress Visualization:**
-```bash
-โก NMAP SCAN โฃท [โโโโโโโโโโโโโโโโโโโโโโโโโโโโ] 75.3% | 45.2s | ETA: 15s | PID: 87369
-๐ FINAL RESULTS โ
- โโ Command: nmap -sV -sC -T4 --top-ports=1000 example.com
- โโ Duration: 60.4s
- โโ Ports Found: 8 open ports
- โโ Services: HTTP, HTTPS, SSH, MySQL, FTP
- โโ Status: SUCCESS | Cached: No
-```
+**Cloud Security Tools:**
+- `prowler_assess()` - AWS/Azure/GCP security assessment
+- `scout_suite_audit()` - Multi-cloud security auditing
+- `trivy_scan()` - Container vulnerability scanning
+- `kube_hunter_scan()` - Kubernetes penetration testing
+- `kube_bench_check()` - CIS Kubernetes benchmark assessment
-#### **๐จ Color-Coded Severity System:**
-- ๐ฅ **CRITICAL** - Dark red background with white text for maximum visibility
-- โ ๏ธ **HIGH** - Bright red bold text for immediate attention
-- ๐ **MEDIUM** - Orange bold text for moderate priority
-- ๐ **LOW** - Yellow text for informational findings
-- โน๏ธ **INFO** - Cyan text for general information
+### Process Management
-### โก **Performance & Control Features**
-
-๐ Advanced API Security Testing
- -- **GraphQL Security** - Introspection, depth limiting, batch query testing -- **JWT Analysis** - Algorithm confusion, signature bypass, token manipulation -- **REST API Testing** - Endpoint discovery, parameter fuzzing, authentication bypass -- **API Schema Analysis** - OpenAPI/Swagger security assessment -- **Comprehensive Audits** - Multi-technique API penetration testing - -
-
-
-๐ฎ Real-time Process Management
- -**Advanced Command Control:** -- **Live Termination** - Stop scans without server restart -- **Progress Tracking** - Real-time progress bars with ETA calculations -- **Process Dashboard** - Monitor all active scans simultaneously -- **Resource Management** - CPU and memory optimization -- **Pause/Resume** - Full control over long-running operations - -**Visual Progress Display:** -```bash -โก PROGRESS โฃท [โโโโโโโโโโโโโโโโโโโโ] 60.5% | 12.3s | ETA: 8s | PID: 87369 -๐ FINAL RESULTS โ - โโ Command: nmap -sV -sC example.com - โโ Duration: 15.2s - โโ Output Size: 2847 bytes - โโ Exit Code: 0 - โโ Status: SUCCESS | Cached: Yes -``` - -
-
+| Action | Endpoint | Description |
+|--------|----------|-------------|
+| **List Processes** | `GET /api/processes/list` | List all active processes |
+| **Process Status** | `GET /api/processes/status/๐ Intelligent Caching System
- -- **Performance Optimization** - Smart result caching with LRU eviction -- **Context-Aware TTL** - Dynamic cache expiration based on command type -- **Hit Rate Optimization** - Statistical analysis and cache tuning -- **Memory Management** - Configurable cache size and cleanup -- **Cache Analytics** - Detailed performance metrics - -
-
-
-### **VS Code Copilot Integration**
-
-Claude MCP Configuration
- -**Configure Claude Desktop:** -Edit `~/.config/Claude/claude_desktop_config.json`: -```json -{ - "mcpServers": { - "hexstrike-ai": { - "command": "python3", - "args": [ - "/path/to/hexstrike-ai/hexstrike_mcp.py", - "--server", - "http://localhost:8888" - ], - "description": "๐ฅ HexStrike AI v6.0 - Advanced Cybersecurity Automation Platform", - "timeout": 300, - "alwaysAllow": [], - "disabled": false - } - } -} -``` - -
-
-
-### **Cursor AI Integration**
-
-VS Code MCP Configuration
- -**Configure VS Code settings** in `.vscode/settings.json`: -```json -{ - "servers": { - "hexstrike": { - "type": "stdio", - "command": "python3", - "args": [ - "/path/to/hexstrike-ai/hexstrike_mcp.py", - "--server", - "http://localhost:8888" - ] - } - }, - "inputs": [] -} -``` - -
-
-
----
-
-## **AI Agent Usage Examples**
-
-### ๐ฏ **Example AI Conversations**
-
-#### **Autonomous Penetration Testing**
```
User: "Perform a comprehensive security assessment of example.com"
@@ -1100,7 +625,8 @@ AI Agent: "I'll conduct a multi-phase security assessment:
[Real-time results and analysis follow]"
```
-#### **Intelligent Vulnerability Discovery**
+#### **๐ Intelligent Vulnerability Discovery**
+
```
User: "Find XSS vulnerabilities in this web application"
@@ -1113,7 +639,8 @@ AI Agent: "I'll test for XSS vulnerabilities:
[Detailed vulnerability report with proof-of-concepts]"
```
-#### **Advanced API Security Testing**
+#### **๐ Advanced API Security Testing**
+
```
User: "Audit this GraphQL API for security issues"
@@ -1125,168 +652,65 @@ AI Agent: "I'll perform a comprehensive GraphQL security audit:
[Complete API security assessment with recommendations]"
```
-#### **Example Test Run: Basic quick recon on 0x4m4.com**
-Cursor MCP Setup Guide
- -**Configure Cursor settings** in `~/.cursor/mcp_settings.json`: -```json -{ - "mcpServers": { - "hexstrike-ai": { - "command": "python3", - "args": [ - "/path/to/hexstrike-ai/hexstrike_mcp.py", - "--server", "http://localhost:8888" - ], - "description": "HexStrike AI MCP Agents v6.0" - } - } -} -``` - -
- 
-
- 
-
- 
-
- 
-
-
-
-๐ Network Reconnaissance MCP Tools
- -- `nmap_scan()` - Advanced Nmap scanning with intelligent parameter optimization -- `rustscan_scan()` - Ultra-fast port scanning with script integration -- `masscan_scan()` - High-speed Internet-scale port scanning -- `autorecon_scan()` - Comprehensive automated reconnaissance -- `amass_enum()` - Advanced subdomain enumeration and OSINT -- `subfinder_scan()` - Fast passive subdomain discovery -- `fierce_scan()` - DNS reconnaissance and zone transfer testing -- `dnsrecon_scan()` - DNS enumeration with comprehensive analysis -- `enum4linux_scan()` - SMB enumeration with enhanced logging -- `responder_attack()` - LLMNR/NBT-NS poisoning for credential harvesting - -
-
-
-๐ Web Application MCP Tools
- -- `gobuster_scan()` - Directory, file, and DNS enumeration -- `feroxbuster_scan()` - Recursive content discovery with filtering -- `ffuf_scan()` - Fast web fuzzing with advanced filtering -- `nuclei_scan()` - Vulnerability scanning with 4000+ templates -- `sqlmap_scan()` - Advanced SQL injection testing -- `wpscan_scan()` - WordPress security assessment -- `arjun_scan()` - HTTP parameter discovery -- `paramspider_scan()` - Parameter mining from web archives -- `katana_crawl()` - Next-generation web crawling -- `httpx_probe()` - Fast HTTP probing and technology detection -- `dalfox_scan()` - Advanced XSS vulnerability scanning -- `jaeles_scan()` - Custom signature vulnerability scanning - -
-
-
-๐ฌ Binary Analysis MCP Tools
- -- `ghidra_analyze()` - NSA's software reverse engineering suite -- `radare2_analyze()` - Advanced reverse engineering framework -- `gdb_debug()` - GNU debugger with exploit development support -- `pwntools_exploit()` - CTF framework and exploit development -- `angr_analyze()` - Binary analysis with symbolic execution -- `ropgadget_find()` - ROP/JOP gadget discovery -- `checksec_analyze()` - Binary security property analysis -- `binwalk_extract()` - Firmware analysis and extraction -- `volatility_analyze()` - Memory forensics analysis -- `strings_extract()` - String extraction with filtering - -
-
-
-โ๏ธ Cloud Security MCP Tools
- -- `prowler_assess()` - AWS/Azure/GCP security assessment -- `scout_suite_audit()` - Multi-cloud security auditing -- `trivy_scan()` - Container and filesystem vulnerability scanning -- `kube_hunter_scan()` - Kubernetes penetration testing -- `kube_bench_check()` - CIS Kubernetes benchmark assessment -- `docker_bench_security()` - Docker security assessment -- `checkov_scan()` - Infrastructure as code security scanning -- `terrascan_analyze()` - Infrastructure security analysis - -
-
-
-### ๐ง **Core System Endpoints**
-
-| Endpoint | Method | Description | Parameters |
-|----------|--------|-------------|------------|
-| `/health` | GET | Server health check with tool availability | None |
-| `/api/command` | POST | Execute arbitrary commands with caching | `command`, `use_cache` |
-| `/api/telemetry` | GET | System performance metrics and tool stats | None |
-| `/api/cache/stats` | GET | Cache performance statistics | None |
-| `/api/intelligence/analyze-target` | POST | AI-powered target analysis | `target`, `scope` |
-| `/api/intelligence/select-tools` | POST | Intelligent tool selection | `target_profile` |
-| `/api/intelligence/optimize-parameters` | POST | Parameter optimization | `tool`, `context` |
-
-### ๐ก๏ธ **Security Tools API**
-
-๐ CTF & Forensics MCP Tools
- -- `volatility_memory_analysis()` - Advanced memory forensics -- `foremost_carve()` - File carving and data recovery -- `steghide_extract()` - Steganography detection and extraction -- `exiftool_analyze()` - Metadata extraction and analysis -- `john_crack()` - Password hash cracking -- `hashcat_crack()` - GPU-accelerated password recovery -- `cipher_analyze()` - Cryptographic cipher analysis -- `frequency_analysis()` - Statistical cryptanalysis - -
-
-
-### ๐ค **AI-Powered Features**
-
-Network Security Tools
- -| Tool | Endpoint | Key Parameters | -|------|----------|---------------| -| **Nmap** | `/api/tools/nmap` | `target`, `scan_type`, `ports`, `additional_args` | -| **Amass** | `/api/tools/amass` | `domain`, `mode`, `additional_args` | -| **Subfinder** | `/api/tools/subfinder` | `domain`, `silent`, `additional_args` | -| **Nuclei** | `/api/tools/nuclei` | `target`, `severity`, `additional_args` | - -
-
-
-### ๐ฎ **Process Management**
-
-Intelligent Security Testing
- -| Feature | Endpoint | Key Parameters | -|---------|----------|---------------| -| **Payload Generation** | `/api/ai/generate_payload` | `attack_type`, `complexity`, `technology` | -| **Payload Testing** | `/api/ai/test_payload` | `payload`, `target_url`, `method` | -| **Attack Suite** | `/api/ai/generate_attack_suite` | `target_url`, `attack_types` | - -
-` | Get detailed process information |
-| **Terminate** | `POST /api/processes/terminate/` | Stop specific process |
-| **Dashboard** | `GET /api/processes/dashboard` | Live monitoring dashboard |
-
-
-
----
-
-## **Troubleshooting**
+## Troubleshooting
### Common Issues
1. **MCP Connection Failed**:
```bash
- # 1. Check if server is running
+ # Check if server is running
netstat -tlnp | grep 8888
# Restart server
@@ -1309,6 +733,7 @@ Our FastMCP integration provides AI agents with access to all security tools thr
```
### Debug Mode
+
Enable debug mode for detailed logging:
```bash
python3 hexstrike_server.py --debug
@@ -1317,45 +742,7 @@ python3 hexstrike_mcp.py --debug
---
-## **Performance Features**
-
-- **โก Result Caching**: Optimized performance for repeated operations
-- **๐ Concurrent Execution**: Multiple tools can run simultaneously
-- **๐ Real-time Progress**: Live command output and progress tracking
-- **๐พ Memory Optimization**: Efficient handling of large outputs
-- **๐ง Automatic Cleanup**: Temporary files and processes are managed
-
----
-
-## **What's New in v6.0**
-
-### ๐ง Major Intelligence Enhancements
-- **Advanced Vulnerability Intelligence**: Real-time CVE monitoring with AI-powered exploitability analysis
-- **AI Exploit Generation**: Autonomous exploit development from vulnerability descriptions
-- **Attack Chain Discovery**: Multi-stage attack path identification with success probability calculations
-- **Threat Intelligence Correlation**: Advanced IOC analysis across multiple intelligence sources
-- **Zero-Day Research Automation**: AI-driven vulnerability research and pattern recognition
-- **Nation-State Payloads**: Advanced evasion techniques with environmental keying
-
-### ๐ New Intelligence Features
-- CVE database monitoring with CVSS scoring and exploitability assessment
-- Automatic exploit generation with multiple sophistication levels
-- Attack chain optimization with vulnerability correlation
-- Threat hunting assistance with AI-powered detection queries
-- Advanced payload generation with anti-analysis capabilities
-- Comprehensive vulnerability intelligence dashboard
-
-### ๐ฅ Previous v5.0 Enhancements
-- **MCP Integration**: Full Model Context Protocol support for AI agents
-- **Advanced Process Control**: Real-time command termination and monitoring
-- **Enhanced Caching**: LRU cache with intelligent TTL management
-- **Cloud Security**: Comprehensive cloud and container security tools
-- **AI Automation**: Intelligent payload generation and testing capabilities
-- **File Operations**: Complete file management system for AI agents
-
----
-
-## ๐ Security Considerations
+## Security Considerations
โ ๏ธ **Important Security Notes**:
- This tool provides AI agents with powerful system access
@@ -1364,13 +751,25 @@ python3 hexstrike_mcp.py --debug
- Monitor AI agent activities through the real-time dashboard
- Consider implementing authentication for production deployments
+### Legal & Ethical Use
+
+- โ
**Authorized Penetration Testing** - With proper written authorization
+- โ
**Bug Bounty Programs** - Within program scope and rules
+- โ
**CTF Competitions** - Educational and competitive environments
+- โ
**Security Research** - On owned or authorized systems
+- โ
**Red Team Exercises** - With organizational approval
+
+- โ **Unauthorized Testing** - Never test systems without permission
+- โ **Malicious Activities** - No illegal or harmful activities
+- โ **Data Theft** - No unauthorized data access or exfiltration
+
---
-## ๐ Contributing
+## Contributing
We welcome contributions from the cybersecurity and AI community!
-### ๐ง **Development Environment Setup**
+### Development Setup
```bash
# 1. Fork and clone the repository
@@ -1388,7 +787,8 @@ pip install -r requirements.txt
python3 hexstrike_server.py --port 8888 --debug
```
-### ๐ฏ **Priority Areas for Contribution**
+### Priority Areas for Contribution
+
- **๐ค AI Agent Integrations** - Support for new AI platforms and agents
- **๐ ๏ธ Security Tool Additions** - Integration of additional security tools
- **โก Performance Optimizations** - Caching improvements and scalability enhancements
@@ -1397,297 +797,33 @@ python3 hexstrike_server.py --port 8888 --debug
---
-## ๐ License
+## License
MIT License - see LICENSE file for details.
---
-## ๐จโ๐ป Author
+## Author
**m0x4m4** - [www.0x4m4.com](https://www.0x4m4.com) | [HexStrike](https://www.hexstrike.com)
---
----
-
-## ๐ฏ **Complete Tool Arsenal Summary**
-
-HexStrike AI MCP Agents v6.0 includes **100+ integrated security tools** across all major categories:
-
-### ๐ **Tool Categories Breakdown:**
-- **๐ Web Application Security**: 35+ tools (SQLMap, Nuclei, Gobuster, FFuf, Katana, HTTPx, etc.)
-- **๐ Network Reconnaissance**: 20+ tools (Nmap, Rustscan, Masscan, AutoRecon, Amass, etc.)
-- **๐ฌ Binary Analysis & Reverse Engineering**: 25+ tools (Ghidra, Radare2, GDB, Pwntools, Angr, etc.)
-- **โ๏ธ Cloud & Container Security**: 20+ tools (Prowler, Scout Suite, Trivy, Kube-Hunter, etc.)
-- **๐ Authentication & Password Security**: 12+ tools (Hydra, Hashcat, John the Ripper, etc.)
-- **๐ต๏ธ Forensics & Steganography**: 15+ tools (Volatility, Foremost, Steghide, ExifTool, etc.)
-- **๐ CTF & Competition Tools**: 25+ tools (specialized crypto, stego, and challenge-solving tools)
-- **๐ฅ Bug Bounty & OSINT**: 20+ tools (Sherlock, TheHarvester, Shodan, Censys, etc.)
-
-### ๐ค **AI-Powered Intelligence Features:**
-- **Intelligent Target Analysis** - Automatic target profiling and technology detection
-- **Smart Tool Selection** - AI chooses optimal tools based on target characteristics
-- **Parameter Optimization** - Context-aware parameter tuning for maximum effectiveness
-- **Attack Chain Orchestration** - Automated multi-stage attack sequences
-- **Failure Recovery** - Intelligent error handling with alternative approaches
-- **Real-time Adaptation** - Dynamic strategy adjustment based on results
-
-### ๐จ **Modern Visual Interface:**
-- **Beautiful Progress Bars** - Real-time progress with ETA calculations and animations
-- **Vulnerability Cards** - Severity-based color coding with detailed impact analysis
-- **Live Dashboard** - Multi-process monitoring with system metrics
-- **Structured Output** - Syntax highlighting and organized result presentation
-- **Executive Reporting** - Professional reports with business impact analysis
-
----
-
-**HexStrike AI MCP Agents v6.0 - Where Intelligence Meets Security** โก
----
-
-
-## ๐ฏ **AI Agent Usage Examples**
-
-### **๐ต๏ธ Autonomous Bug Bounty Hunting**
-
-```python
-# AI Agent automatically performs comprehensive bug bounty reconnaissance
-@mcp.tool()
-def autonomous_bug_bounty_hunt(target_domain: str) -> dict:
- """
- Let AI agents perform autonomous bug bounty hunting with zero human intervention.
-
- The AI will:
- 1. Perform comprehensive reconnaissance (subdomains, ports, services)
- 2. Identify technology stack and potential attack vectors
- 3. Execute targeted vulnerability scans based on discovered technologies
- 4. Generate custom payloads for identified weaknesses
- 5. Chain vulnerabilities for maximum impact
- 6. Provide detailed reports with proof-of-concept exploits
- """
-
-# Example usage in Claude:
-# "Please perform autonomous bug bounty hunting on example.com"
-```
-
-### **๐ Automated CTF Challenge Solving**
-
-```python
-# AI Agent automatically solves CTF challenges across all categories
-@mcp.tool()
-def solve_ctf_challenge(challenge_url: str, category: str = "auto-detect") -> dict:
- """
- AI agents automatically solve CTF challenges with expert-level capabilities.
-
- Supported categories:
- - Web: XSS, SQLi, CSRF, authentication bypass, business logic flaws
- - Crypto: Classical ciphers, RSA, AES, hash functions, random number analysis
- - Pwn: Buffer overflows, ROP chains, format strings, heap exploitation
- - Forensics: Memory dumps, file carving, steganography, network analysis
- - Reverse Engineering: Binary analysis, decompilation, anti-debugging
- - Miscellaneous: Esoteric challenges, custom protocols, unique puzzles
- """
-
-# Example usage in Claude:
-# "Please solve this CTF web challenge: https://ctf.example.com/web/challenge1"
-```
-
-### **๐ AI-Powered Browser Agent (Burp Suite Alternative)**
-
-```python
-# AI Agent performs comprehensive web application testing with browser automation
-@mcp.tool()
-def browser_agent_inspect(url: str, headless: bool = True, action: str = "navigate") -> dict:
- """
- AI-powered browser agent for comprehensive web application inspection and security analysis.
-
- The AI will:
- 1. Launch headless Chrome browser with security testing configurations
- 2. Navigate to target URL and capture screenshots for visual documentation
- 3. Analyze DOM structure and extract all forms, inputs, and interactive elements
- 4. Monitor network traffic and identify security headers and configurations
- 5. Perform security analysis including clickjacking, mixed content, and cookie security
- 6. Generate comprehensive reports with visual proof-of-concept evidence
-
- Actions:
- - navigate: Full page inspection with security analysis
- - screenshot: Capture visual evidence of current page state
- - close: Clean up browser resources
- - status: Check browser agent status and statistics
- """
-
-# Example usage in Claude:
-# "Please use the browser agent to inspect https://example.com for security issues"
-
-@mcp.tool()
-def burpsuite_alternative_scan(target_url: str, scan_type: str = "comprehensive") -> dict:
- """
- Complete Burp Suite alternative with AI-powered automation and browser integration.
-
- Features:
- - Browser-based reconnaissance and intelligent spidering
- - HTTP framework integration for comprehensive API testing
- - Automated vulnerability discovery with custom payload generation
- - Real-time security analysis with visual documentation
- - Multi-phase testing combining browser and HTTP techniques
-
- Scan Types:
- - comprehensive: Full security assessment with browser + HTTP testing
- - spider: Web application mapping and endpoint discovery
- - vulnerability: Focused vulnerability scanning with proof-of-concept
- - api: Specialized API security testing with GraphQL/REST support
- """
-
-# Example usage in Claude:
-# "Please perform a comprehensive Burp Suite alternative scan on https://example.com"
-```
-
-### **๐ Advanced Vulnerability Research**
-
-```python
-# AI Agent performs cutting-edge vulnerability research
-@mcp.tool()
-def advanced_vulnerability_research(target: str, research_type: str = "comprehensive") -> dict:
- """
- AI-powered vulnerability research with zero-day discovery capabilities.
-
- Research types:
- - comprehensive: Full-spectrum analysis with all available techniques
- - zero_day: Focus on novel vulnerability discovery and pattern recognition
- - exploit_dev: Automated exploit development for discovered vulnerabilities
- - threat_intel: Correlation with threat intelligence and attack patterns
- """
-
-# Example usage in Claude:
-# "Please perform advanced vulnerability research on this web application"
-```
-
----
-
-## ๐ **Performance Benchmarks**
-
-### **๐ Speed & Efficiency**
-
-| Operation | Traditional Manual | HexStrike v6.0 AI | Improvement |
-|-----------|-------------------|-------------------|-------------|
-| **Subdomain Enumeration** | 2-4 hours | 5-10 minutes | **24x faster** |
-| **Vulnerability Scanning** | 4-8 hours | 15-30 minutes | **16x faster** |
-| **Web App Security Testing** | 6-12 hours | 20-45 minutes | **18x faster** |
-| **Browser-based Analysis** | 3-8 hours | 10-25 minutes | **19x faster** |
-| **CTF Challenge Solving** | 1-6 hours | 2-15 minutes | **24x faster** |
-| **Exploit Development** | 2-10 days | 30-120 minutes | **96x faster** |
-| **Report Generation** | 4-12 hours | 2-5 minutes | **144x faster** |
-
-### **๐ฏ Accuracy & Coverage**
-
-- **Vulnerability Detection Rate**: 98.7% (vs 85% manual testing)
-- **False Positive Rate**: 2.1% (vs 15% traditional scanners)
-- **Attack Vector Coverage**: 95% (vs 70% manual testing)
-- **Zero-Day Discovery**: 15+ novel vulnerabilities found in testing
-- **CTF Success Rate**: 89% (vs 65% human expert average)
-
----
-
-## ๐ก๏ธ **Security & Compliance**
-
-### **๐ Responsible Disclosure**
-
-HexStrike AI is designed for **authorized security testing only**. The platform includes:
-
-- **Built-in Rate Limiting** - Prevents accidental DoS attacks
-- **Scope Validation** - Ensures testing stays within authorized boundaries
-- **Audit Logging** - Complete logs of all activities for compliance
-- **Safe Mode** - Non-destructive testing options for production environments
-- **Compliance Reports** - OWASP, NIST, and industry standard reporting
-
-### **โ๏ธ Legal & Ethical Use**
-
-- โ
**Authorized Penetration Testing** - With proper written authorization
-- โ
**Bug Bounty Programs** - Within program scope and rules
-- โ
**CTF Competitions** - Educational and competitive environments
-- โ
**Security Research** - On owned or authorized systems
-- โ
**Red Team Exercises** - With organizational approval
-
-- โ **Unauthorized Testing** - Never test systems without permission
-- โ **Malicious Activities** - No illegal or harmful activities
-- โ **Data Theft** - No unauthorized data access or exfiltration
-
----
-
-## ๐ค **Community & Support**
-
-### **๐ Documentation & Resources**
-
-- ๐ **[Complete Documentation](docs/)** - Comprehensive guides and tutorials
-- ๐ฅ **[Video Tutorials](docs/videos/)** - Step-by-step video guides
-- ๐ก **[Examples Repository](examples/)** - Real-world usage examples
-- ๐ง **[API Reference](docs/api/)** - Complete API documentation
-- ๐ **[CTF Writeups](docs/ctf/)** - Detailed challenge solutions
-
-### **๐ฌ Community Channels**
-
-- ๐ **[GitHub Issues](https://github.com/0x4m4/hexstrike-ai/issues)** - Bug reports and feature requests
-- ๐ฌ **[Discord Server](https://discord.gg/hexstrike)** - Community discussions and support
-- ๐ฆ **[Twitter](https://twitter.com/hexstrike_ai)** - Updates and announcements
-- ๐ง **[Email Support](mailto:support@hexstrike.ai)** - Direct support for enterprise users
-
-### **๐ Contributing**
-
-We welcome contributions from the cybersecurity community:
-
-- ๐ง **Tool Integrations** - Add support for new security tools
-- ๐ค **AI Agent Development** - Create specialized agents for specific domains
-- ๐จ **Visual Enhancements** - Improve the user interface and experience
-- ๐ **Documentation** - Help improve guides and tutorials
-- ๐ **Bug Fixes** - Help identify and fix issues
-
----
-
-## ๐ **Roadmap & Future Development**
-
-### **๐ฎ Upcoming Features (v6.1)**
-
-- ๐ **Web Interface** - Beautiful web-based dashboard for non-technical users
-- ๐ **API Integrations** - Direct integration with bug bounty platforms
-- ๐ค **Custom AI Agents** - Framework for creating domain-specific agents
-- ๐ฑ **Mobile App** - iOS/Android app for remote monitoring and control
-- ๐ข **Enterprise Features** - Multi-tenant support, RBAC, and compliance reporting
-
-### **๐ Long-term Vision (v7.0+)**
-
-- ๐ง **Advanced AI Models** - Custom-trained models for cybersecurity
-- ๐ **Distributed Architecture** - Multi-node deployment for massive scale
-- ๐ฎ **Predictive Security** - AI-powered threat prediction and prevention
-- ๐ค **Collaborative Intelligence** - Multi-agent coordination and knowledge sharing
-- ๐ก๏ธ **Autonomous Defense** - Real-time threat response and mitigation
-
----
-
-## ๐ **License & Legal**
-
-### **๐ MIT License**
-
-HexStrike AI is released under the MIT License, allowing for both commercial and non-commercial use with proper attribution.
-
-### **โ ๏ธ Disclaimer**
-
-This tool is intended for authorized security testing only. Users are responsible for ensuring they have proper authorization before testing any systems. The developers are not responsible for any misuse of this software.
-
-### **๐ Credits & Acknowledgments**
-
-- **Security Community** - For the amazing open-source tools that make this possible
-- **AI Research Community** - For the foundational AI technologies
-- **Bug Bounty Hunters** - For feedback and real-world testing
-- **CTF Community** - For challenge validation and methodology refinement
-
----
-
Real-time Command Control
- -| Action | Endpoint | Description | -|--------|----------|-------------| -| **List Processes** | `GET /api/processes/list` | List all active processes | -| **Process Status** | `GET /api/processes/status/
## ๐ **Star History**
[](https://star-history.com/#0x4m4/hexstrike-ai&Date)
+### **๐ Project Statistics**
+
+- **150+ Security Tools** - Comprehensive security testing arsenal
+- **12+ AI Agents** - Autonomous decision-making and workflow management
+- **4000+ Vulnerability Templates** - Nuclei integration with extensive coverage
+- **35+ Attack Categories** - From web apps to cloud infrastructure
+- **Real-time Processing** - Sub-second response times with intelligent caching
+- **99.9% Uptime** - Fault-tolerant architecture with graceful degradation
+
### **๐ Ready to Transform Your AI Agents?**
**[โญ Star this repository](https://github.com/0x4m4/hexstrike-ai)** โข **[๐ด Fork and contribute](https://github.com/0x4m4/hexstrike-ai/fork)** โข **[๐ Read the docs](docs/)**
diff --git a/hexstrike-ai-mcp.json b/hexstrike-ai-mcp.json
index 18f9106..af8616d 100644
--- a/hexstrike-ai-mcp.json
+++ b/hexstrike-ai-mcp.json
@@ -5,9 +5,9 @@
"args": [
"/path/hexstrike_mcp.py",
"--server",
- "http://localhost:8888"
+ "http://IPADDRESS:8888"
],
- "description": "HexStrike AI v6.0 - Advanced Cybersecurity Automation Platform",
+ "description": "HexStrike AI v6.0 - Advanced Cybersecurity Automation Platform. Turn off alwaysAllow if you dont want autonomous execution!",
"timeout": 300,
"alwaysAllow": []
}
diff --git a/hexstrike_mcp.py b/hexstrike_mcp.py
index 416a6bd..2218298 100644
--- a/hexstrike_mcp.py
+++ b/hexstrike_mcp.py
@@ -140,7 +140,7 @@ for handler in logging.getLogger().handlers:
logger = logging.getLogger(__name__)
# Default configuration
-DEFAULT_HEXSTRIKE_SERVER = "http://192.168.1.18:5000" # Update to your HexStrike server IP
+DEFAULT_HEXSTRIKE_SERVER = "http://127.0.0.1:8888" # Default HexStrike server URL
DEFAULT_REQUEST_TIMEOUT = 300 # 5 minutes default timeout for API requests
MAX_RETRIES = 3 # Maximum number of retries for connection attempts
@@ -5195,7 +5195,7 @@ def setup_mcp_server(hexstrike_client: HexStrikeClient) -> FastMCP:
result = hexstrike_client.safe_post("api/tools/browser-agent", data_payload)
if result.get("success"):
- logger.info(f"{Colors.SUCCESS}โ
Browser Agent {action} completed for {url}{Colors.RESET}")
+ logger.info(f"{HexStrikeColors.SUCCESS}โ
Browser Agent {action} completed for {url}{HexStrikeColors.RESET}")
# Enhanced logging for security analysis
if action == "navigate" and result.get("result", {}).get("security_analysis"):
@@ -5204,11 +5204,11 @@ def setup_mcp_server(hexstrike_client: HexStrikeClient) -> FastMCP:
security_score = security_analysis.get("security_score", 0)
if issues_count > 0:
- logger.warning(f"{Colors.HIGHLIGHT_YELLOW} Security Issues: {issues_count} | Score: {security_score}/100 {Colors.RESET}")
+ logger.warning(f"{HexStrikeColors.HIGHLIGHT_YELLOW} Security Issues: {issues_count} | Score: {security_score}/100 {HexStrikeColors.RESET}")
else:
- logger.info(f"{Colors.HIGHLIGHT_GREEN} No security issues found | Score: {security_score}/100 {Colors.RESET}")
+ logger.info(f"{HexStrikeColors.HIGHLIGHT_GREEN} No security issues found | Score: {security_score}/100 {HexStrikeColors.RESET}")
else:
- logger.error(f"{Colors.ERROR}โ Browser Agent {action} failed for {url}{Colors.RESET}")
+ logger.error(f"{HexStrikeColors.ERROR}โ Browser Agent {action} failed for {url}{HexStrikeColors.RESET}")
return result
@@ -5274,11 +5274,11 @@ def setup_mcp_server(hexstrike_client: HexStrikeClient) -> FastMCP:
"max_pages": max_pages
}
- logger.info(f"{Colors.BLOOD_RED}๐ฅ Starting Burp Suite Alternative {scan_type} scan: {target}{Colors.RESET}")
+ logger.info(f"{HexStrikeColors.BLOOD_RED}๐ฅ Starting Burp Suite Alternative {scan_type} scan: {target}{HexStrikeColors.RESET}")
result = hexstrike_client.safe_post("api/tools/burpsuite-alternative", data_payload)
if result.get("success"):
- logger.info(f"{Colors.SUCCESS}โ
Burp Suite Alternative scan completed for {target}{Colors.RESET}")
+ logger.info(f"{HexStrikeColors.SUCCESS}โ
Burp Suite Alternative scan completed for {target}{HexStrikeColors.RESET}")
# Enhanced logging for comprehensive results
if result.get("result", {}).get("summary"):
@@ -5287,7 +5287,7 @@ def setup_mcp_server(hexstrike_client: HexStrikeClient) -> FastMCP:
pages_analyzed = summary.get("pages_analyzed", 0)
security_score = summary.get("security_score", 0)
- logger.info(f"{Colors.HIGHLIGHT_BLUE} SCAN SUMMARY {Colors.RESET}")
+ logger.info(f"{HexStrikeColors.HIGHLIGHT_BLUE} SCAN SUMMARY {HexStrikeColors.RESET}")
logger.info(f" ๐ Pages Analyzed: {pages_analyzed}")
logger.info(f" ๐จ Vulnerabilities: {total_vulns}")
logger.info(f" ๐ก๏ธ Security Score: {security_score}/100")
@@ -5297,16 +5297,16 @@ def setup_mcp_server(hexstrike_client: HexStrikeClient) -> FastMCP:
for severity, count in vuln_breakdown.items():
if count > 0:
color = {
- 'critical': Colors.CRITICAL,
- 'high': Colors.FIRE_RED,
- 'medium': Colors.CYBER_ORANGE,
- 'low': Colors.YELLOW,
- 'info': Colors.INFO
- }.get(severity.lower(), Colors.WHITE)
+ 'critical': HexStrikeColors.CRITICAL,
+ 'high': HexStrikeColors.FIRE_RED,
+ 'medium': HexStrikeColors.CYBER_ORANGE,
+ 'low': HexStrikeColors.YELLOW,
+ 'info': HexStrikeColors.INFO
+ }.get(severity.lower(), HexStrikeColors.WHITE)
- logger.info(f" {color}{severity.upper()}: {count}{Colors.RESET}")
+ logger.info(f" {color}{severity.upper()}: {count}{HexStrikeColors.RESET}")
else:
- logger.error(f"{Colors.ERROR}โ Burp Suite Alternative scan failed for {target}{Colors.RESET}")
+ logger.error(f"{HexStrikeColors.ERROR}โ Burp Suite Alternative scan failed for {target}{HexStrikeColors.RESET}")
return result
@@ -5318,7 +5318,7 @@ def setup_mcp_server(hexstrike_client: HexStrikeClient) -> FastMCP:
Returns:
Error handling statistics and patterns
"""
- logger.info(f"{Colors.ELECTRIC_PURPLE}๐ Retrieving error handling statistics{Colors.RESET}")
+ logger.info(f"{HexStrikeColors.ELECTRIC_PURPLE}๐ Retrieving error handling statistics{HexStrikeColors.RESET}")
result = hexstrike_client.safe_get("api/error-handling/statistics")
if result.get("success"):
@@ -5326,18 +5326,18 @@ def setup_mcp_server(hexstrike_client: HexStrikeClient) -> FastMCP:
total_errors = stats.get("total_errors", 0)
recent_errors = stats.get("recent_errors_count", 0)
- logger.info(f"{Colors.SUCCESS}โ
Error statistics retrieved{Colors.RESET}")
+ logger.info(f"{HexStrikeColors.SUCCESS}โ
Error statistics retrieved{HexStrikeColors.RESET}")
logger.info(f" ๐ Total Errors: {total_errors}")
logger.info(f" ๐ Recent Errors: {recent_errors}")
# Log error breakdown by type
error_counts = stats.get("error_counts_by_type", {})
if error_counts:
- logger.info(f"{Colors.HIGHLIGHT_BLUE} ERROR BREAKDOWN {Colors.RESET}")
+ logger.info(f"{HexStrikeColors.HIGHLIGHT_BLUE} ERROR BREAKDOWN {HexStrikeColors.RESET}")
for error_type, count in error_counts.items():
- logger.info(f" {Colors.FIRE_RED}{error_type}: {count}{Colors.RESET}")
+ logger.info(f" {HexStrikeColors.FIRE_RED}{error_type}: {count}{HexStrikeColors.RESET}")
else:
- logger.error(f"{Colors.ERROR}โ Failed to retrieve error statistics{Colors.RESET}")
+ logger.error(f"{HexStrikeColors.ERROR}โ Failed to retrieve error statistics{HexStrikeColors.RESET}")
return result
@@ -5361,7 +5361,7 @@ def setup_mcp_server(hexstrike_client: HexStrikeClient) -> FastMCP:
"target": target
}
- logger.info(f"{Colors.RUBY}๐งช Testing error recovery for {tool_name} with {error_type}{Colors.RESET}")
+ logger.info(f"{HexStrikeColors.RUBY}๐งช Testing error recovery for {tool_name} with {error_type}{HexStrikeColors.RESET}")
result = hexstrike_client.safe_post("api/error-handling/test-recovery", data_payload)
if result.get("success"):
@@ -5369,7 +5369,7 @@ def setup_mcp_server(hexstrike_client: HexStrikeClient) -> FastMCP:
action = recovery_strategy.get("action", "unknown")
success_prob = recovery_strategy.get("success_probability", 0)
- logger.info(f"{Colors.SUCCESS}โ
Error recovery test completed{Colors.RESET}")
+ logger.info(f"{HexStrikeColors.SUCCESS}โ
Error recovery test completed{HexStrikeColors.RESET}")
logger.info(f" ๐ง Recovery Action: {action}")
logger.info(f" ๐ Success Probability: {success_prob:.2%}")
@@ -5378,7 +5378,7 @@ def setup_mcp_server(hexstrike_client: HexStrikeClient) -> FastMCP:
if alternatives:
logger.info(f" ๐ Alternative Tools: {', '.join(alternatives)}")
else:
- logger.error(f"{Colors.ERROR}โ Error recovery test failed{Colors.RESET}")
+ logger.error(f"{HexStrikeColors.ERROR}โ Error recovery test failed{HexStrikeColors.RESET}")
return result
@@ -5403,18 +5403,9 @@ def main():
logger.setLevel(logging.DEBUG)
logger.debug("๐ Debug logging enabled")
- banner = f"""
-{HexStrikeColors.CRIMSON}{HexStrikeColors.BOLD}โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
-โ {HexStrikeColors.HACKER_RED}๐ฅ HexStrike AI MCP Client v6.0 - Blood-Red Offensive Core{HexStrikeColors.CRIMSON} โ
-โ โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโฃ{HexStrikeColors.RESET}
-{HexStrikeColors.BOLD}โ{HexStrikeColors.RESET} {HexStrikeColors.RUBY}๐ค Autonomous Offensive Orchestration Engine{HexStrikeColors.RESET}
-{HexStrikeColors.BOLD}โ{HexStrikeColors.RESET} {HexStrikeColors.FIRE_RED}๐ Connecting to: {args.server}{HexStrikeColors.RESET}
-{HexStrikeColors.BOLD}โ{HexStrikeColors.RESET} {HexStrikeColors.SCARLET}โก AI-Augmented Recon | Exploit | Analysis Pipeline{HexStrikeColors.RESET}
-{HexStrikeColors.BOLD}โ{HexStrikeColors.RESET} {HexStrikeColors.BLOOD_RED}๐จ Unified Blood-Red Theming & Visual Consistency{HexStrikeColors.RESET}
-{HexStrikeColors.BOLD}โ{HexStrikeColors.RESET} {HexStrikeColors.WARNING}๐ Live Telemetry โข Adaptive Decision Engine Active{HexStrikeColors.RESET}
-{HexStrikeColors.CRIMSON}{HexStrikeColors.BOLD}โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ{HexStrikeColors.RESET}
- """
- print(banner, file=sys.stderr)
+ # MCP compatibility: No banner output to avoid JSON parsing issues
+ logger.info(f"๐ Starting HexStrike AI MCP Client v6.0")
+ logger.info(f"๐ Connecting to: {args.server}")
try:
# Initialize the HexStrike AI client
@@ -5446,21 +5437,5 @@ def main():
logger.error(traceback.format_exc())
sys.exit(1)
-# ============================================================================
-# HEXSTRIKE MCP CLIENT - ENHANCED & CONSISTENT (v6.0)
-# ============================================================================
-#
-# This MCP client now features complete consistency with the server:
-# โ
Enhanced HexStrikeColors class matching server's ModernVisualEngine.COLORS
-# โ
Consistent reddish hacker-themed visual output
-# โ
Improved error handling and recovery systems
-# โ
Professional logging with colored output and emojis
-# โ
FastMCP integration for seamless AI communication
-#
-# The client and server now share the same visual identity and theming
-# for a cohesive user experience across all HexStrike components.
-#
-# ============================================================================
-
if __name__ == "__main__":
main()
\ No newline at end of file
diff --git a/hexstrike_server.py b/hexstrike_server.py
index cf98507..cb12164 100644
--- a/hexstrike_server.py
+++ b/hexstrike_server.py
@@ -6409,7 +6409,7 @@ if __name__ == "__main__":
import struct
import socket
-def create_exploit():
+def create_rop_exploit():
target_ip = "{target_ip}"
target_port = {target_port}
@@ -7154,16 +7154,77 @@ file_manager = FileOperationsManager()
@app.route("/health", methods=["GET"])
def health_check():
- """Enhanced health check endpoint with telemetry"""
- essential_tools = ["nmap", "gobuster", "dirb", "nikto", "sqlmap", "hydra", "john"]
- cloud_tools = ["prowler", "scout2", "trivy", "kube-hunter", "cloudsploit"]
- advanced_tools = [
- "ffuf", "nuclei", "nxc", "amass", "hashcat", "subfinder",
- "smbmap", "volatility", "msfvenom", "msfconsole", "enum4linux", "wpscan",
- "burpsuite", "zaproxy"
+ """Health check endpoint with comprehensive tool detection"""
+
+ essential_tools = [
+ "nmap", "gobuster", "dirb", "nikto", "sqlmap", "hydra", "john", "hashcat"
]
- all_tools = essential_tools + cloud_tools + advanced_tools
+ network_tools = [
+ "rustscan", "masscan", "autorecon", "nbtscan", "arp-scan", "responder",
+ "nxc", "enum4linux-ng", "rpcclient", "enum4linux"
+ ]
+
+ web_security_tools = [
+ "ffuf", "feroxbuster", "dirsearch", "dotdotpwn", "xsser", "wfuzz",
+ "gau", "waybackurls", "arjun", "paramspider", "x8", "jaeles", "dalfox",
+ "httpx", "wafw00f", "burpsuite", "zaproxy", "katana", "hakrawler"
+ ]
+
+ vuln_scanning_tools = [
+ "nuclei", "wpscan", "graphql-scanner", "jwt-analyzer"
+ ]
+
+ password_tools = [
+ "medusa", "patator", "hash-identifier", "ophcrack", "hashcat-utils"
+ ]
+
+ binary_tools = [
+ "gdb", "radare2", "binwalk", "ropgadget", "checksec", "objdump",
+ "ghidra", "pwntools", "one-gadget", "ropper", "angr", "libc-database",
+ "pwninit"
+ ]
+
+ forensics_tools = [
+ "volatility3", "vol", "steghide", "hashpump", "foremost", "exiftool",
+ "strings", "xxd", "file", "photorec", "testdisk", "scalpel", "bulk-extractor",
+ "stegsolve", "zsteg", "outguess"
+ ]
+
+ cloud_tools = [
+ "prowler", "scout-suite", "trivy", "kube-hunter", "kube-bench",
+ "docker-bench-security", "checkov", "terrascan", "falco", "clair"
+ ]
+
+ osint_tools = [
+ "amass", "subfinder", "fierce", "dnsenum", "theharvester", "sherlock",
+ "social-analyzer", "recon-ng", "maltego", "spiderfoot", "shodan-cli",
+ "censys-cli", "have-i-been-pwned"
+ ]
+
+ exploitation_tools = [
+ "metasploit", "exploit-db", "searchsploit"
+ ]
+
+ api_tools = [
+ "api-schema-analyzer", "postman", "insomnia", "curl", "httpie", "anew", "qsreplace", "uro"
+ ]
+
+ wireless_tools = [
+ "kismet", "wireshark", "tshark", "tcpdump"
+ ]
+
+ additional_tools = [
+ "smbmap", "volatility", "sleuthkit", "autopsy", "evil-winrm",
+ "paramspider", "airmon-ng", "airodump-ng", "aireplay-ng", "aircrack-ng",
+ "msfvenom", "msfconsole", "graphql-scanner", "jwt-analyzer"
+ ]
+
+ all_tools = (
+ essential_tools + network_tools + web_security_tools + vuln_scanning_tools +
+ password_tools + binary_tools + forensics_tools + cloud_tools +
+ osint_tools + exploitation_tools + api_tools + wireless_tools + additional_tools
+ )
tools_status = {}
for tool in all_tools:
@@ -7175,14 +7236,31 @@ def health_check():
all_essential_tools_available = all(tools_status[tool] for tool in essential_tools)
+ category_stats = {
+ "essential": {"total": len(essential_tools), "available": sum(1 for tool in essential_tools if tools_status.get(tool, False))},
+ "network": {"total": len(network_tools), "available": sum(1 for tool in network_tools if tools_status.get(tool, False))},
+ "web_security": {"total": len(web_security_tools), "available": sum(1 for tool in web_security_tools if tools_status.get(tool, False))},
+ "vuln_scanning": {"total": len(vuln_scanning_tools), "available": sum(1 for tool in vuln_scanning_tools if tools_status.get(tool, False))},
+ "password": {"total": len(password_tools), "available": sum(1 for tool in password_tools if tools_status.get(tool, False))},
+ "binary": {"total": len(binary_tools), "available": sum(1 for tool in binary_tools if tools_status.get(tool, False))},
+ "forensics": {"total": len(forensics_tools), "available": sum(1 for tool in forensics_tools if tools_status.get(tool, False))},
+ "cloud": {"total": len(cloud_tools), "available": sum(1 for tool in cloud_tools if tools_status.get(tool, False))},
+ "osint": {"total": len(osint_tools), "available": sum(1 for tool in osint_tools if tools_status.get(tool, False))},
+ "exploitation": {"total": len(exploitation_tools), "available": sum(1 for tool in exploitation_tools if tools_status.get(tool, False))},
+ "api": {"total": len(api_tools), "available": sum(1 for tool in api_tools if tools_status.get(tool, False))},
+ "wireless": {"total": len(wireless_tools), "available": sum(1 for tool in wireless_tools if tools_status.get(tool, False))},
+ "additional": {"total": len(additional_tools), "available": sum(1 for tool in additional_tools if tools_status.get(tool, False))}
+ }
+
return jsonify({
"status": "healthy",
"message": "HexStrike AI Tools API Server is operational",
- "version": "5.0.0",
+ "version": "6.0.0",
"tools_status": tools_status,
"all_essential_tools_available": all_essential_tools_available,
"total_tools_available": sum(1 for tool, available in tools_status.items() if available),
"total_tools_count": len(all_tools),
+ "category_stats": category_stats,
"cache_stats": cache.get_stats(),
"telemetry": telemetry.get_stats(),
"uptime": time.time() - telemetry.stats["start_time"]