This project offers a centralized, Windows-native platform for security operations, penetration testing, and research, functioning like an application store for security tools. It targets security professionals and learners seeking an efficient, integrated environment that bypasses the need for traditional Kali Linux setups. The primary benefit is streamlined access to a vast, up-to-date collection of security tools, enhanced by AI-driven automation for complex tasks.

How It Works

The platform operates as a "software store" for security tools, allowing users to download, update, and manage utilities via an automated system. A core feature is the integrated HexStrike-AI, which leverages a collection of security tools to perform automated scanning and analysis. It utilizes an isolated Python 3.11 environment to manage dependencies without polluting the system's Python installation, ensuring tool compatibility and preventing version conflicts. Communication between the AI client and the tool execution server is handled via the MCP protocol (JSON-RPC over HTTP).

Quick Start & Requirements

• Installation: Users can download a "fully packaged version" (0.16.5 dev/test) from GitHub Releases or a Quark Drive link. Alternatively, a standard download requires Python 3.11, which will be prompted for installation if not detected.
• Prerequisites: Python 3.11 (if not using the packaged version).
• Links:
  • GitHub Releases: https://github.com/CuriousLearnerDev/Online_tools/releases
  • Quark Drive (Packaged): https://pan.quark.cn/s/b16227a8fbb6 (Extraction code: FsXJ)
  • HexStrike AI Server Source: https://github.com/CuriousLearnerDev/Online_tools/blob/master/hexstrike_server.py

Highlighted Details

• Integrates over 240 security tools, with frequent updates listed in the README.
• Features HexStrike-AI for automated penetration testing guidance and tool execution.
• Supports drag-and-drop functionality for adding custom tools and flexible parameter configuration.
• Allows for private deployment by configuring the platform to download tools from a custom server via storage/toollist.json.

Maintenance & Community

The project demonstrates active development with frequent tool updates and version releases. A communication group ("交流群") is available for user interaction and support. Acknowledgements list several contributors and research labs.

Licensing & Compatibility

No explicit open-source license is provided. The project includes a detailed disclaimer stating it is for technical research and education only, and users are responsible for adhering to laws and ethical guidelines, bearing all risks associated with its use. Commercial use or linking with closed-source projects is not addressed and likely restricted by the disclaimer.

Limitations & Caveats

The HexStrike-AI component was originally designed for Linux environments and adapted for Windows, which may introduce complexities or limitations. The absence of a formal license and the extensive disclaimer suggest potential legal ambiguities and restrict usage primarily to non-commercial, educational, or authorized research contexts. Users must assume all responsibility for tool usage and potential consequences.