docs/tools/sandbox.mdx
Strix runs inside a Kali Linux-based Docker container with a comprehensive set of security tools pre-installed. The agent can use any of these tools through the terminal.
| Tool | Description |
|---|---|
| Subfinder | Subdomain discovery |
| Naabu | Fast port scanner |
| httpx | HTTP probing and analysis |
| Katana | Web crawling and spidering |
| ffuf | Fast web fuzzer |
| Nmap | Network scanning and service detection |
| Tool | Description |
|---|---|
| Arjun | HTTP parameter discovery |
| Dirsearch | Directory and file brute-forcing |
| wafw00f | WAF fingerprinting |
| GoSpider | Web spider for link extraction |
| Tool | Description |
|---|---|
| Nuclei | Template-based vulnerability scanner |
| SQLMap | Automatic SQL injection detection and exploitation |
| Wapiti | Web application vulnerability scanner |
| ZAP | OWASP Zed Attack Proxy |
| Tool | Description |
|---|---|
| JS-Snooper | JavaScript reconnaissance |
| jsniper | JavaScript file analysis |
| Retire.js | Detect vulnerable JS libraries |
| ESLint | JavaScript static analysis |
| js-beautify | JavaScript deobfuscation |
| JSHint | JavaScript code quality tool |
| Tool | Description |
|---|---|
| TruffleHog | Find secrets in code and history |
| Semgrep | Static analysis for security patterns |
| Bandit | Python security linter |
| Tool | Description |
|---|---|
| jwt_tool | JWT token testing and exploitation |
| Interactsh | Out-of-band interaction detection |
| Tool | Description |
|---|---|
| Trivy | Container and dependency vulnerability scanner |
| Tool | Description |
|---|---|
| Caido | Modern HTTP proxy for interception and replay |
| Tool | Description |
|---|---|
| Playwright | Headless browser automation |