docs/tools/sandbox.mdx
Strix runs inside a Kali Linux-based Docker container with a comprehensive set of security tools pre-installed. The agent can use any of these tools through the terminal.
| Tool | Description |
|---|---|
| Subfinder | Subdomain discovery |
| Naabu | Fast port scanner |
| httpx | HTTP probing and analysis |
| Katana | Web crawling and spidering |
| ffuf | Fast web fuzzer |
| Nmap | Network scanning and service detection |
| Tool | Description |
|---|---|
| Arjun | HTTP parameter discovery |
| Dirsearch | Directory and file brute-forcing |
| wafw00f | WAF fingerprinting |
| GoSpider | Web spider for link extraction |
| Tool | Description |
|---|---|
| Nuclei | Template-based vulnerability scanner |
| SQLMap | Automatic SQL injection detection and exploitation |
| Wapiti | Web application vulnerability scanner |
| ZAP | OWASP Zed Attack Proxy |
| Tool | Description |
|---|---|
| JS-Snooper | JavaScript reconnaissance |
| jsniper | JavaScript file analysis |
| Retire.js | Detect vulnerable JS libraries |
| ESLint | JavaScript static analysis |
| js-beautify | JavaScript deobfuscation |
| JSHint | JavaScript code quality tool |
| Tool | Description |
|---|---|
| Semgrep | Fast SAST and custom rule matching |
| ast-grep | Structural AST/CST-aware code search (sg) |
| Tree-sitter | Syntax tree parsing and symbol extraction (Java/JS/TS/Python/Go/Bash/JSON/YAML grammars pre-configured) |
| Bandit | Python security linter |
| Tool | Description |
|---|---|
| TruffleHog | Find secrets in code and history |
| Gitleaks | Detect hardcoded secrets in repositories |
| Tool | Description |
|---|---|
| jwt_tool | JWT token testing and exploitation |
| Interactsh | Out-of-band interaction detection |
| Tool | Description |
|---|---|
| Trivy | Filesystem/container scanning for vulns, misconfigurations, secrets, and licenses |
| Tool | Description |
|---|---|
| Caido | Modern HTTP proxy for interception and replay |
| Tool | Description |
|---|---|
| Playwright | Headless browser automation |