/ 目录 / 演练场 / hexstrike-ai
← 全部服务器 ↗ GitHub
● 社区 0x4m4 ⚡ 即开即用

hexstrike-ai

作者 0x4m4 · 0x4m4/hexstrike-ai

150+ cybersecurity tools with 12+ AI agents — automated pentesting, vulnerability scanning, and security research via MCP.

HexStrike AI is an MCP server integrating 150+ professional security tools with 12+ autonomous AI agents. Covers network scanning (Nmap, Masscan), web testing (Nuclei, SQLMap, Nikto), password cracking (Hydra, Hashcat), binary analysis (Radare2, Ghidra), cloud security (Prowler, Trivy), OSINT (Shodan, SpiderFoot), and CTF/forensics (Volatility, Steghide). Includes a real-time dashboard for monitoring.

▶ 观看演示 📦 安装 💡 使用场景

为什么要用

核心特性

实时演示

实际使用效果

hexstrike-ai.replay ▶ 就绪
0/0

安装

选择你的客户端

~/Library/Application Support/Claude/claude_desktop_config.json  · Windows: %APPDATA%\Claude\claude_desktop_config.json
{
  "mcpServers": {
    "hexstrike-ai": {
      "command": "TODO",
      "args": [
        "See README: https://github.com/0x4m4/hexstrike-ai"
      ]
    }
  }
}

打开 Claude Desktop → Settings → Developer → Edit Config。保存后重启应用。

~/.cursor/mcp.json · .cursor/mcp.json
{
  "mcpServers": {
    "hexstrike-ai": {
      "command": "TODO",
      "args": [
        "See README: https://github.com/0x4m4/hexstrike-ai"
      ]
    }
  }
}

Cursor 使用与 Claude Desktop 相同的 mcpServers 格式。项目级配置优先于全局。

VS Code → Cline → MCP Servers → Edit
{
  "mcpServers": {
    "hexstrike-ai": {
      "command": "TODO",
      "args": [
        "See README: https://github.com/0x4m4/hexstrike-ai"
      ]
    }
  }
}

点击 Cline 侧栏中的 MCP Servers 图标,然后选 "Edit Configuration"。

~/.codeium/windsurf/mcp_config.json
{
  "mcpServers": {
    "hexstrike-ai": {
      "command": "TODO",
      "args": [
        "See README: https://github.com/0x4m4/hexstrike-ai"
      ]
    }
  }
}

格式与 Claude Desktop 相同。重启 Windsurf 生效。

~/.continue/config.json
{
  "mcpServers": [
    {
      "name": "hexstrike-ai",
      "command": "TODO",
      "args": [
        "See README: https://github.com/0x4m4/hexstrike-ai"
      ]
    }
  ]
}

Continue 使用服务器对象数组,而非映射。

~/.config/zed/settings.json
{
  "context_servers": {
    "hexstrike-ai": {
      "command": {
        "path": "TODO",
        "args": [
          "See README: https://github.com/0x4m4/hexstrike-ai"
        ]
      }
    }
  }
}

加入 context_servers。Zed 保存后热重载。

claude mcp add hexstrike-ai -- TODO 'See README: https://github.com/0x4m4/hexstrike-ai'

一行命令搞定。用 claude mcp list 验证,claude mcp remove 卸载。

使用场景

实战用法: hexstrike-ai

How to solve a multi-stage CTF challenge with HexStrike AI

👤 CTF participants working on security challenges ⏱ ~60 min intermediate

何时使用: You have a CTF target and need to enumerate, scan, and exploit in a structured way.

前置条件
  • HexStrike AI installed in a sandboxed environment — Clone and pip install in a VM or container
  • Target is a CTF challenge you are authorized to test — Only use on CTF platforms or labs you have permission to test
步骤
  1. Reconnaissance
    Run an Nmap scan on the CTF target at 10.10.10.1. Identify open ports and services.✓ 已复制
    → Port scan results with service versions
  2. Web enumeration
    The target has a web server on port 80. Run Gobuster for directory enumeration and Nikto for vulnerability scanning.✓ 已复制
    → Discovered directories and potential vulnerabilities
  3. Exploitation assistance
    Found a login page at /admin. Run Hydra with the top-1000 passwords list against it.✓ 已复制
    → Login attempt results

结果: Systematic enumeration and exploitation path for the CTF challenge.

注意事项
  • Running aggressive scans that crash the CTF target — Use moderate scan speeds and timing options (Nmap -T3 instead of -T5)
搭配使用: filesystem

Perform an authorized web application security assessment

👤 Security professionals with written authorization to test a web application ⏱ ~120 min advanced

何时使用: You have a signed agreement to test a client's web application.

前置条件
  • Written authorization for the target — Signed penetration testing agreement from the target owner
  • HexStrike AI configured — Install and configure in an isolated environment
步骤
  1. Vulnerability scanning
    Run Nuclei against https://target.example.com with default templates. Focus on critical and high severity findings.✓ 已复制
    → List of discovered vulnerabilities with severity ratings
  2. SQL injection testing
    Test the login endpoint for SQL injection using SQLMap.✓ 已复制
    → SQLMap results showing injectable parameters or confirming the endpoint is secure

结果: A documented list of vulnerabilities found during authorized testing.

注意事项
  • Testing outside the agreed scope — Always reference your authorization document. Only test explicitly listed assets.
搭配使用: filesystem

组合

与其他 MCP 搭配,撬动十倍杠杆

hexstrike-ai + filesystem

Save scan results and generate a penetration testing report

Run a full assessment on the target, save all results, and generate a professional pentest report as a markdown file.✓ 已复制

工具

此 MCP 暴露的能力

工具输入参数何时调用成本
nmap_scan target: str, options?: str Network port scanning and service detection 0
nuclei_scan target: str, templates?: str Automated vulnerability scanning with templates 0
sqlmap_test url: str, params?: str SQL injection detection and exploitation testing 0
gobuster_dir url: str, wordlist?: str Directory and file brute-force enumeration 0
hydra_attack target: str, service: str, userlist?: str, passlist?: str Password brute-force testing on services 0

成本与限制

运行它的成本

API 配额
N/A — all tools run locally
每次调用 Token 数
500–3000 tokens per scan result
费用
Free — all tools are open source. Some tools (Shodan) need their own API keys.
提示
Run targeted scans instead of full-spectrum sweeps to reduce noise and time.

安全

权限、密钥、影响范围

凭据存储: Individual tool API keys (Shodan, etc.) in environment variables
数据出站: Network scans connect to target systems. OSINT tools call their respective APIs.

故障排查

常见错误与修复

Tool not found / command not available

Many tools must be installed separately on your system. Install them via your package manager (apt, brew) or from source.

验证: which nmap && which nuclei && which sqlmap
Scan timeout

Reduce scan scope or increase timeout. Use -T3 for Nmap instead of default timing.

验证: Try a simple ping or single-port scan first
Permission denied on scan

Some scans (SYN scan) require root. Run with sudo or switch to a less privileged scan type.

验证: sudo nmap -sS target

替代方案

hexstrike-ai 对比其他方案

替代方案何时用它替代权衡
mcp-security-hubYou want Dockerized security tools with better isolation and CI/CD integrationBetter containerization but may require more setup
mcp-kali-serverYou want a lightweight API bridge to a full Kali Linux installationFull Kali toolkit but less AI agent specialization

更多

资源

📖 阅读 GitHub 上的官方 README

🐙 查看未解决的 issue

🔍 浏览全部 400+ MCP 服务器和 Skills