🔌 AI Agent Integrations (MCP)

Connect NyxStrike to any MCP-compatible AI client — OpenCode, Cursor, Claude Desktop, VS Code Copilot, Roo Code, and more.

Universal MCP Command

/path/to/nyxstrike/nyxstrike-env/bin/python3 \
  /path/to/nyxstrike/nyxstrike_mcp.py \
  --server http://127.0.0.1:8888 \
  --profile full

OpenCode

{
  "$schema": "https://opencode.ai/config.json",
  "mcp": {
    "nyxstrike": {
      "type": "local",
      "command": [
        "/path/to/nyxstrike/nyxstrike-env/bin/python3",
        "/path/to/nyxstrike/nyxstrike_mcp.py",
        "--server",
        "http://127.0.0.1:8888",
        "--profile",
        "full"
      ],
      "enabled": true
    }
  }
}

Config snippets for Claude Desktop, Cursor, VS Code Copilot, and security options: Wiki — MCP Setup

🔧 Features

NyxStrike does not just run tools — it orchestrates full attack chains using AI decision-making.

• AI agents that chain tools automatically
• 185+ offensive security tools, all agent-controllable
• Full attack workflow: recon → enumeration → exploitation → reporting
• Modular tool registry — add or remove tools without touching agent logic
• MCP-compatible — plug into any AI client you already use
• Real-time session dashboard with live command output and logs

Full feature breakdown · Session & workbench docs

🧰 Tool Arsenal

185+ offensive security tools across 12 categories — all dynamically orchestrated by AI agents in real time.

• Network reconnaissance
• Web exploitation
• Wireless security
• OSINT & intelligence gathering
• Password attacks
• Cloud & API security

Full tool list by category

⚠️ Security Considerations

NyxStrike gives AI agents direct access to offensive security tooling.

• Run only in isolated environments or dedicated security testing VMs
• AI agents may execute real commands — maintain operator oversight
• Monitor activity via dashboard and logs in real time
• Use NYXSTRIKE_API_TOKEN for any non-local deployment

Legal & Ethical Use

| Allowed | Not Allowed | |---|---| | Authorized penetration testing (with written authorization) | Unauthorized testing of any system | | Bug bounty programs (within program scope and rules) | Malicious, illegal, or harmful activities | | CTF competitions and educational environments | Unauthorized data access or exfiltration | | Security research on owned or authorized systems | | | Red team exercises (with organizational approval) | |

📜 License

Licensed under the AGPLv3. You are free to use, modify, and distribute this software. If you run it as a service or distribute it, the source must remain open.

For commercial licensing, contact the author.

⭐ Support the project

If NyxStrike is useful to your workflow:

• Star the repository
• Share it with others
• Contribute improvements

It makes a real difference.

Credits

Originally inspired by hexstrike-ai.