Available Tools
Browser
Multi-tab Playwright browser for testing XSS, CSRF, and auth flows.
HTTP Proxy
Full request/response interception and manipulation.
Terminal
Persistent shell sessions for command execution.
Python Runtime
Custom exploit development and validation scripts.
Additional Capabilities
| Tool | Description |
|---|---|
| File Editor | Read and modify source code |
| Web Search | Real-time OSINT and research |
| Notes | Structured attack documentation |
| Reporting | Vulnerability report generation |
| TODO | Task tracking during complex scans |
How Tools Work
Strix runs inside a Docker sandbox. Each tool operates within this isolated environment, allowing the agent to:- Browse target applications like a real user
- Intercept and modify HTTP traffic
- Execute commands and scripts
- Analyze source code for vulnerabilities
- Validate findings with working PoCs