whatisgithub

What is cyberstrikeai?

ed1s0nz/cyberstrikeai — explained in plain English

Analysis updated 2026-06-26

3,786GoAudience · ops devopsComplexity · 4/5Setup · hard

In one sentence

An AI-powered security testing platform in Go that lets you describe what to test in plain English and coordinates over 100 pentesting tools automatically, for authorized engagements only, with results in a web dashboard.

Mindmap

mindmap
  root((CyberStrikeAI))
    What it does
      AI coordinated pentesting
      Natural language commands
      100 plus security tools
    AI capabilities
      Multi-agent workflows
      GPT and Claude support
      Knowledge base search
    Tool categories
      Network scanning
      Web app testing
      Password cracking
    Access methods
      Web dashboard
      Mobile chat integrations
      Burp Suite plugin
Click or tap to explore — scroll the page freely

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

What do people build with it?

USE CASE 1

Run an authorized web application penetration test by describing the target scope in plain English and letting the AI choose and sequence the tools.

USE CASE 2

Coordinate a complex network scan and vulnerability assessment across multiple sub-agents from a single workflow.

USE CASE 3

Manage active authorized penetration testing sessions and reverse-shell connections through a browser dashboard.

USE CASE 4

Automate CTF challenge reconnaissance by setting a CTF-focused role profile and querying the AI for next steps.

What is it built with?

GoSQLiteOpenAI APIWebSocketsHTTP

How does it compare?

ed1s0nz/cyberstrikeaiadtac/commentotus/tusd
Stars3,7863,7823,781
LanguageGoGoGo
Setup difficultyhardmoderatemoderate
Complexity4/53/53/5
Audienceops devopsdeveloperdeveloper

Figures from each repo's GitHub metadata at analysis time.

How do you get it running?

Difficulty · hard Time to first run · 1h+

Requires an OpenAI-compatible API key and configuration of roles, skills, and C2 settings before the platform is usable.

So what is it?

CyberStrikeAI is a security testing platform built in Go that uses AI to coordinate and run security checks. It bundles over 100 pre-built tools covering network scanning, web application testing, exploit frameworks, and password cracking, and connects them through an AI decision engine that understands natural language instructions. Security teams describe what they want to test, and the platform determines which tools to run and in what order. The platform supports multiple AI models through an OpenAI-compatible API, including GPT, Claude, and DeepSeek. An orchestration engine handles single-agent and multi-agent workflows, meaning simple tasks go to one AI loop while complex assessments can split work across a coordinator and specialist sub-agents. All results are stored in a SQLite database and accessible through a password-protected web interface showing dashboards for vulnerabilities, tasks, conversations, and tool usage. A built-in C2 (command and control) component supports authorized penetration testing engagements. It can receive connections back from test targets over TCP, HTTP, HTTPS, or WebSockets, manage active sessions, queue commands, and generate payloads. The README notes repeatedly that this feature is for authorized testing only. A similar caution applies to the WebShell management interface, which lets testers connect to and control web shells placed on systems they have permission to test. Roles and skills let operators define what kind of testing a given session should focus on, such as CTF competitions, web application scanning, or general penetration testing. A knowledge base with vector search stores prior findings and documentation that the AI can pull from when forming its responses. Chatbot integrations with DingTalk and Lark let testers send commands from mobile devices. A Burp Suite plugin extends the platform into web proxy workflows. The full README is longer than what was shown.

Copy-paste prompts

Prompt 1
I'm running an authorized pentest on a web app at 192.168.1.50. Show me how to configure a web-app-testing role in CyberStrikeAI and kick off an initial recon workflow.
Prompt 2
How do I set up a multi-agent workflow in CyberStrikeAI where a coordinator agent directs specialist sub-agents to run network scanning and web vulnerability testing in parallel?
Prompt 3
I want to query the CyberStrikeAI knowledge base for prior findings about SQL injection from past engagements. How do I use the vector search to retrieve relevant stored results?
Prompt 4
Show me how to configure the CyberStrikeAI Burp Suite plugin so the AI can annotate interesting requests captured in the web proxy.

Frequently asked questions

What is cyberstrikeai?

An AI-powered security testing platform in Go that lets you describe what to test in plain English and coordinates over 100 pentesting tools automatically, for authorized engagements only, with results in a web dashboard.

What language is cyberstrikeai written in?

Mainly Go. The stack also includes Go, SQLite, OpenAI API.

How hard is cyberstrikeai to set up?

Setup difficulty is rated hard, with roughly 1h+ to a first successful run.

Who is cyberstrikeai for?

Mainly ops devops.

Open on GitHub → Ask about another repo

This repo across BitVibe Labs

Verify against the repo before relying on details.