elbelicojackson-hue/haking-code- — explained in plain English
Analysis updated 2026-05-18
Run a penetration test with AI-assisted analysis across 70+ integrated security tools.
Have four AI roles argue over a security finding to reduce wrong conclusions.
Reverse engineer an unknown binary using a hypothesis-test-repeat loop.
Browse a visual knowledge graph of collected security research.
| elbelicojackson-hue/haking-code- | clipboardhealth/groundcrew | jackli01030/shiyi-math-practice | |
|---|---|---|---|
| Stars | 31 | 31 | 31 |
| Language | TypeScript | TypeScript | TypeScript |
| Setup difficulty | hard | moderate | easy |
| Complexity | 5/5 | 4/5 | 1/5 |
| Audience | developer | developer | general |
Figures from each repo's GitHub metadata at analysis time.
Requires the Bun runtime plus configuration of many integrated security tools and API keys.
Haking Code is an AI-powered terminal agent for cybersecurity professionals, written in TypeScript and running on the Bun runtime. The README is written almost entirely in Chinese. The tool is designed to assist with penetration testing tasks by combining an AI reasoning layer with more than 70 integrated security tools. The project's main selling point is what it calls a four-chain adversarial consensus engine, reached via a slash command called /arena. Instead of one AI answering a question, four separate AI roles argue with each other: one proposes an analysis, one attacks the logic and looks for flaws, one searches the web to verify facts, and one synthesizes the results into a final answer. This is meant to reduce hallucinated or incorrect security conclusions. A second core feature is a hypothesis-driven reverse engineering module. Rather than running tools blindly, it generates a hypothesis about an unknown binary file, picks a tool to test that hypothesis, evaluates the result, and repeats the cycle until all hypotheses are confirmed or a budget is exhausted. The tool also integrates the SecLists password and fuzzing wordlist collection, a FuzzTag payload generation engine borrowed from a Chinese security platform, Shodan reconnaissance, CVE databases tied to NVD and CISA, and a local knowledge base covering phishing techniques, command-and-control frameworks, and antivirus evasion methods. A visual knowledge graph browser with a cyberpunk aesthetic is included for exploring collected security research articles. A Tauri desktop companion app called the Dynamic Island floats at the top of the screen to launch and switch between AI agent sessions. The README documents many recent additions including cross-agent communication via a shared SQLite database and session handoff commands to resume work after closing a terminal.
An AI terminal agent for cybersecurity pros that runs 70+ security tools and has four AI roles debate each finding to catch mistakes.
Mainly TypeScript. The stack also includes TypeScript, Bun, Tauri.
Setup difficulty is rated hard, with roughly 1h+ to a first successful run.
Mainly developer.
This repo across BitVibe Labs
Verify against the repo before relying on details.