SkillsMay 13, 2026·2 min read

CyberStrikeAI — AI Security Testing Platform (MCP)

CyberStrikeAI is a Go-based AI security testing platform with MCP transports and an auditable web UI; verified 3,783★ and starts via `./run.sh`.

AI Open Source
AI Open Source · Community
Agent ready

This asset can be read and installed directly by agents

TokRepo exposes a universal CLI command, install contract, metadata JSON, adapter-aware plan, and raw content links so agents can judge fit, risk, and next actions.

Native · 98/100Policy: allow
Agent surface
Any MCP/CLI agent
Kind
Skill
Install
Single
Trust
Trust: Established
Entrypoint
Asset
Universal CLI install command
npx tokrepo install c7754c03-f99a-5ab8-8fc4-497c342ab3fd
install contractmetadata JSONadapter planraw content
Intro

CyberStrikeAI is a Go-based AI security testing platform with MCP transports and an auditable web UI; verified 3,783★ and starts via ./run.sh.

Best for: Authorized security teams who want a tool-orchestrated, logged workflow with MCP integration

Works with: Go 1.21+, Python 3.10+, and an OpenAI-compatible model endpoint (per README quick start)

Setup time: 15-35 minutes

Key facts (verified)

  • GitHub: 3783 stars · 634 forks · pushed 2026-05-13.
  • License: Apache-2.0 · owner avatar + repo URL verified via GitHub API.
  • README-backed entrypoint: ./run.sh.

Main

  • Use it only for authorized engagements: validate your scope and keep the platform on a private network; treat logs/audit as part of the deliverable.

  • Start with the built-in one-command deploy, then configure an OpenAI-compatible endpoint in Settings before running any orchestration workflows.

  • Keep integrations minimal at first: prove MCP stdio mode works with your client, then add plugins (e.g., Burp extension) only when needed.

Source-backed notes

  • README provides a one-command deployment: chmod +x run.sh && ./run.sh, and lists Go 1.21+ and Python 3.10+ as prerequisites.
  • README describes native MCP support with multiple transports (HTTP/stdio/SSE) and a password-protected web UI with audit logs.
  • README notes first-time configuration requires setting an OpenAI-compatible API key/base URL/model before use.

FAQ

  • Is it safe to run on a public host?: Treat it as an internal tool: run on private networks and enable auth (README mentions password-protected UI).
  • Do I need to install 100+ tools first?: No — start with the core platform; README treats tool installs as optional and incremental.
  • Can I use it with my MCP client?: Yes — README lists MCP transports including stdio; test with a minimal workflow first.
🙏

Source & Thanks

Source: https://github.com/Ed1s0nZ/CyberStrikeAI > License: Apache-2.0 > GitHub stars: 3783 · forks: 634

Discussion

Sign in to join the discussion.
No comments yet. Be the first to share your thoughts.

Related Assets

TheHive — Open Source Security Incident Response Platform

TheHive is a scalable, open-source security incident response platform that helps SOC teams investigate alerts, collaborate on cases, and automate response workflows.

Skills
AI Open Source

Agentic Security — LLM/MCP Red-Team Scanner

Agentic Security is a Python tool to probe LLM apps with attack prompts and run scans; it also ships an MCP server entrypoint for tool-based workflows.

Skills
Agent Toolkit

Metasploit Framework — Open-Source Penetration Testing Platform

The most widely used open-source penetration testing framework for discovering vulnerabilities and validating security defenses across networks and applications.

Skills
Script Depot

OWASP ZAP — Open-Source Web Application Security Scanner

The most widely used open-source web application security scanner for finding vulnerabilities during development and penetration testing.

Skills
AI Open Source
Home🔍Search👤Me