@bengabay94/mrzero 0.1.0-alpha.1 → 0.2.0-alpha.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (58) hide show
  1. package/agents/templates/MrZeroExploitDeveloper.template.md +258 -0
  2. package/agents/templates/MrZeroMapperOS.template.md +180 -0
  3. package/agents/templates/MrZeroVulnHunterOS.template.md +174 -0
  4. package/dist/commands/check.d.ts.map +1 -1
  5. package/dist/commands/check.js +18 -1
  6. package/dist/commands/check.js.map +1 -1
  7. package/dist/commands/install.d.ts.map +1 -1
  8. package/dist/commands/install.js +137 -44
  9. package/dist/commands/install.js.map +1 -1
  10. package/dist/commands/uninstall.d.ts.map +1 -1
  11. package/dist/commands/uninstall.js +12 -11
  12. package/dist/commands/uninstall.js.map +1 -1
  13. package/dist/config/agents.d.ts +0 -4
  14. package/dist/config/agents.d.ts.map +1 -1
  15. package/dist/config/agents.js +4 -22
  16. package/dist/config/agents.js.map +1 -1
  17. package/dist/config/tool-strings.d.ts +33 -0
  18. package/dist/config/tool-strings.d.ts.map +1 -0
  19. package/dist/config/tool-strings.js +148 -0
  20. package/dist/config/tool-strings.js.map +1 -0
  21. package/dist/config/tools.d.ts +1 -0
  22. package/dist/config/tools.d.ts.map +1 -1
  23. package/dist/config/tools.js +17 -23
  24. package/dist/config/tools.js.map +1 -1
  25. package/dist/installer/detector.d.ts +3 -1
  26. package/dist/installer/detector.d.ts.map +1 -1
  27. package/dist/installer/detector.js +29 -5
  28. package/dist/installer/detector.js.map +1 -1
  29. package/dist/installer/docker.d.ts.map +1 -1
  30. package/dist/installer/docker.js +12 -13
  31. package/dist/installer/docker.js.map +1 -1
  32. package/dist/installer/launcher.d.ts +13 -0
  33. package/dist/installer/launcher.d.ts.map +1 -0
  34. package/dist/installer/launcher.js +162 -0
  35. package/dist/installer/launcher.js.map +1 -0
  36. package/dist/installer/mcp.d.ts.map +1 -1
  37. package/dist/installer/mcp.js +22 -64
  38. package/dist/installer/mcp.js.map +1 -1
  39. package/dist/installer/platforms.d.ts +3 -3
  40. package/dist/installer/platforms.d.ts.map +1 -1
  41. package/dist/installer/platforms.js +101 -22
  42. package/dist/installer/platforms.js.map +1 -1
  43. package/dist/installer/python.js +3 -3
  44. package/dist/installer/python.js.map +1 -1
  45. package/dist/installer/ruby.d.ts +13 -0
  46. package/dist/installer/ruby.d.ts.map +1 -1
  47. package/dist/installer/ruby.js +138 -5
  48. package/dist/installer/ruby.js.map +1 -1
  49. package/dist/installer/template-renderer.d.ts +28 -0
  50. package/dist/installer/template-renderer.d.ts.map +1 -0
  51. package/dist/installer/template-renderer.js +210 -0
  52. package/dist/installer/template-renderer.js.map +1 -0
  53. package/dist/utils/platform.d.ts +6 -0
  54. package/dist/utils/platform.d.ts.map +1 -1
  55. package/dist/utils/platform.js +42 -1
  56. package/dist/utils/platform.js.map +1 -1
  57. package/docker/Dockerfile +37 -15
  58. package/package.json +1 -1
package/docker/Dockerfile CHANGED
@@ -43,7 +43,8 @@ WORKDIR /tools
43
43
  # Gitleaks - Secrets scanning
44
44
  # ============================================
45
45
  RUN GITLEAKS_VERSION=$(curl -sL https://api.github.com/repos/gitleaks/gitleaks/releases/latest | jq -r '.tag_name' | sed 's/v//') && \
46
- curl -sSL "https://github.com/gitleaks/gitleaks/releases/download/v${GITLEAKS_VERSION}/gitleaks_${GITLEAKS_VERSION}_linux_x64.tar.gz" | tar xz -C /usr/local/bin gitleaks
46
+ ARCH=$(uname -m | sed 's/x86_64/x64/;s/aarch64/arm64/') && \
47
+ curl -sSL "https://github.com/gitleaks/gitleaks/releases/download/v${GITLEAKS_VERSION}/gitleaks_${GITLEAKS_VERSION}_linux_${ARCH}.tar.gz" | tar xz -C /usr/local/bin gitleaks
47
48
 
48
49
  # ============================================
49
50
  # Trivy - Vulnerability scanning
@@ -63,16 +64,25 @@ RUN curl -fsSL https://raw.githubusercontent.com/opengrep/opengrep/main/install.
63
64
  # ============================================
64
65
  # Slither - Solidity smart contract analysis
65
66
  # ============================================
66
- RUN uv pip install --system slither-analyzer solc-select
67
+ RUN uv tool install slither-analyzer
68
+ RUN uv tool install solc-select
69
+ ENV PATH="/root/.local/bin:$PATH"
67
70
  RUN solc-select install latest && solc-select use latest
68
71
 
69
72
  # ============================================
70
73
  # CodeQL - Semantic code analysis
71
- # ============================================
72
- RUN mkdir -p /opt/codeql && \
73
- curl -sSL -o /tmp/codeql.zip https://github.com/github/codeql-cli-binaries/releases/latest/download/codeql-linux64.zip && \
74
- unzip -q /tmp/codeql.zip -d /opt && \
75
- rm /tmp/codeql.zip
74
+ # Note: CodeQL only provides linux64 (x86_64), skip on ARM64
75
+ # ============================================
76
+ RUN ARCH=$(uname -m) && \
77
+ if [ "$ARCH" = "x86_64" ]; then \
78
+ mkdir -p /opt/codeql && \
79
+ CODEQL_VERSION=$(curl -sL https://api.github.com/repos/github/codeql-action/releases/latest | jq -r '.tag_name') && \
80
+ curl -sSL -o /tmp/codeql.tar.gz "https://github.com/github/codeql-action/releases/download/${CODEQL_VERSION}/codeql-bundle-linux64.tar.gz" && \
81
+ tar xzf /tmp/codeql.tar.gz -C /opt && \
82
+ rm /tmp/codeql.tar.gz; \
83
+ else \
84
+ echo "CodeQL not available for $ARCH, skipping"; \
85
+ fi
76
86
  ENV PATH="/opt/codeql:$PATH"
77
87
 
78
88
  # ============================================
@@ -87,13 +97,17 @@ ENV PATH="/opt/joern/joern-cli:$PATH"
87
97
 
88
98
  # ============================================
89
99
  # Infer - Static analysis (Facebook)
100
+ # Note: Infer only provides linux-x86_64, skip on ARM64
90
101
  # ============================================
91
- # Note: Infer doesn't support /releases/latest/download/ pattern due to version in filename
92
- # Using specific version to avoid API rate limits
93
- RUN curl -sSL -o /tmp/infer.tar.xz https://github.com/facebook/infer/releases/download/v1.2.0/infer-linux-x86_64-v1.2.0.tar.xz && \
94
- tar xJf /tmp/infer.tar.xz -C /opt && \
95
- rm /tmp/infer.tar.xz && \
96
- ln -s /opt/infer-*/bin/infer /usr/local/bin/infer
102
+ RUN ARCH=$(uname -m) && \
103
+ if [ "$ARCH" = "x86_64" ]; then \
104
+ curl -sSL -o /tmp/infer.tar.xz https://github.com/facebook/infer/releases/download/v1.2.0/infer-linux-x86_64-v1.2.0.tar.xz && \
105
+ tar xJf /tmp/infer.tar.xz -C /opt && \
106
+ rm /tmp/infer.tar.xz && \
107
+ ln -s /opt/infer-*/bin/infer /usr/local/bin/infer; \
108
+ else \
109
+ echo "Infer not available for $ARCH, skipping"; \
110
+ fi
97
111
 
98
112
  # ============================================
99
113
  # Linguist - Language detection
@@ -101,9 +115,17 @@ RUN curl -sSL -o /tmp/infer.tar.xz https://github.com/facebook/infer/releases/do
101
115
  RUN gem install github-linguist
102
116
 
103
117
  # ============================================
104
- # Tree-sitter - Syntax parsing
118
+ # Exploitation Tools
105
119
  # ============================================
106
- RUN uv pip install --system tree-sitter
120
+
121
+ # pwntools - CTF framework and exploit development
122
+ RUN uv tool install pwntools
123
+
124
+ # Ropper - ROP gadget finder
125
+ RUN uv tool install ropper
126
+
127
+ # one_gadget - Find one-shot RCE gadgets in libc
128
+ RUN gem install one_gadget
107
129
 
108
130
  # ============================================
109
131
  # Cleanup
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@bengabay94/mrzero",
3
- "version": "0.1.0-alpha.1",
3
+ "version": "0.2.0-alpha.1",
4
4
  "description": "AI-powered security research agents for vulnerability hunting and exploit development",
5
5
  "main": "dist/index.js",
6
6
  "bin": {