@bengabay94/mrzero 0.1.0-alpha.1

package/dist/utils/platform.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"platform.js","sourceRoot":"","sources":["../../src/utils/platform.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAKA,kCAMC;AAED,0BAEC;AAED,sBAEC;AAED,8BAEC;AAED,gCAEC;AAED,oCAEC;AAED,4CAEC;AAED,wCAEC;AAED,gDAEC;AAED,gDAEC;AAED,oDAEC;AAED,oDAEC;AAED,sCAiBC;AA1ED,uCAAyB;AACzB,2CAA6B;AAI7B,SAAgB,WAAW;IACzB,MAAM,QAAQ,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC;IAC/B,IAAI,QAAQ,KAAK,OAAO,IAAI,QAAQ,KAAK,QAAQ,IAAI,QAAQ,KAAK,OAAO,EAAE,CAAC;QAC1E,OAAO,QAAQ,CAAC;IAClB,CAAC;IACD,OAAO,aAAa,CAAC;AACvB,CAAC;AAED,SAAgB,OAAO;IACrB,OAAO,EAAE,CAAC,QAAQ,EAAE,KAAK,OAAO,CAAC;AACnC,CAAC;AAED,SAAgB,KAAK;IACnB,OAAO,EAAE,CAAC,QAAQ,EAAE,KAAK,QAAQ,CAAC;AACpC,CAAC;AAED,SAAgB,SAAS;IACvB,OAAO,EAAE,CAAC,QAAQ,EAAE,KAAK,OAAO,CAAC;AACnC,CAAC;AAED,SAAgB,UAAU;IACxB,OAAO,EAAE,CAAC,OAAO,EAAE,CAAC;AACtB,CAAC;AAED,SAAgB,YAAY;IAC1B,OAAO,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,EAAE,SAAS,CAAC,CAAC;AAC5C,CAAC;AAED,SAAgB,gBAAgB;IAC9B,OAAO,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,EAAE,aAAa,CAAC,CAAC;AAClD,CAAC;AAED,SAAgB,cAAc;IAC5B,OAAO,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAC;AAClD,CAAC;AAED,SAAgB,kBAAkB;IAChC,OAAO,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,EAAE,SAAS,CAAC,CAAC;AAC5C,CAAC;AAED,SAAgB,kBAAkB;IAChC,OAAO,IAAI,CAAC,IAAI,CAAC,kBAAkB,EAAE,EAAE,QAAQ,CAAC,CAAC;AACnD,CAAC;AAED,SAAgB,oBAAoB;IAClC,OAAO,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,EAAE,SAAS,EAAE,UAAU,CAAC,CAAC;AACxD,CAAC;AAED,SAAgB,oBAAoB;IAClC,OAAO,IAAI,CAAC,IAAI,CAAC,oBAAoB,EAAE,EAAE,QAAQ,CAAC,CAAC;AACrD,CAAC;AAED,SAAgB,aAAa;IAC3B,IAAI,CAAC,OAAO,EAAE;QAAE,OAAO,IAAI,CAAC;IAE5B,IAAI,CAAC;QACH,MAAM,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;QACzB,MAAM,WAAW,GAAG,iBAAiB,CAAC;QACtC,IAAI,EAAE,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;YAC/B,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC;YACtD,MAAM,SAAS,GAAG,OAAO,CAAC,KAAK,CAAC,sBAAsB,CAAC,CAAC;YACxD,MAAM,YAAY,GAAG,OAAO,CAAC,KAAK,CAAC,4BAA4B,CAAC,CAAC;YACjE,OAAO;gBACL,IAAI,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,IAAI,SAAS;gBACjC,OAAO,EAAE,YAAY,EAAE,CAAC,CAAC,CAAC,IAAI,SAAS;aACxC,CAAC;QACJ,CAAC;IACH,CAAC;IAAC,MAAM,CAAC,CAAA,CAAC;IACV,OAAO,IAAI,CAAC;AACd,CAAC"}

package/dist/utils/shell.d.ts

@@ -0,0 +1,14 @@
+export interface ExecResult {
+    stdout: string;
+    stderr: string;
+    code: number;
+}
+export declare function exec(command: string, options?: {
+    timeout?: number;
+    cwd?: string;
+}): Promise<ExecResult>;
+export declare function commandExists(command: string): Promise<boolean>;
+export declare function runWithOutput(command: string, args: string[], options?: {
+    cwd?: string;
+}): Promise<number>;
+//# sourceMappingURL=shell.d.ts.map

package/dist/utils/shell.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"shell.d.ts","sourceRoot":"","sources":["../../src/utils/shell.ts"],"names":[],"mappings":"AAKA,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;CACd;AAED,wBAAsB,IAAI,CACxB,OAAO,EAAE,MAAM,EACf,OAAO,GAAE;IAAE,OAAO,CAAC,EAAE,MAAM,CAAC;IAAC,GAAG,CAAC,EAAE,MAAM,CAAA;CAAO,GAC/C,OAAO,CAAC,UAAU,CAAC,CAerB;AAED,wBAAsB,aAAa,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAGrE;AAED,wBAAsB,aAAa,CACjC,OAAO,EAAE,MAAM,EACf,IAAI,EAAE,MAAM,EAAE,EACd,OAAO,GAAE;IAAE,GAAG,CAAC,EAAE,MAAM,CAAA;CAAO,GAC7B,OAAO,CAAC,MAAM,CAAC,CAgBjB"}

package/dist/utils/shell.js

@@ -0,0 +1,45 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.exec = exec;
+exports.commandExists = commandExists;
+exports.runWithOutput = runWithOutput;
+const child_process_1 = require("child_process");
+const util_1 = require("util");
+const execPromise = (0, util_1.promisify)(child_process_1.exec);
+async function exec(command, options = {}) {
+    try {
+        const { stdout, stderr } = await execPromise(command, {
+            timeout: options.timeout || 60000,
+            cwd: options.cwd,
+            maxBuffer: 10 * 1024 * 1024, // 10MB
+        });
+        return { stdout, stderr, code: 0 };
+    }
+    catch (error) {
+        return {
+            stdout: error.stdout || '',
+            stderr: error.stderr || error.message,
+            code: error.code || 1,
+        };
+    }
+}
+async function commandExists(command) {
+    const result = await exec(`which ${command}`);
+    return result.code === 0 && result.stdout.trim().length > 0;
+}
+async function runWithOutput(command, args, options = {}) {
+    return new Promise((resolve) => {
+        const proc = (0, child_process_1.spawn)(command, args, {
+            stdio: 'inherit',
+            cwd: options.cwd,
+            shell: true,
+        });
+        proc.on('close', (code) => {
+            resolve(code || 0);
+        });
+        proc.on('error', () => {
+            resolve(1);
+        });
+    });
+}
+//# sourceMappingURL=shell.js.map

package/dist/utils/shell.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"shell.js","sourceRoot":"","sources":["../../src/utils/shell.ts"],"names":[],"mappings":";;AAWA,oBAkBC;AAED,sCAGC;AAED,sCAoBC;AAxDD,iDAA4D;AAC5D,+BAAiC;AAEjC,MAAM,WAAW,GAAG,IAAA,gBAAS,EAAC,oBAAY,CAAC,CAAC;AAQrC,KAAK,UAAU,IAAI,CACxB,OAAe,EACf,UAA8C,EAAE;IAEhD,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,WAAW,CAAC,OAAO,EAAE;YACpD,OAAO,EAAE,OAAO,CAAC,OAAO,IAAI,KAAK;YACjC,GAAG,EAAE,OAAO,CAAC,GAAG;YAChB,SAAS,EAAE,EAAE,GAAG,IAAI,GAAG,IAAI,EAAE,OAAO;SACrC,CAAC,CAAC;QACH,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC;IACrC,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QACpB,OAAO;YACL,MAAM,EAAE,KAAK,CAAC,MAAM,IAAI,EAAE;YAC1B,MAAM,EAAE,KAAK,CAAC,MAAM,IAAI,KAAK,CAAC,OAAO;YACrC,IAAI,EAAE,KAAK,CAAC,IAAI,IAAI,CAAC;SACtB,CAAC;IACJ,CAAC;AACH,CAAC;AAEM,KAAK,UAAU,aAAa,CAAC,OAAe;IACjD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,OAAO,EAAE,CAAC,CAAC;IAC9C,OAAO,MAAM,CAAC,IAAI,KAAK,CAAC,IAAI,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC;AAC9D,CAAC;AAEM,KAAK,UAAU,aAAa,CACjC,OAAe,EACf,IAAc,EACd,UAA4B,EAAE;IAE9B,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;QAC7B,MAAM,IAAI,GAAG,IAAA,qBAAK,EAAC,OAAO,EAAE,IAAI,EAAE;YAChC,KAAK,EAAE,SAAS;YAChB,GAAG,EAAE,OAAO,CAAC,GAAG;YAChB,KAAK,EAAE,IAAI;SACZ,CAAC,CAAC;QAEH,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,IAAI,EAAE,EAAE;YACxB,OAAO,CAAC,IAAI,IAAI,CAAC,CAAC,CAAC;QACrB,CAAC,CAAC,CAAC;QAEH,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YACpB,OAAO,CAAC,CAAC,CAAC,CAAC;QACb,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC"}

package/docker/Dockerfile

@@ -0,0 +1,118 @@
+# MrZero Security Tools Container
+# Contains all security scanning tools for MrZero agents
+
+FROM ubuntu:22.04
+
+LABEL maintainer="bengabay1994"
+LABEL description="MrZero security scanning tools container"
+
+# Avoid prompts during package installation
+ENV DEBIAN_FRONTEND=noninteractive
+ENV TZ=UTC
+
+# Install base dependencies
+RUN apt-get update && apt-get install -y \
+    curl \
+    wget \
+    git \
+    unzip \
+    jq \
+    python3 \
+    python3-pip \
+    python3-venv \
+    ruby \
+    ruby-dev \
+    openjdk-17-jdk \
+    build-essential \
+    cmake \
+    pkg-config \
+    libssl-dev \
+    libicu-dev \
+    && rm -rf /var/lib/apt/lists/*
+
+# Set up Python
+RUN python3 -m pip install --upgrade pip setuptools wheel
+
+# Install uv for faster Python package management
+RUN curl -LsSf https://astral.sh/uv/install.sh | sh
+ENV PATH="/root/.local/bin:$PATH"
+
+WORKDIR /tools
+
+# ============================================
+# Gitleaks - Secrets scanning
+# ============================================
+RUN GITLEAKS_VERSION=$(curl -sL https://api.github.com/repos/gitleaks/gitleaks/releases/latest | jq -r '.tag_name' | sed 's/v//') && \
+    curl -sSL "https://github.com/gitleaks/gitleaks/releases/download/v${GITLEAKS_VERSION}/gitleaks_${GITLEAKS_VERSION}_linux_x64.tar.gz" | tar xz -C /usr/local/bin gitleaks
+
+# ============================================
+# Trivy - Vulnerability scanning
+# ============================================
+RUN curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
+
+# ============================================
+# Bearer - Security and privacy scanning
+# ============================================
+RUN curl -sfL https://raw.githubusercontent.com/Bearer/bearer/main/contrib/install.sh | sh -s -- -b /usr/local/bin
+
+# ============================================
+# Opengrep (Semgrep fork) - Pattern-based analysis
+# ============================================
+RUN curl -fsSL https://raw.githubusercontent.com/opengrep/opengrep/main/install.sh | bash
+
+# ============================================
+# Slither - Solidity smart contract analysis
+# ============================================
+RUN uv pip install --system slither-analyzer solc-select
+RUN solc-select install latest && solc-select use latest
+
+# ============================================
+# CodeQL - Semantic code analysis
+# ============================================
+RUN mkdir -p /opt/codeql && \
+    curl -sSL -o /tmp/codeql.zip https://github.com/github/codeql-cli-binaries/releases/latest/download/codeql-linux64.zip && \
+    unzip -q /tmp/codeql.zip -d /opt && \
+    rm /tmp/codeql.zip
+ENV PATH="/opt/codeql:$PATH"
+
+# ============================================
+# Joern - Code property graph analysis
+# ============================================
+RUN mkdir -p /opt/joern && \
+    curl -sSL -o /tmp/joern.zip https://github.com/joernio/joern/releases/latest/download/joern-cli.zip && \
+    unzip -q /tmp/joern.zip -d /opt/joern && \
+    rm /tmp/joern.zip && \
+    chmod +x /opt/joern/joern-cli/joern
+ENV PATH="/opt/joern/joern-cli:$PATH"
+
+# ============================================
+# Infer - Static analysis (Facebook)
+# ============================================
+# Note: Infer doesn't support /releases/latest/download/ pattern due to version in filename
+# Using specific version to avoid API rate limits
+RUN curl -sSL -o /tmp/infer.tar.xz https://github.com/facebook/infer/releases/download/v1.2.0/infer-linux-x86_64-v1.2.0.tar.xz && \
+    tar xJf /tmp/infer.tar.xz -C /opt && \
+    rm /tmp/infer.tar.xz && \
+    ln -s /opt/infer-*/bin/infer /usr/local/bin/infer
+
+# ============================================
+# Linguist - Language detection
+# ============================================
+RUN gem install github-linguist
+
+# ============================================
+# Tree-sitter - Syntax parsing
+# ============================================
+RUN uv pip install --system tree-sitter
+
+# ============================================
+# Cleanup
+# ============================================
+RUN apt-get clean && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
+
+# Set working directory for scanning
+WORKDIR /workspace
+
+# Default entrypoint - can be overridden
+ENTRYPOINT ["/bin/bash", "-c"]
+CMD ["echo 'MrZero Tools Container - use specific tool commands'"]

package/package.json

@@ -0,0 +1,56 @@
+{
+  "name": "@bengabay94/mrzero",
+  "version": "0.1.0-alpha.1",
+  "description": "AI-powered security research agents for vulnerability hunting and exploit development",
+  "main": "dist/index.js",
+  "bin": {
+    "mrzero": "dist/index.js"
+  },
+  "scripts": {
+    "build": "tsc",
+    "dev": "tsc --watch",
+    "start": "node dist/index.js",
+    "prepublishOnly": "npm run build"
+  },
+  "keywords": [
+    "security",
+    "vulnerability",
+    "exploit",
+    "ai",
+    "agents",
+    "mcp",
+    "claude",
+    "opencode",
+    "pentest",
+    "reverse-engineering"
+  ],
+  "author": "bengabay1994",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/bengabay1994/MrZero.git"
+  },
+  "bugs": {
+    "url": "https://github.com/bengabay1994/MrZero/issues"
+  },
+  "homepage": "https://github.com/bengabay1994/MrZero#readme",
+  "engines": {
+    "node": ">=18.0.0"
+  },
+  "dependencies": {
+    "chalk": "^5.3.0",
+    "commander": "^12.1.0",
+    "enquirer": "^2.4.1",
+    "ora": "^8.0.1"
+  },
+  "devDependencies": {
+    "@types/node": "^20.11.0",
+    "typescript": "^5.3.3"
+  },
+  "files": [
+    "dist",
+    "agents",
+    "docker",
+    "wrappers"
+  ]
+}