rtexit-method 0.1.13 → 0.1.14

package/package.json

@@ -1,55 +1,55 @@
-{
-  "name": "rtexit-method",
-  "version": "0.1.13",
-  "description": "RTExit - AI-assisted Red Team methodology installer",
-  "license": "MIT",
-  "author": "Exit Code",
-  "bin": {
-    "rt": "tools/installer/rt-cli.js",
-    "rtexit": "tools/installer/rt-cli.js"
-  },
-  "main": "tools/installer/rt-cli.js",
-  "files": [
-    "packaged-assets",
-    "tools/installer",
-    "RTEXIT.md"
-  ],
-  "scripts": {
-    "test": "node --test test/*.test.js",
-    "test:cli": "node --test test/cli-help.test.js",
-    "test:install": "node --test test/install-command.test.js test/copy-assets.test.js test/write-config.test.js"
-  },
-  "dependencies": {
-    "@clack/prompts": "^1.4.0",
-    "commander": "^14.0.0"
-  },
-  "engines": {
-    "node": ">=20.12.0"
-  },
-  "repository": {
-    "type": "git",
-    "url": "git+https://github.com/exit-code-eg/RTExit.git"
-  },
-  "homepage": "https://www.exitcode.me/",
-  "bugs": {
-    "url": "https://github.com/exit-code-eg/RTExit/issues"
-  },
-  "keywords": [
-    "red-team",
-    "red-teaming",
-    "security",
-    "pentest",
-    "cli",
-    "ai",
-    "methodology",
-    "rtexit"
-  ],
-  "publishConfig": {
-    "access": "public"
-  },
-  "directories": {
-    "doc": "docs",
-    "test": "test"
-  },
-  "type": "commonjs"
-}
+{
+  "name": "rtexit-method",
+  "version": "0.1.14",
+  "description": "RTExit - AI-assisted Red Team methodology installer",
+  "license": "MIT",
+  "author": "Exit Code",
+  "bin": {
+    "rt": "tools/installer/rt-cli.js",
+    "rtexit": "tools/installer/rt-cli.js"
+  },
+  "main": "tools/installer/rt-cli.js",
+  "files": [
+    "packaged-assets",
+    "tools/installer",
+    "RTEXIT.md"
+  ],
+  "scripts": {
+    "test": "node --test test/*.test.js",
+    "test:cli": "node --test test/cli-help.test.js",
+    "test:install": "node --test test/install-command.test.js test/copy-assets.test.js test/write-config.test.js"
+  },
+  "dependencies": {
+    "@clack/prompts": "^1.4.0",
+    "commander": "^14.0.0"
+  },
+  "engines": {
+    "node": ">=20.12.0"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/exit-code-eg/RTExit.git"
+  },
+  "homepage": "https://www.exitcode.me/",
+  "bugs": {
+    "url": "https://github.com/exit-code-eg/RTExit/issues"
+  },
+  "keywords": [
+    "red-team",
+    "red-teaming",
+    "security",
+    "pentest",
+    "cli",
+    "ai",
+    "methodology",
+    "rtexit"
+  ],
+  "publishConfig": {
+    "access": "public"
+  },
+  "directories": {
+    "doc": "docs",
+    "test": "test"
+  },
+  "type": "commonjs"
+}

package/tools/installer/commands/install.js

@@ -3,6 +3,7 @@ const { resolveRepoRoot, resolveTargetRoot } = require('../lib/paths');
 const { copyPackagedAssets } = require('../lib/copy-assets');
 const { writeUserConfig } = require('../lib/write-config');
 const { askInstallQuestions } = require('../lib/prompts');
+const { resolveSkillSet } = require('../lib/profiles');
 
 async function installCommand(options = {}) {
   const repoRoot = options.repoRoot || resolveRepoRoot();
@@ -21,7 +22,8 @@ async function installCommand(options = {}) {
   const targetRoot = resolveTargetRoot(answers.targetDirectory);
 
   const ides = answers.ides && answers.ides.length ? answers.ides : ['agents'];
-  await copyPackagedAssets({ repoRoot, targetRoot, ides });
+  const allowedSkills = resolveSkillSet(answers.profiles || ['all']);
+  await copyPackagedAssets({ repoRoot, targetRoot, ides, allowedSkills });
   await writeUserConfig({
     targetRoot,
     answers: {
@@ -36,7 +38,7 @@ async function installCommand(options = {}) {
   });
 
   io.log('RTExit installed successfully.');
-  io.log(`Skills installed into: ${ideFolders.join(', ')}`);
+  io.log(`Skills installed: ${allowedSkills.size} skills into ${ideFolders.join(', ')}`);
   io.log('Next steps:');
   io.log('1. Open _rtexit/config.user.toml and complete client/project details');
   io.log('2. Open your AI IDE in this project');

package/tools/installer/lib/asset-manifest.js

@@ -5,12 +5,17 @@ const IDE_SKILL_FOLDERS = {
   codex:  '.codex/skills',
 };
 
-function getInstallEntries(ides = ['agents']) {
+/**
+ * @param {string[]} ides
+ * @param {Set<string>|null} allowedSkills — if null, install everything
+ */
+function getInstallEntries(ides = ['agents'], allowedSkills = null) {
   const skillEntries = ides.map((ide) => ({
     type: 'glob-dir-prefix',
     base: 'packaged-assets/.agents/skills',
     targetBase: IDE_SKILL_FOLDERS[ide] || `.${ide}/skills`,
     prefix: 'rt-',
+    allowedSkills,
   }));
 
   return [

package/tools/installer/lib/copy-assets.js

@@ -17,8 +17,8 @@ function copyRecursive(source, target) {
   fs.copyFileSync(source, target);
 }
 
-async function copyPackagedAssets({ repoRoot, targetRoot, ides }) {
-  for (const entry of getInstallEntries(ides)) {
+async function copyPackagedAssets({ repoRoot, targetRoot, ides, allowedSkills = null }) {
+  for (const entry of getInstallEntries(ides, allowedSkills)) {
     if (entry.type === 'path') {
       const sourcePath = path.join(repoRoot, entry.value);
       const targetPath = path.join(targetRoot, entry.target || entry.value);
@@ -29,12 +29,12 @@ async function copyPackagedAssets({ repoRoot, targetRoot, ides }) {
     const skillsRoot = path.join(repoRoot, entry.base);
     const targetBase = entry.targetBase || entry.base;
     for (const name of fs.readdirSync(skillsRoot)) {
-      if (name.startsWith(entry.prefix)) {
-        copyRecursive(
-          path.join(skillsRoot, name),
-          path.join(targetRoot, targetBase, name)
-        );
-      }
+      if (!name.startsWith(entry.prefix)) continue;
+      if (entry.allowedSkills && !entry.allowedSkills.has(name)) continue;
+      copyRecursive(
+        path.join(skillsRoot, name),
+        path.join(targetRoot, targetBase, name)
+      );
     }
   }
 }

package/tools/installer/lib/profiles.js

@@ -0,0 +1,241 @@
+/**
+ * Install profiles — each profile maps to a set of skill folder names.
+ * Skills in CORE are always installed regardless of profile selection.
+ * Users pick one or more profiles; they get CORE + selected profiles.
+ */
+
+const CORE = [
+  // Agents
+  'rt-agent-breaker',
+  'rt-agent-commander',
+  'rt-agent-ghost',
+  'rt-agent-navigator',
+  'rt-agent-phantom',
+  'rt-agent-scout',
+  'rt-agent-scribe',
+  // Base methodology
+  'rt-help',
+  'rt-status',
+  'rt-party-mode',
+  'rt-scope-definition',
+  'rt-rules-of-engagement',
+  'rt-methodology-selector',
+  // Recon & mapping
+  'rt-active-recon',
+  'rt-osint',
+  'rt-shodan-recon',
+  'rt-attack-surface-map',
+  'rt-subdomain-enum',
+  'rt-subdomain-takeover',
+  'rt-wordlist-generation',
+  'rt-password-spray',
+  // Infrastructure
+  'rt-c2-operations',
+  'rt-redteam-infra',
+  // Core execution
+  'rt-defense-evasion',
+  'rt-lateral-movement',
+  'rt-persistence',
+  'rt-post-exploitation',
+  'rt-privilege-escalation',
+  'rt-credential-access',
+  'rt-credential-hunt',
+  'rt-lsass-dumping',
+  'rt-data-exfiltration',
+];
+
+const PROFILES = {
+  web: {
+    label: 'Web & API',
+    description: 'Web apps, APIs, injection, auth, OWASP Top 10',
+    skills: [
+      'rt-exploit-web',
+      'rt-exploit-injection',
+      'rt-exploit-xss',
+      'rt-exploit-ssrf',
+      'rt-exploit-auth',
+      'rt-exploit-idor',
+      'rt-exploit-api',
+      'rt-exploit-jwt',
+      'rt-exploit-file-upload',
+      'rt-cors-csrf',
+      'rt-clickjacking',
+      'rt-dom-attacks',
+      'rt-cache-attacks',
+      'rt-business-logic',
+      'rt-race-conditions',
+      'rt-request-smuggling',
+      'rt-path-traversal',
+      'rt-deserialization',
+      'rt-prototype-pollution',
+      'rt-http-parameter-pollution',
+      'rt-ldap-xpath-injection',
+      'rt-xxe',
+      'rt-oauth-oidc',
+      'rt-websockets-grpc',
+      'rt-js-analysis',
+      'rt-browser-exploitation',
+      'rt-exploit-wordpress',
+      'rt-exploit-nodejs',
+      'rt-exploit-php',
+      'rt-exploit-python',
+      'rt-exploit-java',
+      'rt-exploit-dotnet',
+      'rt-exploit-ruby',
+      'rt-exploit-frameworks',
+      'rt-exploit-electron',
+      'rt-exploit-firebase',
+      'rt-supabase',
+      'rt-exploit-osticket',
+      'rt-exploit-bec',
+      'rt-serverless',
+      'rt-exploit-elasticsearch',
+      'rt-exploit-databases',
+      'rt-exploit-mongodb',
+      'rt-exploit-mssql',
+      'rt-exploit-mysql',
+      'rt-exploit-postgresql',
+      'rt-exploit-redis',
+      'rt-ai-llm-security',
+      'rt-crypto-attacks',
+      'rt-exploit-fuzzing',
+    ],
+  },
+
+  mobile: {
+    label: 'Mobile',
+    description: 'Android, iOS, Bluetooth/BLE',
+    skills: [
+      'rt-exploit-android',
+      'rt-exploit-ios',
+      'rt-bluetooth-ble',
+    ],
+  },
+
+  cloud: {
+    label: 'Cloud',
+    description: 'AWS, Azure, GCP, Kubernetes, containers',
+    skills: [
+      'rt-exploit-cloud-aws',
+      'rt-exploit-cloud-azure',
+      'rt-exploit-cloud-gcp',
+      'rt-kubernetes',
+      'rt-exploit-containers',
+      'rt-serverless',
+      'rt-supply-chain',
+      'rt-exploit-firebase',
+      'rt-supabase',
+      'rt-exploit-elasticsearch',
+    ],
+  },
+
+  ad: {
+    label: 'Active Directory & Windows',
+    description: 'AD, ADCS, Kerberos, lateral movement, EDR bypass, APT techniques',
+    skills: [
+      'rt-exploit-active-directory',
+      'rt-exploit-adcs',
+      'rt-adcs-esc9-13',
+      'rt-adfs',
+      'rt-azure-ad',
+      'rt-exchange-sharepoint',
+      'rt-exploit-desktop-win',
+      'rt-exploit-desktop-mac',
+      'rt-printer-attacks',
+      'rt-network-segmentation',
+      'rt-exploit-network',
+      'rt-ssl-mitm',
+      'rt-citrix-vdi',
+      // Nation-state / APT
+      'rt-kerberos-relay',
+      'rt-diamond-sapphire-tickets',
+      'rt-zerologon',
+      'rt-printnightmare-rce',
+      'rt-golden-saml',
+      'rt-skeleton-key',
+      'rt-syscall-bypass',
+      'rt-etw-bypass',
+      'rt-process-injection-advanced',
+      'rt-ppid-spoofing',
+      'rt-beacon-sleep-masking',
+      'rt-clm-jea-escape',
+    ],
+  },
+
+  reporting: {
+    label: 'Reporting & Documentation',
+    description: 'Reports, findings, CVSS, MITRE, scenarios, compliance',
+    skills: [
+      'rt-technical-report',
+      'rt-executive-report',
+      'rt-finding-document',
+      'rt-finding-tracker',
+      'rt-autodoc',
+      'rt-create-sead',
+      'rt-evidence-chain',
+      'rt-compliance-mapper',
+      'rt-cvss-calculator',
+      'rt-poc-writer',
+      'rt-risk-matrix',
+      'rt-mitre-map',
+      'rt-kill-chain-map',
+      'rt-remediation-roadmap',
+      'rt-attack-chain-builder',
+      'rt-timeline',
+      'rt-threat-model',
+      'rt-scenario-library',
+      'rt-scenario-c001', 'rt-scenario-c002', 'rt-scenario-c003', 'rt-scenario-c004', 'rt-scenario-c005',
+      'rt-scenario-d001', 'rt-scenario-d002', 'rt-scenario-d003', 'rt-scenario-d004', 'rt-scenario-d005',
+      'rt-scenario-m001', 'rt-scenario-m002', 'rt-scenario-m003', 'rt-scenario-m004', 'rt-scenario-m005',
+      'rt-scenario-n001', 'rt-scenario-n002', 'rt-scenario-n003', 'rt-scenario-n004', 'rt-scenario-n005',
+      'rt-scenario-w001', 'rt-scenario-w002', 'rt-scenario-w003', 'rt-scenario-w004', 'rt-scenario-w005',
+      'rt-scenario-w006', 'rt-scenario-w007', 'rt-scenario-w008', 'rt-scenario-w009', 'rt-scenario-w010',
+    ],
+  },
+
+  specialist: {
+    label: 'Specialist',
+    description: 'SCADA/ICS, IoT, hardware, physical, social engineering, wireless',
+    skills: [
+      'rt-exploit-scada',
+      'rt-exploit-iot',
+      'rt-hardware-hacking',
+      'rt-exploit-wireless',
+      'rt-wireless-rogue-ap',
+      'rt-exploit-physical',
+      'rt-exploit-phishing',
+      'rt-exploit-vishing',
+      'rt-social-engineering',
+      'rt-voip-sip',
+      'rt-traffic-analysis',
+      'rt-binary-reverse-engineering',
+      'rt-sap-exploitation',
+      'rt-steganography',
+    ],
+  },
+};
+
+/**
+ * Resolve the full set of skill folder names to install.
+ * @param {string[]|'all'} selectedProfiles — array of profile keys or 'all'
+ * @returns {Set<string>} — set of skill folder names
+ */
+function resolveSkillSet(selectedProfiles) {
+  if (selectedProfiles === 'all' || (Array.isArray(selectedProfiles) && selectedProfiles.includes('all'))) {
+    const all = new Set(CORE);
+    for (const profile of Object.values(PROFILES)) {
+      for (const s of profile.skills) all.add(s);
+    }
+    return all;
+  }
+
+  const result = new Set(CORE);
+  for (const key of selectedProfiles) {
+    if (PROFILES[key]) {
+      for (const s of PROFILES[key].skills) result.add(s);
+    }
+  }
+  return result;
+}
+
+module.exports = { PROFILES, CORE, resolveSkillSet };

package/tools/installer/lib/prompts.js

@@ -1,4 +1,5 @@
 const prompts = require('@clack/prompts');
+const { PROFILES } = require('./profiles');
 
 async function askInstallQuestions({ cwd }) {
   const targetDirectory = await prompts.text({
@@ -34,12 +35,28 @@ async function askInstallQuestions({ cwd }) {
     required: true,
   });
 
+  const profileOptions = [
+    { value: 'all', label: 'All Skills (Full install — everything)', hint: 'recommended for full red team ops' },
+    ...Object.entries(PROFILES).map(([key, p]) => ({
+      value: key,
+      label: `${p.label}`,
+      hint: p.description,
+    })),
+  ];
+
+  const profiles = await prompts.multiselect({
+    message: 'Which skill profiles do you need? (space to select, enter to confirm)',
+    options: profileOptions,
+    initialValues: ['all'],
+    required: true,
+  });
+
   const confirmed = await prompts.confirm({
     message: `Install RTExit into ${targetDirectory}?`,
     initialValue: true,
   });
 
-  return { targetDirectory, language, document_output_language, ides, confirmed };
+  return { targetDirectory, language, document_output_language, ides, profiles, confirmed };
 }
 
 module.exports = { askInstallQuestions };