souleyez 2.39.0__py3-none-any.whl → 2.43.1__py3-none-any.whl

souleyez/__init__.py

@@ -1,2 +1,2 @@
-__version__ = '2.39.0'
+__version__ = '2.43.1'
 

souleyez/commands/license.py

@@ -93,7 +93,7 @@ def status():
         click.echo(click.style("  No active license", fg='yellow'))
         click.echo()
         click.echo("  You are using the FREE tier.")
-        click.echo("  Upgrade to Pro: https://souleyez.com/pricing")
+        click.echo("  Upgrade to Pro: https://www.cybersoulsecurity.com/souleyez")
         click.echo()
         click.echo("  Activate with: souleyez license activate <key>")
         click.echo()

souleyez/docs/README.md

@@ -1,7 +1,7 @@
 # SoulEyez Documentation
 
-**Version:** 2.39.0
-**Last Updated:** January 9, 2026
+**Version:** 2.43.1
+**Last Updated:** January 11, 2026
 **Organization:** CyberSoul Security
 
 Welcome to the SoulEyez documentation! This documentation covers architecture, development, user guides, and operational information for the SoulEyez penetration testing platform.
@@ -240,8 +240,8 @@ Legal and compliance documentation.
 
 - **Issues**: https://github.com/cybersoul-security/souleyez/issues
 - **Discussions**: https://github.com/cybersoul-security/souleyez/discussions
-- **Security**: security@cybersoul.io
-- **General**: support@cybersoul.io
+- **Security**: cysoul.secit@gmail.com
+- **General**: cysoul.secit@gmail.com
 
 ---
 

souleyez/docs/architecture/decisions/001-local-llm-over-cloud.md

@@ -167,7 +167,7 @@ SoulEyez's tagline: *"See through the soul's eyes — perceive what others canno
 **Messaging Opportunity**:
 > "SoulEyez AI never sends your data to the cloud. Your engagement stays between you and your client — always."
 
-This positions CyberSoul as **security-first, privacy-respecting** — aligned with Soul Hackers brand values.
+This positions CyberSoul as **security-first, privacy-respecting** — aligned with SoulEyez brand values.
 
 ---
 
@@ -283,7 +283,7 @@ Sanitized: "[USER]:[PASS] on [IP] port 3306 MySQL"
    - ✅ Predictable performance
 
 4. **Brand**
-   - ✅ Reinforces "Soul Hackers" identity (ethical, privacy-respecting)
+   - ✅ Reinforces "SoulEyez" identity (ethical, privacy-respecting)
    - ✅ Differentiation in crowded market
    - ✅ Thought leadership opportunity (blog: "Why We Built Privacy-First AI")
 

souleyez/docs/architecture/decisions/002-master-password-approach.md

@@ -30,7 +30,7 @@ souleyez needs a **credential encryption strategy** that balances security with
 3. **Encryption**: Fernet (AES-128 in CBC mode + HMAC authentication)
 4. **Scope**: Encrypts `credentials.username` and `credentials.password` fields only
 5. **Unlock**: Session-based (key lives in memory, cleared on exit)
-6. **Optional**: Encryption is opt-in via migration script
+6. **Mandatory**: Encryption is configured during setup wizard
 
 ---
 
@@ -233,19 +233,23 @@ CREATE TABLE credentials (
 
 **Decision**: Fernet is the **safe, simple choice** for application-level encryption.
 
-### Why Optional Encryption?
+### Why Mandatory Encryption?
 
-Encryption is **opt-in** via migration script (`migrate_credentials.py`).
+Encryption is **required** and configured during the setup wizard.
 
 **Rationale**:
-1. **Lab Environments**: Operators testing against intentionally vulnerable VMs (HackTheBox, TryHackMe) don't need encryption
-2. **Usability**: Master password prompts add friction for quick scans
-3. **Backward Compatibility**: Existing databases work without migration
-4. **Transparency**: Users consciously choose to enable encryption
-
-**Default Behavior**: Credentials stored in **plaintext** unless user enables encryption.
-
-**Security Guidance**: Documentation recommends enabling encryption for **client engagements**.
+1. **Security First**: As a security company, we cannot allow plaintext credential storage
+2. **Consistency**: All users have the same security baseline
+3. **Compliance**: Encrypted storage is expected for professional pentesting tools
+4. **Simplicity**: One-time setup during wizard, no migration scripts needed
+
+**Default Behavior**: Credentials are **always encrypted** with the vault master password.
+
+**Password Requirements**:
+- At least 12 characters
+- Mix of uppercase and lowercase
+- At least one number
+- At least one special character
 
 ---
 

souleyez/docs/architecture/overview.md

@@ -105,7 +105,7 @@ souleyez is a penetration testing automation framework designed to:
 1. **Plugin-First Architecture**: All security tools are wrapped in plugins with standardized interfaces
 2. **Engagement-Centric**: All data is scoped to engagements (workspaces) for isolation
 3. **Parse-Store-Correlate**: Tool output → Parser → Database → Correlation → Findings
-4. **Security-by-Default**: Optional credential encryption with industry-standard cryptography
+4. **Security-by-Default**: Mandatory credential encryption with industry-standard cryptography
 5. **File-Backed Job Queue**: Persistent, crash-resilient job tracking without external dependencies
 6. **Real-Time Monitoring**: Live dashboard with automatic refresh and status updates
 
@@ -176,7 +176,7 @@ souleyez is a penetration testing automation framework designed to:
 
 #### Credentials Manager (`souleyez/storage/credentials.py`)
 
-Stores and retrieves discovered credentials with optional encryption.
+Stores and retrieves discovered credentials with mandatory encryption.
 
 **Schema**:
 ```sql
@@ -499,7 +499,7 @@ class PluginBase:
 
 ### Overview
 
-souleyez implements **optional at-rest encryption** for discovered credentials using **Fernet** (symmetric encryption based on AES-128-CBC + HMAC-SHA256).
+souleyez implements **mandatory at-rest encryption** for discovered credentials using **Fernet** (symmetric encryption based on AES-128-CBC + HMAC-SHA256). Encryption is configured during the first-run setup wizard.
 
 **Note**: The README mentions AES-256, but the actual implementation uses **Fernet** which is AES-128 in CBC mode with HMAC authentication.
 
@@ -1264,9 +1264,8 @@ souleyez workspace create acme-pentest
 # Set as active
 souleyez workspace use acme-pentest
 
-# Enable encryption (optional but recommended)
-python3 migrate_credentials.py
-# Enter master password when prompted
+# Note: Encryption is configured during the setup wizard (mandatory)
+# Credentials are automatically encrypted with your vault master password
 ```
 
 ### Phase 2: Discovery

souleyez/docs/security/credential-encryption.md

@@ -10,11 +10,13 @@ This guide covers everything you need to know about managing encryption keys in
 
 | Operation | Command | Time |
 |-----------|---------|------|
-| Enable encryption | `python3 migrate_credentials.py` | 1 min |
+| Initial setup | `souleyez interactive` (setup wizard) | 5 min |
 | View encrypted creds | `souleyez creds list` | Instant |
 | Check encryption status | Python API | Instant |
 | Backup crypto config | `cp ~/.souleyez/crypto.json backup/` | Instant |
-| Disable encryption | Python API (see below) | 5 min |
+| Change password | `souleyez db change-password` | 1 min |
+
+> **Note:** Encryption is mandatory and configured during the first-run setup wizard.
 
 ---
 
@@ -58,7 +60,8 @@ This guide covers everything you need to know about managing encryption keys in
 **1. Master Password**
 - Known only to user
 - Never stored anywhere
-- Minimum 8 characters (12+ recommended)
+- Minimum 12 characters (required)
+- Must include: uppercase, lowercase, number, special character
 - Used to derive encryption key
 
 **2. Salt**
@@ -83,19 +86,34 @@ This guide covers everything you need to know about managing encryption keys in
 
 ## Initial Setup
 
-### Step 1: Enable Encryption
+### Encryption via Setup Wizard (Recommended)
+
+Encryption is configured automatically during the first-run setup wizard:
+
+```bash
+souleyez interactive
+```
+
+**What happens:**
+1. Setup wizard prompts for vault master password
+2. Password must meet requirements (12+ chars, mixed case, number, special)
+3. Password confirmation required
+4. Generates random 32-byte salt
+5. Derives encryption key from password + salt
+6. All future credentials are automatically encrypted
+
+### Legacy: Migration Script
 
-Run the migration script:
+For existing installations or manual setup:
 
 ```bash
-cd /path/to/souleyez_app
 python3 migrate_credentials.py
 ```
 
 **What happens:**
 1. Checks if encryption already enabled (fails if yes)
 2. Prompts for master password (twice for confirmation)
-3. Validates password (minimum 8 characters)
+3. Validates password (minimum 12 characters)
 4. Generates random 32-byte salt
 5. Derives encryption key from password + salt
 6. Encrypts all existing credentials in database

souleyez/docs/security/threat-model.md

@@ -287,7 +287,7 @@ souleyez jobs enqueue nmap 192.168.1.1
 
 | Data Type | Storage | Protection | Risk |
 |-----------|---------|------------|------|
-| Credentials | Database | Optional encryption | High |
+| Credentials | Database | Mandatory encryption (Fernet/AES-128) | High |
 | Job logs | Plaintext files | File permissions | Medium |
 | Targets | Database | Plaintext | Low |
 | Findings | Database | Plaintext | Medium |

souleyez/docs/user-guide/configuration.md

@@ -748,4 +748,4 @@ rm ~/.souleyez/config.json && souleyez --version
 
 ---
 
-**Last Updated:** 2026-01-09 | **Version:** 2.27.1
+**Last Updated:** 2026-01-11 | **Version:** 2.43.1

souleyez/docs/user-guide/dependencies.md

@@ -66,7 +66,7 @@ Defined in `requirements.txt`:
 
 ### Cryptography Dependencies
 
-If using credential encryption (optional):
+For credential encryption (required):
 
 #### cryptography >= 41.0.0
 - **Purpose**: Fernet symmetric encryption (AES-128)

souleyez/docs/user-guide/getting-started.md

@@ -29,88 +29,80 @@ souleyez interactive
 
 ### Step 2: First-Run Setup Wizard (First Time Only)
 
-**On your first launch, you'll be guided through a 7-step setup wizard:**
+**On your first launch, you'll be guided through the setup wizard:**
 
 ```
-   ███████╗ ██████╗ ██╗   ██╗██╗         ██╗  ██╗ █████╗  ██████╗██╗  ██╗███████╗██████╗ ███████╗
-   ██╔════╝██╔═══██╗██║   ██║██║         ██║  ██║██╔══██╗██╔════╝██║ ██╔╝██╔════╝██╔══██╗██╔════╝
-   ███████╗██║   ██║██║   ██║██║         ███████║███████║██║     █████╔╝ █████╗  ██████╔╝███████╗
-   ╚════██║██║   ██║██║   ██║██║         ██╔══██║██╔══██║██║     ██╔═██╗ ██╔══╝  ██╔══██╗╚════██║
-   ███████║╚██████╔╝╚██████╔╝███████╗    ██║  ██║██║  ██║╚██████╗██║  ██╗███████╗██║  ██║███████║
-   ╚══════╝ ╚═════╝  ╚═════╝ ╚══════╝    ╚═╝  ╚═╝╚═╝  ╚═╝ ╚═════╝╚═╝  ╚═╝╚══════╝╚═╝  ╚═╝╚══════╝
+   ███████╗ ██████╗ ██╗   ██╗██╗     ███████╗██╗   ██╗███████╗███████╗
+   ██╔════╝██╔═══██╗██║   ██║██║     ██╔════╝╚██╗ ██╔╝██╔════╝╚══███╔╝
+   ███████╗██║   ██║██║   ██║██║     █████╗   ╚████╔╝ █████╗    ███╔╝
+   ╚════██║██║   ██║██║   ██║██║     ██╔══╝    ╚██╔╝  ██╔══╝   ███╔╝
+   ███████║╚██████╔╝╚██████╔╝███████╗███████╗   ██║   ███████╗███████╗
+   ╚══════╝ ╚═════╝  ╚═════╝ ╚══════╝╚══════╝   ╚═╝   ╚══════╝╚══════╝
 
   Created by CyberSoul SecurITy
 ```
 
-#### The 7-Step Setup Wizard
+#### Setup Wizard Steps
 
 | Step | Name | Description |
 |------|------|-------------|
 | 1 | **Welcome** | Introduction and overview of what to expect |
-| 2 | **Encryption Setup** | Configure credential encryption (recommended) |
-| 3 | **Create Engagement** | Set up your first engagement with name, type, and scope |
-| 4 | **Tool Availability** | Check which security tools are installed on your system |
-| 5 | **Automation Preferences** | Configure auto-chaining approval mode |
-| 6 | **Deliverables** | Select report templates for your engagement type |
-| 7 | **Summary** | Review all settings and launch into SoulEyez |
+| 2 | **Encryption Setup** | Create vault master password (mandatory) |
+| 3 | **Create Engagement** | Set up your first engagement with name and type |
+| 4 | **Tool Availability** | Check which security tools are installed |
+| 5 | **AI Features** | Configure Ollama for AI features (optional) |
+| 6 | **Summary** | Review settings and option to run tutorial |
 
 #### Step 2: Encryption Setup
 
-**Choose your security level:**
+SoulEyez encrypts all credentials with a master password. This is **mandatory** for security.
 
-- **Press Y** (Recommended):
-  - Create a master password to encrypt all credentials
-  - Best for production pentests and client data
-  - You'll need this password to view credentials
+**Password Requirements:**
+- At least 12 characters
+- Mix of uppercase and lowercase
+- At least one number
+- At least one special character (!@#$%^&*)
 
-- **Press N** (Not recommended):
-  - Skip encryption for now (can enable later via Settings)
-  - Only acceptable for isolated lab environments
+> ⚠️ **If you lose this password, encrypted credentials cannot be recovered!**
 
 #### Step 3: Create Your Engagement
 
+Enter your engagement name (e.g., "ACME Corp Pentest" or "HackTheBox Lab").
+
 Select your engagement type:
-- **Penetration Test** - Standard assessment with scope boundaries
-- **Bug Bounty** - Public program with defined rules
-- **CTF/Lab** - Training environment (no approval needed)
-- **Red Team** - Adversary simulation with stealth focus
+- **Penetration Test** - Full-scope security assessment
+- **Bug Bounty** - Vulnerability hunting with defined scope
+- **CTF/Lab** - Practice environment, aggressive scanning OK
+- **Red Team** - Adversary simulation, stealth preferred
 - **Custom** - Define your own parameters
 
-Enter your engagement name and target scope (domains, IPs, URLs).
+> **Note:** Type affects default automation and scan aggressiveness
 
 #### Step 4: Tool Availability
 
 The wizard scans your system for installed security tools:
 - Shows which tools are available (✓) and missing (✗)
-- Categorized by phase: Reconnaissance, Network, Web, Exploitation, etc.
-- Missing tools can be installed later
-
-#### Step 5: Automation Preferences
-
-Configure how auto-chaining handles discovered targets:
-- **Auto-approve** - Jobs run automatically (CTF/Lab)
-- **Prompt** - Ask before each chain job (default)
-- **Queue only** - Add to queue but don't execute
+- Shows version warnings for outdated tools (!)
+- Option to install/upgrade missing tools
 
-#### Step 6: Deliverables
+#### Step 5: AI Features (Optional)
 
-Select report templates based on your engagement type:
-- Executive Summary, Technical Report, Findings Matrix
-- Remediation Plan, Evidence Package
-- Templates auto-selected based on engagement type
+Configure Ollama for AI-powered features:
+- Checks if Ollama is installed and running
+- Option to install Ollama if not present
+- Option to download recommended model (llama3.1:8b)
 
-#### Step 7: Summary
+#### Step 6: Summary & Tutorial
 
-Review all your settings before launching:
-- Engagement details and scope
+Review all your settings:
 - Encryption status
+- Engagement details
 - Available tools count
-- Automation mode
-- Selected deliverables
+- AI features status
 
-Press Enter to complete setup and launch the main menu.
+**Tutorial Offer:** The wizard offers to run an interactive tutorial (recommended for new users).
 
-> 💡 **Tip**: You can re-run the wizard anytime from **Settings → Run Setup Wizard**
+> 💡 **Tip**: You can run the tutorial anytime from **Settings → [t] Tutorial**
 
 ### Step 3: Enter the Main Menu
 
@@ -118,41 +110,50 @@ After completing the wizard, you'll see the main menu:
 
 ```
 ⚡ MISSION CONTROL
-══════════════════════════════════════════════════════════════════════════════
+════════════════════════════════════════════════════════════════════════════════
    Your central hub for intelligent pentesting
 
   [c ] 🧿 Command Center       - Live monitoring, attack surface, next actions
-  [i ] 🕵️ Intelligence Hub     - Host analysis, exploitation coverage, gaps
-  [x ] 🤖 AI Execute        💎 - AI-driven autonomous execution
-  [a ] 🔗 Automation        💎 - Chain rules & settings
-  [m ] 🔧 MSF Integration   💎 - Advanced exploitation & attack chains
-  [r ] 📊 Reports & Export  💎 - Professional deliverables
-
-🔍 RECONNAISSANCE
-──────────────────────────────────────────────────────────────
-   Gather intelligence on target
-  [ 1] theHarvester             - Email, subdomain & name collection
-  [ 2] WHOIS                    - Domain ownership lookup
-  [ 3] DNSRecon                 - DNS enumeration & zone transfer
-
-🌐 NETWORK DISCOVERY
-──────────────────────────────────────────────────────────────
-   Map the attack surface
-  [ 4] Nmap                     - Network scanning & service detection
-
-   (Additional phase-organized tools...)
+  [i ] 🕵️ Intelligence Hub     🔒 PRO - Host analysis, exploitation coverage, gaps
+  [x ] 🤖 AI Execute           🔒 PRO - AI-driven autonomous execution
+  [a ] 🔗 Automation           🔒 PRO - Chain rules & settings
+  [m ] 🔧 Metasploit           🔒 PRO - Advanced exploitation & attack chains
+  [r ] 📊 Reports & Export     🔒 PRO - Professional deliverables
+
+🔍 PHASE 1: RECONNAISSANCE
+────────────────────────────────────────────────────────────
+   Gather information before active scanning (OSINT)
+
+  [ 7]   theHarvester            - Email, domain, subdomain discovery
+  [ 8]   WHOIS                   - Domain registration and ownership lookup
+  [ 9]   DNSRecon                - DNS enumeration and subdomain discovery
+
+🔬 PHASE 2: SCANNING & ENUMERATION
+────────────────────────────────────────────────────────────
+   Identify hosts, ports, services, shares, and web paths
+
+  [10]   Nmap                    - Network scanner with presets
+  [11]   CrackMapExec            - Windows/AD enumeration (SMB, WinRM, LDAP)
+  ...
+
+⚠️ PHASE 3: VULNERABILITY ANALYSIS
+💥 PHASE 4: EXPLOITATION
+🎯 PHASE 5: POST-EXPLOITATION
 
 ⚙️ OPERATIONS
-──────────────────────────────────────────────────────────────
+────────────────────────────────────────────────────────────
    Monitor progress and manage engagement
 
-  [j ] Job Queue                - Manage active jobs and worker
-  [e ] Engagements              - Switch or create engagements
-  [s ] Settings                 - Encryption and preferences
-  [h ] Help Center              - Documentation and guides
+  [j ] Job Queue                 - Manage active jobs and worker
+  [e ] Engagements               - Switch or create engagements
+  [h ] Help Center               - Documentation and guides
+  [g ] Scan Phases Guide         - View recommended workflow
+  [* ] Settings                  - Encryption and preferences
+
+  [L ] Logout                    - End session
 ```
 
-**💎 = Premium features** (advanced automation and AI capabilities)
+**🔒 PRO = Premium features** (AI, automation, Metasploit, reports)
 
 ### Step 4: Verify Your Engagement
 
@@ -175,7 +176,7 @@ If you completed the setup wizard, your first engagement is already created and
 Navigate back to the main menu and launch a scan:
 
 ```
-1. From the main menu, type the number for Nmap (usually [4] under Network Discovery)
+1. From the main menu, type [10] for Nmap (under Phase 2: Scanning & Enumeration)
 2. Select a preset (e.g., [1] Quick Scan - Ping Sweep)
 3. Enter target: 192.168.1.0/24
 4. Confirm to start
@@ -297,25 +298,31 @@ From the main menu, you can access:
 
 **Mission Control (Top Section)**
 - `[c]` **Command Center** - Live monitoring dashboard with attack surface, findings
-- `[i]` **Intelligence Hub** - Host analysis, exploitation coverage, gaps
-- `[x]` **AI Execute** 💎 - AI-driven autonomous execution
-- `[a]` **Automation** 💎 - Chain rules and auto-scan settings
-- `[m]` **MSF Integration** 💎 - Metasploit resource scripts, sessions, payloads
-- `[r]` **Reports & Export** 💎 - Professional deliverables and reports
+- `[i]` **Intelligence Hub** 🔒 PRO - Host analysis, exploitation coverage, gaps
+- `[x]` **AI Execute** 🔒 PRO - AI-driven autonomous execution
+- `[a]` **Automation** 🔒 PRO - Chain rules and auto-scan settings
+- `[m]` **Metasploit** 🔒 PRO - Advanced exploitation and attack chains
+- `[r]` **Reports & Export** 🔒 PRO - Professional deliverables and reports
 
 **Phase-Organized Tools (Numbered)**
-- `[1-N]` Tools organized by pentest phase (Recon, Network Discovery, Enumeration, etc.)
+- **Phase 1: Reconnaissance** - theHarvester, WHOIS, DNSRecon
+- **Phase 2: Scanning & Enumeration** - Nmap, CrackMapExec, SMBMap, Gobuster, ffuf
+- **Phase 3: Vulnerability Analysis** - Nuclei, Nikto, WPScan, SearchSploit
+- **Phase 4: Exploitation** - SQLMap, Hydra, Metasploit Auxiliary
+- **Phase 5: Post-Exploitation** - Credential harvesting, lateral movement, data collection
 
 **Operations (Bottom Section)**
 - `[j]` **Job Queue** - Monitor and control background jobs
 - `[e]` **Engagements** - Create, switch, and manage engagements
-- `[s]` **Settings** - Encryption and preferences
 - `[h]` **Help Center** - Documentation and guides
+- `[g]` **Scan Phases Guide** - View recommended workflow
+- `[*]` **Settings** - Encryption and preferences
+- `[L]` **Logout** - End session
 - `[q]` **Quit** - Exit the application
 
 ### Running Tools
 
-1. From main menu, type a tool number (e.g., `4` for Nmap under Network Discovery)
+1. From main menu, type a tool number (e.g., `10` for Nmap under Phase 2)
 2. Choose a preset or configure custom options
 3. Enter target
 4. Job is queued and runs in background
@@ -488,7 +495,7 @@ SoulEyez can automatically trigger follow-up scans based on discoveries.
 - When MySQL is detected → Automatically suggests exploitation options
 
 **Configure auto-chaining:**
-From the main menu, press `[a]` for Automation (💎 premium feature) to manage chain rules and approval settings.
+From the main menu, press `[a]` for Automation (🔒 PRO premium feature) to manage chain rules and approval settings.
 
 **Examples of auto-chaining:**
 1. **Web Services**: HTTP/HTTPS → Nikto, Gobuster, WhatWeb
@@ -526,7 +533,7 @@ Create custom automation rules from the Automation menu:
 After testing, generate professional reports:
 
 **From Interactive Menu:**
-Press `[r]` for Reports & Export (💎 premium feature) to access professional deliverables.
+Press `[r]` for Reports & Export (🔒 PRO premium feature) to access professional deliverables.
 
 **From CLI:**
 ```bash
@@ -571,10 +578,12 @@ souleyez findings add "Weak Password" \
     --description "Admin account uses password 'admin123'. Confirmed via SSH login."
 ```
 
-### 5. Enable Encryption for Sensitive Tests
-If you skipped encryption setup initially, enable it now:
+### 5. Encryption is Always Enabled
+Encryption is mandatory and configured during the setup wizard. Your credentials are protected with your vault master password.
+
+To change your vault password:
 ```bash
-souleyez db encrypt
+souleyez db change-password
 ```
 
 ### 6. Regular Backups
@@ -642,10 +651,11 @@ Now that you're familiar with the basics:
    - SMB Enumeration (Enum4Linux, SMBMap)
    - Post-Exploitation (secretsdump, CrackMapExec)
 
-2. **Premium Features** (💎):
-   - **MSF Integration** `[m]` - Generate Metasploit resource scripts, manage sessions
+2. **PRO Features** (🔒):
+   - **Metasploit** `[m]` - Advanced exploitation and attack chains
    - **Automation** `[a]` - Configure auto-chaining rules and approval modes
    - **AI Execute** `[x]` - AI-driven autonomous execution
+   - **Intelligence Hub** `[i]` - Host analysis, exploitation coverage, gaps
    - **Reports & Export** `[r]` - Professional deliverables
 
 3. **Learn Advanced Features**:

souleyez/docs/user-guide/installation.md

@@ -140,43 +140,32 @@ souleyez --version
 
 ## First Run Experience
 
-When you launch SoulEyez for the first time, you'll see:
+When you launch SoulEyez for the first time:
 
 ```bash
 souleyez interactive
 ```
 
-**You'll be greeted with:**
+**You'll be guided through the Setup Wizard:**
 
-1. **Welcome Banner** - The SOUL HACKERS ASCII art logo
-2. **Security Prompt** - Encryption setup dialog
+1. **Welcome Banner** - The SoulEyez ASCII art logo and introduction
+2. **Encryption Setup** - Create a vault master password (mandatory)
+3. **Create Engagement** - Set up your first project with name and type
+4. **Tool Availability** - Check which security tools are installed
+5. **AI Features** - Configure Ollama for AI features (optional)
+6. **Summary & Tutorial** - Review settings and option to run interactive tutorial
 
-```
-🔐 ENCRYPTED CREDENTIALS
-======================================================================
-
-⚠️  SECURITY WARNING
-
-Encryption is NOT enabled.
-Credentials are currently stored in PLAINTEXT in the database.
-
-This is a security risk!
-
-Would you like to enable encryption now?
-  • Credentials will be encrypted with a master password
-  • Existing plaintext credentials will be migrated
-  • You'll need this password to view credentials
-
-Enable encryption? [Y/n]:
-```
+**Encryption is mandatory** - you'll create a master password that encrypts all credentials.
 
-**Important Decision:**
-- **Press Y** (recommended): Set up encryption now. You'll create a master password.
-- **Press N**: Skip encryption. You can enable it later with `souleyez db encrypt`.
+**Password Requirements:**
+- At least 12 characters
+- Mix of uppercase and lowercase
+- At least one number
+- At least one special character (!@#$%^&*)
 
-> ⚠️ **Security Note**: For production pentests, always enable encryption. Credentials will be stored in plaintext if you skip this step.
+> ⚠️ **Important**: If you lose this password, encrypted credentials cannot be recovered!
 
-**After encryption setup** (or if you skip it), you'll enter the main interactive menu where you can create your first engagement and start scanning.
+**After the wizard completes**, you'll enter the main interactive menu where you can start scanning.
 
 ## Security Tools Installation
 
@@ -321,10 +310,10 @@ souleyez interactive
 ```
 
 This launches the user-friendly menu interface where you can:
-1. Set up encryption (on first run)
-2. Create your first engagement
-3. Run scans with presets
-4. View results in organized tables
+1. Complete the setup wizard (on first run)
+2. Run scans with presets
+3. View results in the Command Center
+4. Manage engagements and findings
 
 See the **[Getting Started Guide](getting-started.md)** for a complete walkthrough.
 

souleyez/docs/user-guide/rbac.md

@@ -217,7 +217,7 @@ $ souleyez whoami
 │  AI Execute requires a Pro license.     │
 │                                         │
 │  [a] Activate license key               │
-│  [p] Purchase at souleyez.com/pro       │
+│  [p] Purchase at cybersoulsecurity.com  │
 │  [q] Return to menu                     │
 └─────────────────────────────────────────┘
 ```
@@ -628,7 +628,7 @@ Your role doesn't allow this action. Contact an admin for elevated access.
 
 ### "Pro license required"
 
-The feature requires a Pro tier license. Upgrade at souleyez.com/pro or contact your admin.
+The feature requires a Pro tier license. Upgrade at cybersoulsecurity.com/souleyez or contact your admin.
 
 ### "Account is temporarily locked"
 
@@ -705,4 +705,4 @@ souleyez audit export --start X         # Export (Admin)
 
 ---
 
-*For support, contact support@souleyez.com or visit github.com/cyber-soul-security/souleyez*
+*For support, contact cysoul.secit@gmail.com or visit github.com/cyber-soul-security/souleyez*

souleyez/docs/user-guide/scope-management.md

@@ -680,4 +680,4 @@ souleyez scope log <eng> --action blocked       # Filter blocked
 
 ---
 
-*For support, contact support@souleyez.com or visit github.com/cyber-soul-security/souleyez*
+*For support, contact cysoul.secit@gmail.com or visit github.com/cyber-soul-security/souleyez*