strix-agent 0.1.1__py3-none-any.whl

strix/tools/notes/notes_actions_schema.xml

@@ -0,0 +1,150 @@
+<tools>
+  <tool name="create_note">
+    <description>Create a personal note for TODOs, side notes, plans, and organizational purposes during
+  the scan.</description>
+    <details>Use this tool for quick reminders, action items, planning thoughts, and organizational notes
+  rather than formal vulnerability reports or detailed findings. This is your personal notepad
+  for keeping track of tasks, ideas, and things to remember or follow up on.</details>
+    <parameters>
+      <parameter name="title" type="string" required="true">
+        <description>Title of the note</description>
+      </parameter>
+      <parameter name="content" type="string" required="true">
+        <description>Content of the note</description>
+      </parameter>
+      <parameter name="category" type="string" required="false">
+        <description>Category to organize the note (default: "general", "findings", "methodology", "todo", "questions", "plan")</description>
+      </parameter>
+      <parameter name="tags" type="string" required="false">
+        <description>Tags for categorization</description>
+      </parameter>
+      <parameter name="priority" type="string" required="false">
+        <description>Priority level of the note ("low", "normal", "high", "urgent")</description>
+      </parameter>
+    </parameters>
+    <returns type="Dict[str, Any]">
+      <description>Response containing: - note_id: ID of the created note - success: Whether the note was created successfully</description>
+    </returns>
+    <examples>
+  # Create a TODO reminder
+  <function=create_note>
+  <parameter=title>TODO: Check SSL Certificate Details</parameter>
+  <parameter=content>Remember to verify SSL certificate validity and check for weak ciphers
+               on the HTTPS service discovered on port 443. Also check for certificate
+               transparency logs.</parameter>
+  <parameter=category>todo</parameter>
+  <parameter=tags>["ssl", "certificate", "followup"]</parameter>
+  <parameter=priority>normal</parameter>
+  </function>
+
+  # Planning note
+  <function=create_note>
+  <parameter=title>Scan Strategy Planning</parameter>
+  <parameter=content>Plan for next phase: 1) Complete subdomain enumeration 2) Test discovered
+               web apps for OWASP Top 10 3) Check database services for default creds
+               4) Review any custom applications for business logic flaws</parameter>
+  <parameter=category>plan</parameter>
+  <parameter=tags>["planning", "strategy", "next_steps"]</parameter>
+  </function>
+
+  # Side note for later investigation
+  <function=create_note>
+  <parameter=title>Interesting Directory Found</parameter>
+  <parameter=content>Found /backup/ directory that might contain sensitive files. Low priority
+               for now but worth checking if time permits. Directory listing seems
+               disabled.</parameter>
+  <parameter=category>findings</parameter>
+  <parameter=tags>["directory", "backup", "low_priority"]</parameter>
+  <parameter=priority>low</parameter>
+  </function>
+    </examples>
+  </tool>
+  <tool name="delete_note">
+    <description>Delete a note.</description>
+    <parameters>
+      <parameter name="note_id" type="string" required="true">
+        <description>ID of the note to delete</description>
+      </parameter>
+    </parameters>
+    <returns type="Dict[str, Any]">
+      <description>Response containing: - success: Whether the note was deleted successfully</description>
+    </returns>
+    <examples>
+  <function=delete_note>
+  <parameter=note_id>note_123</parameter>
+  </function>
+    </examples>
+  </tool>
+  <tool name="list_notes">
+    <description>List existing notes with optional filtering and search.</description>
+    <parameters>
+      <parameter name="category" type="string" required="false">
+        <description>Filter by category</description>
+      </parameter>
+      <parameter name="tags" type="string" required="false">
+        <description>Filter by tags (returns notes with any of these tags)</description>
+      </parameter>
+      <parameter name="priority" type="string" required="false">
+        <description>Filter by priority level</description>
+      </parameter>
+      <parameter name="search" type="string" required="false">
+        <description>Search query to find in note titles and content</description>
+      </parameter>
+    </parameters>
+    <returns type="Dict[str, Any]">
+      <description>Response containing: - notes: List of matching notes - total_count: Total number of notes found</description>
+    </returns>
+    <examples>
+  # List all findings
+  <function=list_notes>
+  <parameter=category>findings</parameter>
+  </function>
+
+  # List high priority items
+  <function=list_notes>
+  <parameter=priority>high</parameter>
+  </function>
+
+  # Search for SQL injection related notes
+  <function=list_notes>
+  <parameter=search>SQL injection</parameter>
+  </function>
+
+  # Search within a specific category
+  <function=list_notes>
+  <parameter=search>admin</parameter>
+  <parameter=category>findings</parameter>
+  </function>
+    </examples>
+  </tool>
+  <tool name="update_note">
+    <description>Update an existing note.</description>
+    <parameters>
+      <parameter name="note_id" type="string" required="true">
+        <description>ID of the note to update</description>
+      </parameter>
+      <parameter name="title" type="string" required="false">
+        <description>New title for the note</description>
+      </parameter>
+      <parameter name="content" type="string" required="false">
+        <description>New content for the note</description>
+      </parameter>
+      <parameter name="tags" type="string" required="false">
+        <description>New tags for the note</description>
+      </parameter>
+      <parameter name="priority" type="string" required="false">
+        <description>New priority level</description>
+      </parameter>
+    </parameters>
+    <returns type="Dict[str, Any]">
+      <description>Response containing: - success: Whether the note was updated successfully</description>
+    </returns>
+    <examples>
+  <function=update_note>
+  <parameter=note_id>note_123</parameter>
+  <parameter=content>Updated content with new findings...</parameter>
+  <parameter=priority>urgent</parameter>
+  </function>
+    </examples>
+  </tool>
+</tools>

strix/tools/proxy/__init__.py

@@ -0,0 +1,20 @@
+from .proxy_actions import (
+    list_requests,
+    list_sitemap,
+    repeat_request,
+    scope_rules,
+    send_request,
+    view_request,
+    view_sitemap_entry,
+)
+
+
+__all__ = [
+    "list_requests",
+    "list_sitemap",
+    "repeat_request",
+    "scope_rules",
+    "send_request",
+    "view_request",
+    "view_sitemap_entry",
+]

strix/tools/proxy/proxy_actions.py

@@ -0,0 +1,101 @@
+from typing import Any, Literal
+
+from strix.tools.registry import register_tool
+
+from .proxy_manager import get_proxy_manager
+
+
+RequestPart = Literal["request", "response"]
+
+
+@register_tool
+def list_requests(
+    httpql_filter: str | None = None,
+    start_page: int = 1,
+    end_page: int = 1,
+    page_size: int = 50,
+    sort_by: Literal[
+        "timestamp",
+        "host",
+        "method",
+        "path",
+        "status_code",
+        "response_time",
+        "response_size",
+        "source",
+    ] = "timestamp",
+    sort_order: Literal["asc", "desc"] = "desc",
+    scope_id: str | None = None,
+) -> dict[str, Any]:
+    manager = get_proxy_manager()
+    return manager.list_requests(
+        httpql_filter, start_page, end_page, page_size, sort_by, sort_order, scope_id
+    )
+
+
+@register_tool
+def view_request(
+    request_id: str,
+    part: RequestPart = "request",
+    search_pattern: str | None = None,
+    page: int = 1,
+    page_size: int = 50,
+) -> dict[str, Any]:
+    manager = get_proxy_manager()
+    return manager.view_request(request_id, part, search_pattern, page, page_size)
+
+
+@register_tool
+def send_request(
+    method: str,
+    url: str,
+    headers: dict[str, str] | None = None,
+    body: str = "",
+    timeout: int = 30,
+) -> dict[str, Any]:
+    if headers is None:
+        headers = {}
+    manager = get_proxy_manager()
+    return manager.send_simple_request(method, url, headers, body, timeout)
+
+
+@register_tool
+def repeat_request(
+    request_id: str,
+    modifications: dict[str, Any] | None = None,
+) -> dict[str, Any]:
+    if modifications is None:
+        modifications = {}
+    manager = get_proxy_manager()
+    return manager.repeat_request(request_id, modifications)
+
+
+@register_tool
+def scope_rules(
+    action: Literal["get", "list", "create", "update", "delete"],
+    allowlist: list[str] | None = None,
+    denylist: list[str] | None = None,
+    scope_id: str | None = None,
+    scope_name: str | None = None,
+) -> dict[str, Any]:
+    manager = get_proxy_manager()
+    return manager.scope_rules(action, allowlist, denylist, scope_id, scope_name)
+
+
+@register_tool
+def list_sitemap(
+    scope_id: str | None = None,
+    parent_id: str | None = None,
+    depth: Literal["DIRECT", "ALL"] = "DIRECT",
+    page: int = 1,
+) -> dict[str, Any]:
+    manager = get_proxy_manager()
+    return manager.list_sitemap(scope_id, parent_id, depth, page)
+
+
+@register_tool
+def view_sitemap_entry(
+    entry_id: str,
+) -> dict[str, Any]:
+    manager = get_proxy_manager()
+    return manager.view_sitemap_entry(entry_id)

strix/tools/proxy/proxy_actions_schema.xml

@@ -0,0 +1,267 @@
+<?xml version="1.0" ?>
+<tools>
+  <tool name="list_requests">
+    <description>List and filter proxy requests using HTTPQL with pagination.</description>
+    <parameters>
+      <parameter name="httpql_filter" type="string" required="false">
+        <description>HTTPQL filter using Caido's syntax:
+
+        Integer fields (port, code, roundtrip, id) - eq, gt, gte, lt, lte, ne:
+        - resp.code.eq:200, resp.code.gte:400, req.port.eq:443
+
+        Text/byte fields (ext, host, method, path, query, raw) - regex:
+        - req.method.regex:"POST", req.path.regex:"/api/.*", req.host.regex:".*.com"
+
+        Date fields (created_at) - gt, lt with ISO formats:
+        - req.created_at.gt:"2024-01-01T00:00:00Z"
+
+        Special: source:intercept, preset:"name"</description>
+      </parameter>
+      <parameter name="start_page" type="integer" required="false">
+        <description>Starting page (1-based)</description>
+      </parameter>
+      <parameter name="end_page" type="integer" required="false">
+        <description>Ending page (1-based, inclusive)</description>
+      </parameter>
+      <parameter name="page_size" type="integer" required="false">
+        <description>Requests per page</description>
+      </parameter>
+      <parameter name="sort_by" type="string" required="false">
+        <description>Sort field from: "timestamp", "host", "status_code", "response_time", "response_size"</description>
+      </parameter>
+      <parameter name="sort_order" type="string" required="false">
+        <description>Sort direction ("asc" or "desc")</description>
+      </parameter>
+      <parameter name="scope_id" type="string" required="false">
+        <description>Scope ID to filter requests (use scope_rules to manage scopes)</description>
+      </parameter>
+    </parameters>
+    <returns type="Dict[str, Any]">
+      <description>Response containing:
+        - 'requests': Request objects for page range
+        - 'total_count': Total matching requests
+        - 'start_page', 'end_page', 'page_size': Query parameters
+        - 'returned_count': Requests in response</description>
+    </returns>
+    <examples>
+  # POST requests to API with 200 responses
+  <function=list_requests>
+  <parameter=httpql_filter>req.method.eq:"POST" AND req.path.cont:"/api/"</parameter>
+  <parameter=sort_by>response_time</parameter>
+  <parameter=scope_id>scope123</parameter>
+  </function>
+
+  # Requests within specific scope
+  <function=list_requests>
+  <parameter=scope_id>scope123</parameter>
+  <parameter=sort_by>timestamp</parameter>
+  </function>
+    </examples>
+  </tool>
+
+  <tool name="view_request">
+    <description>View request/response data with search and pagination.</description>
+    <parameters>
+      <parameter name="request_id" type="string" required="true">
+        <description>Request ID</description>
+      </parameter>
+      <parameter name="part" type="string" required="false">
+        <description>Which part to return ("request" or "response")</description>
+      </parameter>
+      <parameter name="search_pattern" type="string" required="false">
+        <description>Regex pattern to search content. Common patterns:
+        - API endpoints: r"/api/[a-zA-Z0-9._/-]+"
+        - URLs: r"https?://[^\\s<>"\']+"
+        - Parameters: r'[?&][a-zA-Z0-9_]+=([^&\\s<>"\']+)'
+        - Reflections: input_value in content</description>
+      </parameter>
+      <parameter name="page" type="integer" required="false">
+        <description>Page number for pagination</description>
+      </parameter>
+      <parameter name="page_size" type="integer" required="false">
+        <description>Lines per page</description>
+      </parameter>
+    </parameters>
+    <returns type="Dict[str, Any]">
+      <description>With search_pattern (COMPACT):
+        - 'matches': [{match, before, after, position}] - max 20
+        - 'total_matches': Total found
+        - 'truncated': If limited to 20
+
+        Without search_pattern (PAGINATION):
+        - 'content': Page content
+        - 'page': Current page
+        - 'showing_lines': Range display
+        - 'has_more': More pages available</description>
+    </returns>
+    <examples>
+  # Find API endpoints in response
+  <function=view_request>
+  <parameter=request_id>123</parameter>
+  <parameter=part>response</parameter>
+  <parameter=search_pattern>/api/[a-zA-Z0-9._/-]+</parameter>
+  </function>
+    </examples>
+  </tool>
+
+  <tool name="send_request">
+    <description>Send a simple HTTP request through proxy.</description>
+    <parameters>
+      <parameter name="method" type="string" required="true">
+        <description>HTTP method (GET, POST, etc.)</description>
+      </parameter>
+      <parameter name="url" type="string" required="true">
+        <description>Target URL</description>
+      </parameter>
+      <parameter name="headers" type="dict" required="false">
+        <description>Headers as {"key": "value"}</description>
+      </parameter>
+      <parameter name="body" type="string" required="false">
+        <description>Request body</description>
+      </parameter>
+      <parameter name="timeout" type="integer" required="false">
+        <description>Request timeout</description>
+      </parameter>
+    </parameters>
+  </tool>
+
+  <tool name="repeat_request">
+    <description>Repeat an existing proxy request with modifications for pentesting.
+
+    PROPER WORKFLOW:
+    1. Use browser_action to browse the target application
+    2. Use list_requests() to see captured proxy traffic
+    3. Use repeat_request() to modify and test specific requests
+
+    This mirrors real pentesting: browse → capture → modify → test</description>
+    <parameters>
+      <parameter name="request_id" type="string" required="true">
+        <description>ID of the original request to repeat (from list_requests)</description>
+      </parameter>
+      <parameter name="modifications" type="dict" required="false">
+        <description>Changes to apply to the original request:
+        - "url": New URL or modify existing one
+        - "params": Dict to update query parameters
+        - "headers": Dict to add/update headers
+        - "body": New request body (replaces original)
+        - "cookies": Dict to add/update cookies</description>
+      </parameter>
+    </parameters>
+    <returns type="Dict[str, Any]">
+      <description>Response data with status, headers, body, timing, and request details</description>
+    </returns>
+    <examples>
+  # Modify POST body payload
+  <function=repeat_request>
+  <parameter=request_id>req_789</parameter>
+  <parameter=modifications>{"body": "{\"username\":\"admin\",\"password\":\"admin\"}"}</parameter>
+  </function>
+    </examples>
+  </tool>
+
+  <tool name="scope_rules">
+    <description>Manage proxy scope patterns for domain/file filtering using Caido's scope system.</description>
+    <parameters>
+      <parameter name="action" type="string" required="true">
+        <description>Scope action:
+        - get: Get specific scope by ID or list all if no ID
+        - update: Update existing scope (requires scope_id and scope_name)
+        - list: List all available scopes
+        - create: Create new scope (requires scope_name)
+        - delete: Delete scope (requires scope_id)</description>
+      </parameter>
+      <parameter name="allowlist" type="list" required="false">
+        <description>Domain patterns to include. Examples: ["*.example.com", "api.test.com"]</description>
+      </parameter>
+      <parameter name="denylist" type="list" required="false">
+        <description>Patterns to exclude. Some common extensions:
+        ["*.gif", "*.jpg", "*.png", "*.css", "*.js", "*.ico", "*.svg", "*woff*", "*.ttf"]</description>
+      </parameter>
+      <parameter name="scope_id" type="string" required="false">
+        <description>Specific scope ID to operate on (required for get, update, delete)</description>
+      </parameter>
+      <parameter name="scope_name" type="string" required="false">
+        <description>Name for scope (required for create, update)</description>
+      </parameter>
+    </parameters>
+    <returns type="Dict[str, Any]">
+      <description>Depending on action:
+        - get: Single scope object or error
+        - list: {"scopes": [...], "count": N}
+        - create/update: {"scope": {...}, "message": "..."}
+        - delete: {"message": "...", "deletedId": "..."}</description>
+    </returns>
+    <notes>
+  - Empty allowlist = allow all domains
+  - Denylist overrides allowlist
+  - Glob patterns: * (any), ? (single), [abc] (one of), [a-z] (range), [^abc] (none of)
+  - Each scope has unique ID and can be used with list_requests(scopeId=...)
+    </notes>
+    <examples>
+  # Create API-only scope
+  <function=scope_rules>
+  <parameter=action>create</parameter>
+  <parameter=scope_name>API Testing</parameter>
+  <parameter=allowlist>["api.example.com", "*.api.com"]</parameter>
+  <parameter=denylist>["*.gif", "*.jpg", "*.png", "*.css", "*.js"]</parameter>
+  </function>
+    </examples>
+  </tool>
+
+  <tool name="list_sitemap">
+    <description>View hierarchical sitemap of discovered attack surface from proxied traffic.
+
+    Perfect for bug hunters to understand the application structure and identify
+    interesting endpoints, directories, and entry points discovered during testing.</description>
+    <parameters>
+      <parameter name="scope_id" type="string" required="false">
+        <description>Scope ID to filter sitemap entries (use scope_rules to get/create scope IDs)</description>
+      </parameter>
+      <parameter name="parent_id" type="string" required="false">
+        <description>ID of parent entry to expand. If None, returns root domains.</description>
+      </parameter>
+      <parameter name="depth" type="string" required="false">
+        <description>DIRECT: Only immediate children. ALL: All descendants recursively.</description>
+      </parameter>
+      <parameter name="page" type="integer" required="false">
+        <description>Page number for pagination (30 entries per page)</description>
+      </parameter>
+    </parameters>
+    <returns type="Dict[str, Any]">
+      <description>Response containing:
+        - 'entries': List of cleaned sitemap entries
+        - 'page', 'total_pages', 'total_count': Pagination info
+        - 'has_more': Whether more pages available
+        - Each entry: id, kind, label, hasDescendants, request (method/path/status only)</description>
+    </returns>
+    <notes>
+  Entry kinds:
+  - DOMAIN: Root domains (example.com)
+  - DIRECTORY: Path directories (/api/, /admin/)
+  - REQUEST: Individual endpoints
+  - REQUEST_BODY: POST/PUT body variations
+  - REQUEST_QUERY: GET parameter variations
+
+  Check hasDescendants=true to identify entries worth expanding.
+  Use parent_id from any entry to drill down into subdirectories.
+    </notes>
+  </tool>
+
+  <tool name="view_sitemap_entry">
+    <description>Get detailed information about a specific sitemap entry and related requests.
+
+    Perfect for understanding what's been discovered under a specific directory
+    or endpoint, including all related requests and response codes.</description>
+    <parameters>
+      <parameter name="entry_id" type="string" required="true">
+        <description>ID of the sitemap entry to examine</description>
+      </parameter>
+    </parameters>
+    <returns type="Dict[str, Any]">
+      <description>Response containing:
+        - 'entry': Complete entry details including metadata
+        - Entry contains 'requests' with all related HTTP requests
+        - Shows request methods, paths, response codes, timing</description>
+    </returns>
+  </tool>
+</tools>