Skip to main content
Strix is an autonomous AI-powered penetration testing tool that uses intelligent agents to discover and validate security vulnerabilities in your applications. Unlike traditional scanners, Strix thinks and acts like a real security researcher, combining code analysis, web testing, and exploitation techniques to find real issues.

Get Started

Quickstart

Run your first security scan in under 5 minutes

Installation

Install Strix and configure your environment

How It Works

Understand Strix’s multi-agent architecture

CLI Reference

Complete command-line reference

Key Features

Autonomous Agents

AI agents collaborate to find and exploit vulnerabilities

Security Toolkit

Browser automation, proxy, terminal, and Python execution

Specialized Skills

Pre-built knowledge for frameworks and vulnerability types

CI/CD Integration

Integrate security testing into your pipeline

What Makes Strix Different?

Strix doesn’t just flag potential issues—it validates them with working proof-of-concept exploits. Every reported vulnerability includes detailed reproduction steps and evidence.
Multiple specialized AI agents work together, sharing information and coordinating attacks just like a real penetration testing team.
Test deployed applications, analyze source code, or combine both for comprehensive security coverage.
Use custom instructions to focus on specific vulnerabilities, provide credentials, or guide the testing approach.

Quick Example

# Test a web application
strix --target https://example.com

# Test local source code with deployed app (white-box)
strix --target ./my-app --target https://staging.example.com

# Focus on specific vulnerabilities
strix --target example.com --instruction "Focus on authentication and authorization"

# Quick CI/CD scan
strix --target https://app.com --scan-mode quick --non-interactive

Build docs developers (and LLMs) love

Get started for freeTalk to us