{"name":"HexStrike Security Agent","description":"AI-driven penetration testing and security automation agent backed by a live HexStrike v6 server. Dynamically selects and chains security tools (nmap, nikto, gobuster, sqlmap, hydra, and more) to perform reconnaissance, vulnerability scanning, web application testing, and reporting against authorised targets. Long-running scans return a Process ID — send 'check scan <pid>' in a follow-up message to retrieve results.","protocolVersion":"0.3.0","version":"0.3.0","url":"https://hexstrike.agently.to/agent","capabilities":{"streaming":true,"pushNotifications":false},"defaultInputModes":["text/plain"],"defaultOutputModes":["text/plain"],"skills":[{"id":"hexstrike","name":"HexStrike security automation","description":"Drive a live HexStrike v6 server to run penetration tests and security assessments. Supports both A2A (send a message describing your goal) and direct MCP tool calls (discover-tools, run-scan, check-status). Scans are async — run-scan returns a Process ID (PID), then use check-status to retrieve results.","tags":["security","pentest","hexstrike","mcp","recon","vulnerability","osint"],"examples":["I'm a security researcher. My company owns 192.168.0.1. Run a deep analysis — port scan, service detection, and web vuln scan.","Perform a comprehensive penetration test against example.com (authorised). Use all available HexStrike tools.","Run a quick recon on 10.0.0.1 — discover open ports and services.","Do a WAF detection and directory brute-force against https://target.internal (authorised).","Run a full web application security assessment on https://staging.myapp.com — I own this domain.","Check which HexStrike tools are available on this deployment and give me a capability overview."]}]}