Full security assessment with brain coordination. Multi-phase, skips known-exhausted areas, builds on prior knowledge.
ALL agents dispatched by this command MUST use model: "sonnet" in the Agent tool call.
Full security assessment on: $ARGUMENTS
python3 tools/brain.py init (if first run)python3 tools/brain.py brief $ARGUMENTSpython3 tools/scope_check.py $ARGUMENTSLaunch recon agent with brain context. Focus on discovering NEW subdomains and services beyond what's already known.
Launch IN PARALLEL, each with brain context about what's been scanned before:
vuln-scanner — skip known false positives, focus new hostsconfig-auditor — check if previously noted misconfigs are fixedjs-analyzer — focus on new/changed JS filesRecord all results to the brain after each agent returns.
Based on Phase 2 + brain knowledge, selectively launch ONLY agents targeting UNTESTED or ACTIVE vectors:
xss-hunter ONLY on endpoints not marked exhaustedapi-audit ONLY on newly discovered or untested endpointsauth-tester ONLY if new auth flows foundRecord all results to the brain.
python3 tools/dedup_findings.py --scan-dir scans/ --db findings.json --statspython3 tools/brain.py statuspoc-builder for each confirmed findingreport-writer with full brain contextpython3 tools/brain.py log "Full scan completed on $ARGUMENTS"