{"id":"go-appsec-toolbox","name":"toolbox","homepage":null,"repo_url":"https://github.com/go-appsec/toolbox","category":"security","subcategories":[],"tags":["security-testing","appsec","mcp","mitm-proxy","pentesting","oast","websocket","replay","agent-collaboration","go"],"what_it_does":"toolbox/sectool is a CLI + MCP server that enables collaborative application security testing between a human operator and an AI agent. It provides a wire-fidelity HTTP(S) MITM proxy (native, and optional Burp as a front-end), captures and replays authenticated browser/proxy traffic, supports crawling/diffing/reflection detection and out-of-band interaction testing (OAST via Interactsh), and exposes these capabilities as MCP tools (plus CLI commands sharing state).","use_cases":["Interactive appsec testing where a human performs authentication and UI actions while an agent explores and mutates captured flows","Validating vulnerability reports by replaying and diffing captured request/response pairs","Endpoint and form discovery via crawling seeded from proxy history","Injection/reflection triage by detecting reflected parameters across encoding variants","Out-of-band callback checks (OAST) for blind behaviors using Interactsh","Regression-style testing by exporting/editing request bundles and resending"],"not_for":["Automated, fully headless vulnerability scanning without a human/agent workflow","General-purpose API testing for environments where MITM proxying is disallowed or impractical","Use as an authorization boundary (it helps testing; it does not replace proper authz/authn controls)"],"best_when":"You need agent-assisted, authenticated, stateful web app testing where a human can drive the browser/UI and the agent can analyze and mutate the resulting traffic via MCP.","avoid_when":"You cannot install/use a MITM CA cert or otherwise cannot inspect/modify traffic (corporate policy, strict client constraints), or when you require formal SLAs and SaaS-style operational guarantees.","alternatives":["Burp Suite + extensions and manual/automation workflows","OWASP ZAP with scripted automation","Custom proxy + replay tooling (e.g., mitmproxy-based pipelines) with agent wrappers","Commercial pentest platforms with automation and reporting features"],"af_score":62.8,"security_score":41.0,"reliability_score":23.8,"package_type":"mcp_server","discovery_source":["github"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-30T15:37:23.965001+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":"http://127.0.0.1:9119/mcp (per README)","has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["None described for local MCP/CLI access (implied local usage)","Optional browser/proxy authentication to the target app handled by the user"],"oauth":false,"scopes":false,"notes":"No service-to-service API auth is described for the local MCP server; access appears intended for local use. Agent/user authentication to the target application is handled via interactive browser/proxy session."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Open-source CLI/tooling (MIT license per repository metadata). No pricing model indicated in provided content."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":62.8,"security_score":41.0,"reliability_score":23.8,"mcp_server_quality":78.0,"documentation_accuracy":72.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":95.0,"rate_limit_clarity":10.0,"tls_enforcement":70.0,"auth_strength":30.0,"scope_granularity":20.0,"dependency_hygiene":50.0,"secret_handling":40.0,"security_notes":"Security-relevant strengths: supports HTTPS interception via user-installed CA to enable accurate testing; provides workflow guidance to reduce excessive agent behavior. Security concerns/unknowns: no documented authentication/authorization for the local MCP server interface (likely intended for localhost trust). Tooling manipulates potentially sensitive captured traffic (including cookies/JWTs) and thus requires careful handling of local artifacts and logs; the provided content does not specify redaction or secure storage. Dependency hygiene and detailed security practices are not verifiable from the provided README/metadata alone.","uptime_documented":0.0,"version_stability":45.0,"breaking_changes_history":20.0,"error_recovery":30.0,"idempotency_support":"false","idempotency_notes":"Many operations (replay with mutations, crawling, sending bundles, OAST callbacks) are inherently stateful/effectful; no explicit idempotency guarantees are documented in the provided README.","pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Requires a working MITM setup (proxy configuration + CA installation for HTTPS interception) or Burp MCP availability.","The tool is not a scanner; agent success depends on the human providing appropriate authentication/UI state and selecting appropriate workflow mode.","Workflows can exclude crawling tools in test-report mode; agents need to respect workflow instructions.","OAST requires external callback infrastructure (Interactsh) and waiting/polling for events.","Proxy fidelity (HTTP/1.1, HTTP/2, WebSocket) may introduce complexity for certain edge cases; agent should handle protocol-specific artifacts carefully."]}}