[{"category":"core","description":"Collects basic platform and environment inventory from the hosted service.","hosted_safe":true,"id":"asset_inventory","lab_only":false,"name":"Asset Inventory","required_capabilities":[]},{"category":"core","description":"Creates a safe high-level baseline of the running platform environment.","hosted_safe":true,"id":"network_baseline","lab_only":false,"name":"Network Baseline","required_capabilities":[]},{"category":"ai","description":"Produces safe triage, summary, and reporting outputs.","hosted_safe":true,"id":"ai_analysis","lab_only":false,"name":"AI Analysis","required_capabilities":[]},{"category":"network","description":"Lab-only network enumeration for authorized environments.","hosted_safe":false,"id":"nmap","lab_only":true,"name":"Network Enumeration","required_capabilities":["nmap"]},{"category":"mobile","description":"Lab-only Android package inspection for authorized applications.","hosted_safe":false,"id":"apktool","lab_only":true,"name":"Application Inspection","required_capabilities":["apktool"]},{"category":"mobile","description":"Lab-only mobile instrumentation for authorized test devices and apps.","hosted_safe":false,"id":"frida","lab_only":true,"name":"Mobile Instrumentation","required_capabilities":["frida-tools"]},{"category":"osint","description":"Lab-only OSINT harvesting of emails, subdomains, and open-source intel for authorized targets.","hosted_safe":false,"id":"theHarvester","lab_only":true,"name":"Email & Domain Harvesting","required_capabilities":["theHarvester"]},{"category":"osint","description":"Lab-only in-depth DNS enumeration and attack surface mapping for authorized scopes.","hosted_safe":false,"id":"amass","lab_only":true,"name":"Attack Surface Mapping","required_capabilities":["amass"]},{"category":"osint","description":"Lab-only username reconnaissance across social networks and public platforms.","hosted_safe":false,"id":"sherlock","lab_only":true,"name":"Username OSINT","required_capabilities":["sherlock"]},{"category":"osint","description":"Lab-only domain registration and DNS record lookups for authorized investigation.","hosted_safe":false,"id":"whois_dns","lab_only":true,"name":"Whois & DNS Lookup","required_capabilities":["whois","dig"]},{"category":"code_security","description":"Lab-only static code security scanning for authorized repositories.","hosted_safe":false,"id":"semgrep","lab_only":true,"name":"Static Code Security Scan","required_capabilities":["semgrep"]},{"category":"code_security","description":"Lab-only filesystem, dependency, and container vulnerability scanning.","hosted_safe":false,"id":"trivy","lab_only":true,"name":"Vulnerability & Dependency Scan","required_capabilities":["trivy"]},{"category":"code_security","description":"Lab-only secret and credential detection for authorized repositories.","hosted_safe":false,"id":"gitleaks","lab_only":true,"name":"Secret Detection","required_capabilities":["gitleaks"]},{"category":"code_security","description":"Lab-only Python security linting for authorized codebases.","hosted_safe":false,"id":"bandit","lab_only":true,"name":"Python Security Scan","required_capabilities":["bandit"]},{"category":"code_security","description":"Lab-only infrastructure-as-code and cloud configuration scanning.","hosted_safe":false,"id":"checkov","lab_only":true,"name":"IaC & Cloud Config Scan","required_capabilities":["checkov"]}]
