HackerAI

Terminal AI assistant for cybersecurity professionals. 20+ free models, multi-provider rotation, autonomous agent mode. No credit card required.

HackerAI is a blessed-based terminal UI that helps with penetration testing, CTF challenges, vulnerability research, code review, and security automation. Bring your own API key or log in via browser OAuth to get started instantly.

Install

npm install -g hackerai

Run

hackerai

On first launch, pick one:

1. Login with HackerAI — browser OAuth, 1000 free requests/day
2. Login with Groq — 14,400 requests/day, ultra-fast
3. Paste any API key — OpenRouter, OpenAI, Anthropic, Gemini, Cerebras, Mistral, DeepSeek, xAI, Together

Features

• Three modes — Hunt (autonomous agent), Chat (Q&A), Code (review & exploit dev). Press Tab to cycle.
• 20+ free models — Llama 3.3 70B, Qwen 3, DeepSeek R1, Gemma 3, Mistral, and more
• Multi-provider rotation — Auto-fallback when a provider hits its rate limit
• Throughput-optimized routing — Picks the fastest available provider per request
• Tool approval gates — Dangerous commands require explicit confirmation
• Local-first — Auth tokens and config stay on your machine (~/.hackerai/)
• No conversation logging — Your prompts never leave your selected provider

Commands

| Command | Description | |---|---| | / | Open command menu | | /help | Show all commands | | /model | Pick a model | | /mode | Cycle Hunt / Chat / Code | | /addkey <key> | Add a provider API key | | /providers | List configured providers | | /account | Show tier, usage, remaining requests | | /new-session | Clear chat and start fresh | | /login / /logout | Manage authentication | | /cd <dir> | Change working directory | | /refresh | Update model list from API | | /exit | Quit |

Keyboard Shortcuts

| Key | Action | |---|---| | / | Command menu | | Tab | Cycle modes | | Ctrl+N | Switch model | | Ctrl+R | Retry last message | | Ctrl+L | Clear screen | | Ctrl+C | Exit | | ↑ / ↓ | Input history |

Tiers

| | Free | Pro | |---|---|---| | Requests/day | 1,000 | Unlimited | | Free models | ✓ | ✓ | | Priority routing | — | ✓ | | Price | $0 | See hackerai.sh/pricing |

Bring your own provider keys (Groq, Gemini, etc.) to go beyond the free HackerAI tier at no cost.

Security & Ethics

This is a dual-use security tool. It is intended for:

• Authorized penetration testing on systems you own or have written permission to test
• CTF competitions and security research
• Defensive security analysis and code review
• Educational use

It is NOT intended for unauthorized access, attacking systems without permission, or any illegal activity. You are solely responsible for how you use this tool.

Safety features

• Tool calls that modify the filesystem or run commands require explicit user approval
• No telemetry, no conversation logging on our servers
• API keys stored locally only (~/.hackerai/config.json)
• Supabase anon key protected by row-level security
• ReDoS protection on pattern matching

Requirements

• Node.js 16 or later
• A terminal that supports 256 colors (most modern terminals)
• Works on Windows, macOS, Linux, WSL

Links

• Website: hackerai.sh
• Issues: github.com/agentichacker/hackerai/issues
• Pricing: hackerai.sh/pricing

License

MIT — See LICENSE for details.

Disclaimer: The authors and contributors of HackerAI are not liable for any misuse of this tool. Users are solely responsible for ensuring their use complies with all applicable laws and that they have proper authorization for any security testing they perform.