I Built a Cybersecurity Command Center in Electron — With AI Agents, Kanban Missions, and Quad-Split Panes
published: true
description: "CrowByte Terminal is an Electron desktop app for bug bounty hunters and pentesters. 95 AI tools, mission kanban board, quad-split layouts, real-time threat feeds, and a full CVE database. Looking for contributors!"
tags: security, typescript, react, opensource
What is CrowByte Terminal?
CrowByte Terminal is an Electron desktop application purpose-built for offensive security operations. Think of it as your SOC in a box — a unified command center for bug bounty hunting, penetration testing, and security research.
Built with React 18 + TypeScript + Vite 8, runs on Kali Linux (and any OS with Electron support), backed by Supabase.
Live demo: crowbyte.io
Why I Built This
As a bug bounty hunter, I was constantly switching between 15+ browser tabs, terminal windows, note-taking apps, and reporting tools. Every hunt meant:
- Running recon tools in one terminal
- Tracking CVEs in another tab
- Writing notes in Obsidian
- Managing reports in Google Docs
- Checking threat intel feeds in yet another tab
I wanted one interface that ties everything together. CrowByte Terminal is that interface.
Core Features
1. Quad-Split Pane Layout
Any page can be split into 2 or 4 independent panes. Each pane has:
- Its own page content (Dashboard, CVE, Chat, Terminal, etc.)
- Independent scroll and resizable dividers
- Drag-to-swap between panes
- Focus/zoom mode (center overlay with backdrop blur)
- Right-click context menu for pane management
Closing a quad pane gracefully downgrades to dual-split mode instead of collapsing everything.
// Quad split with independent row ratios per column
<div style={{ width: `${colRatio}%` }}>
<TopLeftPane height={`${leftRowRatio}%`} />
<HorizontalDivider />
<BottomLeftPane />
</div>
<VerticalDivider />
<div className="flex-1">
<TopRightPane height={`${rightRowRatio}%`} />
<HorizontalDivider />
<BottomRightPane />
</div>
2. Mission Kanban Board
Missions follow a full bug bounty lifecycle with 11 status columns:
Draft → Planning → Recon → Active → Exploitation → Reporting → Submitted → Completed → Paid → Paused → Failed
Drag-and-drop cards between columns to update status (native HTML5 DnD, no external library). Optimistic UI with rollback on error. Each card shows mission type, target scope, phase count, and AI assessment badges.
The detail view includes a clickable status pipeline, phase breakdown with tasks/tools, risk analysis, and AI-powered plan modification (optimize, reduce risk, accelerate, enhance stealth).
3. 95 AI-Powered Tools
The built-in AI chat has access to 95 tools organized by domain:
| Domain | Tools | Examples |
|---|---|---|
| Recon | 11 | nmap, nuclei, DNS, subdomain enum |
| CVE | 2 | NVD + Shodan lookup, save to DB |
| Knowledge Base | 2 | Save and search research notes |
| Network Scans | 9 | Port scan, service detection |
| Red Team | 3 | Operation tracking |
| Detection Engine | 7 | Custom detection rules |
| Alert Center | 9 | Alert ingestion, triage |
| Reports | 8 | Generate, export, templates |
| Triage Engine | 6 | Auto-classify findings |
| Custom Agents | 7 | Build, deploy, manage AI agents |
Tools chain together: recon → save findings → triage → generate report → export PDF
4. Real-Time Threat Intelligence Feed
Connected to 7 threat feeds (URLhaus, ThreatFox, Feodo C2, SSH/Login bruteforce blocklists, CINS, ET Compromised) plus 6 security news sources.
The feed panel shows severity badges, real-time updates via Supabase Realtime, type filtering, expandable details with source links, and archive actions.
5. Built-in CVE Database
Query NVD + Shodan in parallel, save CVEs to your personal database with CVSS scores/vectors, affected products, CWE classifications, exploit status tracking, severity grouping, and bookmarks.
6. VPS Agent Swarm Integration
CrowByte connects to a remote VPS running 9 AI agents (Commander, Recon, Hunter, Intel, Analyst, Sentinel, and more). Agents are dispatched via SSH or gateway API, and results flow back into the dashboard.
Tech Stack
Frontend: React 18 + TypeScript + Vite 8
Desktop: Electron 39
UI: Radix UI (shadcn/ui) + Tailwind CSS v3
Animations: Framer Motion
Terminal: xterm.js + node-pty
Backend: Supabase (PostgreSQL, Auth, Realtime, Edge Functions)
AI: Claude Code CLI + OpenClaw (DeepSeek, Qwen, Mistral)
Charts: Recharts
Icons: Phosphor Icons
Architecture Highlights
Split Screen Context
The entire split/quad system is managed by a single React context with ~30 actions:
type SplitMode = 'none' | 'dual' | 'quad';
interface SplitScreenState {
mode: SplitMode;
left: SplitPane | null;
right: SplitPane | null;
topLeft: SplitPane | null;
topRight: SplitPane | null;
bottomLeft: SplitPane | null;
bottomRight: SplitPane | null;
colRatio: number;
leftRowRatio: number;
rightRowRatio: number;
zoomedPane: PanePosition | null;
}
Supabase Realtime Feed
Singleton channel manager prevents duplicate subscriptions when the same feed renders in multiple split panes:
const activeFeedChannels = new Map<string, {
channel: any;
listeners: Set<(item: FeedItem) => void>;
}>();
// First subscriber creates channel
// Subsequent ones add callbacks
// Last unsubscriber removes the channel
All 18 Pages
| Page | What it does |
|---|---|
| Dashboard | System health, threat feed, agent activity, VPS metrics |
| Chat | Dual AI provider (Claude + OpenClaw agents) |
| CVE Database | NVD + Shodan lookup, save, search, severity grouping |
| Terminal | Full xterm.js terminal with tmux support |
| Missions | Kanban board for pentest/bounty operations |
| Red Team | Operation tracking with findings |
| CyberOps | Tactical security toolkit |
| Network Scanner | Nmap GUI with parsed results |
| Security Monitor | AI-powered monitoring |
| Fleet | Endpoint + VPS agent monitoring |
| Agent Builder | Create custom AI agents |
| Knowledge Base | Research notes with categories and tags |
| Bookmarks | URL bookmarks with favicons |
| Reports | Generate and export security reports |
| Detection Lab | Custom detection rule builder |
| Alert Center | Alert ingestion and triage |
| Sentinel | Continuous threat monitoring |
| Settings | Preferences, API keys, theme |
Looking for a Team
I have been building CrowByte solo, and it has grown into something much bigger than a side project. I am actively looking for contributors and collaborators who want to help take this to the next level.
Areas where I need help:
- Frontend (React/TypeScript) — More pages, better UX, mobile responsive
- Security tooling — Integration with more scanners, custom detection rules
- Backend (Supabase/Edge Functions) — Feed ingestion pipeline, scheduled jobs
- DevOps/CI/CD — Automated builds, staging environment, Docker
- Design — UI/UX improvements, branding, marketing site
- Documentation — User guides, API docs, contribution guides
Whether you are a developer, designer, security researcher, or just someone who thinks building offensive security tools is cool — I want to hear from you.
Drop a comment below, reach out on GitHub, or connect with me directly. Let us build the ultimate cybersecurity command center together.
Try It
Web version: crowbyte.io
Built by @rainkode — a bug bounty hunter who got tired of context-switching between 15 tools.
CrowByte — your SOC in a box.
Top comments (0)