A desktop security audit tool for Linux, macOS and Windows. 14 audit sections, AI-powered remediation via Ollama, and one-click fixes — all in a clean PyQt6 interface.
Free · Open source · MIT · Python 3.10+ required
rex covers the most common attack surfaces on a modern system — from open ports to misconfigured SSH, SUID binaries, and world-writable paths.
ClamAV scan requires clamscan to be installed. All other sections require no external dependencies.
A native desktop GUI with everything needed to audit and harden your system — no terminal expertise required.
14 audit sections
Covers system info, open ports, firewall, SSH, SUID binaries, world-writable files, scheduled tasks and more.
AI Fix via Ollama
Select any finding, click AI Fix and get shell commands generated by a local LLM. No data leaves your machine.
One-click apply
Apply suggested fixes with a single click. rex auto-prepends sudo for system paths and previews every command before execution.
Blocked paths
Never auto-executes on sudoers, shadow, passwd, sshd_config and other critical files. Manual instructions shown instead.
Cross-platform
Runs on Linux, macOS and Windows. Audit sections adapt automatically to the current OS.
ClamAV scan
Optional full virus scan via ClamAV. Runs as a separate section — no impact on audit speed if ClamAV isn't installed.
Export reports
Save full audit results to a plain text file for documentation, compliance review or sharing with your team.
Open source
Full source on GitHub. MIT licensed. No telemetry, no analytics, no cloud dependencies.
When rex finds a vulnerability, click AI Fix to send the finding to a local Ollama model. The LLM returns shell commands tailored to your OS and audit output. rex previews each command and applies it with one click — sudo prepended automatically for system paths.
100% local
Inference runs on your machine via Ollama. No audit data is sent to any cloud. Works air-gapped.
Auto-pull model
If the Ollama model isn't installed, rex pulls it automatically in the background with a live progress indicator.
Preview before apply
Every fix is shown before execution. Commands are syntax-validated and unsafe shells are auto-escaped.
Hard-blocked paths
/etc/sudoers, /etc/shadow, /etc/passwd and sshd_config are never auto-executed — manual instructions shown instead.
Install Python dependencies
Requires Python 3.10+. Install the two dependencies with pip.
Clone the repo
Or download the standalone binary below — no Python required.
Run the audit
Launch rex — the GUI opens immediately. Click Run Audit to start all 15 checks.
On Linux, some sections (firewall rules, SUID outside /usr) produce fuller output when run as root: sudo python rex.py
Optional: enable AI Fix
Install and start Ollama for AI-powered remediation. rex will auto-pull llama3.2 on first use.
Each section runs independently — click any item in the sidebar to view its raw output.
Standalone binaries built by GitHub Actions on every release — no Python required.
Linux x64
Standalone binary
Single executable. Download, make it executable and run — no Python or pip needed.
Download for Linux →macOS (Intel & Apple Silicon)
Standalone binary
Binaries for both x64 and arm64. Built and signed via GitHub Actions.
Download for macOS →Windows x64
Standalone executable
Native .exe file. Works in PowerShell, CMD and Windows Terminal.
Download for Windows →All platforms
From source
Python 3.10+ required. Clone, install dependencies and run directly.
View on GitHub →Share rex