Tools
Atomic, executable actions that power analysis, enumeration, and collection across the Method Platform.
What is a Tool?
A Tool is an atomic security action in Method Platform. Each Tool wraps an API (e.g. AWS), a scanner (e.g. Nessus), or a custom security CLI to perform a specific technical task, like scanning a target, retrieving cloud configuration data, or enumerating network resources.
Atomic by design
Large security integrations like AWS or Okta are not represented as a single Tool. Instead, they are decomposed into many small atomic Tools (e.g. “Enumerate AWS EC2 Instances”, “List IAM Roles”). This gives fine-grained control over inputs and outputs, leading to better performance, auditability, and composability.
Open-source foundation
Under the hood, every Tool in Method Platform leverages a CLI app, all of which Method Security has open-sourced. This provides complete visibility into what executes in customer environments.
Tool organization
Tools are organized by families that reflect their purpose:
- Collection: Gather data from sources (e.g. cloud APIs, directories)
- Reconnaissance: Discover and enumerate assets and services
- Exploitation: Validate vulnerabilities through controlled exploitation
- Analysis: Process and enrich collected data
Each Tool belongs to a family and is executed through available runtimes via Jackals.
Tools app
Click into any Tool to view:
- Details: Purpose, parameters, required inputs, associated links, and the types of Objects it creates
- Examples: Sample use cases and representative executions showing how the Tool is used in operations
- Tasks: All existing Tasks that use the selected Tool
How Tools feed the platform
Every Tool execution feeds the Ledger, which in turn updates the Ontology. This means that running any Tool — whether in an automated Task, a manual Operation, or an AI Agent workflow — contributes to Method’s continuously updating picture of your environment.
