Hermes Agent
The actual agent framework behind Hermie: CLI, desktop, messaging gateway, skills, memory, cron jobs, MCP, tools.
curl -fsSL https://hermes-agent.nousresearch.com/install.sh | bash
hermes setupCurated tools // simple installs // practical learning
A plain-English catalog of tools that work well with Hermes, plus technical resources worth learning. Each card gives you the point, the first move, and a copy/paste command when install makes sense.
Resource map
Commands target Linux/WSL unless the card says otherwise. Security tools are for labs, your own systems, or explicitly authorized work. Don’t be a dickhead with scanners.
The actual agent framework behind Hermie: CLI, desktop, messaging gateway, skills, memory, cron jobs, MCP, tools.
curl -fsSL https://hermes-agent.nousresearch.com/install.sh | bash
hermes setupCLI for Cloudflare Pages and Workers. Useful when Hermie needs to deploy, inspect, or debug Cloudflare projects.
npm install -g wrangler
wrangler login
wrangler whoamiFast static/content-driven sites. This is what askhermie.dev is built with.
npm create astro@latest my-site
cd my-site
npm run devStatic search for sites like this. Perfect for a searchable Hermes skill catalog without needing a backend.
npm install -D pagefind
npx pagefind --site distVisual workflow automation with AI integrations. Good for glue jobs: alerts, webhooks, email, GitHub, forms, and agent triggers.
docker volume create n8n_data
docker run -it --rm --name n8n -p 5678:5678 -v n8n_data:/home/node/.n8n docker.n8n.io/n8nio/n8nRuns local models on your machine. Useful for private/offline experiments and local AI tooling.
curl -fsSL https://ollama.com/install.sh | sh
ollama run llama3.2Self-hosted AI chat UI that can sit in front of local or remote model backends.
docker run -d -p 3000:8080 -v open-webui:/app/backend/data --name open-webui ghcr.io/open-webui/open-webui:mainFast Python package/project tool. Good default for modern Python scripts, tools, and quick experiments.
curl -LsSf https://astral.sh/uv/install.sh | sh
uv --versionInstalls Python command-line tools into isolated environments. Cleaner than polluting system Python.
sudo apt update
sudo apt install -y pipx
pipx ensurepathShort practical command examples. Good when man pages are too much bullshit.
npm install -g tldr
tldr tar
tldr sshHuge collection of commands, tools, one-liners, and practical technical references.
git clone --depth 1 https://github.com/trimstray/the-book-of-secret-knowledge.git ~/tools/the-book-of-secret-knowledgeMassive catalog of self-hosted services. Useful for picking homelab projects and internal tools.
git clone --depth 1 https://github.com/awesome-selfhosted/awesome-selfhosted.git ~/tools/awesome-selfhostedFast observability dashboard for Linux systems. Good for learning what “normal” system behavior looks like.
wget -O /tmp/netdata-kickstart.sh https://get.netdata.cloud/kickstart.sh
sh /tmp/netdata-kickstart.shAutomates Linux/network/server configuration. Very relevant to systems engineering work.
pipx install --include-deps ansible
ansible --versionFree interactive web-security labs from the Burp Suite people. High signal, practical, legal.
# No install. Open the labs:
# https://portswigger.net/web-securityConcise defensive guidance for common appsec topics. Good for “how should this be secured?” questions.
git clone --depth 1 https://github.com/OWASP/CheatSheetSeries.git ~/tools/owasp-cheatsheetsDeliberately vulnerable IoT firmware for safe IoT security practice.
git clone https://github.com/OWASP/IoTGoat.git ~/labs/IoTGoatFinds and extracts embedded files from firmware images. Core tool for firmware exploration.
sudo apt update
sudo apt install -y cargo
cargo install binwalkFramework for emulating and dynamically analyzing Linux-based firmware.
git clone https://github.com/firmadyne/firmadyne.git ~/tools/firmadyneNSA’s reverse-engineering framework. Useful for binaries, firmware components, and malware analysis labs.
# Windows: download the latest release zip:
# https://github.com/NationalSecurityAgency/ghidra/releases
# Linux: install Java first:
sudo apt update
sudo apt install -y openjdk-21-jdkPowerful CLI reverse-engineering toolkit. Not beginner-soft, but useful once basics click.
git clone https://github.com/radareorg/radare2.git ~/tools/radare2
cd ~/tools/radare2
sys/install.shGUI reverse-engineering platform powered by Rizin. Friendlier than raw CLI reversing.
# Easiest path: download AppImage/installer from releases:
# https://github.com/rizinorg/cutter/releasesOfficial Espressif IoT development framework. Serious ESP32 work eventually ends up here.
mkdir -p ~/esp
cd ~/esp
git clone --recursive https://github.com/espressif/esp-idf.git
cd esp-idf
./install.sh esp32
. ./export.shPython on microcontrollers plus a CLI to talk to boards. Great beginner bridge into embedded work.
pipx install mpremote
mpremote connect listPractical electronics, microcontroller, sensor, and maker tutorials.
# No install. Open tutorials:
# https://learn.adafruit.com/Step-by-step ESP32 guides with code and diagrams. Good for practical build momentum.
# No install. Open project list:
# https://randomnerdtutorials.com/projects-esp32/Intercepting HTTP(S) proxy for debugging APIs, mobile apps, and web traffic in controlled labs.
pipx install mitmproxy
mitmproxy --versionNetwork scanner for inventory and service discovery on systems you own or are authorized to assess.
sudo apt update
sudo apt install -y nmap
nmap -sn 192.168.1.0/24Template-based scanner. Excellent in authorized environments, easy to misuse if you are careless.
go install -v github.com/projectdiscovery/nuclei/v3/cmd/nuclei@latest
nuclei -update-templatesPassive subdomain discovery. Useful for authorized recon and asset inventory.
go install -v github.com/projectdiscovery/subfinder/v2/cmd/subfinder@latest
subfinder -versionFast HTTP probing toolkit. Pairs naturally with subdomain discovery.
go install -v github.com/projectdiscovery/httpx/cmd/httpx@latest
httpx -versionFast web fuzzer for authorized labs and testing. Good for learning how discovery works.
go install github.com/ffuf/ffuf/v2@latest
ffuf -VCommon wordlists used in security testing. Useful, but also easy to use irresponsibly.
git clone --depth 1 https://github.com/danielmiessler/SecLists.git ~/tools/SecListsPayload and bypass reference for web security learning and authorized testing.
git clone --depth 1 https://github.com/swisskyrepo/PayloadsAllTheThings.git ~/tools/PayloadsAllTheThings