AI-Powered Application with Cloud Integration & Ethical Safeguards
Bastion now includes a macOS WidgetKit widget for monitoring your network security status at a glance.
Widget Features:
- Security Score - Overall network security score (0-100)
- Vulnerability Counts - Critical, High, Medium, Low breakdown
- Devices at Risk - Number of devices with vulnerabilities
- Last Scan Time - When the network was last scanned
- Three Sizes - Small, Medium, and Large widget options
Widget Sizes:
- Small - Security score circle with critical count
- Medium - Score + vulnerability breakdown + device count
- Large - Full dashboard with all metrics and network info
Technical Details:
- App Group:
group.com.jkoch.bastion - Auto-syncs after each network scan
- Updates every 15 minutes
- Uses shared UserDefaults for data exchange
- OpenAI API - GPT-4o for advanced capabilities
- Google Cloud AI - Vertex AI, Vision, Speech
- Microsoft Azure - Cognitive Services
- AWS AI Services - Bedrock, Rekognition, Polly
- IBM Watson - NLU (Natural Language Understanding), Speech, Discovery
- AI Backend Status Menu - Visual indicators (π’/π΄/βͺ)
- Auto-Fallback System - Switches backends if primary fails
- Connection Testing - Verify API keys work
- Usage Tracking - Token counts and cost estimation
- Performance Metrics - Latency and success rates
- Notification System - Backend status alerts
- Keyboard Shortcuts - β1-β9 for quick switching
- Comprehensive content monitoring
- Prohibited use detection (100+ patterns)
- Automatic blocking of illegal/harmful content
- Crisis resource referrals
- Usage logging (hashed, not plaintext)
- Legal compliance (CSAM (Child Sexual Abuse Material) reporting, etc.)
- Terms of Service enforcement
βοΈ Cannot Be Used For:
- Illegal activities
- Harmful content
- Hate speech
- Misinformation generation
- Privacy violations
- Harassment or abuse
- Fraud or deception
[App-specific features would be listed here]
- Ollama (local, free)
- MLX (Machine Learning eXtensions) (Apple Silicon optimized)
- TinyLLM/TinyChat (lightweight)
- OpenWebUI (self-hosted)
- OpenAI (cloud, paid)
- Google Cloud (cloud, paid)
- Azure (cloud, paid)
- AWS (cloud, paid)
- IBM Watson (cloud, paid)
All AI operations are monitored for:
- β Legal compliance
- β Ethical use
- β Safety
- β Privacy protection
Violations are:
- Automatically detected
- Immediately blocked
- Securely logged
- Reported if required by law
Read full terms: ETHICAL_AI_TERMS_OF_SERVICE.md
Bastion is designed exclusively for authorized security testing, penetration testing engagements, CTF (Capture The Flag) competitions, and educational purposes. Always obtain proper written authorization before scanning or testing systems you do not own. Unauthorized access to computer systems is illegal.
This tool should be used in accordance with:
- Your organization's security testing policies
- Applicable local, state, and federal laws
- The target organization's written authorization
Download the latest release: Bastion v1.2.0
Or build from source (see below).
# Install from DMG (Disk Image)
open Bastion-latest.dmg
# Or from source
cd "/Volumes/Data/xcode/Bastion"
xcodebuild -project "Bastion.xcodeproj" -scheme "Bastion" -configuration Release build
cp -R build/Release/*.app ~/Applications/# Install Ollama (free, local, private)
brew install ollama
ollama serve
ollama pull mistral:latest
# Or configure cloud AI in Settings- Launch application
- First time: Acknowledge ethical guidelines
- Configure AI backend (Settings β AI Backend)
- Use AI features responsibly
- All usage monitored for safety
- MIT License for code
- Ethical AI Terms of Service for usage
- Privacy-first design
- Open source transparency
See ETHICAL_AI_TERMS_OF_SERVICE.md for complete list.
Summary: Don't use for illegal, harmful, or unethical purposes. Violations logged and reported.
Author: Jordan Koch (@kochj23) Built with: SwiftUI, Modern macOS APIs AI Architecture: Multi-backend with ethical safeguards
Latest: Enhanced Edition (Jan 2026)
- Added 5 cloud AI providers
- Added ethical safeguards
- Added enhanced features
- Production-ready
- GitHub Issues: Report bugs
- Documentation: See project files
- 988 - Suicide Prevention Lifeline
- 741741 - Crisis Text Line (text HOME)
- 1-800-799-7233 - Domestic Violence Hotline
| Feature | Bastion | Metasploit | Burp Suite |
|---|---|---|---|
| AI-Powered Exploit Selection | Yes (Ollama, MLX, 10 backends) | No | No |
| Native macOS App | Yes (SwiftUI) | No (CLI (Command Line Interface)/Java) | No (Java) |
| Local AI (No Cloud Required) | Yes | N/A | N/A |
| Network Reconnaissance | Yes | Yes | Limited |
| Automated Exploitation | Yes | Yes | Yes |
| Free & Open Source | Yes (MIT) | Community Edition | No |
| Apple Silicon Native | Yes | No | No |
MIT License - See LICENSE file
Ethical Usage Required - See ETHICAL_AI_TERMS_OF_SERVICE.md
Bastion - Powerful AI with responsible safeguards
Β© 2026 Jordan Koch. All rights reserved.
| App | Description |
|---|---|
| NMAPScanner | Network security scanner with AI threat detection |
| URL-Analysis | Network traffic analysis and URL monitoring |
| rtsp-rotator | RTSP (Real Time Streaming Protocol) camera stream rotation and monitoring |
| TopGUI | macOS system monitor with real-time metrics |
| MLXCode | Local AI coding assistant for Apple Silicon |
Disclaimer: This is a personal project created on my own time. It is not affiliated with, endorsed by, or representative of my employer.
