tools:
- name: systemctl_status
description: Check systemd service status
run:
kind: shell
cmd: "systemctl {{action}} {{service}}"
args:
action:
type: string
description: "Systemctl action (status, start, stop, restart, enable, disable)"
required: false
default: "status"
service:
type: string
description: "Service name (e.g., nginx, ssh, docker)"
required: true
- name: docker_ps
description: List and manage Docker containers
run:
kind: shell
cmd: "docker ps {{options}}"
args:
options:
type: string
description: "Docker ps options (-a for all, -q for IDs only, --filter, etc.)"
required: false
default: ""
- name: journalctl_logs
description: Query systemd journal logs
run:
kind: shell
cmd: "journalctl {{unit}} {{since}} {{lines}} {{follow}}"
args:
unit:
type: string
description: "Specific unit to show logs for (-u flag value, empty for all)"
required: false
default: ""
since:
type: string
description: "Show logs since time (e.g., '1 hour ago', 'today', empty for all)"
required: false
default: ""
lines:
type: int
description: "Number of log lines to show"
required: false
default: 100
follow:
type: string
description: "Follow logs in real-time (-f flag or empty)"
required: false
default: ""
- name: iptables_list
description: List iptables firewall rules
run:
kind: shell
cmd: "iptables {{options}} -L {{chain}} -n -v"
args:
chain:
type: string
description: "Specific chain to list (INPUT, OUTPUT, FORWARD, or empty for all)"
required: false
default: ""
options:
type: string
description: "Table options (-t nat, -t mangle, empty for filter table)"
required: false
default: ""
