Operate Like a Recovery Hacker.

RescueAI is a bootable incident-response environment for dead laptops, broken bootloaders, and critical system failures. Plug in, boot up, and run guided diagnostics, optional defensive network visibility (VLAN, hosts, vendors, open ports), standards-aligned audit reports, and AI-powered repair workflows without touching your host OS.

Download ISO Boot Instructions

$ rescueai --scan --repair --ai-assist
[OK] UEFI + Legacy BIOS boot chain ready
[OK] Network-gated live session + runtime updater (release manifest)
[OK] Defensive audit: ISO 27001 / NIS2-mapped reports (authorized scans only)
[OK] Network scanner: VLAN / arp / OUI vendor / common ports + 802.1Q tag try
[OK] Recovery playbooks loaded (disk, boot, fs, driver recovery)
[OK] AI providers: Claude, OpenAI, DeepSeek, OpenRouter

Fast Boot Ops

UEFI and legacy BIOS; minimal live environment with a simple rescue menu and optional QEMU-tested flows.

Defensive Audits

Menu-driven ISO 27001 or NIS2—style evidence reports: host discovery, service exposure, VLAN signals—authorized CIDRs only, no logins or brute force.

Network Scanner

Find VLAN subinterfaces, arp-scan hosts, resolve MAC to vendor (OUI), and probe common TCP ports; optional 802.1Q tag range on a parent interface for trunked links.

Guided AI Triage

Multi-provider assistant: Claude, OpenAI, DeepSeek, and OpenRouter for diagnostics and step-by-step recovery.

Playbooks + Updates

Local knowledge playbooks; boot-time runtime refresh from a release manifest. Welcome screen branding (site, contact, QR) from the manifest when available.

BOOTSTACK UEFI + legacy BIOS; disk health (SMART/NVMe) and storage-focused rescue paths.
AUDIT Standards-oriented defensive audit: ISO 27001 or NIS2 profile, nmap host/port signals, VLAN exposure notes, JSON + text under /var/log/rescueai/audits.
NETSCAN VLAN listing, arp host discovery, OUI vendor lookup, common TCP port checks; try VLAN IDs (3,4,5…) on a parent NIC for trunked 802.1Q paths.
SAFE NET Network-gated live mode; both audit and network tools require an explicit AUTHORIZED confirmation for scanning.
UPDATER Optional boot-time fetch of release manifest; refresh runtime without rebuilding the ISO.
BRANDING Welcome content (links, QR) from manifest when fetched; defaults ship in the image.
PLAYBOOKS Local workflows for boot, filesystem, and Windows/driver recovery.
MULTI AI Claude, OpenAI, DeepSeek, OpenRouter for flexible troubleshooting.