Skip to main content

Introduction

Nilbox is a desktop environment for running AI Agents safely. It runs Agents on a dedicated Linux for nilbox environment isolated from your host OS, and blocks token leakage at the source with Zero Token Architecture.

Zero Token Architecture

The core of Nilbox is never giving the real token to the AI Agent.

Instead of asking "How do we protect the token?", we ask "What if we never give it in the first place?"

The Limits of Traditional Approaches

# AI Agent environment variable
OPEN_API_TOKEN=1234

The real token is passed directly to the Agent. Even if you isolate with Docker or a Sandbox, if Prompt Injection or a malicious package extracts environment variables, there is no way to prevent leakage.

Nilbox's Approach

# AI Agent environment variable
OPEN_API_TOKEN=OPEN_API_TOKEN

A fake token (a string where the name and value are identical) is passed to the Agent. The real token exists only inside nilbox, where the Agent can never see it.

Token Substitution Flow

┌───────────┐   OPEN_API_TOKEN   ┌─────────┐   1234   ┌──────────┐
│  AI Agent │  ───────────────▶  │ nilbox  │  ──────▶ │   LLM    │
└───────────┘                    └─────────┘          └──────────┘
     ▲                                                       │
     │                   response                            │
     └───────────────────────────────────────────────────────┘

The moment the Agent makes an API call, nilbox intercepts the request and substitutes the real token. The Agent believes it holds a real token and receives a normal response.

Why it's safe even if leaked

Even if a hacker extracts the token from the Agent's environment, all they get is OPEN_API_TOKEN — a meaningless string. They cannot call the LLM.

For more details, see the Zero Token Architecture documentation.

Getting Started

To get started with Nilbox, you need two steps.

  • Install the desktop app — Install the Nilbox app for your current operating system.
  • Install Linux for nilbox — On first launch, the Linux environment managed by nilbox is automatically prepared.
  • Installation — Install the desktop app and prepare Linux for nilbox
  • Install Agent — Select OpenClaw from the store and run the installer
  • nilbox Store — How the store works and how to install apps not in the store

When you're ready, start with Installation.