@atlascrew/apparatus 0.9.0

package/dist/attacker-tracker.js

@@ -0,0 +1,276 @@
+const MAX_TIMELINE_ITEMS = 200;
+const DEFAULT_LIST_LIMIT = 100;
+const MIN_LIST_LIMIT = 1;
+const MAX_LIST_LIMIT = 500;
+const KNOWN_BOT_PREFIXES = ["66.249.", "157.55.", "40.77.", "52.167.", "35.191."];
+const DEFAULT_WEIGHTS = {
+    request: 1,
+    blocked: 10,
+    deception: 50,
+    tarpitTrap: 50,
+};
+let scoreWeights = { ...DEFAULT_WEIGHTS };
+const profileMap = new Map();
+function normalizeIp(ip) {
+    if (!ip)
+        return null;
+    const trimmed = ip.trim();
+    if (!trimmed)
+        return null;
+    if (trimmed.startsWith("::ffff:")) {
+        return trimmed.slice("::ffff:".length);
+    }
+    return trimmed;
+}
+function toIsoTimestamp(input) {
+    if (!input)
+        return new Date().toISOString();
+    const parsed = new Date(input);
+    if (Number.isNaN(parsed.getTime()))
+        return new Date().toISOString();
+    return parsed.toISOString();
+}
+function classifyGeoCategory(ip) {
+    const normalized = normalizeIp(ip) || ip;
+    if (normalized === "127.0.0.1" ||
+        normalized === "::1" ||
+        normalized.startsWith("10.") ||
+        normalized.startsWith("192.168.") ||
+        /^172\.(1[6-9]|2\d|3[0-1])\./.test(normalized)) {
+        return "internal";
+    }
+    if (KNOWN_BOT_PREFIXES.some((prefix) => normalized.startsWith(prefix))) {
+        return "known_bot";
+    }
+    return "unknown_external";
+}
+function deriveProtocol(path) {
+    if (!path.startsWith("/"))
+        return "unknown";
+    if (path.startsWith("/hooks"))
+        return "webhook";
+    if (path.startsWith("/ws"))
+        return "websocket";
+    if (path.startsWith("/api/redteam"))
+        return "redteam";
+    if (path.startsWith("/api/simulator"))
+        return "simulator";
+    if (path.startsWith("/api"))
+        return "api";
+    if (path.startsWith("/console"))
+        return "console";
+    if (path.startsWith("/admin") || path.startsWith("/phpmyadmin"))
+        return "admin";
+    return "http";
+}
+function isBlockedStatus(status) {
+    if (typeof status !== "number")
+        return false;
+    return status === 403 || status === 406 || status === 429;
+}
+function ensureProfile(ip, timestamp) {
+    const existing = profileMap.get(ip);
+    if (existing) {
+        existing.lastSeen = timestamp;
+        return existing;
+    }
+    const profile = {
+        ip,
+        geoCategory: classifyGeoCategory(ip),
+        firstSeen: timestamp,
+        lastSeen: timestamp,
+        riskScore: 0,
+        counters: {
+            requests: 0,
+            blocked: 0,
+            deception: 0,
+            tarpitTrapped: 0,
+            tarpitReleased: 0,
+        },
+        protocols: {},
+        timeline: [],
+    };
+    profileMap.set(ip, profile);
+    return profile;
+}
+function pushTimeline(profile, event) {
+    profile.timeline.unshift(event);
+    if (profile.timeline.length > MAX_TIMELINE_ITEMS) {
+        profile.timeline.length = MAX_TIMELINE_ITEMS;
+    }
+}
+function applyScore(profile, delta) {
+    profile.riskScore = Math.max(0, profile.riskScore + delta);
+}
+function cloneProfile(profile) {
+    return {
+        ...profile,
+        counters: { ...profile.counters },
+        protocols: { ...profile.protocols },
+        timeline: profile.timeline.map((item) => ({ ...item, detail: { ...item.detail } })),
+    };
+}
+function toFiniteNumber(value) {
+    if (typeof value === "number") {
+        return Number.isFinite(value) ? value : null;
+    }
+    if (typeof value === "string") {
+        const parsed = Number(value);
+        return Number.isFinite(parsed) ? parsed : null;
+    }
+    return null;
+}
+export function resetAttackerTracker() {
+    profileMap.clear();
+    scoreWeights = { ...DEFAULT_WEIGHTS };
+}
+export function setAttackerTrackerWeights(partial) {
+    scoreWeights = {
+        ...scoreWeights,
+        ...partial,
+    };
+}
+export function recordRequestSignal(signal) {
+    const ip = normalizeIp(signal.ip);
+    if (!ip)
+        return;
+    const timestamp = toIsoTimestamp(signal.timestamp);
+    const profile = ensureProfile(ip, timestamp);
+    const path = typeof signal.path === "string" ? signal.path : "/";
+    const method = typeof signal.method === "string" ? signal.method : "GET";
+    const status = typeof signal.status === "number" ? signal.status : 200;
+    const blocked = isBlockedStatus(status);
+    let scoreDelta = scoreWeights.request;
+    if (blocked) {
+        scoreDelta += scoreWeights.blocked;
+        profile.counters.blocked += 1;
+    }
+    profile.counters.requests += 1;
+    profile.protocols[deriveProtocol(path)] = (profile.protocols[deriveProtocol(path)] || 0) + 1;
+    applyScore(profile, scoreDelta);
+    pushTimeline(profile, {
+        kind: "request",
+        stage: blocked ? "probe" : "recon",
+        timestamp,
+        scoreDelta,
+        detail: {
+            method,
+            path,
+            status,
+            latencyMs: typeof signal.latencyMs === "number" ? signal.latencyMs : undefined,
+        },
+    });
+}
+export function recordDeceptionSignal(signal) {
+    const ip = normalizeIp(signal.ip);
+    if (!ip)
+        return;
+    const timestamp = toIsoTimestamp(signal.timestamp);
+    const profile = ensureProfile(ip, timestamp);
+    const scoreDelta = scoreWeights.deception;
+    profile.counters.deception += 1;
+    profile.protocols.deception = (profile.protocols.deception || 0) + 1;
+    applyScore(profile, scoreDelta);
+    const stage = signal.type === "shell_command" ? "exploitation" : "probe";
+    pushTimeline(profile, {
+        kind: "deception",
+        stage,
+        timestamp,
+        scoreDelta,
+        detail: {
+            type: signal.type || "unknown",
+            route: signal.route || "unknown",
+            details: signal.details ?? null,
+        },
+    });
+}
+export function recordTarpitSignal(signal) {
+    const ip = normalizeIp(signal.ip);
+    if (!ip)
+        return;
+    const timestamp = toIsoTimestamp(signal.timestamp);
+    const profile = ensureProfile(ip, timestamp);
+    const scoreDelta = signal.action === "trapped" ? scoreWeights.tarpitTrap : 0;
+    profile.protocols.tarpit = (profile.protocols.tarpit || 0) + 1;
+    if (signal.action === "trapped") {
+        profile.counters.tarpitTrapped += 1;
+    }
+    else {
+        profile.counters.tarpitReleased += 1;
+    }
+    applyScore(profile, scoreDelta);
+    pushTimeline(profile, {
+        kind: "tarpit",
+        stage: signal.action === "trapped" ? "containment" : "recon",
+        timestamp,
+        scoreDelta,
+        detail: { action: signal.action },
+    });
+}
+export function listAttackerProfiles(options = {}) {
+    const q = options.q?.toLowerCase().trim();
+    const minRisk = typeof options.minRisk === "number" ? options.minRisk : undefined;
+    const limit = Math.max(MIN_LIST_LIMIT, Math.min(MAX_LIST_LIMIT, options.limit ?? DEFAULT_LIST_LIMIT));
+    const results = Array.from(profileMap.values()).filter((profile) => {
+        if (q && !profile.ip.toLowerCase().includes(q))
+            return false;
+        if (typeof minRisk === "number" && profile.riskScore < minRisk)
+            return false;
+        if (options.category && profile.geoCategory !== options.category)
+            return false;
+        return true;
+    });
+    results.sort((a, b) => {
+        if (b.riskScore !== a.riskScore)
+            return b.riskScore - a.riskScore;
+        return Date.parse(b.lastSeen) - Date.parse(a.lastSeen);
+    });
+    return results.slice(0, limit).map(cloneProfile);
+}
+export function getAttackerProfile(ip) {
+    const normalized = normalizeIp(ip);
+    if (!normalized)
+        return null;
+    const profile = profileMap.get(normalized);
+    return profile ? cloneProfile(profile) : null;
+}
+export function attackerRegistryHandler(req, res) {
+    const q = typeof req.query.q === "string" ? req.query.q : undefined;
+    const minRiskRaw = toFiniteNumber(req.query.minRisk);
+    const category = req.query.category === "internal" ||
+        req.query.category === "known_bot" ||
+        req.query.category === "unknown_external"
+        ? req.query.category
+        : undefined;
+    const limitRaw = toFiniteNumber(req.query.limit);
+    const limit = limitRaw == null ? undefined : Math.trunc(limitRaw);
+    const profiles = listAttackerProfiles({
+        q,
+        minRisk: minRiskRaw == null ? undefined : minRiskRaw,
+        category,
+        limit,
+    });
+    res.json({
+        count: profiles.length,
+        tracked: profileMap.size,
+        profiles,
+    });
+}
+export function attackerProfileHandler(req, res) {
+    const encodedIp = typeof req.params.ip === "string" ? req.params.ip : "";
+    let ip;
+    try {
+        ip = decodeURIComponent(encodedIp);
+    }
+    catch {
+        res.status(400).json({ error: "Invalid IP encoding" });
+        return;
+    }
+    const profile = getAttackerProfile(ip);
+    if (!profile) {
+        res.status(404).json({ error: "Attacker profile not found" });
+        return;
+    }
+    res.json(profile);
+}
+//# sourceMappingURL=attacker-tracker.js.map

package/dist/attacker-tracker.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"attacker-tracker.js","sourceRoot":"","sources":["../src/attacker-tracker.ts"],"names":[],"mappings":"AAsEA,MAAM,kBAAkB,GAAG,GAAG,CAAC;AAC/B,MAAM,kBAAkB,GAAG,GAAG,CAAC;AAC/B,MAAM,cAAc,GAAG,CAAC,CAAC;AACzB,MAAM,cAAc,GAAG,GAAG,CAAC;AAE3B,MAAM,kBAAkB,GAAG,CAAC,SAAS,EAAE,SAAS,EAAE,QAAQ,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC;AAElF,MAAM,eAAe,GAAiB;IAClC,OAAO,EAAE,CAAC;IACV,OAAO,EAAE,EAAE;IACX,SAAS,EAAE,EAAE;IACb,UAAU,EAAE,EAAE;CACjB,CAAC;AAEF,IAAI,YAAY,GAAiB,EAAE,GAAG,eAAe,EAAE,CAAC;AACxD,MAAM,UAAU,GAAG,IAAI,GAAG,EAA2B,CAAC;AAEtD,SAAS,WAAW,CAAC,EAAW;IAC5B,IAAI,CAAC,EAAE;QAAE,OAAO,IAAI,CAAC;IACrB,MAAM,OAAO,GAAG,EAAE,CAAC,IAAI,EAAE,CAAC;IAC1B,IAAI,CAAC,OAAO;QAAE,OAAO,IAAI,CAAC;IAC1B,IAAI,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QAChC,OAAO,OAAO,CAAC,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IAC3C,CAAC;IACD,OAAO,OAAO,CAAC;AACnB,CAAC;AAED,SAAS,cAAc,CAAC,KAAc;IAClC,IAAI,CAAC,KAAK;QAAE,OAAO,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IAC5C,MAAM,MAAM,GAAG,IAAI,IAAI,CAAC,KAAK,CAAC,CAAC;IAC/B,IAAI,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;QAAE,OAAO,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IACpE,OAAO,MAAM,CAAC,WAAW,EAAE,CAAC;AAChC,CAAC;AAED,SAAS,mBAAmB,CAAC,EAAU;IACnC,MAAM,UAAU,GAAG,WAAW,CAAC,EAAE,CAAC,IAAI,EAAE,CAAC;IACzC,IACI,UAAU,KAAK,WAAW;QAC1B,UAAU,KAAK,KAAK;QACpB,UAAU,CAAC,UAAU,CAAC,KAAK,CAAC;QAC5B,UAAU,CAAC,UAAU,CAAC,UAAU,CAAC;QACjC,6BAA6B,CAAC,IAAI,CAAC,UAAU,CAAC,EAChD,CAAC;QACC,OAAO,UAAU,CAAC;IACtB,CAAC;IAED,IAAI,kBAAkB,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,UAAU,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC;QACrE,OAAO,WAAW,CAAC;IACvB,CAAC;IAED,OAAO,kBAAkB,CAAC;AAC9B,CAAC;AAED,SAAS,cAAc,CAAC,IAAY;IAChC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC;QAAE,OAAO,SAAS,CAAC;IAC5C,IAAI,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC;QAAE,OAAO,SAAS,CAAC;IAChD,IAAI,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC;QAAE,OAAO,WAAW,CAAC;IAC/C,IAAI,IAAI,CAAC,UAAU,CAAC,cAAc,CAAC;QAAE,OAAO,SAAS,CAAC;IACtD,IAAI,IAAI,CAAC,UAAU,CAAC,gBAAgB,CAAC;QAAE,OAAO,WAAW,CAAC;IAC1D,IAAI,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC;QAAE,OAAO,KAAK,CAAC;IAC1C,IAAI,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC;QAAE,OAAO,SAAS,CAAC;IAClD,IAAI,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC;QAAE,OAAO,OAAO,CAAC;IAChF,OAAO,MAAM,CAAC;AAClB,CAAC;AAED,SAAS,eAAe,CAAC,MAAe;IACpC,IAAI,OAAO,MAAM,KAAK,QAAQ;QAAE,OAAO,KAAK,CAAC;IAC7C,OAAO,MAAM,KAAK,GAAG,IAAI,MAAM,KAAK,GAAG,IAAI,MAAM,KAAK,GAAG,CAAC;AAC9D,CAAC;AAED,SAAS,aAAa,CAAC,EAAU,EAAE,SAAiB;IAChD,MAAM,QAAQ,GAAG,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IACpC,IAAI,QAAQ,EAAE,CAAC;QACX,QAAQ,CAAC,QAAQ,GAAG,SAAS,CAAC;QAC9B,OAAO,QAAQ,CAAC;IACpB,CAAC;IAED,MAAM,OAAO,GAAoB;QAC7B,EAAE;QACF,WAAW,EAAE,mBAAmB,CAAC,EAAE,CAAC;QACpC,SAAS,EAAE,SAAS;QACpB,QAAQ,EAAE,SAAS;QACnB,SAAS,EAAE,CAAC;QACZ,QAAQ,EAAE;YACN,QAAQ,EAAE,CAAC;YACX,OAAO,EAAE,CAAC;YACV,SAAS,EAAE,CAAC;YACZ,aAAa,EAAE,CAAC;YAChB,cAAc,EAAE,CAAC;SACpB;QACD,SAAS,EAAE,EAAE;QACb,QAAQ,EAAE,EAAE;KACf,CAAC;IAEF,UAAU,CAAC,GAAG,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;IAC5B,OAAO,OAAO,CAAC;AACnB,CAAC;AAED,SAAS,YAAY,CAAC,OAAwB,EAAE,KAA4B;IACxE,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;IAChC,IAAI,OAAO,CAAC,QAAQ,CAAC,MAAM,GAAG,kBAAkB,EAAE,CAAC;QAC/C,OAAO,CAAC,QAAQ,CAAC,MAAM,GAAG,kBAAkB,CAAC;IACjD,CAAC;AACL,CAAC;AAED,SAAS,UAAU,CAAC,OAAwB,EAAE,KAAa;IACvD,OAAO,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,OAAO,CAAC,SAAS,GAAG,KAAK,CAAC,CAAC;AAC/D,CAAC;AAED,SAAS,YAAY,CAAC,OAAwB;IAC1C,OAAO;QACH,GAAG,OAAO;QACV,QAAQ,EAAE,EAAE,GAAG,OAAO,CAAC,QAAQ,EAAE;QACjC,SAAS,EAAE,EAAE,GAAG,OAAO,CAAC,SAAS,EAAE;QACnC,QAAQ,EAAE,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,EAAE,GAAG,IAAI,EAAE,MAAM,EAAE,EAAE,GAAG,IAAI,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;KACtF,CAAC;AACN,CAAC;AAED,SAAS,cAAc,CAAC,KAAc;IAClC,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC5B,OAAO,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC;IACjD,CAAC;IACD,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC5B,MAAM,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAO,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC;IACnD,CAAC;IACD,OAAO,IAAI,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,oBAAoB;IAChC,UAAU,CAAC,KAAK,EAAE,CAAC;IACnB,YAAY,GAAG,EAAE,GAAG,eAAe,EAAE,CAAC;AAC1C,CAAC;AAED,MAAM,UAAU,yBAAyB,CAAC,OAA8B;IACpE,YAAY,GAAG;QACX,GAAG,YAAY;QACf,GAAG,OAAO;KACb,CAAC;AACN,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,MAAqB;IACrD,MAAM,EAAE,GAAG,WAAW,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IAClC,IAAI,CAAC,EAAE;QAAE,OAAO;IAEhB,MAAM,SAAS,GAAG,cAAc,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IACnD,MAAM,OAAO,GAAG,aAAa,CAAC,EAAE,EAAE,SAAS,CAAC,CAAC;IAC7C,MAAM,IAAI,GAAG,OAAO,MAAM,CAAC,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC;IACjE,MAAM,MAAM,GAAG,OAAO,MAAM,CAAC,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC;IACzE,MAAM,MAAM,GAAG,OAAO,MAAM,CAAC,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC;IACvE,MAAM,OAAO,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;IAExC,IAAI,UAAU,GAAG,YAAY,CAAC,OAAO,CAAC;IACtC,IAAI,OAAO,EAAE,CAAC;QACV,UAAU,IAAI,YAAY,CAAC,OAAO,CAAC;QACnC,OAAO,CAAC,QAAQ,CAAC,OAAO,IAAI,CAAC,CAAC;IAClC,CAAC;IAED,OAAO,CAAC,QAAQ,CAAC,QAAQ,IAAI,CAAC,CAAC;IAC/B,OAAO,CAAC,SAAS,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,SAAS,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;IAC7F,UAAU,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;IAEhC,YAAY,CAAC,OAAO,EAAE;QAClB,IAAI,EAAE,SAAS;QACf,KAAK,EAAE,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO;QAClC,SAAS;QACT,UAAU;QACV,MAAM,EAAE;YACJ,MAAM;YACN,IAAI;YACJ,MAAM;YACN,SAAS,EAAE,OAAO,MAAM,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS;SACjF;KACJ,CAAC,CAAC;AACP,CAAC;AAED,MAAM,UAAU,qBAAqB,CAAC,MAAuB;IACzD,MAAM,EAAE,GAAG,WAAW,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IAClC,IAAI,CAAC,EAAE;QAAE,OAAO;IAEhB,MAAM,SAAS,GAAG,cAAc,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IACnD,MAAM,OAAO,GAAG,aAAa,CAAC,EAAE,EAAE,SAAS,CAAC,CAAC;IAC7C,MAAM,UAAU,GAAG,YAAY,CAAC,SAAS,CAAC;IAC1C,OAAO,CAAC,QAAQ,CAAC,SAAS,IAAI,CAAC,CAAC;IAChC,OAAO,CAAC,SAAS,CAAC,SAAS,GAAG,CAAC,OAAO,CAAC,SAAS,CAAC,SAAS,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;IACrE,UAAU,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;IAEhC,MAAM,KAAK,GACP,MAAM,CAAC,IAAI,KAAK,eAAe,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,OAAO,CAAC;IAE/D,YAAY,CAAC,OAAO,EAAE;QAClB,IAAI,EAAE,WAAW;QACjB,KAAK;QACL,SAAS;QACT,UAAU;QACV,MAAM,EAAE;YACJ,IAAI,EAAE,MAAM,CAAC,IAAI,IAAI,SAAS;YAC9B,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,SAAS;YAChC,OAAO,EAAE,MAAM,CAAC,OAAO,IAAI,IAAI;SAClC;KACJ,CAAC,CAAC;AACP,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,MAAoB;IACnD,MAAM,EAAE,GAAG,WAAW,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IAClC,IAAI,CAAC,EAAE;QAAE,OAAO;IAEhB,MAAM,SAAS,GAAG,cAAc,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IACnD,MAAM,OAAO,GAAG,aAAa,CAAC,EAAE,EAAE,SAAS,CAAC,CAAC;IAC7C,MAAM,UAAU,GAAG,MAAM,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC,CAAC,YAAY,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;IAC7E,OAAO,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,OAAO,CAAC,SAAS,CAAC,MAAM,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;IAE/D,IAAI,MAAM,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;QAC9B,OAAO,CAAC,QAAQ,CAAC,aAAa,IAAI,CAAC,CAAC;IACxC,CAAC;SAAM,CAAC;QACJ,OAAO,CAAC,QAAQ,CAAC,cAAc,IAAI,CAAC,CAAC;IACzC,CAAC;IAED,UAAU,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;IAEhC,YAAY,CAAC,OAAO,EAAE;QAClB,IAAI,EAAE,QAAQ;QACd,KAAK,EAAE,MAAM,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,OAAO;QAC5D,SAAS;QACT,UAAU;QACV,MAAM,EAAE,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE;KACpC,CAAC,CAAC;AACP,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,UAAuB,EAAE;IAC1D,MAAM,CAAC,GAAG,OAAO,CAAC,CAAC,EAAE,WAAW,EAAE,CAAC,IAAI,EAAE,CAAC;IAC1C,MAAM,OAAO,GAAG,OAAO,OAAO,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;IAClF,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAClB,cAAc,EACd,IAAI,CAAC,GAAG,CAAC,cAAc,EAAE,OAAO,CAAC,KAAK,IAAI,kBAAkB,CAAC,CAChE,CAAC;IAEF,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,OAAO,EAAE,EAAE;QAC/D,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC;YAAE,OAAO,KAAK,CAAC;QAC7D,IAAI,OAAO,OAAO,KAAK,QAAQ,IAAI,OAAO,CAAC,SAAS,GAAG,OAAO;YAAE,OAAO,KAAK,CAAC;QAC7E,IAAI,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,WAAW,KAAK,OAAO,CAAC,QAAQ;YAAE,OAAO,KAAK,CAAC;QAC/E,OAAO,IAAI,CAAC;IAChB,CAAC,CAAC,CAAC;IAEH,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QAClB,IAAI,CAAC,CAAC,SAAS,KAAK,CAAC,CAAC,SAAS;YAAE,OAAO,CAAC,CAAC,SAAS,GAAG,CAAC,CAAC,SAAS,CAAC;QAClE,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;IAC3D,CAAC,CAAC,CAAC;IAEH,OAAO,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;AACrD,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,EAAU;IACzC,MAAM,UAAU,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC;IACnC,IAAI,CAAC,UAAU;QAAE,OAAO,IAAI,CAAC;IAC7B,MAAM,OAAO,GAAG,UAAU,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAC3C,OAAO,OAAO,CAAC,CAAC,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;AAClD,CAAC;AAED,MAAM,UAAU,uBAAuB,CAAC,GAAY,EAAE,GAAa;IAC/D,MAAM,CAAC,GAAG,OAAO,GAAG,CAAC,KAAK,CAAC,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IACpE,MAAM,UAAU,GAAG,cAAc,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;IACrD,MAAM,QAAQ,GACV,GAAG,CAAC,KAAK,CAAC,QAAQ,KAAK,UAAU;QACjC,GAAG,CAAC,KAAK,CAAC,QAAQ,KAAK,WAAW;QAClC,GAAG,CAAC,KAAK,CAAC,QAAQ,KAAK,kBAAkB;QACrC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,QAAQ;QACpB,CAAC,CAAC,SAAS,CAAC;IACpB,MAAM,QAAQ,GAAG,cAAc,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;IACjD,MAAM,KAAK,GAAG,QAAQ,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;IAElE,MAAM,QAAQ,GAAG,oBAAoB,CAAC;QAClC,CAAC;QACD,OAAO,EAAE,UAAU,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,UAAU;QACpD,QAAQ;QACR,KAAK;KACR,CAAC,CAAC;IAEH,GAAG,CAAC,IAAI,CAAC;QACL,KAAK,EAAE,QAAQ,CAAC,MAAM;QACtB,OAAO,EAAE,UAAU,CAAC,IAAI;QACxB,QAAQ;KACX,CAAC,CAAC;AACP,CAAC;AAED,MAAM,UAAU,sBAAsB,CAAC,GAAY,EAAE,GAAa;IAC9D,MAAM,SAAS,GAAG,OAAO,GAAG,CAAC,MAAM,CAAC,EAAE,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;IACzE,IAAI,EAAU,CAAC;IACf,IAAI,CAAC;QACD,EAAE,GAAG,kBAAkB,CAAC,SAAS,CAAC,CAAC;IACvC,CAAC;IAAC,MAAM,CAAC;QACL,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,qBAAqB,EAAE,CAAC,CAAC;QACvD,OAAO;IACX,CAAC;IAED,MAAM,OAAO,GAAG,kBAAkB,CAAC,EAAE,CAAC,CAAC;IACvC,IAAI,CAAC,OAAO,EAAE,CAAC;QACX,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,4BAA4B,EAAE,CAAC,CAAC;QAC9D,OAAO;IACX,CAAC;IAED,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;AACtB,CAAC"}

package/dist/blackhole.js

@@ -0,0 +1,95 @@
+import { logger } from "./logger.js";
+import { broadcastRequest } from "./sse-broadcast.js";
+import { isValidIpLiteral, normalizeIp } from "./utils/ip.js";
+const MANAGEMENT_ALLOWLIST_PREFIXES = ["/blackhole", "/tarpit", "/api/attackers"];
+export const blackholedIps = new Set();
+const blackholeTimes = new Map();
+export function resetBlackholeState() {
+    blackholedIps.clear();
+    blackholeTimes.clear();
+}
+function isManagementRequest(path) {
+    return MANAGEMENT_ALLOWLIST_PREFIXES.some((prefix) => path === prefix || path.startsWith(`${prefix}/`));
+}
+export function blackholeListHandler(_req, res) {
+    const now = Date.now();
+    const blocked = Array.from(blackholedIps).map((ip) => {
+        const blockedAt = blackholeTimes.get(ip) ?? now;
+        return {
+            ip,
+            blockedAt,
+            duration: Math.floor((now - blockedAt) / 1000),
+        };
+    });
+    res.json({
+        count: blocked.length,
+        blocked,
+    });
+}
+export function blackholeAddHandler(req, res) {
+    const ip = normalizeIp(req.body?.ip);
+    if (!ip || ip === "unknown" || !isValidIpLiteral(ip)) {
+        return res.status(400).json({ error: "Invalid ip" });
+    }
+    if (!blackholedIps.has(ip)) {
+        blackholedIps.add(ip);
+        blackholeTimes.set(ip, Date.now());
+        logger.warn({ ip }, "Blackhole: IP blocked globally");
+    }
+    return res.json({ status: "blocked", ip, count: blackholedIps.size });
+}
+export function blackholeReleaseHandler(req, res) {
+    const rawIp = req.body?.ip;
+    if (rawIp === undefined
+        || rawIp === null
+        || (typeof rawIp === "string" && (!rawIp.trim() || rawIp.trim().toLowerCase() === "unknown"))) {
+        const count = blackholedIps.size;
+        blackholedIps.clear();
+        blackholeTimes.clear();
+        logger.info({ count }, "Blackhole: all IPs released");
+        return res.json({ status: "cleared", count });
+    }
+    if (typeof rawIp !== "string") {
+        return res.status(400).json({ error: "Invalid ip" });
+    }
+    const ip = normalizeIp(rawIp);
+    if (ip === "unknown" || !isValidIpLiteral(ip)) {
+        return res.status(400).json({ error: "Invalid ip" });
+    }
+    if (!blackholedIps.has(ip)) {
+        return res.status(404).json({ error: "IP not blackholed" });
+    }
+    blackholedIps.delete(ip);
+    blackholeTimes.delete(ip);
+    logger.info({ ip }, "Blackhole: IP released");
+    return res.json({ status: "released", ip, count: blackholedIps.size });
+}
+export function blackholeMiddleware(req, res, next) {
+    const ip = normalizeIp(req.ip || req.socket.remoteAddress);
+    const isBlocked = blackholedIps.has(ip);
+    const isUnknown = ip === "unknown";
+    if ((isBlocked || isUnknown) && !isManagementRequest(req.path)) {
+        logger.warn({ ip, method: req.method, path: req.path }, "Blackhole: request denied");
+        const now = new Date().toISOString();
+        try {
+            broadcastRequest({
+                method: req.method,
+                path: req.path,
+                status: 403,
+                ip,
+                timestamp: now,
+                latencyMs: 0,
+                blockedBy: "blackhole",
+            });
+        }
+        catch (error) {
+            logger.warn({ err: error, ip, method: req.method, path: req.path }, "Blackhole: SSE broadcast failed");
+        }
+        return res.status(403).json({
+            error: "Request blocked by global blackhole",
+            ip,
+        });
+    }
+    return next();
+}
+//# sourceMappingURL=blackhole.js.map

package/dist/blackhole.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"blackhole.js","sourceRoot":"","sources":["../src/blackhole.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AACrC,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AAE9D,MAAM,6BAA6B,GAAG,CAAC,YAAY,EAAE,SAAS,EAAE,gBAAgB,CAAC,CAAC;AAElF,MAAM,CAAC,MAAM,aAAa,GAAG,IAAI,GAAG,EAAU,CAAC;AAC/C,MAAM,cAAc,GAAG,IAAI,GAAG,EAAkB,CAAC;AAEjD,MAAM,UAAU,mBAAmB;IAC/B,aAAa,CAAC,KAAK,EAAE,CAAC;IACtB,cAAc,CAAC,KAAK,EAAE,CAAC;AAC3B,CAAC;AAED,SAAS,mBAAmB,CAAC,IAAY;IACrC,OAAO,6BAA6B,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,IAAI,KAAK,MAAM,IAAI,IAAI,CAAC,UAAU,CAAC,GAAG,MAAM,GAAG,CAAC,CAAC,CAAC;AAC5G,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,IAAa,EAAE,GAAa;IAC7D,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACvB,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE;QACjD,MAAM,SAAS,GAAG,cAAc,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,GAAG,CAAC;QAChD,OAAO;YACH,EAAE;YACF,SAAS;YACT,QAAQ,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,GAAG,SAAS,CAAC,GAAG,IAAI,CAAC;SACjD,CAAC;IACN,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,IAAI,CAAC;QACL,KAAK,EAAE,OAAO,CAAC,MAAM;QACrB,OAAO;KACV,CAAC,CAAC;AACP,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,GAAY,EAAE,GAAa;IAC3D,MAAM,EAAE,GAAG,WAAW,CAAC,GAAG,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;IACrC,IAAI,CAAC,EAAE,IAAI,EAAE,KAAK,SAAS,IAAI,CAAC,gBAAgB,CAAC,EAAE,CAAC,EAAE,CAAC;QACnD,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,CAAC;IACzD,CAAC;IAED,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,CAAC;QACzB,aAAa,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACtB,cAAc,CAAC,GAAG,CAAC,EAAE,EAAE,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;QACnC,MAAM,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,EAAE,gCAAgC,CAAC,CAAC;IAC1D,CAAC;IAED,OAAO,GAAG,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,SAAS,EAAE,EAAE,EAAE,KAAK,EAAE,aAAa,CAAC,IAAI,EAAE,CAAC,CAAC;AAC1E,CAAC;AAED,MAAM,UAAU,uBAAuB,CAAC,GAAY,EAAE,GAAa;IAC/D,MAAM,KAAK,GAAG,GAAG,CAAC,IAAI,EAAE,EAAE,CAAC;IAC3B,IACI,KAAK,KAAK,SAAS;WAChB,KAAK,KAAK,IAAI;WACd,CAAC,OAAO,KAAK,KAAK,QAAQ,IAAI,CAAC,CAAC,KAAK,CAAC,IAAI,EAAE,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,KAAK,SAAS,CAAC,CAAC,EAC/F,CAAC;QACC,MAAM,KAAK,GAAG,aAAa,CAAC,IAAI,CAAC;QACjC,aAAa,CAAC,KAAK,EAAE,CAAC;QACtB,cAAc,CAAC,KAAK,EAAE,CAAC;QACvB,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,EAAE,6BAA6B,CAAC,CAAC;QACtD,OAAO,GAAG,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,CAAC;IAClD,CAAC;IAED,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC5B,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,CAAC;IACzD,CAAC;IAED,MAAM,EAAE,GAAG,WAAW,CAAC,KAAK,CAAC,CAAC;IAC9B,IAAI,EAAE,KAAK,SAAS,IAAI,CAAC,gBAAgB,CAAC,EAAE,CAAC,EAAE,CAAC;QAC5C,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,CAAC;IACzD,CAAC;IAED,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,CAAC;QACzB,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,mBAAmB,EAAE,CAAC,CAAC;IAChE,CAAC;IAED,aAAa,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IACzB,cAAc,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IAC1B,MAAM,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,EAAE,wBAAwB,CAAC,CAAC;IAC9C,OAAO,GAAG,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,UAAU,EAAE,EAAE,EAAE,KAAK,EAAE,aAAa,CAAC,IAAI,EAAE,CAAC,CAAC;AAC3E,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB;IAC/E,MAAM,EAAE,GAAG,WAAW,CAAC,GAAG,CAAC,EAAE,IAAI,GAAG,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;IAC3D,MAAM,SAAS,GAAG,aAAa,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IACxC,MAAM,SAAS,GAAG,EAAE,KAAK,SAAS,CAAC;IAEnC,IAAI,CAAC,SAAS,IAAI,SAAS,CAAC,IAAI,CAAC,mBAAmB,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;QAC7D,MAAM,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,EAAE,2BAA2B,CAAC,CAAC;QAErF,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACrC,IAAI,CAAC;YACD,gBAAgB,CAAC;gBACb,MAAM,EAAE,GAAG,CAAC,MAAM;gBAClB,IAAI,EAAE,GAAG,CAAC,IAAI;gBACd,MAAM,EAAE,GAAG;gBACX,EAAE;gBACF,SAAS,EAAE,GAAG;gBACd,SAAS,EAAE,CAAC;gBACZ,SAAS,EAAE,WAAW;aACzB,CAAC,CAAC;QACP,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,MAAM,CAAC,IAAI,CAAC,EAAE,GAAG,EAAE,KAAK,EAAE,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,EAAE,iCAAiC,CAAC,CAAC;QAC3G,CAAC;QAED,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACxB,KAAK,EAAE,qCAAqC;YAC5C,EAAE;SACL,CAAC,CAAC;IACP,CAAC;IAED,OAAO,IAAI,EAAE,CAAC;AAClB,CAAC"}

package/dist/chaos.js

@@ -0,0 +1,88 @@
+const EICAR_STRING = "X5O!P%@AP[4\\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*";
+export function eicarHandler(req, res) {
+    // EICAR Test File
+    res.set("Content-Type", "text/plain");
+    res.set("Content-Disposition", 'attachment; filename="eicar.com"');
+    res.send(EICAR_STRING);
+}
+export function scheduleCrash(delayMs = 1000) {
+    setTimeout(() => {
+        process.exit(1);
+    }, delayMs);
+}
+export function crashHandler(req, res) {
+    res.send("Crashing server in 1 second...");
+    scheduleCrash(1000);
+}
+let cpuSpikeRunning = false;
+let cpuSpikeCancelled = false;
+export function triggerCpuSpike(durationMs = 5000) {
+    if (cpuSpikeRunning)
+        return false;
+    cpuSpikeRunning = true;
+    cpuSpikeCancelled = false;
+    const end = Date.now() + durationMs;
+    const spike = () => {
+        if (cpuSpikeCancelled || Date.now() > end) {
+            cpuSpikeRunning = false;
+            return;
+        }
+        const now = Date.now();
+        while (Date.now() - now < 10)
+            ;
+        setImmediate(spike);
+    };
+    spike();
+    return true;
+}
+export function stopCpuSpike() {
+    if (!cpuSpikeRunning)
+        return false;
+    cpuSpikeCancelled = true;
+    cpuSpikeRunning = false;
+    return true;
+}
+export function cpuSpikeHandler(req, res) {
+    // Support both query param and JSON body
+    const duration = parseInt(req.body?.duration || req.query.duration) || 5000;
+    if (triggerCpuSpike(duration)) {
+        res.send(`Spiking CPU for ${duration}ms`);
+    }
+    else {
+        res.status(409).send("CPU spike already running");
+    }
+}
+let memoryHogs = [];
+export function getChaosStatus() {
+    const allocatedBytes = memoryHogs.reduce((total, chunk) => total + chunk.length, 0);
+    return {
+        cpuSpikeRunning,
+        memoryChunks: memoryHogs.length,
+        memoryAllocatedMb: Math.round(allocatedBytes / (1024 * 1024)),
+    };
+}
+export function clearMemorySpike() {
+    memoryHogs = [];
+    if (global.gc)
+        global.gc(); // Requires --expose-gc
+    return "Memory cleared";
+}
+export function allocateMemorySpike(amountMb) {
+    const buf = Buffer.alloc(amountMb * 1024 * 1024, "M");
+    memoryHogs.push(buf);
+    return `Allocated ${amountMb}MB. Total allocated chunks: ${memoryHogs.length}`;
+}
+export function memorySpikeHandler(req, res) {
+    const action = req.body?.action || req.query.action || "allocate";
+    const amountMb = parseInt(req.body?.amount || req.query.amount) || 100;
+    if (action === "clear") {
+        return res.send(clearMemorySpike());
+    }
+    try {
+        res.send(allocateMemorySpike(amountMb));
+    }
+    catch (e) {
+        res.status(500).send(`Allocation failed: ${e.message}`);
+    }
+}
+//# sourceMappingURL=chaos.js.map

package/dist/chaos.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"chaos.js","sourceRoot":"","sources":["../src/chaos.ts"],"names":[],"mappings":"AAEA,MAAM,YAAY,GAAG,uEAAuE,CAAC;AAE7F,MAAM,UAAU,YAAY,CAAC,GAAY,EAAE,GAAa;IACpD,kBAAkB;IAClB,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,YAAY,CAAC,CAAC;IACtC,GAAG,CAAC,GAAG,CAAC,qBAAqB,EAAE,kCAAkC,CAAC,CAAC;IACnE,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;AAC3B,CAAC;AAED,MAAM,UAAU,aAAa,CAAC,OAAO,GAAG,IAAI;IACxC,UAAU,CAAC,GAAG,EAAE;QACZ,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACpB,CAAC,EAAE,OAAO,CAAC,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,YAAY,CAAC,GAAY,EAAE,GAAa;IACpD,GAAG,CAAC,IAAI,CAAC,gCAAgC,CAAC,CAAC;IAC3C,aAAa,CAAC,IAAI,CAAC,CAAC;AACxB,CAAC;AAED,IAAI,eAAe,GAAG,KAAK,CAAC;AAC5B,IAAI,iBAAiB,GAAG,KAAK,CAAC;AAE9B,MAAM,UAAU,eAAe,CAAC,aAAqB,IAAI;IACrD,IAAI,eAAe;QAAE,OAAO,KAAK,CAAC;IAClC,eAAe,GAAG,IAAI,CAAC;IACvB,iBAAiB,GAAG,KAAK,CAAC;IAE1B,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,UAAU,CAAC;IACpC,MAAM,KAAK,GAAG,GAAG,EAAE;QACf,IAAI,iBAAiB,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,GAAG,EAAE,CAAC;YACxC,eAAe,GAAG,KAAK,CAAC;YACxB,OAAO;QACX,CAAC;QACD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,OAAO,IAAI,CAAC,GAAG,EAAE,GAAG,GAAG,GAAG,EAAE;YAAC,CAAC;QAC9B,YAAY,CAAC,KAAK,CAAC,CAAC;IACxB,CAAC,CAAC;IACF,KAAK,EAAE,CAAC;IACR,OAAO,IAAI,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,YAAY;IACxB,IAAI,CAAC,eAAe;QAAE,OAAO,KAAK,CAAC;IACnC,iBAAiB,GAAG,IAAI,CAAC;IACzB,eAAe,GAAG,KAAK,CAAC;IACxB,OAAO,IAAI,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,eAAe,CAAC,GAAY,EAAE,GAAa;IACvD,yCAAyC;IACzC,MAAM,QAAQ,GAAG,QAAQ,CAAC,GAAG,CAAC,IAAI,EAAE,QAAQ,IAAI,GAAG,CAAC,KAAK,CAAC,QAAkB,CAAC,IAAI,IAAI,CAAC;IAEtF,IAAI,eAAe,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC5B,GAAG,CAAC,IAAI,CAAC,mBAAmB,QAAQ,IAAI,CAAC,CAAC;IAC9C,CAAC;SAAM,CAAC;QACJ,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,2BAA2B,CAAC,CAAC;IACtD,CAAC;AACL,CAAC;AAED,IAAI,UAAU,GAAa,EAAE,CAAC;AAE9B,MAAM,UAAU,cAAc;IAC1B,MAAM,cAAc,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,KAAK,EAAE,EAAE,CAAC,KAAK,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;IACpF,OAAO;QACH,eAAe;QACf,YAAY,EAAE,UAAU,CAAC,MAAM;QAC/B,iBAAiB,EAAE,IAAI,CAAC,KAAK,CAAC,cAAc,GAAG,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC;KAChE,CAAC;AACN,CAAC;AAED,MAAM,UAAU,gBAAgB;IAC5B,UAAU,GAAG,EAAE,CAAC;IAChB,IAAI,MAAM,CAAC,EAAE;QAAE,MAAM,CAAC,EAAE,EAAE,CAAC,CAAC,uBAAuB;IACnD,OAAO,gBAAgB,CAAC;AAC5B,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,QAAgB;IAChD,MAAM,GAAG,GAAG,MAAM,CAAC,KAAK,CAAC,QAAQ,GAAG,IAAI,GAAG,IAAI,EAAE,GAAG,CAAC,CAAC;IACtD,UAAU,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACrB,OAAO,aAAa,QAAQ,+BAA+B,UAAU,CAAC,MAAM,EAAE,CAAC;AACnF,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,GAAY,EAAE,GAAa;IAC1D,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,EAAE,MAAM,IAAI,GAAG,CAAC,KAAK,CAAC,MAAM,IAAI,UAAU,CAAC;IAClE,MAAM,QAAQ,GAAG,QAAQ,CAAC,GAAG,CAAC,IAAI,EAAE,MAAM,IAAI,GAAG,CAAC,KAAK,CAAC,MAAgB,CAAC,IAAI,GAAG,CAAC;IAEjF,IAAI,MAAM,KAAK,OAAO,EAAE,CAAC;QACrB,OAAO,GAAG,CAAC,IAAI,CAAC,gBAAgB,EAAE,CAAC,CAAC;IACxC,CAAC;IAED,IAAI,CAAC;QACD,GAAG,CAAC,IAAI,CAAC,mBAAmB,CAAC,QAAQ,CAAC,CAAC,CAAC;IAC5C,CAAC;IAAC,OAAO,CAAM,EAAE,CAAC;QACd,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;IAC5D,CAAC;AACL,CAAC"}