@atlascrew/apparatus 0.9.0

package/dist/deception.js

@@ -0,0 +1,205 @@
+import { logger } from "./logger.js";
+import path from "path";
+import { fileURLToPath } from 'url';
+import { chat } from "./ai/client.js";
+import { PERSONAS } from "./ai/personas.js";
+import { broadcastDeception } from "./sse-broadcast.js";
+import { cfg } from "./config.js";
+import { loadDeceptionHistory, writeDeceptionHistory } from "./persistence/deception-history.js";
+import { markPersistenceHydrated, markPersistenceWrite, registerPersistenceStore } from "./persistence/status.js";
+const __dirname = path.dirname(fileURLToPath(import.meta.url));
+const deceptionHistory = [];
+const MAX_HISTORY = 100;
+let deceptionHistoryHydrationPromise = null;
+let deceptionHistoryPersistQueue = Promise.resolve(true);
+const DECEPTION_STORE_KEY = "deceptionHistory";
+registerPersistenceStore(DECEPTION_STORE_KEY, cfg.deceptionHistoryPath);
+function normalizeDeceptionEvent(event) {
+    if (typeof event.timestamp !== "string")
+        return null;
+    if (typeof event.ip !== "string")
+        return null;
+    if (event.type !== "honeypot_hit" && event.type !== "shell_command" && event.type !== "sqli_probe")
+        return null;
+    if (typeof event.route !== "string")
+        return null;
+    if (typeof event.sessionId !== "undefined" && typeof event.sessionId !== "string")
+        return null;
+    return event;
+}
+async function hydrateDeceptionHistory() {
+    const persistedEvents = await loadDeceptionHistory(cfg.deceptionHistoryPath);
+    const normalizedEvents = persistedEvents
+        .map((event) => normalizeDeceptionEvent(event))
+        .filter((event) => event !== null)
+        .slice(0, MAX_HISTORY);
+    if (normalizedEvents.length > 0) {
+        deceptionHistory.splice(0, deceptionHistory.length, ...normalizedEvents);
+    }
+    markPersistenceHydrated(DECEPTION_STORE_KEY);
+}
+async function ensureDeceptionHistoryHydrated() {
+    if (!deceptionHistoryHydrationPromise) {
+        deceptionHistoryHydrationPromise = hydrateDeceptionHistory();
+    }
+    await deceptionHistoryHydrationPromise;
+}
+async function persistDeceptionHistoryQueued() {
+    deceptionHistoryPersistQueue = deceptionHistoryPersistQueue.then(() => writeDeceptionHistory(cfg.deceptionHistoryPath, deceptionHistory.slice(0, MAX_HISTORY)), () => writeDeceptionHistory(cfg.deceptionHistoryPath, deceptionHistory.slice(0, MAX_HISTORY)));
+    const persisted = await deceptionHistoryPersistQueue;
+    markPersistenceWrite(DECEPTION_STORE_KEY, persisted);
+    return persisted;
+}
+function recordDeception(event) {
+    deceptionHistory.unshift(event);
+    if (deceptionHistory.length > MAX_HISTORY) {
+        deceptionHistory.length = MAX_HISTORY;
+    }
+    // Broadcast to SSE clients
+    broadcastDeception(event);
+    void persistDeceptionHistoryQueued().then((persisted) => {
+        if (!persisted) {
+            logger.warn({ route: event.route, type: event.type }, "Deception event stored in memory but persistence write failed");
+        }
+    });
+}
+export async function deceptionHistoryHandler(_req, res) {
+    await ensureDeceptionHistoryHydrated();
+    res.json({
+        count: deceptionHistory.length,
+        events: deceptionHistory
+    });
+}
+export async function deceptionClearHandler(_req, res) {
+    await ensureDeceptionHistoryHydrated();
+    const count = deceptionHistory.length;
+    deceptionHistory.length = 0;
+    const persisted = await persistDeceptionHistoryQueued();
+    if (!persisted) {
+        logger.warn("Deception history cleared in memory but persistence write failed");
+    }
+    res.json({ status: "cleared", count });
+}
+const DECEPTION_ROUTES = {
+    "/admin": (req, res) => {
+        const ip = req.ip || "unknown";
+        recordDeception({
+            timestamp: new Date().toISOString(),
+            ip,
+            type: 'honeypot_hit',
+            route: '/admin',
+            details: { method: req.method }
+        });
+        res.setHeader("Content-Type", "text/html");
+        res.send(`
+            <html>
+                <head><title>Admin Login</title></head>
+                <body style="font-family: sans-serif; padding: 50px;">
+                    <h2>System Management Console</h2>
+                    <form method="POST" action="/console/login">
+                        <label>Username:</label><br><input type="text" name="user"><br>
+                        <label>Password:</label><br><input type="password" name="pass"><br><br>
+                        <button type="submit">Login</button>
+                    </form>
+                </body>
+            </html>
+        `);
+    },
+    "/console/login": (req, res) => {
+        // Always allow login to trap them in the shell
+        res.redirect("/console");
+    },
+    "/console": (req, res) => {
+        res.sendFile(path.join(__dirname, "terminal.html"));
+    },
+    "/phpmyadmin": (req, res) => {
+        const ip = req.ip || "unknown";
+        recordDeception({
+            timestamp: new Date().toISOString(),
+            ip,
+            type: 'honeypot_hit',
+            route: '/phpmyadmin',
+            details: { method: req.method }
+        });
+        res.status(200).send("phpMyAdmin - Error: Authentication required.");
+    },
+    "/.env": (req, res) => {
+        const ip = req.ip || "unknown";
+        recordDeception({
+            timestamp: new Date().toISOString(),
+            ip,
+            type: 'honeypot_hit',
+            route: '/.env',
+            details: { method: req.method, severity: 'critical' }
+        });
+        res.send("APP_ENV=production\nDB_HOST=10.0.0.5\nDB_USER=root\nDB_PASS=REDACTED_BY_SEC_POLICY\nJWT_SECRET=super-secret-key-123");
+    },
+    "/etc/passwd": (req, res) => {
+        const ip = req.ip || "unknown";
+        recordDeception({
+            timestamp: new Date().toISOString(),
+            ip,
+            type: 'honeypot_hit',
+            route: '/etc/passwd',
+            details: { method: req.method, severity: 'critical' }
+        });
+        res.send("root:x:0:0:root:/root:/bin/bash\nbin:x:1:1:bin:/bin:/sbin/nologin\ndaemon:x:2:2:daemon:/sbin:/sbin/nologin\nadm:x:3:4:adm:/var/adm:/sbin/nologin\nlp:x:4:7:lp:/var/spool/lpd:/sbin/nologin");
+    }
+};
+const DECEPTION_BYPASS_PREFIXES = ["/admin/persistence/"];
+export async function deceptionHandler(req, res) {
+    await ensureDeceptionHistoryHydrated();
+    const requestPath = req.path;
+    if (DECEPTION_BYPASS_PREFIXES.some((prefix) => requestPath.startsWith(prefix))) {
+        return false;
+    }
+    // AI Console API
+    if (requestPath === "/console/api" && req.method === "POST") {
+        const { command, sessionId } = req.body;
+        const ip = req.ip || "unknown";
+        logger.info({ ip, command, sessionId }, "AI Honeypot: Executing command");
+        // Record shell command
+        recordDeception({
+            timestamp: new Date().toISOString(),
+            ip,
+            type: 'shell_command',
+            route: '/console/api',
+            details: { command },
+            sessionId
+        });
+        const output = await chat(sessionId, PERSONAS.linux_terminal, command);
+        res.json({ output });
+        return true;
+    }
+    // Check for exact matches or prefix matches for deception
+    for (const [route, handler] of Object.entries(DECEPTION_ROUTES)) {
+        if (requestPath === route || requestPath.startsWith(route + "/")) {
+            logger.info({ path: requestPath, ip: req.ip }, "Deception active: serving fake response");
+            handler(req, res);
+            return true;
+        }
+    }
+    // Generic deception for SQLi-like probes in query
+    if (JSON.stringify(req.query).match(/UNION|SELECT|DROP|--/i)) {
+        const ip = req.ip || "unknown";
+        logger.info({ ip }, "SQLi detected: serving fake DB schema");
+        recordDeception({
+            timestamp: new Date().toISOString(),
+            ip,
+            type: 'sqli_probe',
+            route: req.path,
+            details: { query: req.query }
+        });
+        res.json({
+            status: "success",
+            data: [
+                { id: 1, username: "admin", role: "superuser" },
+                { id: 2, username: "guest", role: "read-only" }
+            ],
+            db_version: "MySQL 8.0.32-debug"
+        });
+        return true;
+    }
+    return false;
+}
+//# sourceMappingURL=deception.js.map

package/dist/deception.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"deception.js","sourceRoot":"","sources":["../src/deception.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AACrC,OAAO,IAAI,MAAM,MAAM,CAAC;AACxB,OAAO,EAAE,aAAa,EAAE,MAAM,KAAK,CAAC;AACpC,OAAO,EAAE,IAAI,EAAE,MAAM,gBAAgB,CAAC;AACtC,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAC5C,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAC;AACxD,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAClC,OAAO,EAAE,oBAAoB,EAAE,qBAAqB,EAAE,MAAM,oCAAoC,CAAC;AACjG,OAAO,EAAE,uBAAuB,EAAE,oBAAoB,EAAE,wBAAwB,EAAE,MAAM,yBAAyB,CAAC;AAElH,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;AAY/D,MAAM,gBAAgB,GAAqB,EAAE,CAAC;AAC9C,MAAM,WAAW,GAAG,GAAG,CAAC;AACxB,IAAI,gCAAgC,GAAyB,IAAI,CAAC;AAClE,IAAI,4BAA4B,GAAqB,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;AAC3E,MAAM,mBAAmB,GAAG,kBAAkB,CAAC;AAE/C,wBAAwB,CAAC,mBAAmB,EAAE,GAAG,CAAC,oBAAoB,CAAC,CAAC;AAExE,SAAS,uBAAuB,CAAC,KAAqB;IAClD,IAAI,OAAO,KAAK,CAAC,SAAS,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAC;IACrD,IAAI,OAAO,KAAK,CAAC,EAAE,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAC;IAC9C,IAAI,KAAK,CAAC,IAAI,KAAK,cAAc,IAAI,KAAK,CAAC,IAAI,KAAK,eAAe,IAAI,KAAK,CAAC,IAAI,KAAK,YAAY;QAAE,OAAO,IAAI,CAAC;IAChH,IAAI,OAAO,KAAK,CAAC,KAAK,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAC;IACjD,IAAI,OAAO,KAAK,CAAC,SAAS,KAAK,WAAW,IAAI,OAAO,KAAK,CAAC,SAAS,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAC;IAC/F,OAAO,KAAK,CAAC;AACjB,CAAC;AAED,KAAK,UAAU,uBAAuB;IAClC,MAAM,eAAe,GAAG,MAAM,oBAAoB,CAAC,GAAG,CAAC,oBAAoB,CAAC,CAAC;IAC7E,MAAM,gBAAgB,GAAG,eAAe;SACnC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,uBAAuB,CAAC,KAAuB,CAAC,CAAC;SAChE,MAAM,CAAC,CAAC,KAAK,EAA2B,EAAE,CAAC,KAAK,KAAK,IAAI,CAAC;SAC1D,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,CAAC;IAE3B,IAAI,gBAAgB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC9B,gBAAgB,CAAC,MAAM,CAAC,CAAC,EAAE,gBAAgB,CAAC,MAAM,EAAE,GAAG,gBAAgB,CAAC,CAAC;IAC7E,CAAC;IACD,uBAAuB,CAAC,mBAAmB,CAAC,CAAC;AACjD,CAAC;AAED,KAAK,UAAU,8BAA8B;IACzC,IAAI,CAAC,gCAAgC,EAAE,CAAC;QACpC,gCAAgC,GAAG,uBAAuB,EAAE,CAAC;IACjE,CAAC;IACD,MAAM,gCAAgC,CAAC;AAC3C,CAAC;AAED,KAAK,UAAU,6BAA6B;IACxC,4BAA4B,GAAG,4BAA4B,CAAC,IAAI,CAC5D,GAAG,EAAE,CAAC,qBAAqB,CAAC,GAAG,CAAC,oBAAoB,EAAE,gBAAgB,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,CAAC,EAC7F,GAAG,EAAE,CAAC,qBAAqB,CAAC,GAAG,CAAC,oBAAoB,EAAE,gBAAgB,CAAC,KAAK,CAAC,CAAC,EAAE,WAAW,CAAC,CAAC,CAChG,CAAC;IACF,MAAM,SAAS,GAAG,MAAM,4BAA4B,CAAC;IACrD,oBAAoB,CAAC,mBAAmB,EAAE,SAAS,CAAC,CAAC;IACrD,OAAO,SAAS,CAAC;AACrB,CAAC;AAED,SAAS,eAAe,CAAC,KAAqB;IAC1C,gBAAgB,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;IAChC,IAAI,gBAAgB,CAAC,MAAM,GAAG,WAAW,EAAE,CAAC;QACxC,gBAAgB,CAAC,MAAM,GAAG,WAAW,CAAC;IAC1C,CAAC;IACD,2BAA2B;IAC3B,kBAAkB,CAAC,KAAK,CAAC,CAAC;IAC1B,KAAK,6BAA6B,EAAE,CAAC,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE;QACpD,IAAI,CAAC,SAAS,EAAE,CAAC;YACb,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,KAAK,CAAC,KAAK,EAAE,IAAI,EAAE,KAAK,CAAC,IAAI,EAAE,EAAE,+DAA+D,CAAC,CAAC;QAC3H,CAAC;IACL,CAAC,CAAC,CAAC;AACP,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAAC,IAAa,EAAE,GAAa;IACtE,MAAM,8BAA8B,EAAE,CAAC;IACvC,GAAG,CAAC,IAAI,CAAC;QACL,KAAK,EAAE,gBAAgB,CAAC,MAAM;QAC9B,MAAM,EAAE,gBAAgB;KAC3B,CAAC,CAAC;AACP,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,qBAAqB,CAAC,IAAa,EAAE,GAAa;IACpE,MAAM,8BAA8B,EAAE,CAAC;IACvC,MAAM,KAAK,GAAG,gBAAgB,CAAC,MAAM,CAAC;IACtC,gBAAgB,CAAC,MAAM,GAAG,CAAC,CAAC;IAC5B,MAAM,SAAS,GAAG,MAAM,6BAA6B,EAAE,CAAC;IACxD,IAAI,CAAC,SAAS,EAAE,CAAC;QACb,MAAM,CAAC,IAAI,CAAC,kEAAkE,CAAC,CAAC;IACpF,CAAC;IACD,GAAG,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,CAAC;AAC3C,CAAC;AAED,MAAM,gBAAgB,GAA0D;IAC5E,QAAQ,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;QACnB,MAAM,EAAE,GAAG,GAAG,CAAC,EAAE,IAAI,SAAS,CAAC;QAC/B,eAAe,CAAC;YACZ,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,EAAE;YACF,IAAI,EAAE,cAAc;YACpB,KAAK,EAAE,QAAQ;YACf,OAAO,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE;SAClC,CAAC,CAAC;QACH,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,WAAW,CAAC,CAAC;QAC3C,GAAG,CAAC,IAAI,CAAC;;;;;;;;;;;;SAYR,CAAC,CAAC;IACP,CAAC;IACD,gBAAgB,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;QAC3B,+CAA+C;QAC/C,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;IAC7B,CAAC;IACD,UAAU,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;QACrB,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,eAAe,CAAC,CAAC,CAAC;IACxD,CAAC;IACD,aAAa,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;QACxB,MAAM,EAAE,GAAG,GAAG,CAAC,EAAE,IAAI,SAAS,CAAC;QAC/B,eAAe,CAAC;YACZ,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,EAAE;YACF,IAAI,EAAE,cAAc;YACpB,KAAK,EAAE,aAAa;YACpB,OAAO,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE;SAClC,CAAC,CAAC;QACH,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,8CAA8C,CAAC,CAAC;IACzE,CAAC;IACD,OAAO,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;QAClB,MAAM,EAAE,GAAG,GAAG,CAAC,EAAE,IAAI,SAAS,CAAC;QAC/B,eAAe,CAAC;YACZ,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,EAAE;YACF,IAAI,EAAE,cAAc;YACpB,KAAK,EAAE,OAAO;YACd,OAAO,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,QAAQ,EAAE,UAAU,EAAE;SACxD,CAAC,CAAC;QACH,GAAG,CAAC,IAAI,CAAC,qHAAqH,CAAC,CAAC;IACpI,CAAC;IACD,aAAa,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;QACxB,MAAM,EAAE,GAAG,GAAG,CAAC,EAAE,IAAI,SAAS,CAAC;QAC/B,eAAe,CAAC;YACZ,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,EAAE;YACF,IAAI,EAAE,cAAc;YACpB,KAAK,EAAE,aAAa;YACpB,OAAO,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,QAAQ,EAAE,UAAU,EAAE;SACxD,CAAC,CAAC;QACH,GAAG,CAAC,IAAI,CAAC,4LAA4L,CAAC,CAAC;IAC3M,CAAC;CACJ,CAAC;AACF,MAAM,yBAAyB,GAAG,CAAC,qBAAqB,CAAC,CAAC;AAE1D,MAAM,CAAC,KAAK,UAAU,gBAAgB,CAAC,GAAY,EAAE,GAAa;IAC9D,MAAM,8BAA8B,EAAE,CAAC;IACvC,MAAM,WAAW,GAAG,GAAG,CAAC,IAAI,CAAC;IAE7B,IAAI,yBAAyB,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,WAAW,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC;QAC7E,OAAO,KAAK,CAAC;IACjB,CAAC;IAED,iBAAiB;IACjB,IAAI,WAAW,KAAK,cAAc,IAAI,GAAG,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;QAC1D,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QACxC,MAAM,EAAE,GAAG,GAAG,CAAC,EAAE,IAAI,SAAS,CAAC;QAC/B,MAAM,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,OAAO,EAAE,SAAS,EAAE,EAAE,gCAAgC,CAAC,CAAC;QAE1E,uBAAuB;QACvB,eAAe,CAAC;YACZ,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,EAAE;YACF,IAAI,EAAE,eAAe;YACrB,KAAK,EAAE,cAAc;YACrB,OAAO,EAAE,EAAE,OAAO,EAAE;YACpB,SAAS;SACZ,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,QAAQ,CAAC,cAAc,EAAE,OAAO,CAAC,CAAC;QACvE,GAAG,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;QACrB,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,0DAA0D;IAC1D,KAAK,MAAM,CAAC,KAAK,EAAE,OAAO,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,gBAAgB,CAAC,EAAE,CAAC;QAC9D,IAAI,WAAW,KAAK,KAAK,IAAI,WAAW,CAAC,UAAU,CAAC,KAAK,GAAG,GAAG,CAAC,EAAE,CAAC;YAC/D,MAAM,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE,EAAE,EAAE,GAAG,CAAC,EAAE,EAAE,EAAE,yCAAyC,CAAC,CAAC;YAC1F,OAAO,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;YAClB,OAAO,IAAI,CAAC;QAChB,CAAC;IACL,CAAC;IAED,kDAAkD;IAClD,IAAI,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,uBAAuB,CAAC,EAAE,CAAC;QAC3D,MAAM,EAAE,GAAG,GAAG,CAAC,EAAE,IAAI,SAAS,CAAC;QAC/B,MAAM,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,EAAE,uCAAuC,CAAC,CAAC;QAC7D,eAAe,CAAC;YACZ,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,EAAE;YACF,IAAI,EAAE,YAAY;YAClB,KAAK,EAAE,GAAG,CAAC,IAAI;YACf,OAAO,EAAE,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,EAAE;SAChC,CAAC,CAAC;QACH,GAAG,CAAC,IAAI,CAAC;YACL,MAAM,EAAE,SAAS;YACjB,IAAI,EAAE;gBACF,EAAE,EAAE,EAAE,CAAC,EAAE,QAAQ,EAAE,OAAO,EAAE,IAAI,EAAE,WAAW,EAAE;gBAC/C,EAAE,EAAE,EAAE,CAAC,EAAE,QAAQ,EAAE,OAAO,EAAE,IAAI,EAAE,WAAW,EAAE;aAClD;YACD,UAAU,EAAE,oBAAoB;SACnC,CAAC,CAAC;QACH,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,OAAO,KAAK,CAAC;AACjB,CAAC"}

package/dist/demo-mode.js

@@ -0,0 +1,109 @@
+import { broadcastRequest, broadcastDeception } from "./sse-broadcast.js";
+import { logger } from "./logger.js";
+import { cfg } from "./config.js";
+let demoTimeout = null;
+let currentConfig = {
+    intensity: 10,
+    errorRate: 5,
+    latencyBase: 50,
+    attackFrequency: 5,
+    pattern: 'steady',
+    targetPath: null
+};
+const METHODS = ["GET", "POST", "PUT", "DELETE", "PATCH"];
+const PATHS = [
+    "/api/v1/auth", "/api/v1/users", "/dashboard/stats", "/health",
+    "/api/orders", "/api/payment", "/api/products", "/ws/notifications",
+    "/admin/login", "/.env", "/wp-login.php"
+];
+const SUCCESS_STATUSES = [200, 200, 201, 204, 302];
+const ERROR_STATUSES = [400, 401, 403, 404, 500, 503];
+const IPS = [
+    "192.168.1.10", "10.0.0.5", "172.16.0.23", "203.0.113.42", "198.51.100.12",
+    "8.8.8.8", "1.1.1.1", "127.0.0.1"
+];
+let startTime = Date.now();
+function generateRandomRequest() {
+    const method = METHODS[Math.floor(Math.random() * METHODS.length)];
+    const path = currentConfig.targetPath || PATHS[Math.floor(Math.random() * PATHS.length)];
+    const isError = Math.random() * 100 < currentConfig.errorRate;
+    const status = isError
+        ? ERROR_STATUSES[Math.floor(Math.random() * ERROR_STATUSES.length)]
+        : SUCCESS_STATUSES[Math.floor(Math.random() * SUCCESS_STATUSES.length)];
+    const ip = IPS[Math.floor(Math.random() * IPS.length)];
+    const latency = currentConfig.latencyBase + Math.floor(Math.random() * 200);
+    return {
+        method,
+        path,
+        status,
+        ip,
+        timestamp: new Date().toISOString(),
+        latencyMs: latency,
+        headers: {
+            "user-agent": "Mozilla/5.0 (Synthetic/2.1)",
+            "content-type": "application/json"
+        }
+    };
+}
+function generateRandomDeception() {
+    return {
+        timestamp: new Date().toISOString(),
+        ip: IPS[Math.floor(Math.random() * IPS.length)],
+        type: Math.random() > 0.5 ? 'honeypot_hit' : (Math.random() > 0.5 ? 'sqli_probe' : 'shell_command'),
+        route: currentConfig.targetPath || PATHS[Math.floor(Math.random() * PATHS.length)],
+        details: {
+            command: "cat /etc/passwd",
+            query: "' OR 1=1 --",
+            source: "Synthetic Generator"
+        }
+    };
+}
+export function updateDemoConfig(config) {
+    currentConfig = { ...currentConfig, ...config };
+    logger.info({ config: currentConfig }, "Demo Mode: Configuration updated");
+}
+export function getDemoConfig() {
+    return { ...currentConfig, enabled: !!demoTimeout };
+}
+export function startDemoLoop() {
+    if (demoTimeout)
+        return;
+    startTime = Date.now();
+    logger.info("Demo Mode: Starting synthetic traffic generator");
+    const run = () => {
+        const req = generateRandomRequest();
+        broadcastRequest(req);
+        if (Math.random() * 100 < currentConfig.attackFrequency) {
+            broadcastDeception(generateRandomDeception());
+        }
+        // Calculate dynamic intensity based on pattern
+        let effectiveIntensity = currentConfig.intensity;
+        const elapsed = (Date.now() - startTime) / 1000;
+        if (currentConfig.pattern === 'sine') {
+            // Sine wave with 30s period, oscillating between 20% and 100% of set intensity
+            const wave = (Math.sin(elapsed * (Math.PI * 2 / 30)) + 1) / 2;
+            effectiveIntensity = Math.max(1, currentConfig.intensity * (0.2 + 0.8 * wave));
+        }
+        else if (currentConfig.pattern === 'spiky') {
+            // Occasional spikes (10% chance) that 5x the intensity
+            if (Math.random() < 0.1) {
+                effectiveIntensity = Math.min(100, currentConfig.intensity * 5);
+            }
+        }
+        const baseDelay = 1000 / Math.max(1, effectiveIntensity);
+        const nextDelay = baseDelay + (Math.random() * (baseDelay * 0.4) - (baseDelay * 0.2));
+        demoTimeout = setTimeout(run, Math.max(5, nextDelay));
+    };
+    run();
+}
+export function stopDemoLoop() {
+    if (demoTimeout) {
+        clearTimeout(demoTimeout);
+        demoTimeout = null;
+        logger.info("Demo Mode: Stopped synthetic traffic");
+    }
+}
+if (cfg.demoMode) {
+    startDemoLoop();
+}
+//# sourceMappingURL=demo-mode.js.map

package/dist/demo-mode.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"demo-mode.js","sourceRoot":"","sources":["../src/demo-mode.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,kBAAkB,EAAoB,MAAM,oBAAoB,CAAC;AAC5F,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AACrC,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAElC,IAAI,WAAW,GAA0B,IAAI,CAAC;AAa9C,IAAI,aAAa,GAAe;IAC5B,SAAS,EAAE,EAAE;IACb,SAAS,EAAE,CAAC;IACZ,WAAW,EAAE,EAAE;IACf,eAAe,EAAE,CAAC;IAClB,OAAO,EAAE,QAAQ;IACjB,UAAU,EAAE,IAAI;CACnB,CAAC;AAEF,MAAM,OAAO,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,OAAO,CAAC,CAAC;AAC1D,MAAM,KAAK,GAAG;IACV,cAAc,EAAE,eAAe,EAAE,kBAAkB,EAAE,SAAS;IAC9D,aAAa,EAAE,cAAc,EAAE,eAAe,EAAE,mBAAmB;IACnE,cAAc,EAAE,OAAO,EAAE,eAAe;CAC3C,CAAC;AACF,MAAM,gBAAgB,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;AACnD,MAAM,cAAc,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;AACtD,MAAM,GAAG,GAAG;IACR,cAAc,EAAE,UAAU,EAAE,aAAa,EAAE,cAAc,EAAE,eAAe;IAC1E,SAAS,EAAE,SAAS,EAAE,WAAW;CACpC,CAAC;AAEF,IAAI,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;AAE3B,SAAS,qBAAqB;IAC1B,MAAM,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC;IACnE,MAAM,IAAI,GAAG,aAAa,CAAC,UAAU,IAAI,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC;IAEzF,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,EAAE,GAAG,GAAG,GAAG,aAAa,CAAC,SAAS,CAAC;IAC9D,MAAM,MAAM,GAAG,OAAO;QAClB,CAAC,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC;QACnE,CAAC,CAAC,gBAAgB,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC,CAAC;IAE5E,MAAM,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC;IACvD,MAAM,OAAO,GAAG,aAAa,CAAC,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,GAAG,CAAC,CAAC;IAE5E,OAAO;QACH,MAAM;QACN,IAAI;QACJ,MAAM;QACN,EAAE;QACF,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACnC,SAAS,EAAE,OAAO;QAClB,OAAO,EAAE;YACL,YAAY,EAAE,6BAA6B;YAC3C,cAAc,EAAE,kBAAkB;SACrC;KACJ,CAAC;AACN,CAAC;AAED,SAAS,uBAAuB;IAC5B,OAAO;QACH,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACnC,EAAE,EAAE,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC;QAC/C,IAAI,EAAE,IAAI,CAAC,MAAM,EAAE,GAAG,GAAG,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,GAAG,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,eAAe,CAAC;QACnG,KAAK,EAAE,aAAa,CAAC,UAAU,IAAI,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC;QAClF,OAAO,EAAE;YACL,OAAO,EAAE,iBAAiB;YAC1B,KAAK,EAAE,aAAa;YACpB,MAAM,EAAE,qBAAqB;SAChC;KACJ,CAAC;AACN,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,MAA2B;IACxD,aAAa,GAAG,EAAE,GAAG,aAAa,EAAE,GAAG,MAAM,EAAE,CAAC;IAChD,MAAM,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,aAAa,EAAE,EAAE,kCAAkC,CAAC,CAAC;AAC/E,CAAC;AAED,MAAM,UAAU,aAAa;IACzB,OAAO,EAAE,GAAG,aAAa,EAAE,OAAO,EAAE,CAAC,CAAC,WAAW,EAAE,CAAC;AACxD,CAAC;AAED,MAAM,UAAU,aAAa;IACzB,IAAI,WAAW;QAAE,OAAO;IACxB,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACvB,MAAM,CAAC,IAAI,CAAC,iDAAiD,CAAC,CAAC;IAE/D,MAAM,GAAG,GAAG,GAAG,EAAE;QACb,MAAM,GAAG,GAAG,qBAAqB,EAAE,CAAC;QACpC,gBAAgB,CAAC,GAAG,CAAC,CAAC;QAEtB,IAAI,IAAI,CAAC,MAAM,EAAE,GAAG,GAAG,GAAG,aAAa,CAAC,eAAe,EAAE,CAAC;YACtD,kBAAkB,CAAC,uBAAuB,EAAS,CAAC,CAAC;QACzD,CAAC;QAED,+CAA+C;QAC/C,IAAI,kBAAkB,GAAG,aAAa,CAAC,SAAS,CAAC;QACjD,MAAM,OAAO,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC,GAAG,IAAI,CAAC;QAEhD,IAAI,aAAa,CAAC,OAAO,KAAK,MAAM,EAAE,CAAC;YACnC,+EAA+E;YAC/E,MAAM,IAAI,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,OAAO,GAAG,CAAC,IAAI,CAAC,EAAE,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC;YAC9D,kBAAkB,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,aAAa,CAAC,SAAS,GAAG,CAAC,GAAG,GAAG,GAAG,GAAG,IAAI,CAAC,CAAC,CAAC;QACnF,CAAC;aAAM,IAAI,aAAa,CAAC,OAAO,KAAK,OAAO,EAAE,CAAC;YAC3C,uDAAuD;YACvD,IAAI,IAAI,CAAC,MAAM,EAAE,GAAG,GAAG,EAAE,CAAC;gBACtB,kBAAkB,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,aAAa,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC;YACpE,CAAC;QACL,CAAC;QAED,MAAM,SAAS,GAAG,IAAI,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,kBAAkB,CAAC,CAAC;QACzD,MAAM,SAAS,GAAG,SAAS,GAAG,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,CAAC,SAAS,GAAG,GAAG,CAAC,GAAG,CAAC,SAAS,GAAG,GAAG,CAAC,CAAC,CAAC;QAEtF,WAAW,GAAG,UAAU,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,SAAS,CAAC,CAAC,CAAC;IAC1D,CAAC,CAAC;IAEF,GAAG,EAAE,CAAC;AACV,CAAC;AAED,MAAM,UAAU,YAAY;IACxB,IAAI,WAAW,EAAE,CAAC;QACd,YAAY,CAAC,WAA6B,CAAC,CAAC;QAC5C,WAAW,GAAG,IAAI,CAAC;QACnB,MAAM,CAAC,IAAI,CAAC,sCAAsC,CAAC,CAAC;IACxD,CAAC;AACL,CAAC;AAED,IAAI,GAAG,CAAC,QAAQ,EAAE,CAAC;IACf,aAAa,EAAE,CAAC;AACpB,CAAC"}