@panguard-ai/panguard-scan 0.1.0

package/dist/scanners/open-ports.js

@@ -0,0 +1,198 @@
+/**
+ * Unnecessary open ports checker
+ * 不必要的開放埠檢查器
+ *
+ * Analyzes a list of open ports against a known set of risky or unnecessary
+ * ports and generates findings for each match.
+ * 將開放埠列表與已知的風險或不必要埠集合進行比對，並為每個匹配產生發現。
+ *
+ * @module @panguard-ai/panguard-scan/scanners/open-ports
+ */
+import { createLogger } from '@panguard-ai/core';
+const logger = createLogger('panguard-scan:open-ports');
+/**
+ * Map of unnecessary or risky port numbers to their descriptions
+ * 不必要或有風險的埠號與其描述的對應表
+ *
+ * Each entry contains the service name, risk description, and recommended remediation.
+ * 每個條目包含服務名稱、風險描述和建議的修復措施。
+ */
+const UNNECESSARY_PORTS = new Map([
+    [
+        21,
+        {
+            name: 'FTP',
+            risk: 'Unencrypted file transfer',
+            remediation: 'Use SFTP instead',
+            manualFix: ['sudo ufw deny 21', 'sudo systemctl disable vsftpd'],
+        },
+    ],
+    [
+        23,
+        {
+            name: 'Telnet',
+            risk: 'Unencrypted remote access',
+            remediation: 'Use SSH instead',
+            manualFix: ['sudo ufw deny 23', 'sudo systemctl disable telnetd'],
+        },
+    ],
+    [
+        135,
+        {
+            name: 'MSRPC',
+            risk: 'Windows RPC exploitation',
+            remediation: 'Block with firewall',
+            manualFix: ['sudo ufw deny 135'],
+        },
+    ],
+    [
+        139,
+        {
+            name: 'NetBIOS',
+            risk: 'SMB relay attacks',
+            remediation: 'Disable NetBIOS over TCP/IP',
+            manualFix: ['sudo ufw deny 139'],
+        },
+    ],
+    [
+        445,
+        {
+            name: 'SMB',
+            risk: 'EternalBlue and SMB attacks',
+            remediation: 'Restrict SMB access',
+            manualFix: ['sudo ufw deny 445'],
+        },
+    ],
+    [
+        1433,
+        {
+            name: 'MSSQL',
+            risk: 'Database exposure',
+            remediation: 'Bind to localhost only',
+            manualFix: ['sudo ufw deny 1433'],
+        },
+    ],
+    [
+        3306,
+        {
+            name: 'MySQL',
+            risk: 'Database exposure',
+            remediation: 'Bind to localhost only',
+            manualFix: [
+                "sudo sed -i 's/bind-address.*/bind-address = 127.0.0.1/' /etc/mysql/mysql.conf.d/mysqld.cnf",
+                'sudo systemctl restart mysql',
+            ],
+        },
+    ],
+    [
+        3389,
+        {
+            name: 'RDP',
+            risk: 'Brute force and BlueKeep',
+            remediation: 'Use VPN for remote access',
+            manualFix: ['sudo ufw deny 3389'],
+        },
+    ],
+    [
+        5432,
+        {
+            name: 'PostgreSQL',
+            risk: 'Database exposure',
+            remediation: 'Bind to localhost only',
+            manualFix: [
+                "sudo sed -i \"s/#listen_addresses = 'localhost'/listen_addresses = 'localhost'/\" /etc/postgresql/*/main/postgresql.conf",
+                'sudo systemctl restart postgresql',
+            ],
+        },
+    ],
+    [
+        5900,
+        {
+            name: 'VNC',
+            risk: 'Unencrypted remote desktop',
+            remediation: 'Use SSH tunnel',
+            manualFix: ['sudo ufw deny 5900'],
+        },
+    ],
+    [
+        6379,
+        {
+            name: 'Redis',
+            risk: 'Unauthenticated access',
+            remediation: 'Enable AUTH and bind to localhost',
+            manualFix: [
+                "sudo sed -i 's/# requirepass.*/requirepass YOUR_STRONG_PASSWORD/' /etc/redis/redis.conf",
+                "sudo sed -i 's/bind .*/bind 127.0.0.1/' /etc/redis/redis.conf",
+                'sudo systemctl restart redis',
+            ],
+        },
+    ],
+    [
+        27017,
+        {
+            name: 'MongoDB',
+            risk: 'Unauthenticated access',
+            remediation: 'Enable auth and bind to localhost',
+            manualFix: [
+                "sudo sed -i 's/bindIp:.*/bindIp: 127.0.0.1/' /etc/mongod.conf",
+                'sudo systemctl restart mongod',
+            ],
+        },
+    ],
+]);
+/**
+ * Ports that warrant critical severity due to unencrypted protocols
+ * 因未加密協定而需要嚴重等級的埠
+ */
+const CRITICAL_PORTS = new Set([21, 23]);
+/**
+ * Check a list of open ports for unnecessary or risky services
+ * 檢查開放埠列表中是否有不必要或有風險的服務
+ *
+ * This is a synchronous function that analyzes existing port data without
+ * performing any additional system calls.
+ * 這是一個同步函式，分析現有的埠資料而不執行任何額外的系統呼叫。
+ *
+ * @param ports - Array of open port info from discovery / 來自偵察的開放埠資訊陣列
+ * @returns Array of findings for unnecessary ports / 不必要埠的發現陣列
+ */
+export function checkUnnecessaryPorts(ports) {
+    const findings = [];
+    logger.info(`Checking ${ports.length} open ports against unnecessary ports list`);
+    for (const portInfo of ports) {
+        const unnecessary = UNNECESSARY_PORTS.get(portInfo.port);
+        if (!unnecessary)
+            continue;
+        const severity = CRITICAL_PORTS.has(portInfo.port) ? 'critical' : 'high';
+        const finding = {
+            id: `SCAN-PORT-${portInfo.port}`,
+            title: `Unnecessary port open: ${portInfo.port}/${portInfo.protocol} (${unnecessary.name}) / ` +
+                `不必要的開放埠：${portInfo.port}/${portInfo.protocol} (${unnecessary.name})`,
+            description: `Port ${portInfo.port} (${unnecessary.name}) is open. ` +
+                `Risk: ${unnecessary.risk}. ` +
+                `Process: ${portInfo.process || 'unknown'}. / ` +
+                `埠 ${portInfo.port} (${unnecessary.name}) 已開放。` +
+                `風險：${unnecessary.risk}。` +
+                `行程：${portInfo.process || 'unknown'}。`,
+            severity,
+            category: 'network',
+            remediation: `${unnecessary.remediation}. ` +
+                `If this service is not needed, close port ${portInfo.port} or stop the associated process. / ` +
+                `${unnecessary.remediation}。` +
+                `如果不需要此服務，請關閉埠 ${portInfo.port} 或停止相關行程。`,
+            complianceRef: '4.3',
+            details: `Port: ${portInfo.port}, Protocol: ${portInfo.protocol}, ` +
+                `State: ${portInfo.state}, PID: ${portInfo.pid ?? 'N/A'}, ` +
+                `Process: ${portInfo.process || 'N/A'}, Service: ${portInfo.service || 'N/A'}`,
+            manualFix: unnecessary.manualFix,
+        };
+        logger.info(`Found unnecessary port: ${portInfo.port} (${unnecessary.name})`, {
+            port: portInfo.port,
+            severity,
+        });
+        findings.push(finding);
+    }
+    logger.info(`Unnecessary ports check complete: ${findings.length} finding(s)`);
+    return findings;
+}
+//# sourceMappingURL=open-ports.js.map

package/dist/scanners/open-ports.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"open-ports.js","sourceRoot":"","sources":["../../src/scanners/open-ports.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,YAAY,EAAiB,MAAM,mBAAmB,CAAC;AAGhE,MAAM,MAAM,GAAG,YAAY,CAAC,0BAA0B,CAAC,CAAC;AAExD;;;;;;GAMG;AACH,MAAM,iBAAiB,GAGnB,IAAI,GAAG,CAAC;IACV;QACE,EAAE;QACF;YACE,IAAI,EAAE,KAAK;YACX,IAAI,EAAE,2BAA2B;YACjC,WAAW,EAAE,kBAAkB;YAC/B,SAAS,EAAE,CAAC,kBAAkB,EAAE,+BAA+B,CAAC;SACjE;KACF;IACD;QACE,EAAE;QACF;YACE,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,2BAA2B;YACjC,WAAW,EAAE,iBAAiB;YAC9B,SAAS,EAAE,CAAC,kBAAkB,EAAE,gCAAgC,CAAC;SAClE;KACF;IACD;QACE,GAAG;QACH;YACE,IAAI,EAAE,OAAO;YACb,IAAI,EAAE,0BAA0B;YAChC,WAAW,EAAE,qBAAqB;YAClC,SAAS,EAAE,CAAC,mBAAmB,CAAC;SACjC;KACF;IACD;QACE,GAAG;QACH;YACE,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,mBAAmB;YACzB,WAAW,EAAE,6BAA6B;YAC1C,SAAS,EAAE,CAAC,mBAAmB,CAAC;SACjC;KACF;IACD;QACE,GAAG;QACH;YACE,IAAI,EAAE,KAAK;YACX,IAAI,EAAE,6BAA6B;YACnC,WAAW,EAAE,qBAAqB;YAClC,SAAS,EAAE,CAAC,mBAAmB,CAAC;SACjC;KACF;IACD;QACE,IAAI;QACJ;YACE,IAAI,EAAE,OAAO;YACb,IAAI,EAAE,mBAAmB;YACzB,WAAW,EAAE,wBAAwB;YACrC,SAAS,EAAE,CAAC,oBAAoB,CAAC;SAClC;KACF;IACD;QACE,IAAI;QACJ;YACE,IAAI,EAAE,OAAO;YACb,IAAI,EAAE,mBAAmB;YACzB,WAAW,EAAE,wBAAwB;YACrC,SAAS,EAAE;gBACT,6FAA6F;gBAC7F,8BAA8B;aAC/B;SACF;KACF;IACD;QACE,IAAI;QACJ;YACE,IAAI,EAAE,KAAK;YACX,IAAI,EAAE,0BAA0B;YAChC,WAAW,EAAE,2BAA2B;YACxC,SAAS,EAAE,CAAC,oBAAoB,CAAC;SAClC;KACF;IACD;QACE,IAAI;QACJ;YACE,IAAI,EAAE,YAAY;YAClB,IAAI,EAAE,mBAAmB;YACzB,WAAW,EAAE,wBAAwB;YACrC,SAAS,EAAE;gBACT,0HAA0H;gBAC1H,mCAAmC;aACpC;SACF;KACF;IACD;QACE,IAAI;QACJ;YACE,IAAI,EAAE,KAAK;YACX,IAAI,EAAE,4BAA4B;YAClC,WAAW,EAAE,gBAAgB;YAC7B,SAAS,EAAE,CAAC,oBAAoB,CAAC;SAClC;KACF;IACD;QACE,IAAI;QACJ;YACE,IAAI,EAAE,OAAO;YACb,IAAI,EAAE,wBAAwB;YAC9B,WAAW,EAAE,mCAAmC;YAChD,SAAS,EAAE;gBACT,yFAAyF;gBACzF,+DAA+D;gBAC/D,8BAA8B;aAC/B;SACF;KACF;IACD;QACE,KAAK;QACL;YACE,IAAI,EAAE,SAAS;YACf,IAAI,EAAE,wBAAwB;YAC9B,WAAW,EAAE,mCAAmC;YAChD,SAAS,EAAE;gBACT,+DAA+D;gBAC/D,+BAA+B;aAChC;SACF;KACF;CACF,CAAC,CAAC;AAEH;;;GAGG;AACH,MAAM,cAAc,GAAG,IAAI,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,CAAC;AAEzC;;;;;;;;;;GAUG;AACH,MAAM,UAAU,qBAAqB,CAAC,KAAiB;IACrD,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,MAAM,CAAC,IAAI,CAAC,YAAY,KAAK,CAAC,MAAM,4CAA4C,CAAC,CAAC;IAElF,KAAK,MAAM,QAAQ,IAAI,KAAK,EAAE,CAAC;QAC7B,MAAM,WAAW,GAAG,iBAAiB,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QACzD,IAAI,CAAC,WAAW;YAAE,SAAS;QAE3B,MAAM,QAAQ,GAAG,cAAc,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,MAAM,CAAC;QAEzE,MAAM,OAAO,GAAY;YACvB,EAAE,EAAE,aAAa,QAAQ,CAAC,IAAI,EAAE;YAChC,KAAK,EACH,0BAA0B,QAAQ,CAAC,IAAI,IAAI,QAAQ,CAAC,QAAQ,KAAK,WAAW,CAAC,IAAI,MAAM;gBACvF,WAAW,QAAQ,CAAC,IAAI,IAAI,QAAQ,CAAC,QAAQ,KAAK,WAAW,CAAC,IAAI,GAAG;YACvE,WAAW,EACT,QAAQ,QAAQ,CAAC,IAAI,KAAK,WAAW,CAAC,IAAI,aAAa;gBACvD,SAAS,WAAW,CAAC,IAAI,IAAI;gBAC7B,YAAY,QAAQ,CAAC,OAAO,IAAI,SAAS,MAAM;gBAC/C,KAAK,QAAQ,CAAC,IAAI,KAAK,WAAW,CAAC,IAAI,QAAQ;gBAC/C,MAAM,WAAW,CAAC,IAAI,GAAG;gBACzB,MAAM,QAAQ,CAAC,OAAO,IAAI,SAAS,GAAG;YACxC,QAAQ;YACR,QAAQ,EAAE,SAAS;YACnB,WAAW,EACT,GAAG,WAAW,CAAC,WAAW,IAAI;gBAC9B,6CAA6C,QAAQ,CAAC,IAAI,qCAAqC;gBAC/F,GAAG,WAAW,CAAC,WAAW,GAAG;gBAC7B,iBAAiB,QAAQ,CAAC,IAAI,WAAW;YAC3C,aAAa,EAAE,KAAK;YACpB,OAAO,EACL,SAAS,QAAQ,CAAC,IAAI,eAAe,QAAQ,CAAC,QAAQ,IAAI;gBAC1D,UAAU,QAAQ,CAAC,KAAK,UAAU,QAAQ,CAAC,GAAG,IAAI,KAAK,IAAI;gBAC3D,YAAY,QAAQ,CAAC,OAAO,IAAI,KAAK,cAAc,QAAQ,CAAC,OAAO,IAAI,KAAK,EAAE;YAChF,SAAS,EAAE,WAAW,CAAC,SAAS;SACjC,CAAC;QAEF,MAAM,CAAC,IAAI,CAAC,2BAA2B,QAAQ,CAAC,IAAI,KAAK,WAAW,CAAC,IAAI,GAAG,EAAE;YAC5E,IAAI,EAAE,QAAQ,CAAC,IAAI;YACnB,QAAQ;SACT,CAAC,CAAC;QAEH,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACzB,CAAC;IAED,MAAM,CAAC,IAAI,CAAC,qCAAqC,QAAQ,CAAC,MAAM,aAAa,CAAC,CAAC;IAC/E,OAAO,QAAQ,CAAC;AAClB,CAAC"}

package/dist/scanners/password-policy.d.ts

@@ -0,0 +1,23 @@
+/**
+ * Password policy checker
+ * 密碼策略檢查器
+ *
+ * Checks the system's password policy configuration to identify weak or
+ * missing policies. Supports macOS, Linux, and Windows.
+ * 檢查系統的密碼策略配置以識別弱或缺失的策略。支援 macOS、Linux 和 Windows。
+ *
+ * @module @panguard-ai/panguard-scan/scanners/password-policy
+ */
+import type { Finding } from './types.js';
+/**
+ * Check password policy strength on the current platform
+ * 檢查目前平台上的密碼策略強度
+ *
+ * Cross-platform password policy checker that dispatches to the appropriate
+ * platform-specific implementation.
+ * 跨平台密碼策略檢查器，分派到適當的平台特定實作。
+ *
+ * @returns Array of password policy findings / 密碼策略發現陣列
+ */
+export declare function checkPasswordPolicy(): Promise<Finding[]>;
+//# sourceMappingURL=password-policy.d.ts.map

package/dist/scanners/password-policy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"password-policy.d.ts","sourceRoot":"","sources":["../../src/scanners/password-policy.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAOH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,YAAY,CAAC;AAgU1C;;;;;;;;;GASG;AACH,wBAAsB,mBAAmB,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC,CA+B9D"}

package/dist/scanners/password-policy.js

@@ -0,0 +1,324 @@
+/**
+ * Password policy checker
+ * 密碼策略檢查器
+ *
+ * Checks the system's password policy configuration to identify weak or
+ * missing policies. Supports macOS, Linux, and Windows.
+ * 檢查系統的密碼策略配置以識別弱或缺失的策略。支援 macOS、Linux 和 Windows。
+ *
+ * @module @panguard-ai/panguard-scan/scanners/password-policy
+ */
+import { execFile } from 'child_process';
+import { promisify } from 'util';
+import { readFile } from 'fs/promises';
+import { platform as osPlatform } from 'os';
+import { createLogger } from '@panguard-ai/core';
+const execFileAsync = promisify(execFile);
+const logger = createLogger('panguard-scan:password-policy');
+/**
+ * Safely execute a command and return stdout, or empty string on failure
+ * 安全地執行命令並回傳 stdout，失敗時回傳空字串
+ *
+ * @param cmd - Command to execute / 要執行的命令
+ * @param args - Command arguments / 命令參數
+ * @returns stdout output trimmed / 修剪後的 stdout 輸出
+ */
+async function safeExecFile(cmd, args) {
+    try {
+        const { stdout } = await execFileAsync(cmd, args, { timeout: 15_000 });
+        return stdout.trim();
+    }
+    catch (err) {
+        logger.debug(`Command failed: ${cmd} ${args.join(' ')}`, {
+            error: err instanceof Error ? err.message : String(err),
+        });
+        return '';
+    }
+}
+/**
+ * Check password policy on macOS
+ * 檢查 macOS 上的密碼策略
+ *
+ * Uses pwpolicy getaccountpolicies to retrieve and parse the current policy.
+ * 使用 pwpolicy getaccountpolicies 來擷取並解析目前的策略。
+ *
+ * @returns Array of findings related to macOS password policy / 與 macOS 密碼策略相關的發現陣列
+ */
+async function checkMacOSPolicy() {
+    const findings = [];
+    const output = await safeExecFile('pwpolicy', ['getaccountpolicies']);
+    if (!output) {
+        // No password policy configured at all
+        // 完全未配置密碼策略
+        findings.push({
+            id: 'SCAN-PWD-001',
+            title: 'No password policy configured / 未配置密碼策略',
+            description: 'No account password policy was found on this macOS system. ' +
+                'Without a password policy, users can set weak or empty passwords. / ' +
+                '在此 macOS 系統上未找到帳號密碼策略。' +
+                '沒有密碼策略，使用者可以設定弱或空密碼。',
+            severity: 'high',
+            category: 'password',
+            remediation: 'Configure a password policy using pwpolicy or an MDM profile ' +
+                'that enforces minimum length, complexity, and expiration. / ' +
+                '使用 pwpolicy 或 MDM 設定檔配置密碼策略，' +
+                '強制最小長度、複雜度和到期時間。',
+            complianceRef: '4.5',
+        });
+        return findings;
+    }
+    // Check for weak policy indicators
+    // 檢查弱策略指標
+    const hasMinLength = output.includes('minLength') || output.includes('policyAttributeMinimumLength');
+    const hasComplexity = output.includes('requiresAlpha') ||
+        output.includes('requiresNumeric') ||
+        output.includes('policyAttributeMinimumNumericCharacters');
+    const hasExpiration = output.includes('maxPINAgeInDays') || output.includes('policyAttributeExpiresEveryNDays');
+    if (!hasMinLength && !hasComplexity) {
+        findings.push({
+            id: 'SCAN-PWD-001',
+            title: 'Weak password policy detected / 偵測到弱密碼策略',
+            description: 'The macOS password policy does not enforce minimum length or complexity requirements. / ' +
+                'macOS 密碼策略未強制最小長度或複雜度要求。',
+            severity: 'medium',
+            category: 'password',
+            remediation: 'Update the password policy to require a minimum length of at least 8 characters ' +
+                'and include alphanumeric complexity requirements. / ' +
+                '更新密碼策略以要求至少 8 個字元的最小長度，' +
+                '並包含英數複雜度要求。',
+            complianceRef: '4.5',
+        });
+    }
+    if (!hasExpiration) {
+        findings.push({
+            id: 'SCAN-PWD-001',
+            title: 'No password expiration policy / 無密碼到期策略',
+            description: 'The macOS password policy does not enforce password expiration. ' +
+                'Passwords that never expire increase the risk of credential compromise. / ' +
+                'macOS 密碼策略未強制密碼到期。' +
+                '永不過期的密碼增加了憑證被破解的風險。',
+            severity: 'medium',
+            category: 'password',
+            remediation: 'Configure password expiration to require password changes at least every 90 days. / ' +
+                '配置密碼到期以要求至少每 90 天更改密碼。',
+            complianceRef: '4.5',
+        });
+    }
+    return findings;
+}
+/**
+ * Check password policy on Linux
+ * 檢查 Linux 上的密碼策略
+ *
+ * Reads /etc/pam.d/common-password and /etc/security/pwquality.conf to
+ * determine if a password quality policy is configured.
+ * 讀取 /etc/pam.d/common-password 和 /etc/security/pwquality.conf 以
+ * 判斷是否已配置密碼品質策略。
+ *
+ * @returns Array of findings related to Linux password policy / 與 Linux 密碼策略相關的發現陣列
+ */
+async function checkLinuxPolicy() {
+    const findings = [];
+    let policyFound = false;
+    // Try /etc/pam.d/common-password
+    // 嘗試 /etc/pam.d/common-password
+    try {
+        const pamContent = await readFile('/etc/pam.d/common-password', 'utf-8');
+        policyFound = true;
+        const hasMinLen = pamContent.includes('minlen') || pamContent.includes('min=');
+        const hasComplexity = pamContent.includes('ucredit') ||
+            pamContent.includes('lcredit') ||
+            pamContent.includes('dcredit') ||
+            pamContent.includes('ocredit') ||
+            pamContent.includes('pam_pwquality') ||
+            pamContent.includes('pam_cracklib');
+        if (!hasMinLen && !hasComplexity) {
+            findings.push({
+                id: 'SCAN-PWD-001',
+                title: 'Weak PAM password policy / 弱 PAM 密碼策略',
+                description: 'The PAM password configuration (/etc/pam.d/common-password) does not enforce ' +
+                    'minimum length or complexity requirements. / ' +
+                    'PAM 密碼配置 (/etc/pam.d/common-password) 未強制最小長度或複雜度要求。',
+                severity: 'medium',
+                category: 'password',
+                remediation: 'Install and configure pam_pwquality or pam_cracklib with minlen >= 8, ' +
+                    'and enforce uppercase, lowercase, digit, and special character requirements. / ' +
+                    '安裝並配置 pam_pwquality 或 pam_cracklib，設定 minlen >= 8，' +
+                    '並強制大寫、小寫、數字和特殊字元要求。',
+                complianceRef: '4.5',
+            });
+        }
+    }
+    catch {
+        logger.debug('Could not read /etc/pam.d/common-password');
+    }
+    // Try /etc/security/pwquality.conf
+    // 嘗試 /etc/security/pwquality.conf
+    try {
+        const pwqContent = await readFile('/etc/security/pwquality.conf', 'utf-8');
+        policyFound = true;
+        // Parse minlen value
+        // 解析 minlen 值
+        const minlenMatch = pwqContent.match(/^\s*minlen\s*=\s*(\d+)/m);
+        const minlen = minlenMatch ? parseInt(minlenMatch[1] ?? '0', 10) : 0;
+        if (minlen > 0 && minlen < 8) {
+            findings.push({
+                id: 'SCAN-PWD-001',
+                title: 'Insufficient minimum password length / 最小密碼長度不足',
+                description: `Password minimum length is set to ${minlen} in pwquality.conf. ` +
+                    'A minimum of 8 characters is recommended. / ' +
+                    `pwquality.conf 中密碼最小長度設定為 ${minlen}。建議至少 8 個字元。`,
+                severity: 'medium',
+                category: 'password',
+                remediation: 'Set minlen = 8 or higher in /etc/security/pwquality.conf. / ' +
+                    '在 /etc/security/pwquality.conf 中設定 minlen = 8 或更高。',
+                complianceRef: '4.5',
+            });
+        }
+    }
+    catch {
+        logger.debug('Could not read /etc/security/pwquality.conf');
+    }
+    if (!policyFound) {
+        findings.push({
+            id: 'SCAN-PWD-001',
+            title: 'No password policy configured / 未配置密碼策略',
+            description: 'No password quality policy files were found on this Linux system. ' +
+                'Neither /etc/pam.d/common-password nor /etc/security/pwquality.conf exist. / ' +
+                '在此 Linux 系統上未找到密碼品質策略檔案。' +
+                '/etc/pam.d/common-password 和 /etc/security/pwquality.conf 均不存在。',
+            severity: 'high',
+            category: 'password',
+            remediation: 'Install libpam-pwquality and configure /etc/security/pwquality.conf ' +
+                'with appropriate password complexity and length requirements. / ' +
+                '安裝 libpam-pwquality 並配置 /etc/security/pwquality.conf，' +
+                '設定適當的密碼複雜度和長度要求。',
+            complianceRef: '4.5',
+        });
+    }
+    return findings;
+}
+/**
+ * Check password policy on Windows
+ * 檢查 Windows 上的密碼策略
+ *
+ * Uses 'net accounts' to retrieve the current password policy settings.
+ * 使用 'net accounts' 來擷取目前的密碼策略設定。
+ *
+ * @returns Array of findings related to Windows password policy / 與 Windows 密碼策略相關的發現陣列
+ */
+async function checkWindowsPolicy() {
+    const findings = [];
+    const output = await safeExecFile('net', ['accounts']);
+    if (!output) {
+        findings.push({
+            id: 'SCAN-PWD-001',
+            title: 'Unable to retrieve password policy / 無法擷取密碼策略',
+            description: 'Could not run "net accounts" to retrieve the Windows password policy. / ' +
+                '無法執行 "net accounts" 來擷取 Windows 密碼策略。',
+            severity: 'medium',
+            category: 'password',
+            remediation: 'Run this scan with administrator privileges to read the password policy. / ' +
+                '以管理員權限執行此掃描以讀取密碼策略。',
+            complianceRef: '4.5',
+        });
+        return findings;
+    }
+    // Parse minimum password length
+    // 解析最小密碼長度
+    const minLengthMatch = output.match(/Minimum password length\s*:\s*(\d+)/i);
+    const minLength = minLengthMatch ? parseInt(minLengthMatch[1] ?? '0', 10) : 0;
+    if (minLength < 8) {
+        findings.push({
+            id: 'SCAN-PWD-001',
+            title: 'Insufficient minimum password length / 最小密碼長度不足',
+            description: `Windows minimum password length is set to ${minLength}. ` +
+                'A minimum of 8 characters is recommended. / ' +
+                `Windows 最小密碼長度設定為 ${minLength}。建議至少 8 個字元。`,
+            severity: minLength === 0 ? 'high' : 'medium',
+            category: 'password',
+            remediation: 'Use Group Policy (secpol.msc) to set the minimum password length to at least 8 characters. / ' +
+                '使用群組原則 (secpol.msc) 將最小密碼長度設定為至少 8 個字元。',
+            complianceRef: '4.5',
+        });
+    }
+    // Parse maximum password age
+    // 解析最大密碼使用天數
+    const maxAgeMatch = output.match(/Maximum password age\s*\(days\)\s*:\s*(\w+)/i);
+    const maxAgeStr = maxAgeMatch?.[1] ?? '';
+    if (maxAgeStr.toLowerCase() === 'unlimited' || maxAgeStr === '0') {
+        findings.push({
+            id: 'SCAN-PWD-001',
+            title: 'No password expiration policy / 無密碼到期策略',
+            description: 'Windows password policy has no maximum password age. ' +
+                'Passwords that never expire increase the risk of credential compromise. / ' +
+                'Windows 密碼策略未設定最大密碼使用天數。' +
+                '永不過期的密碼增加了憑證被破解的風險。',
+            severity: 'medium',
+            category: 'password',
+            remediation: 'Set a maximum password age of 90 days or less via Group Policy. / ' +
+                '透過群組原則設定最大密碼使用天數為 90 天或更短。',
+            complianceRef: '4.5',
+        });
+    }
+    // Parse lockout threshold
+    // 解析鎖定閾值
+    const lockoutMatch = output.match(/Lockout threshold\s*:\s*(\w+)/i);
+    const lockoutStr = lockoutMatch?.[1] ?? '';
+    if (lockoutStr.toLowerCase() === 'never' || lockoutStr === '0') {
+        findings.push({
+            id: 'SCAN-PWD-001',
+            title: 'No account lockout policy / 無帳號鎖定策略',
+            description: 'No account lockout threshold is configured. ' +
+                'This allows unlimited password guessing attempts. / ' +
+                '未配置帳號鎖定閾值。這允許無限次密碼猜測嘗試。',
+            severity: 'high',
+            category: 'password',
+            remediation: 'Configure an account lockout threshold of 5 or fewer failed attempts ' +
+                'via Group Policy. / ' +
+                '透過群組原則配置帳號鎖定閾值為 5 次或更少的失敗嘗試。',
+            complianceRef: '4.5',
+        });
+    }
+    return findings;
+}
+/**
+ * Check password policy strength on the current platform
+ * 檢查目前平台上的密碼策略強度
+ *
+ * Cross-platform password policy checker that dispatches to the appropriate
+ * platform-specific implementation.
+ * 跨平台密碼策略檢查器，分派到適當的平台特定實作。
+ *
+ * @returns Array of password policy findings / 密碼策略發現陣列
+ */
+export async function checkPasswordPolicy() {
+    const currentPlatform = osPlatform();
+    logger.info(`Checking password policy on ${currentPlatform}`);
+    try {
+        let findings = [];
+        switch (currentPlatform) {
+            case 'darwin':
+                findings = await checkMacOSPolicy();
+                break;
+            case 'linux':
+                findings = await checkLinuxPolicy();
+                break;
+            case 'win32':
+                findings = await checkWindowsPolicy();
+                break;
+            default:
+                logger.warn(`Unsupported platform for password policy check: ${currentPlatform}`);
+                return [];
+        }
+        logger.info(`Password policy check complete: ${findings.length} finding(s)`);
+        return findings;
+    }
+    catch (err) {
+        logger.error('Password policy check failed', {
+            error: err instanceof Error ? err.message : String(err),
+        });
+        return [];
+    }
+}
+//# sourceMappingURL=password-policy.js.map

package/dist/scanners/password-policy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"password-policy.js","sourceRoot":"","sources":["../../src/scanners/password-policy.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AACzC,OAAO,EAAE,SAAS,EAAE,MAAM,MAAM,CAAC;AACjC,OAAO,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AACvC,OAAO,EAAE,QAAQ,IAAI,UAAU,EAAE,MAAM,IAAI,CAAC;AAC5C,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAGjD,MAAM,aAAa,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC;AAC1C,MAAM,MAAM,GAAG,YAAY,CAAC,+BAA+B,CAAC,CAAC;AAE7D;;;;;;;GAOG;AACH,KAAK,UAAU,YAAY,CAAC,GAAW,EAAE,IAAc;IACrD,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,aAAa,CAAC,GAAG,EAAE,IAAI,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC;QACvE,OAAO,MAAM,CAAC,IAAI,EAAE,CAAC;IACvB,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,CAAC,KAAK,CAAC,mBAAmB,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE;YACvD,KAAK,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;SACxD,CAAC,CAAC;QACH,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED;;;;;;;;GAQG;AACH,KAAK,UAAU,gBAAgB;IAC7B,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,MAAM,MAAM,GAAG,MAAM,YAAY,CAAC,UAAU,EAAE,CAAC,oBAAoB,CAAC,CAAC,CAAC;IAEtE,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,uCAAuC;QACvC,YAAY;QACZ,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,cAAc;YAClB,KAAK,EAAE,yCAAyC;YAChD,WAAW,EACT,6DAA6D;gBAC7D,sEAAsE;gBACtE,wBAAwB;gBACxB,sBAAsB;YACxB,QAAQ,EAAE,MAAM;YAChB,QAAQ,EAAE,UAAU;YACpB,WAAW,EACT,+DAA+D;gBAC/D,8DAA8D;gBAC9D,8BAA8B;gBAC9B,kBAAkB;YACpB,aAAa,EAAE,KAAK;SACrB,CAAC,CAAC;QACH,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,mCAAmC;IACnC,UAAU;IACV,MAAM,YAAY,GAChB,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,MAAM,CAAC,QAAQ,CAAC,8BAA8B,CAAC,CAAC;IAClF,MAAM,aAAa,GACjB,MAAM,CAAC,QAAQ,CAAC,eAAe,CAAC;QAChC,MAAM,CAAC,QAAQ,CAAC,iBAAiB,CAAC;QAClC,MAAM,CAAC,QAAQ,CAAC,yCAAyC,CAAC,CAAC;IAC7D,MAAM,aAAa,GACjB,MAAM,CAAC,QAAQ,CAAC,iBAAiB,CAAC,IAAI,MAAM,CAAC,QAAQ,CAAC,kCAAkC,CAAC,CAAC;IAE5F,IAAI,CAAC,YAAY,IAAI,CAAC,aAAa,EAAE,CAAC;QACpC,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,cAAc;YAClB,KAAK,EAAE,0CAA0C;YACjD,WAAW,EACT,0FAA0F;gBAC1F,0BAA0B;YAC5B,QAAQ,EAAE,QAAQ;YAClB,QAAQ,EAAE,UAAU;YACpB,WAAW,EACT,kFAAkF;gBAClF,sDAAsD;gBACtD,yBAAyB;gBACzB,aAAa;YACf,aAAa,EAAE,KAAK;SACrB,CAAC,CAAC;IACL,CAAC;IAED,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,cAAc;YAClB,KAAK,EAAE,yCAAyC;YAChD,WAAW,EACT,kEAAkE;gBAClE,4EAA4E;gBAC5E,oBAAoB;gBACpB,qBAAqB;YACvB,QAAQ,EAAE,QAAQ;YAClB,QAAQ,EAAE,UAAU;YACpB,WAAW,EACT,sFAAsF;gBACtF,wBAAwB;YAC1B,aAAa,EAAE,KAAK;SACrB,CAAC,CAAC;IACL,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;;;;;;;;;GAUG;AACH,KAAK,UAAU,gBAAgB;IAC7B,MAAM,QAAQ,GAAc,EAAE,CAAC;IAC/B,IAAI,WAAW,GAAG,KAAK,CAAC;IAExB,iCAAiC;IACjC,gCAAgC;IAChC,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,4BAA4B,EAAE,OAAO,CAAC,CAAC;QACzE,WAAW,GAAG,IAAI,CAAC;QAEnB,MAAM,SAAS,GAAG,UAAU,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,UAAU,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;QAC/E,MAAM,aAAa,GACjB,UAAU,CAAC,QAAQ,CAAC,SAAS,CAAC;YAC9B,UAAU,CAAC,QAAQ,CAAC,SAAS,CAAC;YAC9B,UAAU,CAAC,QAAQ,CAAC,SAAS,CAAC;YAC9B,UAAU,CAAC,QAAQ,CAAC,SAAS,CAAC;YAC9B,UAAU,CAAC,QAAQ,CAAC,eAAe,CAAC;YACpC,UAAU,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC;QAEtC,IAAI,CAAC,SAAS,IAAI,CAAC,aAAa,EAAE,CAAC;YACjC,QAAQ,CAAC,IAAI,CAAC;gBACZ,EAAE,EAAE,cAAc;gBAClB,KAAK,EAAE,uCAAuC;gBAC9C,WAAW,EACT,+EAA+E;oBAC/E,+CAA+C;oBAC/C,sDAAsD;gBACxD,QAAQ,EAAE,QAAQ;gBAClB,QAAQ,EAAE,UAAU;gBACpB,WAAW,EACT,wEAAwE;oBACxE,iFAAiF;oBACjF,oDAAoD;oBACpD,qBAAqB;gBACvB,aAAa,EAAE,KAAK;aACrB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,CAAC,KAAK,CAAC,2CAA2C,CAAC,CAAC;IAC5D,CAAC;IAED,mCAAmC;IACnC,kCAAkC;IAClC,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,8BAA8B,EAAE,OAAO,CAAC,CAAC;QAC3E,WAAW,GAAG,IAAI,CAAC;QAEnB,qBAAqB;QACrB,cAAc;QACd,MAAM,WAAW,GAAG,UAAU,CAAC,KAAK,CAAC,yBAAyB,CAAC,CAAC;QAChE,MAAM,MAAM,GAAG,WAAW,CAAC,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,GAAG,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAErE,IAAI,MAAM,GAAG,CAAC,IAAI,MAAM,GAAG,CAAC,EAAE,CAAC;YAC7B,QAAQ,CAAC,IAAI,CAAC;gBACZ,EAAE,EAAE,cAAc;gBAClB,KAAK,EAAE,iDAAiD;gBACxD,WAAW,EACT,qCAAqC,MAAM,sBAAsB;oBACjE,8CAA8C;oBAC9C,6BAA6B,MAAM,cAAc;gBACnD,QAAQ,EAAE,QAAQ;gBAClB,QAAQ,EAAE,UAAU;gBACpB,WAAW,EACT,8DAA8D;oBAC9D,oDAAoD;gBACtD,aAAa,EAAE,KAAK;aACrB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,CAAC,KAAK,CAAC,6CAA6C,CAAC,CAAC;IAC9D,CAAC;IAED,IAAI,CAAC,WAAW,EAAE,CAAC;QACjB,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,cAAc;YAClB,KAAK,EAAE,yCAAyC;YAChD,WAAW,EACT,oEAAoE;gBACpE,+EAA+E;gBAC/E,0BAA0B;gBAC1B,iEAAiE;YACnE,QAAQ,EAAE,MAAM;YAChB,QAAQ,EAAE,UAAU;YACpB,WAAW,EACT,sEAAsE;gBACtE,kEAAkE;gBAClE,uDAAuD;gBACvD,kBAAkB;YACpB,aAAa,EAAE,KAAK;SACrB,CAAC,CAAC;IACL,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;;;;;;;GAQG;AACH,KAAK,UAAU,kBAAkB;IAC/B,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,MAAM,MAAM,GAAG,MAAM,YAAY,CAAC,KAAK,EAAE,CAAC,UAAU,CAAC,CAAC,CAAC;IAEvD,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,cAAc;YAClB,KAAK,EAAE,+CAA+C;YACtD,WAAW,EACT,0EAA0E;gBAC1E,uCAAuC;YACzC,QAAQ,EAAE,QAAQ;YAClB,QAAQ,EAAE,UAAU;YACpB,WAAW,EACT,6EAA6E;gBAC7E,qBAAqB;YACvB,aAAa,EAAE,KAAK;SACrB,CAAC,CAAC;QACH,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,gCAAgC;IAChC,WAAW;IACX,MAAM,cAAc,GAAG,MAAM,CAAC,KAAK,CAAC,sCAAsC,CAAC,CAAC;IAC5E,MAAM,SAAS,GAAG,cAAc,CAAC,CAAC,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC,CAAC,IAAI,GAAG,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAE9E,IAAI,SAAS,GAAG,CAAC,EAAE,CAAC;QAClB,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,cAAc;YAClB,KAAK,EAAE,iDAAiD;YACxD,WAAW,EACT,6CAA6C,SAAS,IAAI;gBAC1D,8CAA8C;gBAC9C,qBAAqB,SAAS,cAAc;YAC9C,QAAQ,EAAE,SAAS,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ;YAC7C,QAAQ,EAAE,UAAU;YACpB,WAAW,EACT,+FAA+F;gBAC/F,yCAAyC;YAC3C,aAAa,EAAE,KAAK;SACrB,CAAC,CAAC;IACL,CAAC;IAED,6BAA6B;IAC7B,aAAa;IACb,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC,8CAA8C,CAAC,CAAC;IACjF,MAAM,SAAS,GAAG,WAAW,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAEzC,IAAI,SAAS,CAAC,WAAW,EAAE,KAAK,WAAW,IAAI,SAAS,KAAK,GAAG,EAAE,CAAC;QACjE,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,cAAc;YAClB,KAAK,EAAE,yCAAyC;YAChD,WAAW,EACT,uDAAuD;gBACvD,4EAA4E;gBAC5E,0BAA0B;gBAC1B,qBAAqB;YACvB,QAAQ,EAAE,QAAQ;YAClB,QAAQ,EAAE,UAAU;YACpB,WAAW,EACT,oEAAoE;gBACpE,4BAA4B;YAC9B,aAAa,EAAE,KAAK;SACrB,CAAC,CAAC;IACL,CAAC;IAED,0BAA0B;IAC1B,SAAS;IACT,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,gCAAgC,CAAC,CAAC;IACpE,MAAM,UAAU,GAAG,YAAY,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAE3C,IAAI,UAAU,CAAC,WAAW,EAAE,KAAK,OAAO,IAAI,UAAU,KAAK,GAAG,EAAE,CAAC;QAC/D,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,cAAc;YAClB,KAAK,EAAE,qCAAqC;YAC5C,WAAW,EACT,8CAA8C;gBAC9C,sDAAsD;gBACtD,yBAAyB;YAC3B,QAAQ,EAAE,MAAM;YAChB,QAAQ,EAAE,UAAU;YACpB,WAAW,EACT,uEAAuE;gBACvE,sBAAsB;gBACtB,8BAA8B;YAChC,aAAa,EAAE,KAAK;SACrB,CAAC,CAAC;IACL,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB;IACvC,MAAM,eAAe,GAAG,UAAU,EAAE,CAAC;IAErC,MAAM,CAAC,IAAI,CAAC,+BAA+B,eAAe,EAAE,CAAC,CAAC;IAE9D,IAAI,CAAC;QACH,IAAI,QAAQ,GAAc,EAAE,CAAC;QAE7B,QAAQ,eAAe,EAAE,CAAC;YACxB,KAAK,QAAQ;gBACX,QAAQ,GAAG,MAAM,gBAAgB,EAAE,CAAC;gBACpC,MAAM;YACR,KAAK,OAAO;gBACV,QAAQ,GAAG,MAAM,gBAAgB,EAAE,CAAC;gBACpC,MAAM;YACR,KAAK,OAAO;gBACV,QAAQ,GAAG,MAAM,kBAAkB,EAAE,CAAC;gBACtC,MAAM;YACR;gBACE,MAAM,CAAC,IAAI,CAAC,mDAAmD,eAAe,EAAE,CAAC,CAAC;gBAClF,OAAO,EAAE,CAAC;QACd,CAAC;QAED,MAAM,CAAC,IAAI,CAAC,mCAAmC,QAAQ,CAAC,MAAM,aAAa,CAAC,CAAC;QAC7E,OAAO,QAAQ,CAAC;IAClB,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,CAAC,KAAK,CAAC,8BAA8B,EAAE;YAC3C,KAAK,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;SACxD,CAAC,CAAC;QACH,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC"}

package/dist/scanners/remote/dns-checker.d.ts

@@ -0,0 +1,21 @@
+/**
+ * Remote DNS security record checker (SPF, DMARC, DKIM).
+ * @module @panguard-ai/panguard-scan/scanners/remote/dns-checker
+ */
+import type { Finding } from '../types.js';
+import type { Language } from '@panguard-ai/core';
+export interface DNSCheckResult {
+    hasSPF: boolean;
+    hasDMARC: boolean;
+    hasDKIM: boolean;
+    spfRecord?: string;
+    dmarcRecord?: string;
+}
+/**
+ * Check DNS security records for a domain.
+ */
+export declare function checkDNS(host: string, lang: Language): Promise<{
+    findings: Finding[];
+    result: DNSCheckResult;
+}>;
+//# sourceMappingURL=dns-checker.d.ts.map

package/dist/scanners/remote/dns-checker.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"dns-checker.d.ts","sourceRoot":"","sources":["../../../src/scanners/remote/dns-checker.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAGH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,aAAa,CAAC;AAC3C,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,mBAAmB,CAAC;AAElD,MAAM,WAAW,cAAc;IAC7B,MAAM,EAAE,OAAO,CAAC;IAChB,QAAQ,EAAE,OAAO,CAAC;IAClB,OAAO,EAAE,OAAO,CAAC;IACjB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED;;GAEG;AACH,wBAAsB,QAAQ,CAC5B,IAAI,EAAE,MAAM,EACZ,IAAI,EAAE,QAAQ,GACb,OAAO,CAAC;IAAE,QAAQ,EAAE,OAAO,EAAE,CAAC;IAAC,MAAM,EAAE,cAAc,CAAA;CAAE,CAAC,CAyG1D"}