npm - @panguard-ai/panguard-trap - Versions diffs - 0.1.0 - Mend

@panguard-ai/panguard-trap 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (69) hide show

package/dist/cli/index.d.ts +45 -0
package/dist/cli/index.d.ts.map +1 -0
package/dist/cli/index.js +298 -0
package/dist/cli/index.js.map +1 -0
package/dist/index.d.ts +23 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +26 -0
package/dist/index.js.map +1 -0
package/dist/intel/index.d.ts +38 -0
package/dist/intel/index.d.ts.map +1 -0
package/dist/intel/index.js +157 -0
package/dist/intel/index.js.map +1 -0
package/dist/profiler/attacker-profiler.d.ts +68 -0
package/dist/profiler/attacker-profiler.d.ts.map +1 -0
package/dist/profiler/attacker-profiler.js +316 -0
package/dist/profiler/attacker-profiler.js.map +1 -0
package/dist/profiler/index.d.ts +8 -0
package/dist/profiler/index.d.ts.map +1 -0
package/dist/profiler/index.js +8 -0
package/dist/profiler/index.js.map +1 -0
package/dist/services/base-service.d.ts +61 -0
package/dist/services/base-service.d.ts.map +1 -0
package/dist/services/base-service.js +190 -0
package/dist/services/base-service.js.map +1 -0
package/dist/services/generic-trap.d.ts +22 -0
package/dist/services/generic-trap.d.ts.map +1 -0
package/dist/services/generic-trap.js +439 -0
package/dist/services/generic-trap.js.map +1 -0
package/dist/services/http-trap.d.ts +36 -0
package/dist/services/http-trap.d.ts.map +1 -0
package/dist/services/http-trap.js +218 -0
package/dist/services/http-trap.js.map +1 -0
package/dist/services/index.d.ts +26 -0
package/dist/services/index.d.ts.map +1 -0
package/dist/services/index.js +52 -0
package/dist/services/index.js.map +1 -0
package/dist/services/mysql-trap.d.ts +22 -0
package/dist/services/mysql-trap.d.ts.map +1 -0
package/dist/services/mysql-trap.js +374 -0
package/dist/services/mysql-trap.js.map +1 -0
package/dist/services/rdp-trap.d.ts +21 -0
package/dist/services/rdp-trap.d.ts.map +1 -0
package/dist/services/rdp-trap.js +299 -0
package/dist/services/rdp-trap.js.map +1 -0
package/dist/services/redis-trap.d.ts +21 -0
package/dist/services/redis-trap.d.ts.map +1 -0
package/dist/services/redis-trap.js +321 -0
package/dist/services/redis-trap.js.map +1 -0
package/dist/services/smb-trap.d.ts +21 -0
package/dist/services/smb-trap.d.ts.map +1 -0
package/dist/services/smb-trap.js +358 -0
package/dist/services/smb-trap.js.map +1 -0
package/dist/services/ssh-trap.d.ts +43 -0
package/dist/services/ssh-trap.d.ts.map +1 -0
package/dist/services/ssh-trap.js +397 -0
package/dist/services/ssh-trap.js.map +1 -0
package/dist/threat-cloud-uploader.d.ts +48 -0
package/dist/threat-cloud-uploader.d.ts.map +1 -0
package/dist/threat-cloud-uploader.js +125 -0
package/dist/threat-cloud-uploader.js.map +1 -0
package/dist/trap-engine.d.ts +80 -0
package/dist/trap-engine.d.ts.map +1 -0
package/dist/trap-engine.js +279 -0
package/dist/trap-engine.js.map +1 -0
package/dist/types.d.ts +229 -0
package/dist/types.d.ts.map +1 -0
package/dist/types.js +89 -0
package/dist/types.js.map +1 -0
package/package.json +37 -0

package/dist/cli/index.d.ts ADDED Viewed

@@ -0,0 +1,45 @@
+#!/usr/bin/env node
+/**
+ * PanguardTrap CLI
+ * PanguardTrap 命令列介面
+ *
+ * @module @panguard-ai/panguard-trap/cli
+ */
+import type { TrapConfig, TrapServiceType, TrapStatistics } from '../types.js';
+/** Available CLI commands / 可用的 CLI 命令 */
+export type TrapCliCommand = 'start' | 'stop' | 'status' | 'deploy' | 'profiles' | 'intel' | 'config' | 'help';
+/** CLI options / CLI 選項 */
+export interface TrapCliOptions {
+    command: TrapCliCommand;
+    services?: TrapServiceType[];
+    port?: number;
+    dataDir?: string;
+    noCloud?: boolean;
+    verbose?: boolean;
+}
+/**
+ * Parse CLI arguments
+ * 解析 CLI 參數
+ */
+export declare function parseCliArgs(args: string[]): TrapCliOptions;
+/**
+ * Build trap config from CLI options
+ * 從 CLI 選項建立蜜罐配置
+ */
+export declare function buildConfigFromOptions(options: TrapCliOptions): TrapConfig;
+/**
+ * Format statistics for display
+ * 格式化統計資料以供顯示
+ */
+export declare function formatStatistics(stats: TrapStatistics): string;
+/**
+ * Get help text
+ * 取得說明文字
+ */
+export declare function getHelpText(): string;
+/**
+ * Execute CLI command
+ * 執行 CLI 命令
+ */
+export declare function executeCli(args: string[]): Promise<void>;
+//# sourceMappingURL=index.d.ts.map

package/dist/cli/index.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/cli/index.ts"],"names":[],"mappings":";AACA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,eAAe,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAI/E,0CAA0C;AAC1C,MAAM,MAAM,cAAc,GACtB,OAAO,GACP,MAAM,GACN,QAAQ,GACR,QAAQ,GACR,UAAU,GACV,OAAO,GACP,QAAQ,GACR,MAAM,CAAC;AAEX,2BAA2B;AAC3B,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,cAAc,CAAC;IACxB,QAAQ,CAAC,EAAE,eAAe,EAAE,CAAC;IAC7B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED;;;GAGG;AACH,wBAAgB,YAAY,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,cAAc,CAuB3D;AAED;;;GAGG;AACH,wBAAgB,sBAAsB,CAAC,OAAO,EAAE,cAAc,GAAG,UAAU,CAoB1E;AAED;;;GAGG;AACH,wBAAgB,gBAAgB,CAAC,KAAK,EAAE,cAAc,GAAG,MAAM,CAiD9D;AAED;;;GAGG;AACH,wBAAgB,WAAW,IAAI,MAAM,CAgCpC;AAgBD;;;GAGG;AACH,wBAAsB,UAAU,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAyI9D"}

package/dist/cli/index.js ADDED Viewed

@@ -0,0 +1,298 @@
+#!/usr/bin/env node
+/**
+ * PanguardTrap CLI
+ * PanguardTrap 命令列介面
+ *
+ * @module @panguard-ai/panguard-trap/cli
+ */
+import { DEFAULT_TRAP_CONFIG, DEFAULT_SERVICE_CONFIGS } from '../types.js';
+import { TrapEngine } from '../trap-engine.js';
+/**
+ * Parse CLI arguments
+ * 解析 CLI 參數
+ */
+export function parseCliArgs(args) {
+    const command = args[0] || 'help';
+    const options = { command };
+    for (let i = 1; i < args.length; i++) {
+        const arg = args[i];
+        if (arg === '--services' && args[i + 1]) {
+            options.services = args[i + 1].split(',');
+            i++;
+        }
+        else if (arg === '--port' && args[i + 1]) {
+            options.port = parseInt(args[i + 1], 10);
+            i++;
+        }
+        else if (arg === '--data-dir' && args[i + 1]) {
+            options.dataDir = args[i + 1];
+            i++;
+        }
+        else if (arg === '--no-cloud') {
+            options.noCloud = true;
+        }
+        else if (arg === '--verbose' || arg === '-v') {
+            options.verbose = true;
+        }
+    }
+    return options;
+}
+/**
+ * Build trap config from CLI options
+ * 從 CLI 選項建立蜜罐配置
+ */
+export function buildConfigFromOptions(options) {
+    const config = { ...DEFAULT_TRAP_CONFIG };
+    if (options.dataDir) {
+        config.dataDir = options.dataDir;
+    }
+    if (options.noCloud) {
+        config.feedThreatCloud = false;
+    }
+    // Enable only specified services
+    if (options.services && options.services.length > 0) {
+        config.services = options.services.map((type) => ({
+            ...DEFAULT_SERVICE_CONFIGS[type],
+            enabled: true,
+        }));
+    }
+    return config;
+}
+/**
+ * Format statistics for display
+ * 格式化統計資料以供顯示
+ */
+export function formatStatistics(stats) {
+    const lines = [];
+    lines.push('=== PanguardTrap Status / PanguardTrap 狀態 ===');
+    lines.push('');
+    lines.push(`Total Sessions / 總連線數: ${stats.totalSessions}`);
+    lines.push(`Active Sessions / 活動中連線: ${stats.activeSessions}`);
+    lines.push(`Unique Source IPs / 不重複 IP: ${stats.uniqueSourceIPs}`);
+    lines.push(`Credential Attempts / 認證嘗試: ${stats.totalCredentialAttempts}`);
+    lines.push(`Commands Captured / 捕獲指令: ${stats.totalCommandsCaptured}`);
+    lines.push(`Uptime / 運作時間: ${formatDuration(stats.uptimeMs)}`);
+    lines.push('');
+    // Sessions by service
+    lines.push('--- Sessions by Service / 依服務分類 ---');
+    for (const [service, count] of Object.entries(stats.sessionsByService)) {
+        if (count > 0) {
+            lines.push(`  ${service}: ${count}`);
+        }
+    }
+    lines.push('');
+    // Top attacker IPs
+    if (stats.topAttackerIPs.length > 0) {
+        lines.push('--- Top Attacker IPs / 前幾名攻擊者 ---');
+        for (const entry of stats.topAttackerIPs.slice(0, 5)) {
+            lines.push(`  ${entry.ip}: ${entry.sessions} sessions (risk=${entry.riskScore})`);
+        }
+        lines.push('');
+    }
+    // Top credentials
+    if (stats.topUsernames.length > 0) {
+        lines.push('--- Top Usernames / 前幾名使用者名稱 ---');
+        for (const entry of stats.topUsernames.slice(0, 5)) {
+            lines.push(`  ${entry.username}: ${entry.count}`);
+        }
+        lines.push('');
+    }
+    // Skill distribution
+    lines.push('--- Attacker Skill Distribution / 攻擊者技術分布 ---');
+    for (const [skill, count] of Object.entries(stats.skillDistribution)) {
+        if (count > 0) {
+            lines.push(`  ${skill}: ${count}`);
+        }
+    }
+    return lines.join('\n');
+}
+/**
+ * Get help text
+ * 取得說明文字
+ */
+export function getHelpText() {
+    return `
+PanguardTrap - Smart Honeypot System / 智慧蜜罐系統
+Panguard AI (https://panguard.ai)
+Usage / 用法:
+  panguard-trap <command> [options]
+Commands / 命令:
+  start       Start honeypot services / 啟動蜜罐服務
+  stop        Stop honeypot services / 停止蜜罐服務
+  status      Show current status and statistics / 顯示目前狀態和統計
+  deploy      Deploy specific trap services / 部署特定蜜罐服務
+  profiles    Show attacker profiles / 顯示攻擊者 profiles
+  intel       Show threat intelligence summary / 顯示威脅情報摘要
+  config      Show current configuration / 顯示目前配置
+  help        Show this help message / 顯示此說明
+Options / 選項:
+  --services <types>   Comma-separated service types / 逗號分隔的服務類型
+                       (ssh,http,ftp,telnet,mysql,redis,smb,rdp)
+  --port <number>      Override port for single service / 覆寫單一服務的埠
+  --data-dir <path>    Data directory for logs / 日誌資料目錄
+  --no-cloud           Disable Threat Cloud upload / 停用 Threat Cloud 上傳
+  --verbose, -v        Verbose output / 詳細輸出
+Examples / 範例:
+  panguard-trap start --services ssh,http
+  panguard-trap status
+  panguard-trap profiles
+  panguard-trap intel
+`.trim();
+}
+/** Format duration / 格式化持續時間 */
+function formatDuration(ms) {
+    if (ms < 1000)
+        return `${ms}ms`;
+    const seconds = Math.floor(ms / 1000);
+    if (seconds < 60)
+        return `${seconds}s`;
+    const minutes = Math.floor(seconds / 60);
+    if (minutes < 60)
+        return `${minutes}m ${seconds % 60}s`;
+    const hours = Math.floor(minutes / 60);
+    return `${hours}h ${minutes % 60}m`;
+}
+/** Singleton engine instance for the running process */
+let activeEngine = null;
+/**
+ * Execute CLI command
+ * 執行 CLI 命令
+ */
+export async function executeCli(args) {
+    const options = parseCliArgs(args);
+    switch (options.command) {
+        case 'help':
+            console.log(getHelpText());
+            break;
+        case 'config': {
+            const config = buildConfigFromOptions(options);
+            console.log('=== PanguardTrap Configuration / PanguardTrap 配置 ===');
+            console.log('');
+            console.log(`Data Directory / 資料目錄: ${config.dataDir}`);
+            console.log(`Threat Cloud / 威脅雲端: ${config.feedThreatCloud ? 'enabled / 啟用' : 'disabled / 停用'}`);
+            console.log(`Fake Access / 假存取: ${config.grantFakeAccess ? `after ${config.fakeAccessAfterAttempts} attempts` : 'disabled'}`);
+            console.log('');
+            console.log('Enabled Services / 已啟用服務:');
+            for (const svc of config.services.filter((s) => s.enabled)) {
+                console.log(`  ${svc.type}: port ${svc.port}`);
+            }
+            break;
+        }
+        case 'start': {
+            const config = buildConfigFromOptions(options);
+            console.log('Starting PanguardTrap... / 啟動 PanguardTrap...');
+            const engine = new TrapEngine(config);
+            activeEngine = engine;
+            // Register session handler for verbose output
+            engine.onSession((session) => {
+                console.log(`[Session] ${session.sourceIP}:${session.sourcePort} -> ${session.serviceType} ` +
+                    `(creds=${session.credentials.length}, cmds=${session.commands.length})`);
+            });
+            await engine.start();
+            const running = engine.getRunningServices();
+            console.log(`Services running / 已啟動服務: ${running.join(', ') || '(none)'}`);
+            console.log('Press Ctrl+C to stop / 按 Ctrl+C 停止');
+            // Graceful shutdown
+            const shutdown = async () => {
+                console.log('\nStopping PanguardTrap... / 停止 PanguardTrap...');
+                await engine.stop();
+                console.log('PanguardTrap stopped / PanguardTrap 已停止');
+                process.exit(0);
+            };
+            process.on('SIGINT', shutdown);
+            process.on('SIGTERM', shutdown);
+            // Keep process alive
+            await new Promise(() => { });
+            break;
+        }
+        case 'stop':
+            if (activeEngine) {
+                await activeEngine.stop();
+                activeEngine = null;
+                console.log('PanguardTrap stopped / PanguardTrap 已停止');
+            }
+            else {
+                console.log('PanguardTrap is not running. / PanguardTrap 未運行。');
+            }
+            break;
+        case 'status':
+            if (activeEngine && activeEngine.status === 'running') {
+                const stats = activeEngine.getStatistics();
+                console.log(formatStatistics(stats));
+            }
+            else {
+                console.log('PanguardTrap is not running. Use panguard-trap start to begin.');
+                console.log('PanguardTrap 未運行。使用 panguard-trap start 開始。');
+            }
+            break;
+        case 'deploy': {
+            const deployConfig = buildConfigFromOptions(options);
+            console.log('Deploying trap services... / 部署蜜罐服務...');
+            const deployEngine = new TrapEngine(deployConfig);
+            await deployEngine.start();
+            const deployRunning = deployEngine.getRunningServices();
+            console.log(`Deployed services / 已部署服務: ${deployRunning.join(', ') || '(none)'}`);
+            await deployEngine.stop();
+            console.log('Deploy test complete / 部署測試完成');
+            break;
+        }
+        case 'profiles':
+            if (activeEngine) {
+                const profiler = activeEngine.getProfiler();
+                const profiles = profiler.getAllProfiles();
+                if (profiles.length === 0) {
+                    console.log('No attacker profiles yet. / 尚無攻擊者 profiles。');
+                }
+                else {
+                    console.log(`=== Attacker Profiles (${profiles.length}) / 攻擊者分析 ===`);
+                    for (const p of profiles) {
+                        console.log(`  [${p.profileId}] ${p.skillLevel} / ${p.intent} (risk=${p.riskScore})`);
+                    }
+                }
+            }
+            else {
+                console.log('PanguardTrap is not running. Start it first.');
+                console.log('PanguardTrap 未運行。請先啟動。');
+            }
+            break;
+        case 'intel':
+            if (activeEngine) {
+                const reports = activeEngine.getIntelReports();
+                if (reports.length === 0) {
+                    console.log('No intel reports yet. / 尚無情報報告。');
+                }
+                else {
+                    console.log(`=== Intel Reports (${reports.length}) / 情報報告 ===`);
+                    for (const r of reports) {
+                        console.log(`  [${r.serviceType}] ${r.sourceIP} - ${r.attackType} (${r.skillLevel}/${r.intent})`);
+                    }
+                }
+            }
+            else {
+                console.log('PanguardTrap is not running. Start it first.');
+                console.log('PanguardTrap 未運行。請先啟動。');
+            }
+            break;
+        default:
+            console.log(`Unknown command: ${options.command}`);
+            console.log(getHelpText());
+    }
+}
+// ---------------------------------------------------------------------------
+// CLI entry point (when run directly)
+// CLI 進入點（直接執行時）
+// ---------------------------------------------------------------------------
+const isDirectRun = process.argv[1] &&
+    (process.argv[1].endsWith('/panguard-trap') ||
+        process.argv[1].includes('panguard-trap/dist/cli'));
+if (isDirectRun) {
+    executeCli(process.argv.slice(2)).catch((err) => {
+        console.error('Error:', err instanceof Error ? err.message : String(err));
+        process.exit(1);
+    });
+}
+//# sourceMappingURL=index.js.map

package/dist/cli/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/cli/index.ts"],"names":[],"mappings":";AACA;;;;;GAKG;AAGH,OAAO,EAAE,mBAAmB,EAAE,uBAAuB,EAAE,MAAM,aAAa,CAAC;AAC3E,OAAO,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAuB/C;;;GAGG;AACH,MAAM,UAAU,YAAY,CAAC,IAAc;IACzC,MAAM,OAAO,GAAI,IAAI,CAAC,CAAC,CAAoB,IAAI,MAAM,CAAC;IACtD,MAAM,OAAO,GAAmB,EAAE,OAAO,EAAE,CAAC;IAE5C,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACrC,MAAM,GAAG,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC;QACpB,IAAI,GAAG,KAAK,YAAY,IAAI,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC;YACxC,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC,CAAC,GAAG,CAAC,CAAE,CAAC,KAAK,CAAC,GAAG,CAAsB,CAAC;YAChE,CAAC,EAAE,CAAC;QACN,CAAC;aAAM,IAAI,GAAG,KAAK,QAAQ,IAAI,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC;YAC3C,OAAO,CAAC,IAAI,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAE,EAAE,EAAE,CAAC,CAAC;YAC1C,CAAC,EAAE,CAAC;QACN,CAAC;aAAM,IAAI,GAAG,KAAK,YAAY,IAAI,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC;YAC/C,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;YAC9B,CAAC,EAAE,CAAC;QACN,CAAC;aAAM,IAAI,GAAG,KAAK,YAAY,EAAE,CAAC;YAChC,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC;QACzB,CAAC;aAAM,IAAI,GAAG,KAAK,WAAW,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;YAC/C,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC;QACzB,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,sBAAsB,CAAC,OAAuB;IAC5D,MAAM,MAAM,GAAG,EAAE,GAAG,mBAAmB,EAAE,CAAC;IAE1C,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;QACpB,MAAM,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;IACnC,CAAC;IAED,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;QACpB,MAAM,CAAC,eAAe,GAAG,KAAK,CAAC;IACjC,CAAC;IAED,iCAAiC;IACjC,IAAI,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACpD,MAAM,CAAC,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;YAChD,GAAG,uBAAuB,CAAC,IAAI,CAAC;YAChC,OAAO,EAAE,IAAI;SACd,CAAC,CAAC,CAAC;IACN,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,gBAAgB,CAAC,KAAqB;IACpD,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,KAAK,CAAC,IAAI,CAAC,+CAA+C,CAAC,CAAC;IAC5D,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACf,KAAK,CAAC,IAAI,CAAC,0BAA0B,KAAK,CAAC,aAAa,EAAE,CAAC,CAAC;IAC5D,KAAK,CAAC,IAAI,CAAC,4BAA4B,KAAK,CAAC,cAAc,EAAE,CAAC,CAAC;IAC/D,KAAK,CAAC,IAAI,CAAC,+BAA+B,KAAK,CAAC,eAAe,EAAE,CAAC,CAAC;IACnE,KAAK,CAAC,IAAI,CAAC,+BAA+B,KAAK,CAAC,uBAAuB,EAAE,CAAC,CAAC;IAC3E,KAAK,CAAC,IAAI,CAAC,6BAA6B,KAAK,CAAC,qBAAqB,EAAE,CAAC,CAAC;IACvE,KAAK,CAAC,IAAI,CAAC,kBAAkB,cAAc,CAAC,KAAK,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;IAC/D,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,sBAAsB;IACtB,KAAK,CAAC,IAAI,CAAC,qCAAqC,CAAC,CAAC;IAClD,KAAK,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,iBAAiB,CAAC,EAAE,CAAC;QACvE,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;YACd,KAAK,CAAC,IAAI,CAAC,KAAK,OAAO,KAAK,KAAK,EAAE,CAAC,CAAC;QACvC,CAAC;IACH,CAAC;IACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,mBAAmB;IACnB,IAAI,KAAK,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACpC,KAAK,CAAC,IAAI,CAAC,mCAAmC,CAAC,CAAC;QAChD,KAAK,MAAM,KAAK,IAAI,KAAK,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;YACrD,KAAK,CAAC,IAAI,CAAC,KAAK,KAAK,CAAC,EAAE,KAAK,KAAK,CAAC,QAAQ,mBAAmB,KAAK,CAAC,SAAS,GAAG,CAAC,CAAC;QACpF,CAAC;QACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACjB,CAAC;IAED,kBAAkB;IAClB,IAAI,KAAK,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAClC,KAAK,CAAC,IAAI,CAAC,kCAAkC,CAAC,CAAC;QAC/C,KAAK,MAAM,KAAK,IAAI,KAAK,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;YACnD,KAAK,CAAC,IAAI,CAAC,KAAK,KAAK,CAAC,QAAQ,KAAK,KAAK,CAAC,KAAK,EAAE,CAAC,CAAC;QACpD,CAAC;QACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACjB,CAAC;IAED,qBAAqB;IACrB,KAAK,CAAC,IAAI,CAAC,+CAA+C,CAAC,CAAC;IAC5D,KAAK,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,iBAAiB,CAAC,EAAE,CAAC;QACrE,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;YACd,KAAK,CAAC,IAAI,CAAC,KAAK,KAAK,KAAK,KAAK,EAAE,CAAC,CAAC;QACrC,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,WAAW;IACzB,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA8BR,CAAC,IAAI,EAAE,CAAC;AACT,CAAC;AAED,gCAAgC;AAChC,SAAS,cAAc,CAAC,EAAU;IAChC,IAAI,EAAE,GAAG,IAAI;QAAE,OAAO,GAAG,EAAE,IAAI,CAAC;IAChC,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,GAAG,IAAI,CAAC,CAAC;IACtC,IAAI,OAAO,GAAG,EAAE;QAAE,OAAO,GAAG,OAAO,GAAG,CAAC;IACvC,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,GAAG,EAAE,CAAC,CAAC;IACzC,IAAI,OAAO,GAAG,EAAE;QAAE,OAAO,GAAG,OAAO,KAAK,OAAO,GAAG,EAAE,GAAG,CAAC;IACxD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,GAAG,EAAE,CAAC,CAAC;IACvC,OAAO,GAAG,KAAK,KAAK,OAAO,GAAG,EAAE,GAAG,CAAC;AACtC,CAAC;AAED,wDAAwD;AACxD,IAAI,YAAY,GAAsB,IAAI,CAAC;AAE3C;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,UAAU,CAAC,IAAc;IAC7C,MAAM,OAAO,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC;IAEnC,QAAQ,OAAO,CAAC,OAAO,EAAE,CAAC;QACxB,KAAK,MAAM;YACT,OAAO,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,CAAC;YAC3B,MAAM;QAER,KAAK,QAAQ,CAAC,CAAC,CAAC;YACd,MAAM,MAAM,GAAG,sBAAsB,CAAC,OAAO,CAAC,CAAC;YAC/C,OAAO,CAAC,GAAG,CAAC,sDAAsD,CAAC,CAAC;YACpE,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAChB,OAAO,CAAC,GAAG,CAAC,0BAA0B,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;YACxD,OAAO,CAAC,GAAG,CACT,wBAAwB,MAAM,CAAC,eAAe,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,eAAe,EAAE,CACpF,CAAC;YACF,OAAO,CAAC,GAAG,CACT,sBAAsB,MAAM,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,MAAM,CAAC,uBAAuB,WAAW,CAAC,CAAC,CAAC,UAAU,EAAE,CACjH,CAAC;YACF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAChB,OAAO,CAAC,GAAG,CAAC,2BAA2B,CAAC,CAAC;YACzC,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC3D,OAAO,CAAC,GAAG,CAAC,KAAK,GAAG,CAAC,IAAI,UAAU,GAAG,CAAC,IAAI,EAAE,CAAC,CAAC;YACjD,CAAC;YACD,MAAM;QACR,CAAC;QAED,KAAK,OAAO,CAAC,CAAC,CAAC;YACb,MAAM,MAAM,GAAG,sBAAsB,CAAC,OAAO,CAAC,CAAC;YAC/C,OAAO,CAAC,GAAG,CAAC,+CAA+C,CAAC,CAAC;YAE7D,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC;YACtC,YAAY,GAAG,MAAM,CAAC;YAEtB,8CAA8C;YAC9C,MAAM,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,EAAE;gBAC3B,OAAO,CAAC,GAAG,CACT,aAAa,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,UAAU,OAAO,OAAO,CAAC,WAAW,GAAG;oBAC9E,UAAU,OAAO,CAAC,WAAW,CAAC,MAAM,UAAU,OAAO,CAAC,QAAQ,CAAC,MAAM,GAAG,CAC3E,CAAC;YACJ,CAAC,CAAC,CAAC;YAEH,MAAM,MAAM,CAAC,KAAK,EAAE,CAAC;YAErB,MAAM,OAAO,GAAG,MAAM,CAAC,kBAAkB,EAAE,CAAC;YAC5C,OAAO,CAAC,GAAG,CAAC,6BAA6B,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,QAAQ,EAAE,CAAC,CAAC;YAC3E,OAAO,CAAC,GAAG,CAAC,oCAAoC,CAAC,CAAC;YAElD,oBAAoB;YACpB,MAAM,QAAQ,GAAG,KAAK,IAAI,EAAE;gBAC1B,OAAO,CAAC,GAAG,CAAC,iDAAiD,CAAC,CAAC;gBAC/D,MAAM,MAAM,CAAC,IAAI,EAAE,CAAC;gBACpB,OAAO,CAAC,GAAG,CAAC,yCAAyC,CAAC,CAAC;gBACvD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC,CAAC;YAEF,OAAO,CAAC,EAAE,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;YAC/B,OAAO,CAAC,EAAE,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;YAEhC,qBAAqB;YACrB,MAAM,IAAI,OAAO,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAC;YAC5B,MAAM;QACR,CAAC;QAED,KAAK,MAAM;YACT,IAAI,YAAY,EAAE,CAAC;gBACjB,MAAM,YAAY,CAAC,IAAI,EAAE,CAAC;gBAC1B,YAAY,GAAG,IAAI,CAAC;gBACpB,OAAO,CAAC,GAAG,CAAC,yCAAyC,CAAC,CAAC;YACzD,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC,GAAG,CAAC,kDAAkD,CAAC,CAAC;YAClE,CAAC;YACD,MAAM;QAER,KAAK,QAAQ;YACX,IAAI,YAAY,IAAI,YAAY,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;gBACtD,MAAM,KAAK,GAAG,YAAY,CAAC,aAAa,EAAE,CAAC;gBAC3C,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,KAAK,CAAC,CAAC,CAAC;YACvC,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC,GAAG,CAAC,gEAAgE,CAAC,CAAC;gBAC9E,OAAO,CAAC,GAAG,CAAC,6CAA6C,CAAC,CAAC;YAC7D,CAAC;YACD,MAAM;QAER,KAAK,QAAQ,CAAC,CAAC,CAAC;YACd,MAAM,YAAY,GAAG,sBAAsB,CAAC,OAAO,CAAC,CAAC;YACrD,OAAO,CAAC,GAAG,CAAC,wCAAwC,CAAC,CAAC;YACtD,MAAM,YAAY,GAAG,IAAI,UAAU,CAAC,YAAY,CAAC,CAAC;YAClD,MAAM,YAAY,CAAC,KAAK,EAAE,CAAC;YAC3B,MAAM,aAAa,GAAG,YAAY,CAAC,kBAAkB,EAAE,CAAC;YACxD,OAAO,CAAC,GAAG,CAAC,8BAA8B,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,QAAQ,EAAE,CAAC,CAAC;YAClF,MAAM,YAAY,CAAC,IAAI,EAAE,CAAC;YAC1B,OAAO,CAAC,GAAG,CAAC,+BAA+B,CAAC,CAAC;YAC7C,MAAM;QACR,CAAC;QAED,KAAK,UAAU;YACb,IAAI,YAAY,EAAE,CAAC;gBACjB,MAAM,QAAQ,GAAG,YAAY,CAAC,WAAW,EAAE,CAAC;gBAC5C,MAAM,QAAQ,GAAG,QAAQ,CAAC,cAAc,EAAE,CAAC;gBAC3C,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;oBAC1B,OAAO,CAAC,GAAG,CAAC,6CAA6C,CAAC,CAAC;gBAC7D,CAAC;qBAAM,CAAC;oBACN,OAAO,CAAC,GAAG,CAAC,0BAA0B,QAAQ,CAAC,MAAM,eAAe,CAAC,CAAC;oBACtE,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;wBACzB,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,SAAS,KAAK,CAAC,CAAC,UAAU,MAAM,CAAC,CAAC,MAAM,UAAU,CAAC,CAAC,SAAS,GAAG,CAAC,CAAC;oBACxF,CAAC;gBACH,CAAC;YACH,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC,GAAG,CAAC,8CAA8C,CAAC,CAAC;gBAC5D,OAAO,CAAC,GAAG,CAAC,wBAAwB,CAAC,CAAC;YACxC,CAAC;YACD,MAAM;QAER,KAAK,OAAO;YACV,IAAI,YAAY,EAAE,CAAC;gBACjB,MAAM,OAAO,GAAG,YAAY,CAAC,eAAe,EAAE,CAAC;gBAC/C,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;oBACzB,OAAO,CAAC,GAAG,CAAC,iCAAiC,CAAC,CAAC;gBACjD,CAAC;qBAAM,CAAC;oBACN,OAAO,CAAC,GAAG,CAAC,sBAAsB,OAAO,CAAC,MAAM,cAAc,CAAC,CAAC;oBAChE,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;wBACxB,OAAO,CAAC,GAAG,CACT,MAAM,CAAC,CAAC,WAAW,KAAK,CAAC,CAAC,QAAQ,MAAM,CAAC,CAAC,UAAU,KAAK,CAAC,CAAC,UAAU,IAAI,CAAC,CAAC,MAAM,GAAG,CACrF,CAAC;oBACJ,CAAC;gBACH,CAAC;YACH,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC,GAAG,CAAC,8CAA8C,CAAC,CAAC;gBAC5D,OAAO,CAAC,GAAG,CAAC,wBAAwB,CAAC,CAAC;YACxC,CAAC;YACD,MAAM;QAER;YACE,OAAO,CAAC,GAAG,CAAC,oBAAoB,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;YACnD,OAAO,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,CAAC;IAC/B,CAAC;AACH,CAAC;AAED,8EAA8E;AAC9E,sCAAsC;AACtC,iBAAiB;AACjB,8EAA8E;AAE9E,MAAM,WAAW,GACf,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC;IACf,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,gBAAgB,CAAC;QACzC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,wBAAwB,CAAC,CAAC,CAAC;AAExD,IAAI,WAAW,EAAE,CAAC;IAChB,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;QAC9C,OAAO,CAAC,KAAK,CAAC,QAAQ,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC;QAC1E,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,23 @@
+/**
+ * PanguardTrap - Smart Honeypot System
+ * PanguardTrap - 智慧蜜罐系統
+ *
+ * Deploys fake services to lure and profile attackers,
+ * recording their tools, techniques, and intentions.
+ * 部署假服務來誘捕並分析攻擊者，記錄其工具、技術和意圖。
+ *
+ * @module @panguard-ai/panguard-trap
+ */
+export declare const PANGUARD_TRAP_VERSION = "0.1.0";
+export declare const CLAWTRAP_NAME = "PanguardTrap";
+export type { TrapServiceType, TrapServiceStatus, TrapEngineStatus, TrapServiceConfig, TrapEvent, TrapEventType, TrapSession, CredentialAttempt, AttackerSkillLevel, AttackerIntent, AttackerProfile, TrapIntelligence, TrapConfig, TrapService, SessionHandler, TrapStatistics, } from './types.js';
+export { DEFAULT_SERVICE_CONFIGS, DEFAULT_TRAP_CONFIG } from './types.js';
+export { createTrapService, BaseTrapService, SSHTrapService, HTTPTrapService, GenericTrapService, } from './services/index.js';
+export { AttackerProfiler, estimateSkillLevel, classifyIntent, detectTools, } from './profiler/index.js';
+export { buildTrapIntel, buildBatchIntel, generateIntelSummary } from './intel/index.js';
+export type { IntelSummary } from './intel/index.js';
+export { TrapEngine } from './trap-engine.js';
+export { ThreatCloudUploader } from './threat-cloud-uploader.js';
+export { executeCli, parseCliArgs, buildConfigFromOptions, formatStatistics, getHelpText, } from './cli/index.js';
+export type { TrapCliCommand, TrapCliOptions } from './cli/index.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,eAAO,MAAM,qBAAqB,UAAU,CAAC;AAC7C,eAAO,MAAM,aAAa,iBAAiB,CAAC;AAG5C,YAAY,EACV,eAAe,EACf,iBAAiB,EACjB,gBAAgB,EAChB,iBAAiB,EACjB,SAAS,EACT,aAAa,EACb,WAAW,EACX,iBAAiB,EACjB,kBAAkB,EAClB,cAAc,EACd,eAAe,EACf,gBAAgB,EAChB,UAAU,EACV,WAAW,EACX,cAAc,EACd,cAAc,GACf,MAAM,YAAY,CAAC;AAEpB,OAAO,EAAE,uBAAuB,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AAG1E,OAAO,EACL,iBAAiB,EACjB,eAAe,EACf,cAAc,EACd,eAAe,EACf,kBAAkB,GACnB,MAAM,qBAAqB,CAAC;AAG7B,OAAO,EACL,gBAAgB,EAChB,kBAAkB,EAClB,cAAc,EACd,WAAW,GACZ,MAAM,qBAAqB,CAAC;AAG7B,OAAO,EAAE,cAAc,EAAE,eAAe,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AACzF,YAAY,EAAE,YAAY,EAAE,MAAM,kBAAkB,CAAC;AAGrD,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAG9C,OAAO,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AAGjE,OAAO,EACL,UAAU,EACV,YAAY,EACZ,sBAAsB,EACtB,gBAAgB,EAChB,WAAW,GACZ,MAAM,gBAAgB,CAAC;AACxB,YAAY,EAAE,cAAc,EAAE,cAAc,EAAE,MAAM,gBAAgB,CAAC"}

package/dist/index.js ADDED Viewed

@@ -0,0 +1,26 @@
+/**
+ * PanguardTrap - Smart Honeypot System
+ * PanguardTrap - 智慧蜜罐系統
+ *
+ * Deploys fake services to lure and profile attackers,
+ * recording their tools, techniques, and intentions.
+ * 部署假服務來誘捕並分析攻擊者，記錄其工具、技術和意圖。
+ *
+ * @module @panguard-ai/panguard-trap
+ */
+export const PANGUARD_TRAP_VERSION = '0.1.0';
+export const CLAWTRAP_NAME = 'PanguardTrap';
+export { DEFAULT_SERVICE_CONFIGS, DEFAULT_TRAP_CONFIG } from './types.js';
+// Services
+export { createTrapService, BaseTrapService, SSHTrapService, HTTPTrapService, GenericTrapService, } from './services/index.js';
+// Profiler
+export { AttackerProfiler, estimateSkillLevel, classifyIntent, detectTools, } from './profiler/index.js';
+// Intel
+export { buildTrapIntel, buildBatchIntel, generateIntelSummary } from './intel/index.js';
+// Engine
+export { TrapEngine } from './trap-engine.js';
+// Threat Cloud uploader
+export { ThreatCloudUploader } from './threat-cloud-uploader.js';
+// CLI
+export { executeCli, parseCliArgs, buildConfigFromOptions, formatStatistics, getHelpText, } from './cli/index.js';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,MAAM,CAAC,MAAM,qBAAqB,GAAG,OAAO,CAAC;AAC7C,MAAM,CAAC,MAAM,aAAa,GAAG,cAAc,CAAC;AAsB5C,OAAO,EAAE,uBAAuB,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AAE1E,WAAW;AACX,OAAO,EACL,iBAAiB,EACjB,eAAe,EACf,cAAc,EACd,eAAe,EACf,kBAAkB,GACnB,MAAM,qBAAqB,CAAC;AAE7B,WAAW;AACX,OAAO,EACL,gBAAgB,EAChB,kBAAkB,EAClB,cAAc,EACd,WAAW,GACZ,MAAM,qBAAqB,CAAC;AAE7B,QAAQ;AACR,OAAO,EAAE,cAAc,EAAE,eAAe,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AAGzF,SAAS;AACT,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAE9C,wBAAwB;AACxB,OAAO,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AAEjE,MAAM;AACN,OAAO,EACL,UAAU,EACV,YAAY,EACZ,sBAAsB,EACtB,gBAAgB,EAChB,WAAW,GACZ,MAAM,gBAAgB,CAAC"}

package/dist/intel/index.d.ts ADDED Viewed

@@ -0,0 +1,38 @@
+/**
+ * Trap Intelligence Module
+ * 蜜罐情報模組
+ *
+ * Converts trap sessions to anonymized intelligence data
+ * for upload to Panguard Threat Cloud.
+ * 將蜜罐連線轉換為匿名化情報資料，用於上傳到 Panguard Threat Cloud。
+ *
+ * @module @panguard-ai/panguard-trap/intel
+ */
+import type { TrapSession, TrapIntelligence, AttackerProfile } from '../types.js';
+/**
+ * Convert a trap session to anonymized intelligence
+ * 將蜜罐連線轉換為匿名化情報
+ */
+export declare function buildTrapIntel(session: TrapSession, profile?: AttackerProfile): TrapIntelligence | null;
+/**
+ * Build batch intel from multiple sessions
+ * 從多個連線建構批次情報
+ */
+export declare function buildBatchIntel(sessions: TrapSession[], profiles: Map<string, AttackerProfile>): TrapIntelligence[];
+/** Intel summary / 情報摘要 */
+export interface IntelSummary {
+    totalIntelReports: number;
+    uniqueSourceIPs: number;
+    attackTypeDistribution: Record<string, number>;
+    topSourceIPs: {
+        ip: string;
+        count: number;
+    }[];
+    serviceDistribution: Record<string, number>;
+}
+/**
+ * Generate intel summary from collected reports
+ * 從收集的報告生成情報摘要
+ */
+export declare function generateIntelSummary(reports: TrapIntelligence[]): IntelSummary;
+//# sourceMappingURL=index.d.ts.map

package/dist/intel/index.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/intel/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAGH,OAAO,KAAK,EAAE,WAAW,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AA4BlF;;;GAGG;AACH,wBAAgB,cAAc,CAC5B,OAAO,EAAE,WAAW,EACpB,OAAO,CAAC,EAAE,eAAe,GACxB,gBAAgB,GAAG,IAAI,CA2CzB;AAED;;;GAGG;AACH,wBAAgB,eAAe,CAC7B,QAAQ,EAAE,WAAW,EAAE,EACvB,QAAQ,EAAE,GAAG,CAAC,MAAM,EAAE,eAAe,CAAC,GACrC,gBAAgB,EAAE,CAYpB;AA8CD,2BAA2B;AAC3B,MAAM,WAAW,YAAY;IAC3B,iBAAiB,EAAE,MAAM,CAAC;IAC1B,eAAe,EAAE,MAAM,CAAC;IACxB,sBAAsB,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC/C,YAAY,EAAE;QAAE,EAAE,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,EAAE,CAAC;IAC9C,mBAAmB,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAC7C;AAED;;;GAGG;AACH,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,gBAAgB,EAAE,GAAG,YAAY,CAuB9E"}

package/dist/intel/index.js ADDED Viewed

@@ -0,0 +1,157 @@
+/**
+ * Trap Intelligence Module
+ * 蜜罐情報模組
+ *
+ * Converts trap sessions to anonymized intelligence data
+ * for upload to Panguard Threat Cloud.
+ * 將蜜罐連線轉換為匿名化情報資料，用於上傳到 Panguard Threat Cloud。
+ *
+ * @module @panguard-ai/panguard-trap/intel
+ */
+import { createLogger } from '@panguard-ai/core';
+const logger = createLogger('panguard-trap:intel');
+// ---------------------------------------------------------------------------
+// IP Anonymization
+// IP 匿名化
+// ---------------------------------------------------------------------------
+/** Check if IP is private / 檢查是否為私有 IP */
+function isPrivateIP(ip) {
+    const cleanIP = ip.replace('::ffff:', '');
+    if (cleanIP.startsWith('10.'))
+        return true;
+    if (cleanIP.startsWith('172.')) {
+        const secondOctet = parseInt(cleanIP.split('.')[1] ?? '0', 10);
+        if (secondOctet >= 16 && secondOctet <= 31)
+            return true;
+    }
+    if (cleanIP.startsWith('192.168.'))
+        return true;
+    if (cleanIP === '127.0.0.1' || cleanIP === 'localhost')
+        return true;
+    if (cleanIP === '::1')
+        return true;
+    return false;
+}
+// ---------------------------------------------------------------------------
+// Intelligence Builder
+// 情報建構器
+// ---------------------------------------------------------------------------
+/**
+ * Convert a trap session to anonymized intelligence
+ * 將蜜罐連線轉換為匿名化情報
+ */
+export function buildTrapIntel(session, profile) {
+    // Don't report private IPs
+    if (isPrivateIP(session.sourceIP)) {
+        logger.debug('Skipping private IP for intel / 跳過私有 IP');
+        return null;
+    }
+    // Need at least some activity to report
+    if (session.events.length < 2) {
+        return null;
+    }
+    // Build top credentials (generic patterns only)
+    const usernameCounts = new Map();
+    for (const cred of session.credentials) {
+        if (cred.username) {
+            usernameCounts.set(cred.username, (usernameCounts.get(cred.username) ?? 0) + 1);
+        }
+    }
+    const topCredentials = Array.from(usernameCounts.entries())
+        .sort((a, b) => b[1] - a[1])
+        .slice(0, 5)
+        .map(([username, count]) => ({ username, count }));
+    // Determine attack type
+    const attackType = determineAttackType(session);
+    const intel = {
+        timestamp: session.startTime,
+        serviceType: session.serviceType,
+        sourceIP: session.sourceIP,
+        attackType,
+        mitreTechniques: [...session.mitreTechniques],
+        skillLevel: profile?.skillLevel ?? 'script_kiddie',
+        intent: profile?.intent ?? 'unknown',
+        tools: profile?.toolsDetected ?? [],
+        topCredentials,
+        region: profile?.geoHints?.country,
+    };
+    logger.info(`Trap intel built for ${session.sourceIP} (${attackType}) / 蜜罐情報已建立`);
+    return intel;
+}
+/**
+ * Build batch intel from multiple sessions
+ * 從多個連線建構批次情報
+ */
+export function buildBatchIntel(sessions, profiles) {
+    const results = [];
+    for (const session of sessions) {
+        const profile = session.attackerProfileId ? profiles.get(session.attackerProfileId) : undefined;
+        const intel = buildTrapIntel(session, profile);
+        if (intel) {
+            results.push(intel);
+        }
+    }
+    return results;
+}
+/**
+ * Determine the primary attack type from a session
+ * 從連線判定主要攻擊類型
+ */
+function determineAttackType(session) {
+    // Check for specific attack types based on events and techniques
+    if (session.mitreTechniques.includes('T1110')) {
+        return 'brute_force';
+    }
+    if (session.mitreTechniques.includes('T1190')) {
+        return 'exploit_attempt';
+    }
+    if (session.mitreTechniques.includes('T1496')) {
+        return 'cryptomining';
+    }
+    if (session.mitreTechniques.includes('T1505.003')) {
+        return 'webshell_upload';
+    }
+    if (session.mitreTechniques.includes('T1485')) {
+        return 'data_destruction';
+    }
+    if (session.mitreTechniques.includes('T1105')) {
+        return 'malware_download';
+    }
+    if (session.mitreTechniques.includes('T1595')) {
+        return 'reconnaissance';
+    }
+    // Fallback by service type
+    if (session.serviceType === 'ssh' || session.serviceType === 'telnet') {
+        return session.credentials.length > 0 ? 'brute_force' : 'reconnaissance';
+    }
+    if (session.serviceType === 'http') {
+        return 'web_attack';
+    }
+    return 'unknown';
+}
+/**
+ * Generate intel summary from collected reports
+ * 從收集的報告生成情報摘要
+ */
+export function generateIntelSummary(reports) {
+    const ipCounts = new Map();
+    const attackTypes = {};
+    const services = {};
+    for (const report of reports) {
+        ipCounts.set(report.sourceIP, (ipCounts.get(report.sourceIP) ?? 0) + 1);
+        attackTypes[report.attackType] = (attackTypes[report.attackType] ?? 0) + 1;
+        services[report.serviceType] = (services[report.serviceType] ?? 0) + 1;
+    }
+    const topSourceIPs = Array.from(ipCounts.entries())
+        .sort((a, b) => b[1] - a[1])
+        .slice(0, 10)
+        .map(([ip, count]) => ({ ip, count }));
+    return {
+        totalIntelReports: reports.length,
+        uniqueSourceIPs: ipCounts.size,
+        attackTypeDistribution: attackTypes,
+        topSourceIPs,
+        serviceDistribution: services,
+    };
+}
+//# sourceMappingURL=index.js.map

package/dist/intel/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/intel/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAGjD,MAAM,MAAM,GAAG,YAAY,CAAC,qBAAqB,CAAC,CAAC;AAEnD,8EAA8E;AAC9E,mBAAmB;AACnB,SAAS;AACT,8EAA8E;AAE9E,0CAA0C;AAC1C,SAAS,WAAW,CAAC,EAAU;IAC7B,MAAM,OAAO,GAAG,EAAE,CAAC,OAAO,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC;IAC1C,IAAI,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IAC3C,IAAI,OAAO,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;QAC/B,MAAM,WAAW,GAAG,QAAQ,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,GAAG,EAAE,EAAE,CAAC,CAAC;QAC/D,IAAI,WAAW,IAAI,EAAE,IAAI,WAAW,IAAI,EAAE;YAAE,OAAO,IAAI,CAAC;IAC1D,CAAC;IACD,IAAI,OAAO,CAAC,UAAU,CAAC,UAAU,CAAC;QAAE,OAAO,IAAI,CAAC;IAChD,IAAI,OAAO,KAAK,WAAW,IAAI,OAAO,KAAK,WAAW;QAAE,OAAO,IAAI,CAAC;IACpE,IAAI,OAAO,KAAK,KAAK;QAAE,OAAO,IAAI,CAAC;IACnC,OAAO,KAAK,CAAC;AACf,CAAC;AAED,8EAA8E;AAC9E,uBAAuB;AACvB,QAAQ;AACR,8EAA8E;AAE9E;;;GAGG;AACH,MAAM,UAAU,cAAc,CAC5B,OAAoB,EACpB,OAAyB;IAEzB,2BAA2B;IAC3B,IAAI,WAAW,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;QAClC,MAAM,CAAC,KAAK,CAAC,yCAAyC,CAAC,CAAC;QACxD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,wCAAwC;IACxC,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC9B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,gDAAgD;IAChD,MAAM,cAAc,GAAG,IAAI,GAAG,EAAkB,CAAC;IACjD,KAAK,MAAM,IAAI,IAAI,OAAO,CAAC,WAAW,EAAE,CAAC;QACvC,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAClB,cAAc,CAAC,GAAG,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC,cAAc,CAAC,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;QAClF,CAAC;IACH,CAAC;IACD,MAAM,cAAc,GAAG,KAAK,CAAC,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE,CAAC;SACxD,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;SAC3B,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;SACX,GAAG,CAAC,CAAC,CAAC,QAAQ,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC;IAErD,wBAAwB;IACxB,MAAM,UAAU,GAAG,mBAAmB,CAAC,OAAO,CAAC,CAAC;IAEhD,MAAM,KAAK,GAAqB;QAC9B,SAAS,EAAE,OAAO,CAAC,SAAS;QAC5B,WAAW,EAAE,OAAO,CAAC,WAAW;QAChC,QAAQ,EAAE,OAAO,CAAC,QAAQ;QAC1B,UAAU;QACV,eAAe,EAAE,CAAC,GAAG,OAAO,CAAC,eAAe,CAAC;QAC7C,UAAU,EAAE,OAAO,EAAE,UAAU,IAAI,eAAe;QAClD,MAAM,EAAE,OAAO,EAAE,MAAM,IAAI,SAAS;QACpC,KAAK,EAAE,OAAO,EAAE,aAAa,IAAI,EAAE;QACnC,cAAc;QACd,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,OAAO;KACnC,CAAC;IAEF,MAAM,CAAC,IAAI,CAAC,wBAAwB,OAAO,CAAC,QAAQ,KAAK,UAAU,aAAa,CAAC,CAAC;IAElF,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,eAAe,CAC7B,QAAuB,EACvB,QAAsC;IAEtC,MAAM,OAAO,GAAuB,EAAE,CAAC;IAEvC,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,MAAM,OAAO,GAAG,OAAO,CAAC,iBAAiB,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;QAChG,MAAM,KAAK,GAAG,cAAc,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAC/C,IAAI,KAAK,EAAE,CAAC;YACV,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACtB,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;GAGG;AACH,SAAS,mBAAmB,CAAC,OAAoB;IAC/C,iEAAiE;IACjE,IAAI,OAAO,CAAC,eAAe,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;QAC9C,OAAO,aAAa,CAAC;IACvB,CAAC;IACD,IAAI,OAAO,CAAC,eAAe,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;QAC9C,OAAO,iBAAiB,CAAC;IAC3B,CAAC;IACD,IAAI,OAAO,CAAC,eAAe,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;QAC9C,OAAO,cAAc,CAAC;IACxB,CAAC;IACD,IAAI,OAAO,CAAC,eAAe,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;QAClD,OAAO,iBAAiB,CAAC;IAC3B,CAAC;IACD,IAAI,OAAO,CAAC,eAAe,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;QAC9C,OAAO,kBAAkB,CAAC;IAC5B,CAAC;IACD,IAAI,OAAO,CAAC,eAAe,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;QAC9C,OAAO,kBAAkB,CAAC;IAC5B,CAAC;IACD,IAAI,OAAO,CAAC,eAAe,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;QAC9C,OAAO,gBAAgB,CAAC;IAC1B,CAAC;IAED,2BAA2B;IAC3B,IAAI,OAAO,CAAC,WAAW,KAAK,KAAK,IAAI,OAAO,CAAC,WAAW,KAAK,QAAQ,EAAE,CAAC;QACtE,OAAO,OAAO,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,gBAAgB,CAAC;IAC3E,CAAC;IACD,IAAI,OAAO,CAAC,WAAW,KAAK,MAAM,EAAE,CAAC;QACnC,OAAO,YAAY,CAAC;IACtB,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAgBD;;;GAGG;AACH,MAAM,UAAU,oBAAoB,CAAC,OAA2B;IAC9D,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAkB,CAAC;IAC3C,MAAM,WAAW,GAA2B,EAAE,CAAC;IAC/C,MAAM,QAAQ,GAA2B,EAAE,CAAC;IAE5C,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;QAC7B,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;QACxE,WAAW,CAAC,MAAM,CAAC,UAAU,CAAC,GAAG,CAAC,WAAW,CAAC,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;QAC3E,QAAQ,CAAC,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;IACzE,CAAC;IAED,MAAM,YAAY,GAAG,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC;SAChD,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;SAC3B,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC;SACZ,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC;IAEzC,OAAO;QACL,iBAAiB,EAAE,OAAO,CAAC,MAAM;QACjC,eAAe,EAAE,QAAQ,CAAC,IAAI;QAC9B,sBAAsB,EAAE,WAAW;QACnC,YAAY;QACZ,mBAAmB,EAAE,QAAQ;KAC9B,CAAC;AACJ,CAAC"}