npm - erosolar-cli - Versions diffs - 1.5.3 → 1.5.4 - Mend

erosolar-cli 1.5.3 → 1.5.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (327) hide show

package/config/security-deployment.json +54 -0
package/dist/bin/adapters/node/index.js +33 -0
package/dist/bin/adapters/types.js +1 -0
package/dist/bin/alpha-zero/agentWrapper.js +165 -0
package/dist/bin/alpha-zero/codeEvaluator.js +272 -0
package/dist/bin/alpha-zero/competitiveRunner.js +219 -0
package/dist/bin/alpha-zero/index.js +98 -0
package/dist/bin/alpha-zero/introspection.js +298 -0
package/dist/bin/alpha-zero/metricsTracker.js +207 -0
package/dist/bin/alpha-zero/security/core.js +269 -0
package/dist/bin/alpha-zero/security/google.js +308 -0
package/dist/bin/alpha-zero/security/googleLoader.js +40 -0
package/dist/bin/alpha-zero/security/index.js +31 -0
package/dist/bin/alpha-zero/security/simulation.js +274 -0
package/dist/bin/alpha-zero/selfModification.js +231 -0
package/dist/bin/alpha-zero/types.js +30 -0
package/dist/bin/bin/erosolar-optimized.js +205 -0
package/dist/bin/capabilities/agentSpawningCapability.js +116 -0
package/dist/bin/capabilities/bashCapability.js +22 -0
package/dist/bin/capabilities/cloudCapability.js +36 -0
package/dist/bin/capabilities/codeAnalysisCapability.js +22 -0
package/dist/bin/capabilities/codeQualityCapability.js +23 -0
package/dist/bin/capabilities/dependencySecurityCapability.js +22 -0
package/dist/bin/capabilities/devCapability.js +22 -0
package/dist/bin/capabilities/editCapability.js +28 -0
package/dist/bin/capabilities/emailCapability.js +20 -0
package/dist/bin/capabilities/enhancedGitCapability.js +221 -0
package/dist/bin/capabilities/filesystemCapability.js +22 -0
package/dist/bin/capabilities/globCapability.js +28 -0
package/dist/bin/capabilities/interactionCapability.js +20 -0
package/dist/bin/capabilities/learnCapability.js +22 -0
package/dist/bin/capabilities/mcpCapability.js +20 -0
package/dist/bin/capabilities/notebookCapability.js +28 -0
package/dist/bin/capabilities/planningCapability.js +27 -0
package/dist/bin/capabilities/refactoringCapability.js +23 -0
package/dist/bin/capabilities/repoChecksCapability.js +22 -0
package/dist/bin/capabilities/searchCapability.js +22 -0
package/dist/bin/capabilities/skillCapability.js +76 -0
package/dist/bin/capabilities/taskManagementCapability.js +20 -0
package/dist/bin/capabilities/testingCapability.js +23 -0
package/dist/bin/capabilities/toolManifest.js +159 -0
package/dist/bin/capabilities/toolRegistry.js +114 -0
package/dist/bin/capabilities/webCapability.js +20 -0
package/dist/bin/config.js +139 -0
package/dist/bin/contracts/v1/agent.js +7 -0
package/dist/bin/contracts/v1/agentProfileManifest.js +8 -0
package/dist/bin/contracts/v1/agentRules.js +9 -0
package/dist/bin/contracts/v1/toolAccess.js +8 -0
package/dist/bin/core/agent.js +362 -0
package/dist/bin/core/agentProfileManifest.js +187 -0
package/dist/bin/core/agentProfiles.js +34 -0
package/dist/bin/core/agentRulebook.js +135 -0
package/dist/bin/core/agentSchemaLoader.js +233 -0
package/dist/bin/core/contextManager.js +412 -0
package/dist/bin/core/contextWindow.js +122 -0
package/dist/bin/core/customCommands.js +80 -0
package/dist/bin/core/errors/apiKeyErrors.js +114 -0
package/dist/bin/core/errors/errorTypes.js +340 -0
package/dist/bin/core/errors/safetyValidator.js +304 -0
package/dist/bin/core/errors.js +32 -0
package/dist/bin/core/modelDiscovery.js +755 -0
package/dist/bin/core/preferences.js +224 -0
package/dist/bin/core/schemaValidator.js +92 -0
package/dist/bin/core/secretStore.js +199 -0
package/dist/bin/core/sessionStore.js +187 -0
package/dist/bin/core/toolRuntime.js +290 -0
package/dist/bin/core/types.js +1 -0
package/dist/bin/erosolar-optimized.d.ts +12 -0
package/dist/bin/erosolar-optimized.d.ts.map +1 -0
package/dist/bin/erosolar-optimized.js +239 -0
package/dist/bin/erosolar-optimized.js.map +1 -0
package/dist/bin/erosolar.js +14 -0
package/dist/bin/erosolar.js.map +1 -1
package/dist/bin/headless/headlessApp.js +172 -0
package/dist/bin/mcp/config.js +202 -0
package/dist/bin/mcp/stdioClient.js +172 -0
package/dist/bin/mcp/toolBridge.js +104 -0
package/dist/bin/mcp/types.js +1 -0
package/dist/bin/plugins/index.js +113 -0
package/dist/bin/plugins/providers/anthropic/index.js +25 -0
package/dist/bin/plugins/providers/deepseek/index.js +24 -0
package/dist/bin/plugins/providers/google/index.js +26 -0
package/dist/bin/plugins/providers/index.js +19 -0
package/dist/bin/plugins/providers/ollama/index.js +59 -0
package/dist/bin/plugins/providers/openai/index.js +26 -0
package/dist/bin/plugins/providers/xai/index.js +24 -0
package/dist/bin/plugins/tools/agentSpawning/agentSpawningPlugin.js +8 -0
package/dist/bin/plugins/tools/bash/localBashPlugin.js +13 -0
package/dist/bin/plugins/tools/checks/localRepoChecksPlugin.js +13 -0
package/dist/bin/plugins/tools/cloud/cloudPlugin.js +13 -0
package/dist/bin/plugins/tools/codeAnalysis/codeAnalysisPlugin.js +13 -0
package/dist/bin/plugins/tools/codeQuality/codeQualityPlugin.js +13 -0
package/dist/bin/plugins/tools/dependency/dependencyPlugin.js +11 -0
package/dist/bin/plugins/tools/development/devPlugin.js +13 -0
package/dist/bin/plugins/tools/edit/editPlugin.js +14 -0
package/dist/bin/plugins/tools/email/emailPlugin.js +11 -0
package/dist/bin/plugins/tools/enhancedGit/enhancedGitPlugin.js +8 -0
package/dist/bin/plugins/tools/filesystem/localFilesystemPlugin.js +13 -0
package/dist/bin/plugins/tools/glob/globPlugin.js +14 -0
package/dist/bin/plugins/tools/index.js +2 -0
package/dist/bin/plugins/tools/interaction/interactionPlugin.js +11 -0
package/dist/bin/plugins/tools/learn/learnPlugin.js +13 -0
package/dist/bin/plugins/tools/mcp/mcpPlugin.js +8 -0
package/dist/bin/plugins/tools/nodeDefaults.js +56 -0
package/dist/bin/plugins/tools/notebook/notebookPlugin.js +14 -0
package/dist/bin/plugins/tools/planning/planningPlugin.js +14 -0
package/dist/bin/plugins/tools/refactoring/refactoringPlugin.js +11 -0
package/dist/bin/plugins/tools/registry.js +57 -0
package/dist/bin/plugins/tools/search/localSearchPlugin.js +13 -0
package/dist/bin/plugins/tools/skills/skillPlugin.js +8 -0
package/dist/bin/plugins/tools/taskManagement/taskManagementPlugin.js +11 -0
package/dist/bin/plugins/tools/testing/testingPlugin.js +11 -0
package/dist/bin/plugins/tools/web/webPlugin.js +11 -0
package/dist/bin/providers/anthropicProvider.js +329 -0
package/dist/bin/providers/googleProvider.js +203 -0
package/dist/bin/providers/openaiChatCompletionsProvider.js +208 -0
package/dist/bin/providers/openaiResponsesProvider.js +249 -0
package/dist/bin/providers/providerFactory.js +24 -0
package/dist/bin/runtime/agentController.js +321 -0
package/dist/bin/runtime/agentHost.js +153 -0
package/dist/bin/runtime/agentSession.js +195 -0
package/dist/bin/runtime/node.js +10 -0
package/dist/bin/runtime/universal.js +28 -0
package/dist/bin/shell/bracketedPasteManager.js +350 -0
package/dist/bin/shell/fileChangeTracker.js +65 -0
package/dist/bin/shell/interactiveShell.js +2908 -0
package/dist/bin/shell/liveStatus.js +78 -0
package/dist/bin/shell/shellApp.js +290 -0
package/dist/bin/shell/systemPrompt.js +60 -0
package/dist/bin/shell/updateManager.js +108 -0
package/dist/bin/skills/skillRepository.js +236 -0
package/dist/bin/skills/types.js +1 -0
package/dist/bin/subagents/taskRunner.js +269 -0
package/dist/bin/tools/backgroundBashTools.js +211 -0
package/dist/bin/tools/bashTools.js +159 -0
package/dist/bin/tools/cloudTools.js +864 -0
package/dist/bin/tools/codeAnalysisTools.js +641 -0
package/dist/bin/tools/codeQualityTools.js +294 -0
package/dist/bin/tools/dependencyTools.js +282 -0
package/dist/bin/tools/devTools.js +238 -0
package/dist/bin/tools/diffUtils.js +137 -0
package/dist/bin/tools/editTools.js +134 -0
package/dist/bin/tools/emailTools.js +448 -0
package/dist/bin/tools/fileTools.js +282 -0
package/dist/bin/tools/globTools.js +173 -0
package/dist/bin/tools/grepTools.js +332 -0
package/dist/bin/tools/interactionTools.js +170 -0
package/dist/bin/tools/learnTools.js +1818 -0
package/dist/bin/tools/notebookEditTools.js +196 -0
package/dist/bin/tools/planningTools.js +46 -0
package/dist/bin/tools/refactoringTools.js +293 -0
package/dist/bin/tools/repoChecksTools.js +160 -0
package/dist/bin/tools/searchTools.js +206 -0
package/dist/bin/tools/skillTools.js +177 -0
package/dist/bin/tools/taskManagementTools.js +156 -0
package/dist/bin/tools/testingTools.js +232 -0
package/dist/bin/tools/webTools.js +480 -0
package/dist/bin/ui/ShellUIAdapter.js +459 -0
package/dist/bin/ui/UnifiedUIController.js +183 -0
package/dist/bin/ui/animation/AnimationScheduler.js +430 -0
package/dist/bin/ui/codeHighlighter.js +854 -0
package/dist/bin/ui/designSystem.js +121 -0
package/dist/bin/ui/display.js +1222 -0
package/dist/bin/ui/interrupts/InterruptManager.js +437 -0
package/dist/bin/ui/layout.js +139 -0
package/dist/bin/ui/orchestration/StatusOrchestrator.js +403 -0
package/dist/bin/ui/outputMode.js +38 -0
package/dist/bin/ui/persistentPrompt.js +183 -0
package/dist/bin/ui/richText.js +338 -0
package/dist/bin/ui/shortcutsHelp.js +87 -0
package/dist/bin/ui/telemetry/UITelemetry.js +443 -0
package/dist/bin/ui/textHighlighter.js +210 -0
package/dist/bin/ui/theme.js +116 -0
package/dist/bin/ui/toolDisplay.js +423 -0
package/dist/bin/ui/toolDisplayAdapter.js +357 -0
package/dist/bin/workspace.js +106 -0
package/dist/bin/workspace.validator.js +213 -0
package/dist/capabilities/offensiveSecurityCapability.d.ts +26 -0
package/dist/capabilities/offensiveSecurityCapability.d.ts.map +1 -0
package/dist/capabilities/offensiveSecurityCapability.js +58 -0
package/dist/capabilities/offensiveSecurityCapability.js.map +1 -0
package/dist/capabilities/realSecurityCapability.d.ts +26 -0
package/dist/capabilities/realSecurityCapability.d.ts.map +1 -0
package/dist/capabilities/realSecurityCapability.js +53 -0
package/dist/capabilities/realSecurityCapability.js.map +1 -0
package/dist/capabilities/securityCapability.d.ts +32 -0
package/dist/capabilities/securityCapability.d.ts.map +1 -0
package/dist/capabilities/securityCapability.js +57 -0
package/dist/capabilities/securityCapability.js.map +1 -0
package/dist/capabilities/ultimateSecurityCapability.d.ts +42 -0
package/dist/capabilities/ultimateSecurityCapability.d.ts.map +1 -0
package/dist/capabilities/ultimateSecurityCapability.js +96 -0
package/dist/capabilities/ultimateSecurityCapability.js.map +1 -0
package/dist/core/LazyLoader.d.ts +129 -0
package/dist/core/LazyLoader.d.ts.map +1 -0
package/dist/core/LazyLoader.js +240 -0
package/dist/core/LazyLoader.js.map +1 -0
package/dist/core/intelligenceTools.d.ts +19 -0
package/dist/core/intelligenceTools.d.ts.map +1 -0
package/dist/core/intelligenceTools.js +453 -0
package/dist/core/intelligenceTools.js.map +1 -0
package/dist/core/operationalTools.d.ts +19 -0
package/dist/core/operationalTools.d.ts.map +1 -0
package/dist/core/operationalTools.js +467 -0
package/dist/core/operationalTools.js.map +1 -0
package/dist/offensive/core/offensive-engine.d.ts +171 -0
package/dist/offensive/core/offensive-engine.d.ts.map +1 -0
package/dist/offensive/core/offensive-engine.js +345 -0
package/dist/offensive/core/offensive-engine.js.map +1 -0
package/dist/offensive/core/offensive-integration.d.ts +129 -0
package/dist/offensive/core/offensive-integration.d.ts.map +1 -0
package/dist/offensive/core/offensive-integration.js +364 -0
package/dist/offensive/core/offensive-integration.js.map +1 -0
package/dist/offensive/core/offensive-tools.d.ts +55 -0
package/dist/offensive/core/offensive-tools.d.ts.map +1 -0
package/dist/offensive/core/offensive-tools.js +438 -0
package/dist/offensive/core/offensive-tools.js.map +1 -0
package/dist/offensive/offensive-cli.d.ts +48 -0
package/dist/offensive/offensive-cli.d.ts.map +1 -0
package/dist/offensive/offensive-cli.js +233 -0
package/dist/offensive/offensive-cli.js.map +1 -0
package/dist/plugins/index.d.ts +1 -1
package/dist/plugins/index.d.ts.map +1 -1
package/dist/plugins/index.js +2 -0
package/dist/plugins/index.js.map +1 -1
package/dist/security/advanced-persistence-research.d.ts +92 -0
package/dist/security/advanced-persistence-research.d.ts.map +1 -0
package/dist/security/advanced-persistence-research.js +195 -0
package/dist/security/advanced-persistence-research.js.map +1 -0
package/dist/security/apt-simulation-cli.d.ts +57 -0
package/dist/security/apt-simulation-cli.d.ts.map +1 -0
package/dist/security/apt-simulation-cli.js +278 -0
package/dist/security/apt-simulation-cli.js.map +1 -0
package/dist/security/apt-simulation-engine-complete.d.ts +97 -0
package/dist/security/apt-simulation-engine-complete.d.ts.map +1 -0
package/dist/security/apt-simulation-engine-complete.js +441 -0
package/dist/security/apt-simulation-engine-complete.js.map +1 -0
package/dist/security/apt-simulation-engine.d.ts +97 -0
package/dist/security/apt-simulation-engine.d.ts.map +1 -0
package/dist/security/apt-simulation-engine.js +441 -0
package/dist/security/apt-simulation-engine.js.map +1 -0
package/dist/security/assessment/vulnerabilityAssessment.d.ts +104 -0
package/dist/security/assessment/vulnerabilityAssessment.d.ts.map +1 -0
package/dist/security/assessment/vulnerabilityAssessment.js +315 -0
package/dist/security/assessment/vulnerabilityAssessment.js.map +1 -0
package/dist/security/authorization/securityAuthorization.d.ts +88 -0
package/dist/security/authorization/securityAuthorization.d.ts.map +1 -0
package/dist/security/authorization/securityAuthorization.js +172 -0
package/dist/security/authorization/securityAuthorization.js.map +1 -0
package/dist/security/authorization.d.ts +45 -0
package/dist/security/authorization.d.ts.map +1 -0
package/dist/security/authorization.js +128 -0
package/dist/security/authorization.js.map +1 -0
package/dist/security/comprehensive-security-research.d.ts +84 -0
package/dist/security/comprehensive-security-research.d.ts.map +1 -0
package/dist/security/comprehensive-security-research.js +211 -0
package/dist/security/comprehensive-security-research.js.map +1 -0
package/dist/security/offensive/exploitationEngine.d.ts +54 -0
package/dist/security/offensive/exploitationEngine.d.ts.map +1 -0
package/dist/security/offensive/exploitationEngine.js +263 -0
package/dist/security/offensive/exploitationEngine.js.map +1 -0
package/dist/security/persistence-cli.d.ts +36 -0
package/dist/security/persistence-cli.d.ts.map +1 -0
package/dist/security/persistence-cli.js +160 -0
package/dist/security/persistence-cli.js.map +1 -0
package/dist/security/persistence-research.d.ts +11 -0
package/dist/security/persistence-research.d.ts.map +1 -1
package/dist/security/persistence-research.js +11 -0
package/dist/security/persistence-research.js.map +1 -1
package/dist/security/real/networkExploitation.d.ts +92 -0
package/dist/security/real/networkExploitation.d.ts.map +1 -0
package/dist/security/real/networkExploitation.js +316 -0
package/dist/security/real/networkExploitation.js.map +1 -0
package/dist/security/real/persistenceImplementation.d.ts +62 -0
package/dist/security/real/persistenceImplementation.d.ts.map +1 -0
package/dist/security/real/persistenceImplementation.js +323 -0
package/dist/security/real/persistenceImplementation.js.map +1 -0
package/dist/security/real/vulnerabilityScanner.d.ts +73 -0
package/dist/security/real/vulnerabilityScanner.d.ts.map +1 -0
package/dist/security/real/vulnerabilityScanner.js +341 -0
package/dist/security/real/vulnerabilityScanner.js.map +1 -0
package/dist/security/research/persistenceResearch.d.ts +97 -0
package/dist/security/research/persistenceResearch.d.ts.map +1 -0
package/dist/security/research/persistenceResearch.js +282 -0
package/dist/security/research/persistenceResearch.js.map +1 -0
package/dist/security/security-testing-framework.d.ts +120 -0
package/dist/security/security-testing-framework.d.ts.map +1 -0
package/dist/security/security-testing-framework.js +372 -0
package/dist/security/security-testing-framework.js.map +1 -0
package/dist/security/simulation/attackSimulation.d.ts +93 -0
package/dist/security/simulation/attackSimulation.d.ts.map +1 -0
package/dist/security/simulation/attackSimulation.js +341 -0
package/dist/security/simulation/attackSimulation.js.map +1 -0
package/dist/shell/bracketedPasteManager.d.ts +33 -0
package/dist/shell/bracketedPasteManager.d.ts.map +1 -1
package/dist/shell/bracketedPasteManager.js +101 -0
package/dist/shell/bracketedPasteManager.js.map +1 -1
package/dist/shell/interactiveShell.d.ts +22 -1
package/dist/shell/interactiveShell.d.ts.map +1 -1
package/dist/shell/interactiveShell.js +257 -24
package/dist/shell/interactiveShell.js.map +1 -1
package/dist/shell/taskCompletionDetector.d.ts +101 -0
package/dist/shell/taskCompletionDetector.d.ts.map +1 -0
package/dist/shell/taskCompletionDetector.js +343 -0
package/dist/shell/taskCompletionDetector.js.map +1 -0
package/dist/tools/cloudTools.d.ts +11 -0
package/dist/tools/cloudTools.d.ts.map +1 -1
package/dist/tools/cloudTools.js +11 -0
package/dist/tools/cloudTools.js.map +1 -1
package/dist/tools/enhancedSecurityTools.d.ts +19 -0
package/dist/tools/enhancedSecurityTools.d.ts.map +1 -0
package/dist/tools/enhancedSecurityTools.js +215 -0
package/dist/tools/enhancedSecurityTools.js.map +1 -0
package/dist/tools/offensiveSecurityTools.d.ts +16 -0
package/dist/tools/offensiveSecurityTools.d.ts.map +1 -0
package/dist/tools/offensiveSecurityTools.js +285 -0
package/dist/tools/offensiveSecurityTools.js.map +1 -0
package/dist/tools/realSecurityTools.d.ts +18 -0
package/dist/tools/realSecurityTools.d.ts.map +1 -0
package/dist/tools/realSecurityTools.js +468 -0
package/dist/tools/realSecurityTools.js.map +1 -0
package/dist/tools/securityTools.d.ts +20 -0
package/dist/tools/securityTools.d.ts.map +1 -0
package/dist/tools/securityTools.js +449 -0
package/dist/tools/securityTools.js.map +1 -0
package/package.json +27 -12
package/scripts/deploy-security-capabilities.js +178 -0

package/dist/security/apt-simulation-engine.js ADDED Viewed

@@ -0,0 +1,441 @@
+/**
+ * APT Simulation Engine
+ *
+ * Comprehensive framework for simulating Advanced Persistent Threat campaigns
+ * from initial access through persistence and data exfiltration.
+ *
+ * Based on MITRE ATT&CK framework and real-world APT tactics.
+ */
+/**
+ * APT Simulation Engine Class
+ */
+export class APTSimulationEngine {
+    attackPhases;
+    techniques;
+    constructor() {
+        this.attackPhases = this.initializeAttackPhases();
+        this.techniques = this.initializeTechniques();
+    }
+    /**
+     * Initialize APT attack phases based on MITRE ATT&CK
+     */
+    initializeAttackPhases() {
+        return [
+            {
+                id: 'reconnaissance',
+                name: 'Reconnaissance',
+                mitreId: 'TA0043',
+                description: 'Gathering information about the target environment',
+                techniques: [],
+                objectives: [
+                    'Identify target systems and services',
+                    'Gather network topology information',
+                    'Collect user and system information'
+                ],
+                successCriteria: [
+                    'Target information successfully gathered',
+                    'Network mapping completed',
+                    'Vulnerability assessment performed'
+                ]
+            },
+            {
+                id: 'initial-access',
+                name: 'Initial Access',
+                mitreId: 'TA0001',
+                description: 'Gaining initial foothold in the target environment',
+                techniques: [],
+                objectives: [
+                    'Establish initial access to target systems',
+                    'Bypass perimeter defenses',
+                    'Execute initial payload'
+                ],
+                successCriteria: [
+                    'Initial access established',
+                    'Payload successfully executed',
+                    'Command and control established'
+                ]
+            },
+            {
+                id: 'execution',
+                name: 'Execution',
+                mitreId: 'TA0002',
+                description: 'Running malicious code on target systems',
+                techniques: [],
+                objectives: [
+                    'Execute malicious code',
+                    'Establish persistence mechanisms',
+                    'Escalate privileges'
+                ],
+                successCriteria: [
+                    'Code execution achieved',
+                    'Persistence established',
+                    'Privilege escalation successful'
+                ]
+            },
+            {
+                id: 'persistence',
+                name: 'Persistence',
+                mitreId: 'TA0003',
+                description: 'Maintaining access across system restarts and disruptions',
+                techniques: [],
+                objectives: [
+                    'Establish multiple persistence mechanisms',
+                    'Survive system reboots and updates',
+                    'Maintain long-term access'
+                ],
+                successCriteria: [
+                    'Multiple persistence methods established',
+                    'Access maintained after system events',
+                    'Stealth maintained'
+                ]
+            },
+            {
+                id: 'privilege-escalation',
+                name: 'Privilege Escalation',
+                mitreId: 'TA0004',
+                description: 'Gaining higher-level permissions on target systems',
+                techniques: [],
+                objectives: [
+                    'Escalate to administrative privileges',
+                    'Bypass user account controls',
+                    'Access protected resources'
+                ],
+                successCriteria: [
+                    'Administrative access achieved',
+                    'Protected resources accessed',
+                    'Privilege escalation undetected'
+                ]
+            },
+            {
+                id: 'defense-evasion',
+                name: 'Defense Evasion',
+                mitreId: 'TA0005',
+                description: 'Avoiding detection by security controls',
+                techniques: [],
+                objectives: [
+                    'Bypass antivirus and EDR solutions',
+                    'Evade network monitoring',
+                    'Hide malicious activity'
+                ],
+                successCriteria: [
+                    'Security controls bypassed',
+                    'Activities remain undetected',
+                    'Forensic evidence minimized'
+                ]
+            },
+            {
+                id: 'credential-access',
+                name: 'Credential Access',
+                mitreId: 'TA0006',
+                description: 'Stealing credentials like account names and passwords',
+                techniques: [],
+                objectives: [
+                    'Extract user credentials',
+                    'Access password stores',
+                    'Capture authentication tokens'
+                ],
+                successCriteria: [
+                    'Credentials successfully extracted',
+                    'Authentication mechanisms compromised',
+                    'Access to additional systems gained'
+                ]
+            },
+            {
+                id: 'discovery',
+                name: 'Discovery',
+                mitreId: 'TA0007',
+                description: 'Learning about the target environment',
+                techniques: [],
+                objectives: [
+                    'Map network topology',
+                    'Identify valuable assets',
+                    'Discover security controls'
+                ],
+                successCriteria: [
+                    'Environment fully mapped',
+                    'Critical assets identified',
+                    'Security controls documented'
+                ]
+            },
+            {
+                id: 'lateral-movement',
+                name: 'Lateral Movement',
+                mitreId: 'TA0008',
+                description: 'Moving through the target environment',
+                techniques: [],
+                objectives: [
+                    'Move between systems',
+                    'Access additional network segments',
+                    'Establish foothold on critical systems'
+                ],
+                successCriteria: [
+                    'Multiple systems compromised',
+                    'Network segments traversed',
+                    'Critical systems accessed'
+                ]
+            },
+            {
+                id: 'collection',
+                name: 'Collection',
+                mitreId: 'TA0009',
+                description: 'Gathering target data of interest',
+                techniques: [],
+                objectives: [
+                    'Identify valuable data',
+                    'Stage data for exfiltration',
+                    'Compress and encrypt collected data'
+                ],
+                successCriteria: [
+                    'Target data identified and collected',
+                    'Data prepared for exfiltration',
+                    'Collection activities undetected'
+                ]
+            },
+            {
+                id: 'exfiltration',
+                name: 'Exfiltration',
+                mitreId: 'TA0010',
+                description: 'Stealing and removing data from the target environment',
+                techniques: [],
+                objectives: [
+                    'Transfer data to external systems',
+                    'Evade data loss prevention',
+                    'Cover exfiltration tracks'
+                ],
+                successCriteria: [
+                    'Data successfully exfiltrated',
+                    'Exfiltration undetected',
+                    'Evidence of theft minimized'
+                ]
+            },
+            {
+                id: 'command-and-control',
+                name: 'Command and Control',
+                mitreId: 'TA0011',
+                description: 'Communicating with compromised systems',
+                techniques: [],
+                objectives: [
+                    'Establish communication channels',
+                    'Maintain remote access',
+                    'Evade network monitoring'
+                ],
+                successCriteria: [
+                    'Reliable C2 channels established',
+                    'Communication encrypted and hidden',
+                    'C2 infrastructure resilient'
+                ]
+            }
+        ];
+    }
+    /**
+     * Initialize APT techniques based on MITRE ATT&CK
+     */
+    initializeTechniques() {
+        return [
+            // Initial Access Techniques
+            {
+                id: 'spearphishing-attachment',
+                name: 'Spearphishing Attachment',
+                mitreId: 'T1566.001',
+                phase: 'initial-access',
+                description: 'Send spearphishing emails with malicious attachments',
+                implementation: [
+                    'Craft convincing email with malicious attachment',
+                    'Use social engineering to encourage opening',
+                    'Execute payload when attachment is opened'
+                ],
+                detectionMethods: [
+                    'Email security gateways',
+                    'Endpoint detection and response',
+                    'User behavior analytics'
+                ],
+                countermeasures: [
+                    'User security awareness training',
+                    'Email filtering and sandboxing',
+                    'Application whitelisting'
+                ],
+                riskLevel: 'high'
+            },
+            {
+                id: 'exploit-public-facing-app',
+                name: 'Exploit Public-Facing Application',
+                mitreId: 'T1190',
+                phase: 'initial-access',
+                description: 'Exploit vulnerabilities in internet-facing systems',
+                implementation: [
+                    'Scan for vulnerable services',
+                    'Exploit known vulnerabilities',
+                    'Establish initial foothold'
+                ],
+                detectionMethods: [
+                    'Web application firewalls',
+                    'Intrusion detection systems',
+                    'Vulnerability scanning'
+                ],
+                countermeasures: [
+                    'Regular patching and updates',
+                    'Web application security testing',
+                    'Network segmentation'
+                ],
+                riskLevel: 'critical'
+            },
+            // Persistence Techniques
+            {
+                id: 'scheduled-task',
+                name: 'Scheduled Task',
+                mitreId: 'T1053.005',
+                phase: 'persistence',
+                description: 'Create scheduled tasks for persistence',
+                implementation: [
+                    'Create scheduled task via schtasks or Task Scheduler',
+                    'Configure task to run with SYSTEM privileges',
+                    'Set trigger conditions for execution'
+                ],
+                detectionMethods: [
+                    'Monitor Task Scheduler events',
+                    'Review scheduled task configurations',
+                    'Check for unusual task actions'
+                ],
+                countermeasures: [
+                    'Monitor scheduled task creation',
+                    'Implement application control',
+                    'Regular system auditing'
+                ],
+                riskLevel: 'high'
+            },
+            {
+                id: 'registry-run-keys',
+                name: 'Registry Run Keys',
+                mitreId: 'T1547.001',
+                phase: 'persistence',
+                description: 'Add entries to registry run keys for persistence',
+                implementation: [
+                    'Modify HKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Run',
+                    'Modify HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Run',
+                    'Use registry keys to launch malicious executables'
+                ],
+                detectionMethods: [
+                    'Monitor registry modifications',
+                    'Review run key entries',
+                    'Check for suspicious executable paths'
+                ],
+                countermeasures: [
+                    'Registry monitoring and auditing',
+                    'Application control policies',
+                    'Regular system reviews'
+                ],
+                riskLevel: 'high'
+            },
+            // Lateral Movement Techniques
+            {
+                id: 'windows-admin-shares',
+                name: 'Windows Admin Shares',
+                mitreId: 'T1021.002',
+                phase: 'lateral-movement',
+                description: 'Use Windows administrative shares for lateral movement',
+                implementation: [
+                    'Access administrative shares (C$, ADMIN$)',
+                    'Copy tools and payloads to remote systems',
+                    'Execute commands remotely'
+                ],
+                detectionMethods: [
+                    'Monitor SMB connections',
+                    'Review share access logs',
+                    'Detect unusual file transfers'
+                ],
+                countermeasures: [
+                    'Restrict administrative share access',
+                    'Network segmentation',
+                    'Monitor SMB traffic'
+                ],
+                riskLevel: 'medium'
+            },
+            // Exfiltration Techniques
+            {
+                id: 'exfiltration-over-c2-channel',
+                name: 'Exfiltration Over C2 Channel',
+                mitreId: 'T1041',
+                phase: 'exfiltration',
+                description: 'Exfiltrate data through existing command and control channels',
+                implementation: [
+                    'Encrypt and compress target data',
+                    'Transfer data through C2 channels',
+                    'Use stealthy transfer methods'
+                ],
+                detectionMethods: [
+                    'Network traffic analysis',
+                    'Data loss prevention systems',
+                    'Anomaly detection'
+                ],
+                countermeasures: [
+                    'Network monitoring and filtering',
+                    'Data classification and protection',
+                    'Outbound traffic inspection'
+                ],
+                riskLevel: 'high'
+            }
+        ];
+    }
+    /**
+     * Get techniques by attack phase
+     */
+    getTechniquesByPhase(phaseId) {
+        return this.techniques.filter(tech => tech.phase === phaseId);
+    }
+    /**
+     * Get all attack phases
+     */
+    getAttackPhases() {
+        return this.attackPhases.map(phase => ({
+            ...phase,
+            techniques: this.getTechniquesByPhase(phase.id)
+        }));
+    }
+    /**
+     * Generate APT simulation scenario
+     */
+    generateScenario(config) {
+        const selectedTechniques = [];
+        // Filter techniques based on configuration
+        this.techniques.forEach(technique => {
+            if (this.shouldIncludeTechnique(technique, config)) {
+                selectedTechniques.push(technique);
+            }
+        });
+        return selectedTechniques;
+    }
+    /**
+     * Determine if technique should be included in simulation
+     */
+    shouldIncludeTechnique(technique, config) {
+        // Filter by scope
+        if (config.simulationScope !== 'full' && technique.phase !== config.simulationScope) {
+            return false;
+        }
+        // Filter by platform
+        if (config.targetPlatform === 'windows' && technique.id.includes('linux')) {
+            return false;
+        }
+        if (config.targetPlatform === 'linux' && technique.id.includes('windows')) {
+            return false;
+        }
+        // Filter by complexity
+        if (config.complexity === 'basic' && technique.riskLevel === 'critical') {
+            return false;
+        }
+        return true;
+    }
+    /**
+     * Simulate APT attack campaign
+     */
+    async simulateAttack(config) {
+        const simulationId = this.generateSimulationId();
+        const selectedTechniques = this.generateScenario(config);
+        const detectionEvents = [];
+        const evidence = [];
+        console.log(`Starting APT Simulation: ${simulationId}`);
+        console.log(`Target Platform: ${config.targetPlatform}`);
+        console.log(`Simulation Scope);
+    }
+}
+//# sourceMappingURL=apt-simulation-engine.js.map

package/dist/security/apt-simulation-engine.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"apt-simulation-engine.js","sourceRoot":"","sources":["../../src/security/apt-simulation-engine.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AA4DH;;GAEG;AACH,MAAM,OAAO,mBAAmB;IACtB,YAAY,CAAmB;IAC/B,UAAU,CAAiB;IAEnC;QACE,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC,sBAAsB,EAAE,CAAC;QAClD,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,oBAAoB,EAAE,CAAC;IAChD,CAAC;IAED;;OAEG;IACK,sBAAsB;QAC5B,OAAO;YACL;gBACE,EAAE,EAAE,gBAAgB;gBACpB,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,oDAAoD;gBACjE,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,sCAAsC;oBACtC,qCAAqC;oBACrC,qCAAqC;iBACtC;gBACD,eAAe,EAAE;oBACf,0CAA0C;oBAC1C,2BAA2B;oBAC3B,oCAAoC;iBACrC;aACF;YACD;gBACE,EAAE,EAAE,gBAAgB;gBACpB,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,oDAAoD;gBACjE,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,4CAA4C;oBAC5C,2BAA2B;oBAC3B,yBAAyB;iBAC1B;gBACD,eAAe,EAAE;oBACf,4BAA4B;oBAC5B,+BAA+B;oBAC/B,iCAAiC;iBAClC;aACF;YACD;gBACE,EAAE,EAAE,WAAW;gBACf,IAAI,EAAE,WAAW;gBACjB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,0CAA0C;gBACvD,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,wBAAwB;oBACxB,kCAAkC;oBAClC,qBAAqB;iBACtB;gBACD,eAAe,EAAE;oBACf,yBAAyB;oBACzB,yBAAyB;oBACzB,iCAAiC;iBAClC;aACF;YACD;gBACE,EAAE,EAAE,aAAa;gBACjB,IAAI,EAAE,aAAa;gBACnB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,2DAA2D;gBACxE,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,2CAA2C;oBAC3C,oCAAoC;oBACpC,2BAA2B;iBAC5B;gBACD,eAAe,EAAE;oBACf,0CAA0C;oBAC1C,uCAAuC;oBACvC,oBAAoB;iBACrB;aACF;YACD;gBACE,EAAE,EAAE,sBAAsB;gBAC1B,IAAI,EAAE,sBAAsB;gBAC5B,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,oDAAoD;gBACjE,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,uCAAuC;oBACvC,8BAA8B;oBAC9B,4BAA4B;iBAC7B;gBACD,eAAe,EAAE;oBACf,gCAAgC;oBAChC,8BAA8B;oBAC9B,iCAAiC;iBAClC;aACF;YACD;gBACE,EAAE,EAAE,iBAAiB;gBACrB,IAAI,EAAE,iBAAiB;gBACvB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,yCAAyC;gBACtD,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,oCAAoC;oBACpC,0BAA0B;oBAC1B,yBAAyB;iBAC1B;gBACD,eAAe,EAAE;oBACf,4BAA4B;oBAC5B,8BAA8B;oBAC9B,6BAA6B;iBAC9B;aACF;YACD;gBACE,EAAE,EAAE,mBAAmB;gBACvB,IAAI,EAAE,mBAAmB;gBACzB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,uDAAuD;gBACpE,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,0BAA0B;oBAC1B,wBAAwB;oBACxB,+BAA+B;iBAChC;gBACD,eAAe,EAAE;oBACf,oCAAoC;oBACpC,uCAAuC;oBACvC,qCAAqC;iBACtC;aACF;YACD;gBACE,EAAE,EAAE,WAAW;gBACf,IAAI,EAAE,WAAW;gBACjB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,uCAAuC;gBACpD,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,sBAAsB;oBACtB,0BAA0B;oBAC1B,4BAA4B;iBAC7B;gBACD,eAAe,EAAE;oBACf,0BAA0B;oBAC1B,4BAA4B;oBAC5B,8BAA8B;iBAC/B;aACF;YACD;gBACE,EAAE,EAAE,kBAAkB;gBACtB,IAAI,EAAE,kBAAkB;gBACxB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,uCAAuC;gBACpD,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,sBAAsB;oBACtB,oCAAoC;oBACpC,wCAAwC;iBACzC;gBACD,eAAe,EAAE;oBACf,8BAA8B;oBAC9B,4BAA4B;oBAC5B,2BAA2B;iBAC5B;aACF;YACD;gBACE,EAAE,EAAE,YAAY;gBAChB,IAAI,EAAE,YAAY;gBAClB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,mCAAmC;gBAChD,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,wBAAwB;oBACxB,6BAA6B;oBAC7B,qCAAqC;iBACtC;gBACD,eAAe,EAAE;oBACf,sCAAsC;oBACtC,gCAAgC;oBAChC,kCAAkC;iBACnC;aACF;YACD;gBACE,EAAE,EAAE,cAAc;gBAClB,IAAI,EAAE,cAAc;gBACpB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,wDAAwD;gBACrE,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,mCAAmC;oBACnC,4BAA4B;oBAC5B,2BAA2B;iBAC5B;gBACD,eAAe,EAAE;oBACf,+BAA+B;oBAC/B,yBAAyB;oBACzB,6BAA6B;iBAC9B;aACF;YACD;gBACE,EAAE,EAAE,qBAAqB;gBACzB,IAAI,EAAE,qBAAqB;gBAC3B,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,wCAAwC;gBACrD,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,kCAAkC;oBAClC,wBAAwB;oBACxB,0BAA0B;iBAC3B;gBACD,eAAe,EAAE;oBACf,kCAAkC;oBAClC,oCAAoC;oBACpC,6BAA6B;iBAC9B;aACF;SACF,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,oBAAoB;QAC1B,OAAO;YACL,4BAA4B;YAC5B;gBACE,EAAE,EAAE,0BAA0B;gBAC9B,IAAI,EAAE,0BAA0B;gBAChC,OAAO,EAAE,WAAW;gBACpB,KAAK,EAAE,gBAAgB;gBACvB,WAAW,EAAE,sDAAsD;gBACnE,cAAc,EAAE;oBACd,kDAAkD;oBAClD,6CAA6C;oBAC7C,2CAA2C;iBAC5C;gBACD,gBAAgB,EAAE;oBAChB,yBAAyB;oBACzB,iCAAiC;oBACjC,yBAAyB;iBAC1B;gBACD,eAAe,EAAE;oBACf,kCAAkC;oBAClC,gCAAgC;oBAChC,0BAA0B;iBAC3B;gBACD,SAAS,EAAE,MAAM;aAClB;YACD;gBACE,EAAE,EAAE,2BAA2B;gBAC/B,IAAI,EAAE,mCAAmC;gBACzC,OAAO,EAAE,OAAO;gBAChB,KAAK,EAAE,gBAAgB;gBACvB,WAAW,EAAE,oDAAoD;gBACjE,cAAc,EAAE;oBACd,8BAA8B;oBAC9B,+BAA+B;oBAC/B,4BAA4B;iBAC7B;gBACD,gBAAgB,EAAE;oBAChB,2BAA2B;oBAC3B,6BAA6B;oBAC7B,wBAAwB;iBACzB;gBACD,eAAe,EAAE;oBACf,8BAA8B;oBAC9B,kCAAkC;oBAClC,sBAAsB;iBACvB;gBACD,SAAS,EAAE,UAAU;aACtB;YAED,yBAAyB;YACzB;gBACE,EAAE,EAAE,gBAAgB;gBACpB,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,WAAW;gBACpB,KAAK,EAAE,aAAa;gBACpB,WAAW,EAAE,wCAAwC;gBACrD,cAAc,EAAE;oBACd,sDAAsD;oBACtD,8CAA8C;oBAC9C,sCAAsC;iBACvC;gBACD,gBAAgB,EAAE;oBAChB,+BAA+B;oBAC/B,sCAAsC;oBACtC,gCAAgC;iBACjC;gBACD,eAAe,EAAE;oBACf,iCAAiC;oBACjC,+BAA+B;oBAC/B,yBAAyB;iBAC1B;gBACD,SAAS,EAAE,MAAM;aAClB;YACD;gBACE,EAAE,EAAE,mBAAmB;gBACvB,IAAI,EAAE,mBAAmB;gBACzB,OAAO,EAAE,WAAW;gBACpB,KAAK,EAAE,aAAa;gBACpB,WAAW,EAAE,kDAAkD;gBAC/D,cAAc,EAAE;oBACd,6EAA6E;oBAC7E,8EAA8E;oBAC9E,mDAAmD;iBACpD;gBACD,gBAAgB,EAAE;oBAChB,gCAAgC;oBAChC,wBAAwB;oBACxB,uCAAuC;iBACxC;gBACD,eAAe,EAAE;oBACf,kCAAkC;oBAClC,8BAA8B;oBAC9B,wBAAwB;iBACzB;gBACD,SAAS,EAAE,MAAM;aAClB;YAED,8BAA8B;YAC9B;gBACE,EAAE,EAAE,sBAAsB;gBAC1B,IAAI,EAAE,sBAAsB;gBAC5B,OAAO,EAAE,WAAW;gBACpB,KAAK,EAAE,kBAAkB;gBACzB,WAAW,EAAE,wDAAwD;gBACrE,cAAc,EAAE;oBACd,2CAA2C;oBAC3C,2CAA2C;oBAC3C,2BAA2B;iBAC5B;gBACD,gBAAgB,EAAE;oBAChB,yBAAyB;oBACzB,0BAA0B;oBAC1B,+BAA+B;iBAChC;gBACD,eAAe,EAAE;oBACf,sCAAsC;oBACtC,sBAAsB;oBACtB,qBAAqB;iBACtB;gBACD,SAAS,EAAE,QAAQ;aACpB;YAED,0BAA0B;YAC1B;gBACE,EAAE,EAAE,8BAA8B;gBAClC,IAAI,EAAE,8BAA8B;gBACpC,OAAO,EAAE,OAAO;gBAChB,KAAK,EAAE,cAAc;gBACrB,WAAW,EAAE,+DAA+D;gBAC5E,cAAc,EAAE;oBACd,kCAAkC;oBAClC,mCAAmC;oBACnC,+BAA+B;iBAChC;gBACD,gBAAgB,EAAE;oBAChB,0BAA0B;oBAC1B,8BAA8B;oBAC9B,mBAAmB;iBACpB;gBACD,eAAe,EAAE;oBACf,kCAAkC;oBAClC,oCAAoC;oBACpC,6BAA6B;iBAC9B;gBACD,SAAS,EAAE,MAAM;aAClB;SACF,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,oBAAoB,CAAC,OAAe;QAClC,OAAO,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,KAAK,KAAK,OAAO,CAAC,CAAC;IAChE,CAAC;IAED;;OAEG;IACH,eAAe;QACb,OAAO,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YACrC,GAAG,KAAK;YACR,UAAU,EAAE,IAAI,CAAC,oBAAoB,CAAC,KAAK,CAAC,EAAE,CAAC;SAChD,CAAC,CAAC,CAAC;IACN,CAAC;IAED;;OAEG;IACH,gBAAgB,CAAC,MAA2B;QAC1C,MAAM,kBAAkB,GAAmB,EAAE,CAAC;QAE9C,2CAA2C;QAC3C,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE;YAClC,IAAI,IAAI,CAAC,sBAAsB,CAAC,SAAS,EAAE,MAAM,CAAC,EAAE,CAAC;gBACnD,kBAAkB,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YACrC,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,OAAO,kBAAkB,CAAC;IAC5B,CAAC;IAED;;OAEG;IACK,sBAAsB,CAAC,SAAuB,EAAE,MAA2B;QACjF,kBAAkB;QAClB,IAAI,MAAM,CAAC,eAAe,KAAK,MAAM,IAAI,SAAS,CAAC,KAAK,KAAK,MAAM,CAAC,eAAe,EAAE,CAAC;YACpF,OAAO,KAAK,CAAC;QACf,CAAC;QAED,qBAAqB;QACrB,IAAI,MAAM,CAAC,cAAc,KAAK,SAAS,IAAI,SAAS,CAAC,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YAC1E,OAAO,KAAK,CAAC;QACf,CAAC;QACD,IAAI,MAAM,CAAC,cAAc,KAAK,OAAO,IAAI,SAAS,CAAC,EAAE,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;YAC1E,OAAO,KAAK,CAAC;QACf,CAAC;QAED,uBAAuB;QACvB,IAAI,MAAM,CAAC,UAAU,KAAK,OAAO,IAAI,SAAS,CAAC,SAAS,KAAK,UAAU,EAAE,CAAC;YACxE,OAAO,KAAK,CAAC;QACf,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,cAAc,CAAC,MAA2B;QAC9C,MAAM,YAAY,GAAG,IAAI,CAAC,oBAAoB,EAAE,CAAC;QACjD,MAAM,kBAAkB,GAAG,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC;QACzD,MAAM,eAAe,GAAqB,EAAE,CAAC;QAC7C,MAAM,QAAQ,GAAyB,EAAE,CAAC;QAE1C,OAAO,CAAC,GAAG,CAAC,4BAA4B,YAAY,EAAE,CAAC,CAAC;QACxD,OAAO,CAAC,GAAG,CAAC,oBAAoB,MAAM,CAAC,cAAc,EAAE,CAAC,CAAC;QACzD,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAA,CAAA;IAAA,CAAC,AAAD;CAAA"}

package/dist/security/assessment/vulnerabilityAssessment.d.ts ADDED Viewed

@@ -0,0 +1,104 @@
+/**
+ * Vulnerability Assessment Engine
+ *
+ * Provides vulnerability scanning and risk assessment capabilities
+ * for authorized security research and testing.
+ *
+ * LEGAL NOTICE:
+ * For authorized security research, penetration testing, and red team exercises only.
+ */
+export interface VulnerabilityScanRequest {
+    targetType: 'web_application' | 'api' | 'infrastructure' | 'cloud' | 'container';
+    targetUrl: string;
+    scanDepth: 'quick' | 'standard' | 'deep';
+}
+export interface VulnerabilityScanResult {
+    targetType: string;
+    targetUrl: string;
+    scanDepth: string;
+    scanDate: string;
+    vulnerabilities: Vulnerability[];
+    summary: {
+        totalVulnerabilities: number;
+        criticalCount: number;
+        highCount: number;
+        mediumCount: number;
+        lowCount: number;
+        riskScore: number;
+    };
+}
+export interface Vulnerability {
+    id: string;
+    name: string;
+    severity: 'critical' | 'high' | 'medium' | 'low' | 'info';
+    category: string;
+    description: string;
+    impact: string;
+    remediation: string;
+    cvssScore?: number;
+    references?: string[];
+}
+export interface RiskAssessmentRequest {
+    findings: string[];
+    context: string;
+}
+export interface RiskAssessmentResult {
+    findings: string[];
+    context: string;
+    riskScore: number;
+    riskLevel: 'critical' | 'high' | 'medium' | 'low';
+    recommendations: string[];
+    priorityActions: string[];
+}
+/**
+ * Vulnerability Assessment Engine
+ */
+export declare class VulnerabilityAssessmentEngine {
+    private vulnerabilityDatabase;
+    constructor();
+    /**
+     * Scan for vulnerabilities
+     */
+    scanVulnerabilities(request: VulnerabilityScanRequest): Promise<VulnerabilityScanResult>;
+    /**
+     * Assess security risks
+     */
+    assessRisk(request: RiskAssessmentRequest): Promise<RiskAssessmentResult>;
+    /**
+     * Get vulnerability by ID
+     */
+    getVulnerability(vulnerabilityId: string): Vulnerability | undefined;
+    /**
+     * List all vulnerabilities
+     */
+    listVulnerabilities(): Vulnerability[];
+    /**
+     * Generate simulated vulnerabilities for demonstration
+     */
+    private generateSimulatedVulnerabilities;
+    /**
+     * Calculate vulnerability summary
+     */
+    private calculateVulnerabilitySummary;
+    /**
+     * Calculate risk score
+     */
+    private calculateRiskScore;
+    /**
+     * Determine risk level
+     */
+    private determineRiskLevel;
+    /**
+     * Generate risk recommendations
+     */
+    private generateRiskRecommendations;
+    /**
+     * Generate priority actions
+     */
+    private generatePriorityActions;
+    /**
+     * Initialize vulnerability database
+     */
+    private initializeVulnerabilityDatabase;
+}
+//# sourceMappingURL=vulnerabilityAssessment.d.ts.map

package/dist/security/assessment/vulnerabilityAssessment.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"vulnerabilityAssessment.d.ts","sourceRoot":"","sources":["../../../src/security/assessment/vulnerabilityAssessment.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,MAAM,WAAW,wBAAwB;IACvC,UAAU,EAAE,iBAAiB,GAAG,KAAK,GAAG,gBAAgB,GAAG,OAAO,GAAG,WAAW,CAAC;IACjF,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,OAAO,GAAG,UAAU,GAAG,MAAM,CAAC;CAC1C;AAED,MAAM,WAAW,uBAAuB;IACtC,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;IACjB,eAAe,EAAE,aAAa,EAAE,CAAC;IACjC,OAAO,EAAE;QACP,oBAAoB,EAAE,MAAM,CAAC;QAC7B,aAAa,EAAE,MAAM,CAAC;QACtB,SAAS,EAAE,MAAM,CAAC;QAClB,WAAW,EAAE,MAAM,CAAC;QACpB,QAAQ,EAAE,MAAM,CAAC;QACjB,SAAS,EAAE,MAAM,CAAC;KACnB,CAAC;CACH;AAED,MAAM,WAAW,aAAa;IAC5B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;IAC1D,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;CACvB;AAED,MAAM,WAAW,qBAAqB;IACpC,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,oBAAoB;IACnC,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;IAClD,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,eAAe,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED;;GAEG;AACH,qBAAa,6BAA6B;IACxC,OAAO,CAAC,qBAAqB,CAA6B;;IAO1D;;OAEG;IACG,mBAAmB,CAAC,OAAO,EAAE,wBAAwB,GAAG,OAAO,CAAC,uBAAuB,CAAC;IAiB9F;;OAEG;IACG,UAAU,CAAC,OAAO,EAAE,qBAAqB,GAAG,OAAO,CAAC,oBAAoB,CAAC;IAgB/E;;OAEG;IACH,gBAAgB,CAAC,eAAe,EAAE,MAAM,GAAG,aAAa,GAAG,SAAS;IAIpE;;OAEG;IACH,mBAAmB,IAAI,aAAa,EAAE;IAItC;;OAEG;IACH,OAAO,CAAC,gCAAgC;IAuFxC;;OAEG;IACH,OAAO,CAAC,6BAA6B;IAwDrC;;OAEG;IACH,OAAO,CAAC,kBAAkB;IA0C1B;;OAEG;IACH,OAAO,CAAC,kBAAkB;IAO1B;;OAEG;IACH,OAAO,CAAC,2BAA2B;IA0BnC;;OAEG;IACH,OAAO,CAAC,uBAAuB;IAqC/B;;OAEG;IACH,OAAO,CAAC,+BAA+B;CA8BxC"}