erosolar-cli 1.5.3 → 1.5.4

package/dist/security/research/persistenceResearch.js

@@ -0,0 +1,282 @@
+/**
+ * Persistence Research Engine
+ *
+ * Comprehensive analysis of persistence mechanisms across different platforms
+ * for legitimate security research and testing.
+ *
+ * This engine provides:
+ * - Multi-platform persistence technique analysis
+ * - Stealth and complexity assessment
+ * - Detection method generation
+ * - Countermeasure recommendations
+ *
+ * LEGAL NOTICE:
+ * For authorized security research, penetration testing, and red team exercises only.
+ */
+/**
+ * Persistence Research Engine
+ */
+export class PersistenceResearchEngine {
+    techniques;
+    constructor() {
+        this.techniques = new Map();
+        this.initializeTechniques();
+    }
+    /**
+     * Analyze persistence techniques for a specific platform
+     */
+    async analyzePersistence(request) {
+        const filteredTechniques = Array.from(this.techniques.values())
+            .filter(tech => tech.platform === request.platform || request.platform === 'multi-platform')
+            .filter(tech => tech.stealth >= (request.stealthLevel || 1));
+        const averageStealth = filteredTechniques.length > 0
+            ? filteredTechniques.reduce((sum, tech) => sum + tech.stealth, 0) / filteredTechniques.length
+            : 0;
+        const riskLevel = this.calculateRiskLevel(filteredTechniques);
+        return {
+            platform: request.platform,
+            stealthLevel: request.stealthLevel || 1,
+            includeDetection: request.includeDetection || false,
+            techniques: filteredTechniques,
+            summary: {
+                totalTechniques: filteredTechniques.length,
+                averageStealth,
+                riskLevel
+            }
+        };
+    }
+    /**
+     * Generate detection methods for a specific persistence technique
+     */
+    async generateDetectionMethods(request) {
+        const technique = this.techniques.get(request.techniqueId);
+        if (!technique) {
+            throw new Error(`Persistence technique not found: ${request.techniqueId}`);
+        }
+        return {
+            techniqueId: request.techniqueId,
+            platform: request.platform,
+            detectionMethods: technique.detectionMethods,
+            indicators: technique.indicators,
+            monitoringRecommendations: this.generateMonitoringRecommendations(technique)
+        };
+    }
+    /**
+     * Get all available platforms
+     */
+    getAvailablePlatforms() {
+        const platforms = new Set();
+        for (const technique of this.techniques.values()) {
+            platforms.add(technique.platform);
+        }
+        return Array.from(platforms);
+    }
+    /**
+     * Get technique by ID
+     */
+    getTechnique(techniqueId) {
+        return this.techniques.get(techniqueId);
+    }
+    /**
+     * Calculate risk level based on techniques
+     */
+    calculateRiskLevel(techniques) {
+        if (techniques.length === 0)
+            return 'low';
+        const highRiskCount = techniques.filter(t => t.stealth >= 4 || t.detectionDifficulty === 'very-hard').length;
+        const riskRatio = highRiskCount / techniques.length;
+        if (riskRatio >= 0.5)
+            return 'high';
+        if (riskRatio >= 0.2)
+            return 'medium';
+        return 'low';
+    }
+    /**
+     * Generate monitoring recommendations
+     */
+    generateMonitoringRecommendations(technique) {
+        const recommendations = [];
+        if (technique.platform.includes('windows')) {
+            recommendations.push('Enable Windows Event Log monitoring', 'Monitor registry changes', 'Track service creation and modifications');
+        }
+        if (technique.platform.includes('aws') || technique.platform.includes('azure') || technique.platform.includes('gcp')) {
+            recommendations.push('Enable cloud audit logging', 'Monitor IAM role and policy changes', 'Track API key creation and usage');
+        }
+        if (technique.platform.includes('kubernetes') || technique.platform.includes('docker')) {
+            recommendations.push('Monitor container deployments', 'Track image registry changes', 'Audit cluster configuration modifications');
+        }
+        recommendations.push('Implement behavioral analytics', 'Enable real-time alerting', 'Conduct regular security assessments');
+        return recommendations;
+    }
+    /**
+     * Initialize persistence techniques database
+     */
+    initializeTechniques() {
+        // Windows persistence techniques
+        this.addTechnique({
+            id: 'win-registry-run',
+            name: 'Registry Run Keys',
+            platform: 'windows',
+            stealth: 3,
+            complexity: 'medium',
+            detectionDifficulty: 'medium',
+            mitreIds: ['T1547.001'],
+            description: 'Malware adds entries to registry run keys to execute on system startup',
+            implementation: [
+                'Add entry to HKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Run',
+                'Add entry to HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Run',
+                'Use registry run once keys for single execution'
+            ],
+            detectionMethods: [
+                'Monitor registry changes in run keys',
+                'Check for suspicious executable paths',
+                'Analyze registry modification events'
+            ],
+            countermeasures: [
+                'Remove suspicious registry entries',
+                'Implement application whitelisting',
+                'Monitor registry modifications'
+            ],
+            indicators: [
+                'Unexpected registry modifications',
+                'Suspicious executable paths in run keys',
+                'Registry modification events from unusual processes'
+            ],
+            tools: ['Regedit', 'Autoruns', 'Sysinternals Suite']
+        });
+        this.addTechnique({
+            id: 'win-scheduled-tasks',
+            name: 'Scheduled Tasks',
+            platform: 'windows',
+            stealth: 2,
+            complexity: 'low',
+            detectionDifficulty: 'easy',
+            mitreIds: ['T1053.005'],
+            description: 'Creates scheduled tasks to execute malicious code at specific times or events',
+            implementation: [
+                'Create scheduled task using schtasks command',
+                'Use Task Scheduler GUI',
+                'Create tasks with specific triggers and actions'
+            ],
+            detectionMethods: [
+                'Review scheduled tasks using schtasks',
+                'Monitor Task Scheduler service events',
+                'Check for tasks with suspicious actions'
+            ],
+            countermeasures: [
+                'Delete malicious scheduled tasks',
+                'Monitor Task Scheduler service',
+                'Implement application whitelisting'
+            ],
+            indicators: [
+                'New scheduled task creations',
+                'Tasks with suspicious executable paths',
+                'Unusual task triggers or actions'
+            ],
+            tools: ['Schtasks', 'Task Scheduler', 'PowerShell']
+        });
+        // Cloud persistence techniques
+        this.addTechnique({
+            id: 'aws-iam-backdoor',
+            name: 'AWS IAM Role Backdoor',
+            platform: 'aws',
+            stealth: 4,
+            complexity: 'high',
+            detectionDifficulty: 'hard',
+            mitreIds: ['T1078.004'],
+            description: 'Creates or modifies IAM roles with external entity trust for persistence',
+            implementation: [
+                'Create IAM role with external IDP trust',
+                'Modify existing role trust policy',
+                'Add cross-account access with broad permissions'
+            ],
+            detectionMethods: [
+                'Monitor CloudTrail for role modifications',
+                'Analyze IAM role trust policies',
+                'Check for external entity trusts'
+            ],
+            countermeasures: [
+                'Implement least privilege for IAM roles',
+                'Monitor for external trust modifications',
+                'Use AWS Organizations SCPs'
+            ],
+            indicators: [
+                'IAM role policy modifications',
+                'New external identity provider trusts',
+                'Cross-account role assumptions'
+            ],
+            tools: ['AWS CLI', 'Pacu', 'CloudSploit']
+        });
+        this.addTechnique({
+            id: 'azure-app-backdoor',
+            name: 'Azure AD Application Backdoor',
+            platform: 'azure',
+            stealth: 4,
+            complexity: 'medium',
+            detectionDifficulty: 'hard',
+            mitreIds: ['T1098.001'],
+            description: 'Registers malicious Azure AD application with high privilege permissions',
+            implementation: [
+                'Register new Azure AD application',
+                'Grant high privilege permissions',
+                'Create application secret or certificate'
+            ],
+            detectionMethods: [
+                'Monitor Azure AD audit logs for app registrations',
+                'Check for applications with high privilege permissions',
+                'Analyze application consent grants'
+            ],
+            countermeasures: [
+                'Implement application governance policies',
+                'Require admin consent for high privilege apps',
+                'Regular review of registered applications'
+            ],
+            indicators: [
+                'New application registrations with high privileges',
+                'Application consent grants',
+                'Application secret/certificate creation'
+            ],
+            tools: ['Azure PowerShell', 'Microsoft Graph API', 'Stormspotter']
+        });
+        // Container persistence techniques
+        this.addTechnique({
+            id: 'k8s-daemonset',
+            name: 'Kubernetes Malicious DaemonSet',
+            platform: 'kubernetes',
+            stealth: 4,
+            complexity: 'high',
+            detectionDifficulty: 'hard',
+            mitreIds: ['T1053.003'],
+            description: 'Deploys malicious DaemonSet that runs on every cluster node',
+            implementation: [
+                'Create DaemonSet with privileged container',
+                'Mount host directories for persistence',
+                'Use sidecar containers for covert communication'
+            ],
+            detectionMethods: [
+                'Monitor for DaemonSet creations/modifications',
+                'Check for privileged container deployments',
+                'Analyze container security contexts'
+            ],
+            countermeasures: [
+                'Implement Pod Security Standards',
+                'Use admission controllers (OPA Gatekeeper)',
+                'Monitor for privileged container deployments'
+            ],
+            indicators: [
+                'New DaemonSet deployments',
+                'Containers with privileged security context',
+                'Host path mounts in containers'
+            ],
+            tools: ['kubectl', 'kubeaudit', 'kube-hunter']
+        });
+        // Add more techniques as needed...
+    }
+    /**
+     * Add technique to database
+     */
+    addTechnique(technique) {
+        this.techniques.set(technique.id, technique);
+    }
+}
+//# sourceMappingURL=persistenceResearch.js.map

package/dist/security/research/persistenceResearch.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"persistenceResearch.js","sourceRoot":"","sources":["../../../src/security/research/persistenceResearch.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAiDH;;GAEG;AACH,MAAM,OAAO,yBAAyB;IAC5B,UAAU,CAAoC;IAEtD;QACE,IAAI,CAAC,UAAU,GAAG,IAAI,GAAG,EAAE,CAAC;QAC5B,IAAI,CAAC,oBAAoB,EAAE,CAAC;IAC9B,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,kBAAkB,CAAC,OAAmC;QAC1D,MAAM,kBAAkB,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;aAC5D,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,QAAQ,KAAK,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,QAAQ,KAAK,gBAAgB,CAAC;aAC3F,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,OAAO,IAAI,CAAC,OAAO,CAAC,YAAY,IAAI,CAAC,CAAC,CAAC,CAAC;QAE/D,MAAM,cAAc,GAAG,kBAAkB,CAAC,MAAM,GAAG,CAAC;YAClD,CAAC,CAAC,kBAAkB,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,IAAI,EAAE,EAAE,CAAC,GAAG,GAAG,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC,GAAG,kBAAkB,CAAC,MAAM;YAC7F,CAAC,CAAC,CAAC,CAAC;QAEN,MAAM,SAAS,GAAG,IAAI,CAAC,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;QAE9D,OAAO;YACL,QAAQ,EAAE,OAAO,CAAC,QAAQ;YAC1B,YAAY,EAAE,OAAO,CAAC,YAAY,IAAI,CAAC;YACvC,gBAAgB,EAAE,OAAO,CAAC,gBAAgB,IAAI,KAAK;YACnD,UAAU,EAAE,kBAAkB;YAC9B,OAAO,EAAE;gBACP,eAAe,EAAE,kBAAkB,CAAC,MAAM;gBAC1C,cAAc;gBACd,SAAS;aACV;SACF,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,wBAAwB,CAAC,OAAmC;QAChE,MAAM,SAAS,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;QAE3D,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CAAC,oCAAoC,OAAO,CAAC,WAAW,EAAE,CAAC,CAAC;QAC7E,CAAC;QAED,OAAO;YACL,WAAW,EAAE,OAAO,CAAC,WAAW;YAChC,QAAQ,EAAE,OAAO,CAAC,QAAQ;YAC1B,gBAAgB,EAAE,SAAS,CAAC,gBAAgB;YAC5C,UAAU,EAAE,SAAS,CAAC,UAAU;YAChC,yBAAyB,EAAE,IAAI,CAAC,iCAAiC,CAAC,SAAS,CAAC;SAC7E,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,qBAAqB;QACnB,MAAM,SAAS,GAAG,IAAI,GAAG,EAAU,CAAC;QACpC,KAAK,MAAM,SAAS,IAAI,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,EAAE,CAAC;YACjD,SAAS,CAAC,GAAG,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAC/B,CAAC;IAED;;OAEG;IACH,YAAY,CAAC,WAAmB;QAC9B,OAAO,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IAC1C,CAAC;IAED;;OAEG;IACK,kBAAkB,CAAC,UAAkC;QAC3D,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,KAAK,CAAC;QAE1C,MAAM,aAAa,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAC1C,CAAC,CAAC,OAAO,IAAI,CAAC,IAAI,CAAC,CAAC,mBAAmB,KAAK,WAAW,CACxD,CAAC,MAAM,CAAC;QAET,MAAM,SAAS,GAAG,aAAa,GAAG,UAAU,CAAC,MAAM,CAAC;QAEpD,IAAI,SAAS,IAAI,GAAG;YAAE,OAAO,MAAM,CAAC;QACpC,IAAI,SAAS,IAAI,GAAG;YAAE,OAAO,QAAQ,CAAC;QACtC,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;OAEG;IACK,iCAAiC,CAAC,SAA+B;QACvE,MAAM,eAAe,GAAa,EAAE,CAAC;QAErC,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;YAC3C,eAAe,CAAC,IAAI,CAClB,qCAAqC,EACrC,0BAA0B,EAC1B,0CAA0C,CAC3C,CAAC;QACJ,CAAC;QAED,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;YACrH,eAAe,CAAC,IAAI,CAClB,4BAA4B,EAC5B,qCAAqC,EACrC,kCAAkC,CACnC,CAAC;QACJ,CAAC;QAED,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;YACvF,eAAe,CAAC,IAAI,CAClB,+BAA+B,EAC/B,8BAA8B,EAC9B,2CAA2C,CAC5C,CAAC;QACJ,CAAC;QAED,eAAe,CAAC,IAAI,CAClB,gCAAgC,EAChC,2BAA2B,EAC3B,sCAAsC,CACvC,CAAC;QAEF,OAAO,eAAe,CAAC;IACzB,CAAC;IAED;;OAEG;IACK,oBAAoB;QAC1B,iCAAiC;QACjC,IAAI,CAAC,YAAY,CAAC;YAChB,EAAE,EAAE,kBAAkB;YACtB,IAAI,EAAE,mBAAmB;YACzB,QAAQ,EAAE,SAAS;YACnB,OAAO,EAAE,CAAC;YACV,UAAU,EAAE,QAAQ;YACpB,mBAAmB,EAAE,QAAQ;YAC7B,QAAQ,EAAE,CAAC,WAAW,CAAC;YACvB,WAAW,EAAE,wEAAwE;YACrF,cAAc,EAAE;gBACd,mFAAmF;gBACnF,oFAAoF;gBACpF,iDAAiD;aAClD;YACD,gBAAgB,EAAE;gBAChB,sCAAsC;gBACtC,uCAAuC;gBACvC,sCAAsC;aACvC;YACD,eAAe,EAAE;gBACf,oCAAoC;gBACpC,oCAAoC;gBACpC,gCAAgC;aACjC;YACD,UAAU,EAAE;gBACV,mCAAmC;gBACnC,yCAAyC;gBACzC,qDAAqD;aACtD;YACD,KAAK,EAAE,CAAC,SAAS,EAAE,UAAU,EAAE,oBAAoB,CAAC;SACrD,CAAC,CAAC;QAEH,IAAI,CAAC,YAAY,CAAC;YAChB,EAAE,EAAE,qBAAqB;YACzB,IAAI,EAAE,iBAAiB;YACvB,QAAQ,EAAE,SAAS;YACnB,OAAO,EAAE,CAAC;YACV,UAAU,EAAE,KAAK;YACjB,mBAAmB,EAAE,MAAM;YAC3B,QAAQ,EAAE,CAAC,WAAW,CAAC;YACvB,WAAW,EAAE,+EAA+E;YAC5F,cAAc,EAAE;gBACd,8CAA8C;gBAC9C,wBAAwB;gBACxB,iDAAiD;aAClD;YACD,gBAAgB,EAAE;gBAChB,uCAAuC;gBACvC,uCAAuC;gBACvC,yCAAyC;aAC1C;YACD,eAAe,EAAE;gBACf,kCAAkC;gBAClC,gCAAgC;gBAChC,oCAAoC;aACrC;YACD,UAAU,EAAE;gBACV,8BAA8B;gBAC9B,wCAAwC;gBACxC,kCAAkC;aACnC;YACD,KAAK,EAAE,CAAC,UAAU,EAAE,gBAAgB,EAAE,YAAY,CAAC;SACpD,CAAC,CAAC;QAEH,+BAA+B;QAC/B,IAAI,CAAC,YAAY,CAAC;YAChB,EAAE,EAAE,kBAAkB;YACtB,IAAI,EAAE,uBAAuB;YAC7B,QAAQ,EAAE,KAAK;YACf,OAAO,EAAE,CAAC;YACV,UAAU,EAAE,MAAM;YAClB,mBAAmB,EAAE,MAAM;YAC3B,QAAQ,EAAE,CAAC,WAAW,CAAC;YACvB,WAAW,EAAE,0EAA0E;YACvF,cAAc,EAAE;gBACd,yCAAyC;gBACzC,mCAAmC;gBACnC,iDAAiD;aAClD;YACD,gBAAgB,EAAE;gBAChB,2CAA2C;gBAC3C,iCAAiC;gBACjC,kCAAkC;aACnC;YACD,eAAe,EAAE;gBACf,yCAAyC;gBACzC,0CAA0C;gBAC1C,4BAA4B;aAC7B;YACD,UAAU,EAAE;gBACV,+BAA+B;gBAC/B,uCAAuC;gBACvC,gCAAgC;aACjC;YACD,KAAK,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,aAAa,CAAC;SAC1C,CAAC,CAAC;QAEH,IAAI,CAAC,YAAY,CAAC;YAChB,EAAE,EAAE,oBAAoB;YACxB,IAAI,EAAE,+BAA+B;YACrC,QAAQ,EAAE,OAAO;YACjB,OAAO,EAAE,CAAC;YACV,UAAU,EAAE,QAAQ;YACpB,mBAAmB,EAAE,MAAM;YAC3B,QAAQ,EAAE,CAAC,WAAW,CAAC;YACvB,WAAW,EAAE,0EAA0E;YACvF,cAAc,EAAE;gBACd,mCAAmC;gBACnC,kCAAkC;gBAClC,0CAA0C;aAC3C;YACD,gBAAgB,EAAE;gBAChB,mDAAmD;gBACnD,wDAAwD;gBACxD,oCAAoC;aACrC;YACD,eAAe,EAAE;gBACf,2CAA2C;gBAC3C,+CAA+C;gBAC/C,2CAA2C;aAC5C;YACD,UAAU,EAAE;gBACV,oDAAoD;gBACpD,4BAA4B;gBAC5B,yCAAyC;aAC1C;YACD,KAAK,EAAE,CAAC,kBAAkB,EAAE,qBAAqB,EAAE,cAAc,CAAC;SACnE,CAAC,CAAC;QAEH,mCAAmC;QACnC,IAAI,CAAC,YAAY,CAAC;YAChB,EAAE,EAAE,eAAe;YACnB,IAAI,EAAE,gCAAgC;YACtC,QAAQ,EAAE,YAAY;YACtB,OAAO,EAAE,CAAC;YACV,UAAU,EAAE,MAAM;YAClB,mBAAmB,EAAE,MAAM;YAC3B,QAAQ,EAAE,CAAC,WAAW,CAAC;YACvB,WAAW,EAAE,6DAA6D;YAC1E,cAAc,EAAE;gBACd,4CAA4C;gBAC5C,wCAAwC;gBACxC,iDAAiD;aAClD;YACD,gBAAgB,EAAE;gBAChB,+CAA+C;gBAC/C,4CAA4C;gBAC5C,qCAAqC;aACtC;YACD,eAAe,EAAE;gBACf,kCAAkC;gBAClC,4CAA4C;gBAC5C,8CAA8C;aAC/C;YACD,UAAU,EAAE;gBACV,2BAA2B;gBAC3B,6CAA6C;gBAC7C,gCAAgC;aACjC;YACD,KAAK,EAAE,CAAC,SAAS,EAAE,WAAW,EAAE,aAAa,CAAC;SAC/C,CAAC,CAAC;QAEH,mCAAmC;IACrC,CAAC;IAED;;OAEG;IACK,YAAY,CAAC,SAA+B;QAClD,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,SAAS,CAAC,EAAE,EAAE,SAAS,CAAC,CAAC;IAC/C,CAAC;CACF"}

package/dist/security/security-testing-framework.d.ts

@@ -0,0 +1,120 @@
+/**
+ * Security Testing Framework
+ *
+ * Comprehensive framework for security testing and validation
+ * Integrated with the Erosolar CLI ecosystem.
+ *
+ * @license MIT
+ * @author Bo Shang
+ *
+ * DISCLAIMER: This software is provided for both defensive and offensive security
+ * purposes and is open source (available via npm and GitHub) to anyone globally.
+ * The creator, Bo Shang, does not solicit or endorse unauthorized attacks.
+ * This tool is released with the belief that providing technological freedom
+ * globally is the right thing to do. Users are solely responsible for ensuring
+ * their use complies with applicable laws and regulations in their jurisdiction.
+ * Use responsibly and ethically.
+ */
+import { PersistenceResearchToolkit, type PersistenceTechnique } from './persistence-research.js';
+export type { PersistenceTechnique };
+export interface SecurityTest {
+    id: string;
+    name: string;
+    category: 'persistence' | 'privilege-escalation' | 'lateral-movement' | 'defense-evasion';
+    platform: string[];
+    description: string;
+    testSteps: string[];
+    expectedResults: string[];
+    riskLevel: 'low' | 'medium' | 'high';
+    mitreId?: string;
+}
+export interface TestExecutionResult {
+    testId: string;
+    status: 'passed' | 'failed' | 'skipped' | 'error';
+    executionTime: number;
+    output: string;
+    evidence?: string;
+    recommendations?: string[];
+}
+export interface SecurityAssessment {
+    timestamp: Date;
+    systemInfo: SystemInfo;
+    testsExecuted: number;
+    testsPassed: number;
+    testsFailed: number;
+    riskScore: number;
+    results: TestExecutionResult[];
+    summary: string;
+}
+export interface SystemInfo {
+    platform: string;
+    architecture: string;
+    version: string;
+    user: string;
+    privileges: string[];
+}
+/**
+ * Security Testing Framework Class
+ */
+export declare class SecurityTestingFramework {
+    private _persistenceToolkit;
+    private securityTests;
+    constructor();
+    /**
+     * Get the persistence research toolkit for advanced security analysis
+     */
+    get persistenceToolkit(): PersistenceResearchToolkit;
+    /**
+     * Initialize security tests based on persistence techniques
+     */
+    private initializeSecurityTests;
+    /**
+     * Get security tests by platform
+     */
+    getTestsByPlatform(platform: string): SecurityTest[];
+    /**
+     * Get security tests by category
+     */
+    getTestsByCategory(category: string): SecurityTest[];
+    /**
+     * Execute a specific security test
+     */
+    executeTest(testId: string, platform: string): Promise<TestExecutionResult>;
+    /**
+     * Execute multiple security tests
+     */
+    executeTestSuite(testIds: string[], platform: string): Promise<SecurityAssessment>;
+    /**
+     * Generate test report in various formats
+     */
+    generateTestReport(assessment: SecurityAssessment, format: 'text' | 'json' | 'html'): string;
+    /**
+     * Generate remediation guidance based on test results
+     */
+    generateRemediationGuidance(results: TestExecutionResult[]): string[];
+    /**
+     * Simulate test execution (placeholder for actual implementation)
+     */
+    private simulateTestExecution;
+    /**
+     * Get system information (placeholder for actual implementation)
+     */
+    private getSystemInfo;
+    /**
+     * Calculate risk score based on test results
+     */
+    private calculateRiskScore;
+    /**
+     * Generate summary of test results
+     */
+    private generateSummary;
+    /**
+     * Generate text report
+     */
+    private generateTextReport;
+    /**
+     * Generate HTML report
+     */
+    private generateHTMLReport;
+}
+//# sourceMappingURL=security-testing-framework.d.ts.map

package/dist/security/security-testing-framework.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"security-testing-framework.d.ts","sourceRoot":"","sources":["../../src/security/security-testing-framework.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,OAAO,EAAE,0BAA0B,EAAE,KAAK,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AAGlG,YAAY,EAAE,oBAAoB,EAAE,CAAC;AAErC,MAAM,WAAW,YAAY;IAC3B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,aAAa,GAAG,sBAAsB,GAAG,kBAAkB,GAAG,iBAAiB,CAAC;IAC1F,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,SAAS,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;IACrC,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,mBAAmB;IAClC,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,QAAQ,GAAG,QAAQ,GAAG,SAAS,GAAG,OAAO,CAAC;IAClD,aAAa,EAAE,MAAM,CAAC;IACtB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;CAC5B;AAED,MAAM,WAAW,kBAAkB;IACjC,SAAS,EAAE,IAAI,CAAC;IAChB,UAAU,EAAE,UAAU,CAAC;IACvB,aAAa,EAAE,MAAM,CAAC;IACtB,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,mBAAmB,EAAE,CAAC;IAC/B,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,MAAM,CAAC;IACrB,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,MAAM,EAAE,CAAC;CACtB;AAED;;GAEG;AACH,qBAAa,wBAAwB;IACnC,OAAO,CAAC,mBAAmB,CAA6B;IACxD,OAAO,CAAC,aAAa,CAAiB;;IAOtC;;OAEG;IACH,IAAI,kBAAkB,IAAI,0BAA0B,CAEnD;IAED;;OAEG;IACH,OAAO,CAAC,uBAAuB;IAkH/B;;OAEG;IACH,kBAAkB,CAAC,QAAQ,EAAE,MAAM,GAAG,YAAY,EAAE;IAMpD;;OAEG;IACH,kBAAkB,CAAC,QAAQ,EAAE,MAAM,GAAG,YAAY,EAAE;IAIpD;;OAEG;IACG,WAAW,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,mBAAmB,CAAC;IA2CjF;;OAEG;IACG,gBAAgB,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,kBAAkB,CAAC;IAyBxF;;OAEG;IACH,kBAAkB,CAAC,UAAU,EAAE,kBAAkB,EAAE,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,MAAM;IAW5F;;OAEG;IACH,2BAA2B,CAAC,OAAO,EAAE,mBAAmB,EAAE,GAAG,MAAM,EAAE;IAkBrE;;OAEG;YACW,qBAAqB;IAUnC;;OAEG;YACW,aAAa;IAU3B;;OAEG;IACH,OAAO,CAAC,kBAAkB;IAS1B;;OAEG;IACH,OAAO,CAAC,eAAe;IAcvB;;OAEG;IACH,OAAO,CAAC,kBAAkB;IA6B1B;;OAEG;IACH,OAAO,CAAC,kBAAkB;CAwC3B"}