erosolar-cli 1.5.3 → 1.5.5
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/config/security-deployment.json +54 -0
- package/dist/active-stack-security.d.ts +110 -0
- package/dist/active-stack-security.js +313 -0
- package/dist/active-stack-security.js.map +1 -0
- package/dist/advanced-targeting.d.ts +113 -0
- package/dist/advanced-targeting.js +252 -0
- package/dist/advanced-targeting.js.map +1 -0
- package/dist/bin/adapters/node/index.js +33 -0
- package/dist/bin/adapters/types.js +1 -0
- package/dist/bin/alpha-zero/agentWrapper.js +165 -0
- package/dist/bin/alpha-zero/codeEvaluator.js +272 -0
- package/dist/bin/alpha-zero/competitiveRunner.js +219 -0
- package/dist/bin/alpha-zero/index.js +98 -0
- package/dist/bin/alpha-zero/introspection.js +298 -0
- package/dist/bin/alpha-zero/metricsTracker.js +207 -0
- package/dist/bin/alpha-zero/security/core.js +269 -0
- package/dist/bin/alpha-zero/security/google.js +308 -0
- package/dist/bin/alpha-zero/security/googleLoader.js +40 -0
- package/dist/bin/alpha-zero/security/index.js +31 -0
- package/dist/bin/alpha-zero/security/simulation.js +274 -0
- package/dist/bin/alpha-zero/selfModification.js +231 -0
- package/dist/bin/alpha-zero/types.js +30 -0
- package/dist/bin/bin/erosolar-optimized.js +205 -0
- package/dist/bin/capabilities/agentSpawningCapability.js +116 -0
- package/dist/bin/capabilities/bashCapability.js +22 -0
- package/dist/bin/capabilities/cloudCapability.js +36 -0
- package/dist/bin/capabilities/codeAnalysisCapability.js +22 -0
- package/dist/bin/capabilities/codeQualityCapability.js +23 -0
- package/dist/bin/capabilities/dependencySecurityCapability.js +22 -0
- package/dist/bin/capabilities/devCapability.js +22 -0
- package/dist/bin/capabilities/editCapability.js +28 -0
- package/dist/bin/capabilities/emailCapability.js +20 -0
- package/dist/bin/capabilities/enhancedGitCapability.js +221 -0
- package/dist/bin/capabilities/filesystemCapability.js +22 -0
- package/dist/bin/capabilities/globCapability.js +28 -0
- package/dist/bin/capabilities/interactionCapability.js +20 -0
- package/dist/bin/capabilities/learnCapability.js +22 -0
- package/dist/bin/capabilities/mcpCapability.js +20 -0
- package/dist/bin/capabilities/notebookCapability.js +28 -0
- package/dist/bin/capabilities/planningCapability.js +27 -0
- package/dist/bin/capabilities/refactoringCapability.js +23 -0
- package/dist/bin/capabilities/repoChecksCapability.js +22 -0
- package/dist/bin/capabilities/searchCapability.js +22 -0
- package/dist/bin/capabilities/skillCapability.js +76 -0
- package/dist/bin/capabilities/taskManagementCapability.js +20 -0
- package/dist/bin/capabilities/testingCapability.js +23 -0
- package/dist/bin/capabilities/toolManifest.js +159 -0
- package/dist/bin/capabilities/toolRegistry.js +114 -0
- package/dist/bin/capabilities/webCapability.js +20 -0
- package/dist/bin/config.js +139 -0
- package/dist/bin/contracts/v1/agent.js +7 -0
- package/dist/bin/contracts/v1/agentProfileManifest.js +8 -0
- package/dist/bin/contracts/v1/agentRules.js +9 -0
- package/dist/bin/contracts/v1/toolAccess.js +8 -0
- package/dist/bin/core/agent.js +362 -0
- package/dist/bin/core/agentProfileManifest.js +187 -0
- package/dist/bin/core/agentProfiles.js +34 -0
- package/dist/bin/core/agentRulebook.js +135 -0
- package/dist/bin/core/agentSchemaLoader.js +233 -0
- package/dist/bin/core/contextManager.js +412 -0
- package/dist/bin/core/contextWindow.js +122 -0
- package/dist/bin/core/customCommands.js +80 -0
- package/dist/bin/core/errors/apiKeyErrors.js +114 -0
- package/dist/bin/core/errors/errorTypes.js +340 -0
- package/dist/bin/core/errors/safetyValidator.js +304 -0
- package/dist/bin/core/errors.js +32 -0
- package/dist/bin/core/modelDiscovery.js +755 -0
- package/dist/bin/core/preferences.js +224 -0
- package/dist/bin/core/schemaValidator.js +92 -0
- package/dist/bin/core/secretStore.js +199 -0
- package/dist/bin/core/sessionStore.js +187 -0
- package/dist/bin/core/toolRuntime.js +290 -0
- package/dist/bin/core/types.js +1 -0
- package/dist/bin/erosolar-optimized.d.ts +12 -0
- package/dist/bin/erosolar-optimized.d.ts.map +1 -0
- package/dist/bin/erosolar-optimized.js +239 -0
- package/dist/bin/erosolar-optimized.js.map +1 -0
- package/dist/bin/erosolar.js +14 -0
- package/dist/bin/erosolar.js.map +1 -1
- package/dist/bin/headless/headlessApp.js +172 -0
- package/dist/bin/mcp/config.js +202 -0
- package/dist/bin/mcp/stdioClient.js +172 -0
- package/dist/bin/mcp/toolBridge.js +104 -0
- package/dist/bin/mcp/types.js +1 -0
- package/dist/bin/plugins/index.js +113 -0
- package/dist/bin/plugins/providers/anthropic/index.js +25 -0
- package/dist/bin/plugins/providers/deepseek/index.js +24 -0
- package/dist/bin/plugins/providers/google/index.js +26 -0
- package/dist/bin/plugins/providers/index.js +19 -0
- package/dist/bin/plugins/providers/ollama/index.js +59 -0
- package/dist/bin/plugins/providers/openai/index.js +26 -0
- package/dist/bin/plugins/providers/xai/index.js +24 -0
- package/dist/bin/plugins/tools/agentSpawning/agentSpawningPlugin.js +8 -0
- package/dist/bin/plugins/tools/bash/localBashPlugin.js +13 -0
- package/dist/bin/plugins/tools/checks/localRepoChecksPlugin.js +13 -0
- package/dist/bin/plugins/tools/cloud/cloudPlugin.js +13 -0
- package/dist/bin/plugins/tools/codeAnalysis/codeAnalysisPlugin.js +13 -0
- package/dist/bin/plugins/tools/codeQuality/codeQualityPlugin.js +13 -0
- package/dist/bin/plugins/tools/dependency/dependencyPlugin.js +11 -0
- package/dist/bin/plugins/tools/development/devPlugin.js +13 -0
- package/dist/bin/plugins/tools/edit/editPlugin.js +14 -0
- package/dist/bin/plugins/tools/email/emailPlugin.js +11 -0
- package/dist/bin/plugins/tools/enhancedGit/enhancedGitPlugin.js +8 -0
- package/dist/bin/plugins/tools/filesystem/localFilesystemPlugin.js +13 -0
- package/dist/bin/plugins/tools/glob/globPlugin.js +14 -0
- package/dist/bin/plugins/tools/index.js +2 -0
- package/dist/bin/plugins/tools/interaction/interactionPlugin.js +11 -0
- package/dist/bin/plugins/tools/learn/learnPlugin.js +13 -0
- package/dist/bin/plugins/tools/mcp/mcpPlugin.js +8 -0
- package/dist/bin/plugins/tools/nodeDefaults.js +56 -0
- package/dist/bin/plugins/tools/notebook/notebookPlugin.js +14 -0
- package/dist/bin/plugins/tools/planning/planningPlugin.js +14 -0
- package/dist/bin/plugins/tools/refactoring/refactoringPlugin.js +11 -0
- package/dist/bin/plugins/tools/registry.js +57 -0
- package/dist/bin/plugins/tools/search/localSearchPlugin.js +13 -0
- package/dist/bin/plugins/tools/skills/skillPlugin.js +8 -0
- package/dist/bin/plugins/tools/taskManagement/taskManagementPlugin.js +11 -0
- package/dist/bin/plugins/tools/testing/testingPlugin.js +11 -0
- package/dist/bin/plugins/tools/web/webPlugin.js +11 -0
- package/dist/bin/providers/anthropicProvider.js +329 -0
- package/dist/bin/providers/googleProvider.js +203 -0
- package/dist/bin/providers/openaiChatCompletionsProvider.js +208 -0
- package/dist/bin/providers/openaiResponsesProvider.js +249 -0
- package/dist/bin/providers/providerFactory.js +24 -0
- package/dist/bin/runtime/agentController.js +321 -0
- package/dist/bin/runtime/agentHost.js +153 -0
- package/dist/bin/runtime/agentSession.js +195 -0
- package/dist/bin/runtime/node.js +10 -0
- package/dist/bin/runtime/universal.js +28 -0
- package/dist/bin/shell/bracketedPasteManager.js +350 -0
- package/dist/bin/shell/fileChangeTracker.js +65 -0
- package/dist/bin/shell/interactiveShell.js +2908 -0
- package/dist/bin/shell/liveStatus.js +78 -0
- package/dist/bin/shell/shellApp.js +290 -0
- package/dist/bin/shell/systemPrompt.js +60 -0
- package/dist/bin/shell/updateManager.js +108 -0
- package/dist/bin/skills/skillRepository.js +236 -0
- package/dist/bin/skills/types.js +1 -0
- package/dist/bin/subagents/taskRunner.js +269 -0
- package/dist/bin/tools/backgroundBashTools.js +211 -0
- package/dist/bin/tools/bashTools.js +159 -0
- package/dist/bin/tools/cloudTools.js +864 -0
- package/dist/bin/tools/codeAnalysisTools.js +641 -0
- package/dist/bin/tools/codeQualityTools.js +294 -0
- package/dist/bin/tools/dependencyTools.js +282 -0
- package/dist/bin/tools/devTools.js +238 -0
- package/dist/bin/tools/diffUtils.js +137 -0
- package/dist/bin/tools/editTools.js +134 -0
- package/dist/bin/tools/emailTools.js +448 -0
- package/dist/bin/tools/fileTools.js +282 -0
- package/dist/bin/tools/globTools.js +173 -0
- package/dist/bin/tools/grepTools.js +332 -0
- package/dist/bin/tools/interactionTools.js +170 -0
- package/dist/bin/tools/learnTools.js +1818 -0
- package/dist/bin/tools/notebookEditTools.js +196 -0
- package/dist/bin/tools/planningTools.js +46 -0
- package/dist/bin/tools/refactoringTools.js +293 -0
- package/dist/bin/tools/repoChecksTools.js +160 -0
- package/dist/bin/tools/searchTools.js +206 -0
- package/dist/bin/tools/skillTools.js +177 -0
- package/dist/bin/tools/taskManagementTools.js +156 -0
- package/dist/bin/tools/testingTools.js +232 -0
- package/dist/bin/tools/webTools.js +480 -0
- package/dist/bin/ui/ShellUIAdapter.js +459 -0
- package/dist/bin/ui/UnifiedUIController.js +183 -0
- package/dist/bin/ui/animation/AnimationScheduler.js +430 -0
- package/dist/bin/ui/codeHighlighter.js +854 -0
- package/dist/bin/ui/designSystem.js +121 -0
- package/dist/bin/ui/display.js +1222 -0
- package/dist/bin/ui/interrupts/InterruptManager.js +437 -0
- package/dist/bin/ui/layout.js +139 -0
- package/dist/bin/ui/orchestration/StatusOrchestrator.js +403 -0
- package/dist/bin/ui/outputMode.js +38 -0
- package/dist/bin/ui/persistentPrompt.js +183 -0
- package/dist/bin/ui/richText.js +338 -0
- package/dist/bin/ui/shortcutsHelp.js +87 -0
- package/dist/bin/ui/telemetry/UITelemetry.js +443 -0
- package/dist/bin/ui/textHighlighter.js +210 -0
- package/dist/bin/ui/theme.js +116 -0
- package/dist/bin/ui/toolDisplay.js +423 -0
- package/dist/bin/ui/toolDisplayAdapter.js +357 -0
- package/dist/bin/workspace.js +106 -0
- package/dist/bin/workspace.validator.js +213 -0
- package/dist/capabilities/offensiveSecurityCapability.d.ts +26 -0
- package/dist/capabilities/offensiveSecurityCapability.d.ts.map +1 -0
- package/dist/capabilities/offensiveSecurityCapability.js +58 -0
- package/dist/capabilities/offensiveSecurityCapability.js.map +1 -0
- package/dist/capabilities/realSecurityCapability.d.ts +26 -0
- package/dist/capabilities/realSecurityCapability.d.ts.map +1 -0
- package/dist/capabilities/realSecurityCapability.js +53 -0
- package/dist/capabilities/realSecurityCapability.js.map +1 -0
- package/dist/capabilities/securityCapability.d.ts +32 -0
- package/dist/capabilities/securityCapability.d.ts.map +1 -0
- package/dist/capabilities/securityCapability.js +57 -0
- package/dist/capabilities/securityCapability.js.map +1 -0
- package/dist/capabilities/ultimateSecurityCapability.d.ts +42 -0
- package/dist/capabilities/ultimateSecurityCapability.d.ts.map +1 -0
- package/dist/capabilities/ultimateSecurityCapability.js +96 -0
- package/dist/capabilities/ultimateSecurityCapability.js.map +1 -0
- package/dist/core/LazyLoader.d.ts +129 -0
- package/dist/core/LazyLoader.d.ts.map +1 -0
- package/dist/core/LazyLoader.js +240 -0
- package/dist/core/LazyLoader.js.map +1 -0
- package/dist/core/agent.d.ts.map +1 -1
- package/dist/core/agent.js +78 -8
- package/dist/core/agent.js.map +1 -1
- package/dist/core/contextManager.d.ts.map +1 -1
- package/dist/core/contextManager.js +117 -16
- package/dist/core/contextManager.js.map +1 -1
- package/dist/core/intelligenceTools.d.ts +19 -0
- package/dist/core/intelligenceTools.d.ts.map +1 -0
- package/dist/core/intelligenceTools.js +453 -0
- package/dist/core/intelligenceTools.js.map +1 -0
- package/dist/core/operationalTools.d.ts +19 -0
- package/dist/core/operationalTools.d.ts.map +1 -0
- package/dist/core/operationalTools.js +467 -0
- package/dist/core/operationalTools.js.map +1 -0
- package/dist/intelligence/codeIntelligence.d.ts.map +1 -1
- package/dist/intelligence/codeIntelligence.js +12 -0
- package/dist/intelligence/codeIntelligence.js.map +1 -1
- package/dist/offensive/core/offensive-engine.d.ts +171 -0
- package/dist/offensive/core/offensive-engine.d.ts.map +1 -0
- package/dist/offensive/core/offensive-engine.js +345 -0
- package/dist/offensive/core/offensive-engine.js.map +1 -0
- package/dist/offensive/core/offensive-integration.d.ts +129 -0
- package/dist/offensive/core/offensive-integration.d.ts.map +1 -0
- package/dist/offensive/core/offensive-integration.js +364 -0
- package/dist/offensive/core/offensive-integration.js.map +1 -0
- package/dist/offensive/core/offensive-tools.d.ts +55 -0
- package/dist/offensive/core/offensive-tools.d.ts.map +1 -0
- package/dist/offensive/core/offensive-tools.js +438 -0
- package/dist/offensive/core/offensive-tools.js.map +1 -0
- package/dist/offensive/offensive-cli.d.ts +48 -0
- package/dist/offensive/offensive-cli.d.ts.map +1 -0
- package/dist/offensive/offensive-cli.js +233 -0
- package/dist/offensive/offensive-cli.js.map +1 -0
- package/dist/plugins/index.d.ts +1 -1
- package/dist/plugins/index.d.ts.map +1 -1
- package/dist/plugins/index.js +2 -0
- package/dist/plugins/index.js.map +1 -1
- package/dist/security/active-stack-security.d.ts +112 -0
- package/dist/security/active-stack-security.d.ts.map +1 -0
- package/dist/security/active-stack-security.js +296 -0
- package/dist/security/active-stack-security.js.map +1 -0
- package/dist/security/advanced-persistence-research.d.ts +92 -0
- package/dist/security/advanced-persistence-research.d.ts.map +1 -0
- package/dist/security/advanced-persistence-research.js +195 -0
- package/dist/security/advanced-persistence-research.js.map +1 -0
- package/dist/security/advanced-targeting.d.ts +119 -0
- package/dist/security/advanced-targeting.d.ts.map +1 -0
- package/dist/security/advanced-targeting.js +233 -0
- package/dist/security/advanced-targeting.js.map +1 -0
- package/dist/security/apt-simulation-cli.d.ts +57 -0
- package/dist/security/apt-simulation-cli.d.ts.map +1 -0
- package/dist/security/apt-simulation-cli.js +278 -0
- package/dist/security/apt-simulation-cli.js.map +1 -0
- package/dist/security/apt-simulation-engine-complete.d.ts +97 -0
- package/dist/security/apt-simulation-engine-complete.d.ts.map +1 -0
- package/dist/security/apt-simulation-engine-complete.js +441 -0
- package/dist/security/apt-simulation-engine-complete.js.map +1 -0
- package/dist/security/apt-simulation-engine.d.ts +97 -0
- package/dist/security/apt-simulation-engine.d.ts.map +1 -0
- package/dist/security/apt-simulation-engine.js +441 -0
- package/dist/security/apt-simulation-engine.js.map +1 -0
- package/dist/security/assessment/vulnerabilityAssessment.d.ts +104 -0
- package/dist/security/assessment/vulnerabilityAssessment.d.ts.map +1 -0
- package/dist/security/assessment/vulnerabilityAssessment.js +315 -0
- package/dist/security/assessment/vulnerabilityAssessment.js.map +1 -0
- package/dist/security/authorization/securityAuthorization.d.ts +88 -0
- package/dist/security/authorization/securityAuthorization.d.ts.map +1 -0
- package/dist/security/authorization/securityAuthorization.js +172 -0
- package/dist/security/authorization/securityAuthorization.js.map +1 -0
- package/dist/security/authorization.d.ts +45 -0
- package/dist/security/authorization.d.ts.map +1 -0
- package/dist/security/authorization.js +128 -0
- package/dist/security/authorization.js.map +1 -0
- package/dist/security/comprehensive-security-research.d.ts +84 -0
- package/dist/security/comprehensive-security-research.d.ts.map +1 -0
- package/dist/security/comprehensive-security-research.js +211 -0
- package/dist/security/comprehensive-security-research.js.map +1 -0
- package/dist/security/comprehensive-targeting.d.ts +85 -0
- package/dist/security/comprehensive-targeting.d.ts.map +1 -0
- package/dist/security/comprehensive-targeting.js +438 -0
- package/dist/security/comprehensive-targeting.js.map +1 -0
- package/dist/security/global-security-integration.d.ts +91 -0
- package/dist/security/global-security-integration.d.ts.map +1 -0
- package/dist/security/global-security-integration.js +218 -0
- package/dist/security/global-security-integration.js.map +1 -0
- package/dist/security/index.d.ts +38 -0
- package/dist/security/index.d.ts.map +1 -0
- package/dist/security/index.js +47 -0
- package/dist/security/index.js.map +1 -0
- package/dist/security/offensive/exploitationEngine.d.ts +54 -0
- package/dist/security/offensive/exploitationEngine.d.ts.map +1 -0
- package/dist/security/offensive/exploitationEngine.js +263 -0
- package/dist/security/offensive/exploitationEngine.js.map +1 -0
- package/dist/security/persistence-cli.d.ts +36 -0
- package/dist/security/persistence-cli.d.ts.map +1 -0
- package/dist/security/persistence-cli.js +160 -0
- package/dist/security/persistence-cli.js.map +1 -0
- package/dist/security/persistence-research.d.ts +11 -0
- package/dist/security/persistence-research.d.ts.map +1 -1
- package/dist/security/persistence-research.js +11 -0
- package/dist/security/persistence-research.js.map +1 -1
- package/dist/security/real/networkExploitation.d.ts +92 -0
- package/dist/security/real/networkExploitation.d.ts.map +1 -0
- package/dist/security/real/networkExploitation.js +316 -0
- package/dist/security/real/networkExploitation.js.map +1 -0
- package/dist/security/real/persistenceImplementation.d.ts +62 -0
- package/dist/security/real/persistenceImplementation.d.ts.map +1 -0
- package/dist/security/real/persistenceImplementation.js +323 -0
- package/dist/security/real/persistenceImplementation.js.map +1 -0
- package/dist/security/real/vulnerabilityScanner.d.ts +73 -0
- package/dist/security/real/vulnerabilityScanner.d.ts.map +1 -0
- package/dist/security/real/vulnerabilityScanner.js +341 -0
- package/dist/security/real/vulnerabilityScanner.js.map +1 -0
- package/dist/security/research/persistenceResearch.d.ts +97 -0
- package/dist/security/research/persistenceResearch.d.ts.map +1 -0
- package/dist/security/research/persistenceResearch.js +282 -0
- package/dist/security/research/persistenceResearch.js.map +1 -0
- package/dist/security/security-integration.d.ts +74 -0
- package/dist/security/security-integration.d.ts.map +1 -0
- package/dist/security/security-integration.js +137 -0
- package/dist/security/security-integration.js.map +1 -0
- package/dist/security/security-testing-framework.d.ts +120 -0
- package/dist/security/security-testing-framework.d.ts.map +1 -0
- package/dist/security/security-testing-framework.js +372 -0
- package/dist/security/security-testing-framework.js.map +1 -0
- package/dist/security/simulation/attackSimulation.d.ts +93 -0
- package/dist/security/simulation/attackSimulation.d.ts.map +1 -0
- package/dist/security/simulation/attackSimulation.js +341 -0
- package/dist/security/simulation/attackSimulation.js.map +1 -0
- package/dist/security/strategic-operations.d.ts +100 -0
- package/dist/security/strategic-operations.d.ts.map +1 -0
- package/dist/security/strategic-operations.js +276 -0
- package/dist/security/strategic-operations.js.map +1 -0
- package/dist/security/tool-security-wrapper.d.ts +58 -0
- package/dist/security/tool-security-wrapper.d.ts.map +1 -0
- package/dist/security/tool-security-wrapper.js +156 -0
- package/dist/security/tool-security-wrapper.js.map +1 -0
- package/dist/shell/bracketedPasteManager.d.ts +33 -0
- package/dist/shell/bracketedPasteManager.d.ts.map +1 -1
- package/dist/shell/bracketedPasteManager.js +101 -0
- package/dist/shell/bracketedPasteManager.js.map +1 -1
- package/dist/shell/interactiveShell.d.ts +22 -1
- package/dist/shell/interactiveShell.d.ts.map +1 -1
- package/dist/shell/interactiveShell.js +257 -24
- package/dist/shell/interactiveShell.js.map +1 -1
- package/dist/shell/taskCompletionDetector.d.ts +101 -0
- package/dist/shell/taskCompletionDetector.d.ts.map +1 -0
- package/dist/shell/taskCompletionDetector.js +343 -0
- package/dist/shell/taskCompletionDetector.js.map +1 -0
- package/dist/tools/cloudTools.d.ts +11 -0
- package/dist/tools/cloudTools.d.ts.map +1 -1
- package/dist/tools/cloudTools.js +11 -0
- package/dist/tools/cloudTools.js.map +1 -1
- package/dist/tools/codeAnalysisTools.d.ts.map +1 -1
- package/dist/tools/codeAnalysisTools.js +23 -1
- package/dist/tools/codeAnalysisTools.js.map +1 -1
- package/dist/tools/enhancedSecurityTools.d.ts +19 -0
- package/dist/tools/enhancedSecurityTools.d.ts.map +1 -0
- package/dist/tools/enhancedSecurityTools.js +215 -0
- package/dist/tools/enhancedSecurityTools.js.map +1 -0
- package/dist/tools/fileTools.d.ts.map +1 -1
- package/dist/tools/fileTools.js +7 -0
- package/dist/tools/fileTools.js.map +1 -1
- package/dist/tools/grepTools.d.ts.map +1 -1
- package/dist/tools/grepTools.js +6 -0
- package/dist/tools/grepTools.js.map +1 -1
- package/dist/tools/offensiveSecurityTools.d.ts +16 -0
- package/dist/tools/offensiveSecurityTools.d.ts.map +1 -0
- package/dist/tools/offensiveSecurityTools.js +285 -0
- package/dist/tools/offensiveSecurityTools.js.map +1 -0
- package/dist/tools/realSecurityTools.d.ts +18 -0
- package/dist/tools/realSecurityTools.d.ts.map +1 -0
- package/dist/tools/realSecurityTools.js +468 -0
- package/dist/tools/realSecurityTools.js.map +1 -0
- package/dist/tools/securityTools.d.ts +20 -0
- package/dist/tools/securityTools.d.ts.map +1 -0
- package/dist/tools/securityTools.js +449 -0
- package/dist/tools/securityTools.js.map +1 -0
- package/dist/tools/webTools.js +9 -0
- package/dist/tools/webTools.js.map +1 -1
- package/package.json +26 -11
- package/scripts/deploy-security-capabilities.js +178 -0
|
@@ -0,0 +1,372 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Security Testing Framework
|
|
3
|
+
*
|
|
4
|
+
* Comprehensive framework for security testing and validation
|
|
5
|
+
* Integrated with the Erosolar CLI ecosystem.
|
|
6
|
+
*
|
|
7
|
+
* @license MIT
|
|
8
|
+
* @author Bo Shang
|
|
9
|
+
*
|
|
10
|
+
* DISCLAIMER: This software is provided for both defensive and offensive security
|
|
11
|
+
* purposes and is open source (available via npm and GitHub) to anyone globally.
|
|
12
|
+
* The creator, Bo Shang, does not solicit or endorse unauthorized attacks.
|
|
13
|
+
* This tool is released with the belief that providing technological freedom
|
|
14
|
+
* globally is the right thing to do. Users are solely responsible for ensuring
|
|
15
|
+
* their use complies with applicable laws and regulations in their jurisdiction.
|
|
16
|
+
* Use responsibly and ethically.
|
|
17
|
+
*/
|
|
18
|
+
import { PersistenceResearchToolkit } from './persistence-research.js';
|
|
19
|
+
/**
|
|
20
|
+
* Security Testing Framework Class
|
|
21
|
+
*/
|
|
22
|
+
export class SecurityTestingFramework {
|
|
23
|
+
_persistenceToolkit;
|
|
24
|
+
securityTests;
|
|
25
|
+
constructor() {
|
|
26
|
+
this._persistenceToolkit = new PersistenceResearchToolkit();
|
|
27
|
+
this.securityTests = this.initializeSecurityTests();
|
|
28
|
+
}
|
|
29
|
+
/**
|
|
30
|
+
* Get the persistence research toolkit for advanced security analysis
|
|
31
|
+
*/
|
|
32
|
+
get persistenceToolkit() {
|
|
33
|
+
return this._persistenceToolkit;
|
|
34
|
+
}
|
|
35
|
+
/**
|
|
36
|
+
* Initialize security tests based on persistence techniques
|
|
37
|
+
*/
|
|
38
|
+
initializeSecurityTests() {
|
|
39
|
+
const tests = [];
|
|
40
|
+
// Windows Persistence Tests
|
|
41
|
+
tests.push({
|
|
42
|
+
id: 'test-win-registry-persistence',
|
|
43
|
+
name: 'Windows Registry Persistence Detection',
|
|
44
|
+
category: 'persistence',
|
|
45
|
+
platform: ['windows'],
|
|
46
|
+
description: 'Test detection of registry-based persistence mechanisms',
|
|
47
|
+
testSteps: [
|
|
48
|
+
'Check HKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Run',
|
|
49
|
+
'Check HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Run',
|
|
50
|
+
'Verify registry monitoring is enabled',
|
|
51
|
+
'Test detection of new registry entries'
|
|
52
|
+
],
|
|
53
|
+
expectedResults: [
|
|
54
|
+
'Registry monitoring detects new entries',
|
|
55
|
+
'Suspicious entries are flagged',
|
|
56
|
+
'Automated response is triggered'
|
|
57
|
+
],
|
|
58
|
+
riskLevel: 'high',
|
|
59
|
+
mitreId: 'T1547.001'
|
|
60
|
+
});
|
|
61
|
+
tests.push({
|
|
62
|
+
id: 'test-win-scheduled-tasks',
|
|
63
|
+
name: 'Windows Scheduled Tasks Detection',
|
|
64
|
+
category: 'persistence',
|
|
65
|
+
platform: ['windows'],
|
|
66
|
+
description: 'Test detection of scheduled task-based persistence',
|
|
67
|
+
testSteps: [
|
|
68
|
+
'List all scheduled tasks using schtasks',
|
|
69
|
+
'Check for tasks with SYSTEM privileges',
|
|
70
|
+
'Monitor Task Scheduler events',
|
|
71
|
+
'Test detection of new scheduled tasks'
|
|
72
|
+
],
|
|
73
|
+
expectedResults: [
|
|
74
|
+
'New scheduled tasks are detected',
|
|
75
|
+
'Tasks with suspicious actions are flagged',
|
|
76
|
+
'Automated response is triggered'
|
|
77
|
+
],
|
|
78
|
+
riskLevel: 'high',
|
|
79
|
+
mitreId: 'T1053.005'
|
|
80
|
+
});
|
|
81
|
+
// Linux Persistence Tests
|
|
82
|
+
tests.push({
|
|
83
|
+
id: 'test-linux-cron-persistence',
|
|
84
|
+
name: 'Linux Cron Job Persistence Detection',
|
|
85
|
+
category: 'persistence',
|
|
86
|
+
platform: ['linux'],
|
|
87
|
+
description: 'Test detection of cron-based persistence mechanisms',
|
|
88
|
+
testSteps: [
|
|
89
|
+
'Check /var/spool/cron/crontabs/',
|
|
90
|
+
'Review /etc/crontab and /etc/cron.d/*',
|
|
91
|
+
'Monitor cron job creation events',
|
|
92
|
+
'Test detection of new cron entries'
|
|
93
|
+
],
|
|
94
|
+
expectedResults: [
|
|
95
|
+
'New cron jobs are detected',
|
|
96
|
+
'Suspicious cron commands are flagged',
|
|
97
|
+
'Automated response is triggered'
|
|
98
|
+
],
|
|
99
|
+
riskLevel: 'high',
|
|
100
|
+
mitreId: 'T1053.003'
|
|
101
|
+
});
|
|
102
|
+
tests.push({
|
|
103
|
+
id: 'test-linux-systemd-persistence',
|
|
104
|
+
name: 'Linux Systemd Service Persistence Detection',
|
|
105
|
+
category: 'persistence',
|
|
106
|
+
platform: ['linux'],
|
|
107
|
+
description: 'Test detection of systemd service-based persistence',
|
|
108
|
+
testSteps: [
|
|
109
|
+
'Check /etc/systemd/system/ directory',
|
|
110
|
+
'List all systemd services',
|
|
111
|
+
'Monitor service unit file creation',
|
|
112
|
+
'Test detection of new systemd services'
|
|
113
|
+
],
|
|
114
|
+
expectedResults: [
|
|
115
|
+
'New systemd services are detected',
|
|
116
|
+
'Services with suspicious commands are flagged',
|
|
117
|
+
'Automated response is triggered'
|
|
118
|
+
],
|
|
119
|
+
riskLevel: 'high',
|
|
120
|
+
mitreId: 'T1543.002'
|
|
121
|
+
});
|
|
122
|
+
// Cross-platform Tests
|
|
123
|
+
tests.push({
|
|
124
|
+
id: 'test-ssh-key-persistence',
|
|
125
|
+
name: 'SSH Authorized Keys Persistence Detection',
|
|
126
|
+
category: 'persistence',
|
|
127
|
+
platform: ['linux', 'macos'],
|
|
128
|
+
description: 'Test detection of SSH key-based persistence',
|
|
129
|
+
testSteps: [
|
|
130
|
+
'Check ~/.ssh/authorized_keys files',
|
|
131
|
+
'Monitor SSH key additions',
|
|
132
|
+
'Verify SSH key validation',
|
|
133
|
+
'Test detection of unauthorized keys'
|
|
134
|
+
],
|
|
135
|
+
expectedResults: [
|
|
136
|
+
'Unauthorized SSH keys are detected',
|
|
137
|
+
'Key additions are logged and monitored',
|
|
138
|
+
'Automated response is triggered'
|
|
139
|
+
],
|
|
140
|
+
riskLevel: 'high',
|
|
141
|
+
mitreId: 'T1098.004'
|
|
142
|
+
});
|
|
143
|
+
return tests;
|
|
144
|
+
}
|
|
145
|
+
/**
|
|
146
|
+
* Get security tests by platform
|
|
147
|
+
*/
|
|
148
|
+
getTestsByPlatform(platform) {
|
|
149
|
+
return this.securityTests.filter(test => test.platform.includes(platform) || test.platform.includes('cross-platform'));
|
|
150
|
+
}
|
|
151
|
+
/**
|
|
152
|
+
* Get security tests by category
|
|
153
|
+
*/
|
|
154
|
+
getTestsByCategory(category) {
|
|
155
|
+
return this.securityTests.filter(test => test.category === category);
|
|
156
|
+
}
|
|
157
|
+
/**
|
|
158
|
+
* Execute a specific security test
|
|
159
|
+
*/
|
|
160
|
+
async executeTest(testId, platform) {
|
|
161
|
+
const test = this.securityTests.find(t => t.id === testId);
|
|
162
|
+
if (!test) {
|
|
163
|
+
throw new Error(`Test not found: ${testId}`);
|
|
164
|
+
}
|
|
165
|
+
if (!test.platform.includes(platform) && !test.platform.includes('cross-platform')) {
|
|
166
|
+
return {
|
|
167
|
+
testId,
|
|
168
|
+
status: 'skipped',
|
|
169
|
+
executionTime: 0,
|
|
170
|
+
output: `Test skipped: Platform ${platform} not supported`
|
|
171
|
+
};
|
|
172
|
+
}
|
|
173
|
+
const startTime = Date.now();
|
|
174
|
+
try {
|
|
175
|
+
// Simulate test execution (in a real implementation, this would execute actual commands)
|
|
176
|
+
const output = await this.simulateTestExecution(test, platform);
|
|
177
|
+
const executionTime = Date.now() - startTime;
|
|
178
|
+
return {
|
|
179
|
+
testId,
|
|
180
|
+
status: 'passed',
|
|
181
|
+
executionTime,
|
|
182
|
+
output,
|
|
183
|
+
evidence: `Simulated evidence for ${testId}`,
|
|
184
|
+
recommendations: ['Implement automated monitoring', 'Review security controls']
|
|
185
|
+
};
|
|
186
|
+
}
|
|
187
|
+
catch (error) {
|
|
188
|
+
const executionTime = Date.now() - startTime;
|
|
189
|
+
return {
|
|
190
|
+
testId,
|
|
191
|
+
status: 'error',
|
|
192
|
+
executionTime,
|
|
193
|
+
output: `Test execution failed: ${error}`,
|
|
194
|
+
recommendations: ['Review test configuration', 'Check system permissions']
|
|
195
|
+
};
|
|
196
|
+
}
|
|
197
|
+
}
|
|
198
|
+
/**
|
|
199
|
+
* Execute multiple security tests
|
|
200
|
+
*/
|
|
201
|
+
async executeTestSuite(testIds, platform) {
|
|
202
|
+
const results = [];
|
|
203
|
+
const systemInfo = await this.getSystemInfo(platform);
|
|
204
|
+
for (const testId of testIds) {
|
|
205
|
+
const result = await this.executeTest(testId, platform);
|
|
206
|
+
results.push(result);
|
|
207
|
+
}
|
|
208
|
+
const testsPassed = results.filter(r => r.status === 'passed').length;
|
|
209
|
+
const testsFailed = results.filter(r => r.status === 'failed').length;
|
|
210
|
+
const riskScore = this.calculateRiskScore(results);
|
|
211
|
+
return {
|
|
212
|
+
timestamp: new Date(),
|
|
213
|
+
systemInfo,
|
|
214
|
+
testsExecuted: results.length,
|
|
215
|
+
testsPassed,
|
|
216
|
+
testsFailed,
|
|
217
|
+
riskScore,
|
|
218
|
+
results,
|
|
219
|
+
summary: this.generateSummary(results)
|
|
220
|
+
};
|
|
221
|
+
}
|
|
222
|
+
/**
|
|
223
|
+
* Generate test report in various formats
|
|
224
|
+
*/
|
|
225
|
+
generateTestReport(assessment, format) {
|
|
226
|
+
switch (format) {
|
|
227
|
+
case 'json':
|
|
228
|
+
return JSON.stringify(assessment, null, 2);
|
|
229
|
+
case 'html':
|
|
230
|
+
return this.generateHTMLReport(assessment);
|
|
231
|
+
default:
|
|
232
|
+
return this.generateTextReport(assessment);
|
|
233
|
+
}
|
|
234
|
+
}
|
|
235
|
+
/**
|
|
236
|
+
* Generate remediation guidance based on test results
|
|
237
|
+
*/
|
|
238
|
+
generateRemediationGuidance(results) {
|
|
239
|
+
const guidance = [];
|
|
240
|
+
results.forEach(result => {
|
|
241
|
+
if (result.status !== 'passed' && result.recommendations) {
|
|
242
|
+
guidance.push(`Test: ${result.testId}`);
|
|
243
|
+
guidance.push(`Status: ${result.status}`);
|
|
244
|
+
guidance.push('Recommendations:');
|
|
245
|
+
result.recommendations.forEach(rec => {
|
|
246
|
+
guidance.push(` - ${rec}`);
|
|
247
|
+
});
|
|
248
|
+
guidance.push('');
|
|
249
|
+
}
|
|
250
|
+
});
|
|
251
|
+
return guidance;
|
|
252
|
+
}
|
|
253
|
+
/**
|
|
254
|
+
* Simulate test execution (placeholder for actual implementation)
|
|
255
|
+
*/
|
|
256
|
+
async simulateTestExecution(test, platform) {
|
|
257
|
+
// Simulate test execution delay
|
|
258
|
+
await new Promise(resolve => setTimeout(resolve, 1000 + Math.random() * 2000));
|
|
259
|
+
return `Simulated execution of ${test.name} on ${platform}\n` +
|
|
260
|
+
`Test Steps: ${test.testSteps.join(', ')}\n` +
|
|
261
|
+
`Expected Results: ${test.expectedResults.join(', ')}\n` +
|
|
262
|
+
`Risk Level: ${test.riskLevel}`;
|
|
263
|
+
}
|
|
264
|
+
/**
|
|
265
|
+
* Get system information (placeholder for actual implementation)
|
|
266
|
+
*/
|
|
267
|
+
async getSystemInfo(platform) {
|
|
268
|
+
return {
|
|
269
|
+
platform,
|
|
270
|
+
architecture: 'x64',
|
|
271
|
+
version: 'simulated',
|
|
272
|
+
user: 'test-user',
|
|
273
|
+
privileges: ['user']
|
|
274
|
+
};
|
|
275
|
+
}
|
|
276
|
+
/**
|
|
277
|
+
* Calculate risk score based on test results
|
|
278
|
+
*/
|
|
279
|
+
calculateRiskScore(results) {
|
|
280
|
+
const failedTests = results.filter(r => r.status === 'failed');
|
|
281
|
+
const totalTests = results.length;
|
|
282
|
+
if (totalTests === 0)
|
|
283
|
+
return 0;
|
|
284
|
+
return Math.round((failedTests.length / totalTests) * 100);
|
|
285
|
+
}
|
|
286
|
+
/**
|
|
287
|
+
* Generate summary of test results
|
|
288
|
+
*/
|
|
289
|
+
generateSummary(results) {
|
|
290
|
+
const passed = results.filter(r => r.status === 'passed').length;
|
|
291
|
+
const failed = results.filter(r => r.status === 'failed').length;
|
|
292
|
+
const skipped = results.filter(r => r.status === 'skipped').length;
|
|
293
|
+
const errors = results.filter(r => r.status === 'error').length;
|
|
294
|
+
return `Security Assessment Summary:\n` +
|
|
295
|
+
` Passed: ${passed}\n` +
|
|
296
|
+
` Failed: ${failed}\n` +
|
|
297
|
+
` Skipped: ${skipped}\n` +
|
|
298
|
+
` Errors: ${errors}\n` +
|
|
299
|
+
` Total: ${results.length}`;
|
|
300
|
+
}
|
|
301
|
+
/**
|
|
302
|
+
* Generate text report
|
|
303
|
+
*/
|
|
304
|
+
generateTextReport(assessment) {
|
|
305
|
+
const report = [];
|
|
306
|
+
report.push('SECURITY ASSESSMENT REPORT');
|
|
307
|
+
report.push('='.repeat(50));
|
|
308
|
+
report.push(`Timestamp: ${assessment.timestamp.toISOString()}`);
|
|
309
|
+
report.push(`Platform: ${assessment.systemInfo.platform}`);
|
|
310
|
+
report.push(`Risk Score: ${assessment.riskScore}%`);
|
|
311
|
+
report.push('');
|
|
312
|
+
report.push('TEST RESULTS:');
|
|
313
|
+
report.push('-'.repeat(30));
|
|
314
|
+
assessment.results.forEach(result => {
|
|
315
|
+
report.push(`Test: ${result.testId}`);
|
|
316
|
+
report.push(` Status: ${result.status}`);
|
|
317
|
+
report.push(` Execution Time: ${result.executionTime}ms`);
|
|
318
|
+
if (result.output) {
|
|
319
|
+
report.push(` Output: ${result.output.split('\n')[0]}...`);
|
|
320
|
+
}
|
|
321
|
+
report.push('');
|
|
322
|
+
});
|
|
323
|
+
report.push('SUMMARY:');
|
|
324
|
+
report.push('-'.repeat(30));
|
|
325
|
+
report.push(assessment.summary);
|
|
326
|
+
return report.join('\n');
|
|
327
|
+
}
|
|
328
|
+
/**
|
|
329
|
+
* Generate HTML report
|
|
330
|
+
*/
|
|
331
|
+
generateHTMLReport(assessment) {
|
|
332
|
+
return `
|
|
333
|
+
<!DOCTYPE html>
|
|
334
|
+
<html>
|
|
335
|
+
<head>
|
|
336
|
+
<title>Security Assessment Report</title>
|
|
337
|
+
<style>
|
|
338
|
+
body { font-family: Arial, sans-serif; margin: 20px; }
|
|
339
|
+
.header { background: #f0f0f0; padding: 20px; border-radius: 5px; }
|
|
340
|
+
.test-result { margin: 10px 0; padding: 10px; border-left: 4px solid #ccc; }
|
|
341
|
+
.passed { border-color: green; background: #f0fff0; }
|
|
342
|
+
.failed { border-color: red; background: #fff0f0; }
|
|
343
|
+
.summary { background: #e0e0e0; padding: 15px; border-radius: 5px; }
|
|
344
|
+
</style>
|
|
345
|
+
</head>
|
|
346
|
+
<body>
|
|
347
|
+
<div class="header">
|
|
348
|
+
<h1>Security Assessment Report</h1>
|
|
349
|
+
<p><strong>Timestamp:</strong> ${assessment.timestamp.toISOString()}</p>
|
|
350
|
+
<p><strong>Platform:</strong> ${assessment.systemInfo.platform}</p>
|
|
351
|
+
<p><strong>Risk Score:</strong> ${assessment.riskScore}%</p>
|
|
352
|
+
</div>
|
|
353
|
+
|
|
354
|
+
<h2>Test Results</h2>
|
|
355
|
+
${assessment.results.map(result => `
|
|
356
|
+
<div class="test-result ${result.status}">
|
|
357
|
+
<h3>${result.testId}</h3>
|
|
358
|
+
<p><strong>Status:</strong> ${result.status}</p>
|
|
359
|
+
<p><strong>Execution Time:</strong> ${result.executionTime}ms</p>
|
|
360
|
+
<pre>${result.output}</pre>
|
|
361
|
+
</div>
|
|
362
|
+
`).join('')}
|
|
363
|
+
|
|
364
|
+
<div class="summary">
|
|
365
|
+
<h2>Summary</h2>
|
|
366
|
+
<pre>${assessment.summary}</pre>
|
|
367
|
+
</div>
|
|
368
|
+
</body>
|
|
369
|
+
</html>`;
|
|
370
|
+
}
|
|
371
|
+
}
|
|
372
|
+
//# sourceMappingURL=security-testing-framework.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"security-testing-framework.js","sourceRoot":"","sources":["../../src/security/security-testing-framework.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,OAAO,EAAE,0BAA0B,EAA6B,MAAM,2BAA2B,CAAC;AA6ClG;;GAEG;AACH,MAAM,OAAO,wBAAwB;IAC3B,mBAAmB,CAA6B;IAChD,aAAa,CAAiB;IAEtC;QACE,IAAI,CAAC,mBAAmB,GAAG,IAAI,0BAA0B,EAAE,CAAC;QAC5D,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC,uBAAuB,EAAE,CAAC;IACtD,CAAC;IAED;;OAEG;IACH,IAAI,kBAAkB;QACpB,OAAO,IAAI,CAAC,mBAAmB,CAAC;IAClC,CAAC;IAED;;OAEG;IACK,uBAAuB;QAC7B,MAAM,KAAK,GAAmB,EAAE,CAAC;QAEjC,4BAA4B;QAC5B,KAAK,CAAC,IAAI,CAAC;YACT,EAAE,EAAE,+BAA+B;YACnC,IAAI,EAAE,wCAAwC;YAC9C,QAAQ,EAAE,aAAa;YACvB,QAAQ,EAAE,CAAC,SAAS,CAAC;YACrB,WAAW,EAAE,yDAAyD;YACtE,SAAS,EAAE;gBACT,4EAA4E;gBAC5E,6EAA6E;gBAC7E,uCAAuC;gBACvC,wCAAwC;aACzC;YACD,eAAe,EAAE;gBACf,yCAAyC;gBACzC,gCAAgC;gBAChC,iCAAiC;aAClC;YACD,SAAS,EAAE,MAAM;YACjB,OAAO,EAAE,WAAW;SACrB,CAAC,CAAC;QAEH,KAAK,CAAC,IAAI,CAAC;YACT,EAAE,EAAE,0BAA0B;YAC9B,IAAI,EAAE,mCAAmC;YACzC,QAAQ,EAAE,aAAa;YACvB,QAAQ,EAAE,CAAC,SAAS,CAAC;YACrB,WAAW,EAAE,oDAAoD;YACjE,SAAS,EAAE;gBACT,yCAAyC;gBACzC,wCAAwC;gBACxC,+BAA+B;gBAC/B,uCAAuC;aACxC;YACD,eAAe,EAAE;gBACf,kCAAkC;gBAClC,2CAA2C;gBAC3C,iCAAiC;aAClC;YACD,SAAS,EAAE,MAAM;YACjB,OAAO,EAAE,WAAW;SACrB,CAAC,CAAC;QAEH,0BAA0B;QAC1B,KAAK,CAAC,IAAI,CAAC;YACT,EAAE,EAAE,6BAA6B;YACjC,IAAI,EAAE,sCAAsC;YAC5C,QAAQ,EAAE,aAAa;YACvB,QAAQ,EAAE,CAAC,OAAO,CAAC;YACnB,WAAW,EAAE,qDAAqD;YAClE,SAAS,EAAE;gBACT,iCAAiC;gBACjC,uCAAuC;gBACvC,kCAAkC;gBAClC,oCAAoC;aACrC;YACD,eAAe,EAAE;gBACf,4BAA4B;gBAC5B,sCAAsC;gBACtC,iCAAiC;aAClC;YACD,SAAS,EAAE,MAAM;YACjB,OAAO,EAAE,WAAW;SACrB,CAAC,CAAC;QAEH,KAAK,CAAC,IAAI,CAAC;YACT,EAAE,EAAE,gCAAgC;YACpC,IAAI,EAAE,6CAA6C;YACnD,QAAQ,EAAE,aAAa;YACvB,QAAQ,EAAE,CAAC,OAAO,CAAC;YACnB,WAAW,EAAE,qDAAqD;YAClE,SAAS,EAAE;gBACT,sCAAsC;gBACtC,2BAA2B;gBAC3B,oCAAoC;gBACpC,wCAAwC;aACzC;YACD,eAAe,EAAE;gBACf,mCAAmC;gBACnC,+CAA+C;gBAC/C,iCAAiC;aAClC;YACD,SAAS,EAAE,MAAM;YACjB,OAAO,EAAE,WAAW;SACrB,CAAC,CAAC;QAEH,uBAAuB;QACvB,KAAK,CAAC,IAAI,CAAC;YACT,EAAE,EAAE,0BAA0B;YAC9B,IAAI,EAAE,2CAA2C;YACjD,QAAQ,EAAE,aAAa;YACvB,QAAQ,EAAE,CAAC,OAAO,EAAE,OAAO,CAAC;YAC5B,WAAW,EAAE,6CAA6C;YAC1D,SAAS,EAAE;gBACT,oCAAoC;gBACpC,2BAA2B;gBAC3B,2BAA2B;gBAC3B,qCAAqC;aACtC;YACD,eAAe,EAAE;gBACf,oCAAoC;gBACpC,wCAAwC;gBACxC,iCAAiC;aAClC;YACD,SAAS,EAAE,MAAM;YACjB,OAAO,EAAE,WAAW;SACrB,CAAC,CAAC;QAEH,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;OAEG;IACH,kBAAkB,CAAC,QAAgB;QACjC,OAAO,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CACtC,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAC7E,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,kBAAkB,CAAC,QAAgB;QACjC,OAAO,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC;IACvE,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,WAAW,CAAC,MAAc,EAAE,QAAgB;QAChD,MAAM,IAAI,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,MAAM,CAAC,CAAC;QAC3D,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,KAAK,CAAC,mBAAmB,MAAM,EAAE,CAAC,CAAC;QAC/C,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,CAAC;YACnF,OAAO;gBACL,MAAM;gBACN,MAAM,EAAE,SAAS;gBACjB,aAAa,EAAE,CAAC;gBAChB,MAAM,EAAE,0BAA0B,QAAQ,gBAAgB;aAC3D,CAAC;QACJ,CAAC;QAED,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE7B,IAAI,CAAC;YACH,yFAAyF;YACzF,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,qBAAqB,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;YAChE,MAAM,aAAa,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAE7C,OAAO;gBACL,MAAM;gBACN,MAAM,EAAE,QAAQ;gBAChB,aAAa;gBACb,MAAM;gBACN,QAAQ,EAAE,0BAA0B,MAAM,EAAE;gBAC5C,eAAe,EAAE,CAAC,gCAAgC,EAAE,0BAA0B,CAAC;aAChF,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,aAAa,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAE7C,OAAO;gBACL,MAAM;gBACN,MAAM,EAAE,OAAO;gBACf,aAAa;gBACb,MAAM,EAAE,0BAA0B,KAAK,EAAE;gBACzC,eAAe,EAAE,CAAC,2BAA2B,EAAE,0BAA0B,CAAC;aAC3E,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,gBAAgB,CAAC,OAAiB,EAAE,QAAgB;QACxD,MAAM,OAAO,GAA0B,EAAE,CAAC;QAC1C,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC;QAEtD,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;YAC7B,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;YACxD,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACvB,CAAC;QAED,MAAM,WAAW,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,QAAQ,CAAC,CAAC,MAAM,CAAC;QACtE,MAAM,WAAW,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,QAAQ,CAAC,CAAC,MAAM,CAAC;QACtE,MAAM,SAAS,GAAG,IAAI,CAAC,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAEnD,OAAO;YACL,SAAS,EAAE,IAAI,IAAI,EAAE;YACrB,UAAU;YACV,aAAa,EAAE,OAAO,CAAC,MAAM;YAC7B,WAAW;YACX,WAAW;YACX,SAAS;YACT,OAAO;YACP,OAAO,EAAE,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC;SACvC,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,kBAAkB,CAAC,UAA8B,EAAE,MAAgC;QACjF,QAAQ,MAAM,EAAE,CAAC;YACf,KAAK,MAAM;gBACT,OAAO,IAAI,CAAC,SAAS,CAAC,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;YAC7C,KAAK,MAAM;gBACT,OAAO,IAAI,CAAC,kBAAkB,CAAC,UAAU,CAAC,CAAC;YAC7C;gBACE,OAAO,IAAI,CAAC,kBAAkB,CAAC,UAAU,CAAC,CAAC;QAC/C,CAAC;IACH,CAAC;IAED;;OAEG;IACH,2BAA2B,CAAC,OAA8B;QACxD,MAAM,QAAQ,GAAa,EAAE,CAAC;QAE9B,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE;YACvB,IAAI,MAAM,CAAC,MAAM,KAAK,QAAQ,IAAI,MAAM,CAAC,eAAe,EAAE,CAAC;gBACzD,QAAQ,CAAC,IAAI,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;gBACxC,QAAQ,CAAC,IAAI,CAAC,WAAW,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;gBAC1C,QAAQ,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;gBAClC,MAAM,CAAC,eAAe,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE;oBACnC,QAAQ,CAAC,IAAI,CAAC,OAAO,GAAG,EAAE,CAAC,CAAC;gBAC9B,CAAC,CAAC,CAAC;gBACH,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACpB,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,qBAAqB,CAAC,IAAkB,EAAE,QAAgB;QACtE,gCAAgC;QAChC,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,IAAI,GAAG,IAAI,CAAC,MAAM,EAAE,GAAG,IAAI,CAAC,CAAC,CAAC;QAE/E,OAAO,0BAA0B,IAAI,CAAC,IAAI,OAAO,QAAQ,IAAI;YACtD,eAAe,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI;YAC5C,qBAAqB,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI;YACxD,eAAe,IAAI,CAAC,SAAS,EAAE,CAAC;IACzC,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,aAAa,CAAC,QAAgB;QAC1C,OAAO;YACL,QAAQ;YACR,YAAY,EAAE,KAAK;YACnB,OAAO,EAAE,WAAW;YACpB,IAAI,EAAE,WAAW;YACjB,UAAU,EAAE,CAAC,MAAM,CAAC;SACrB,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,kBAAkB,CAAC,OAA8B;QACvD,MAAM,WAAW,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,QAAQ,CAAC,CAAC;QAC/D,MAAM,UAAU,GAAG,OAAO,CAAC,MAAM,CAAC;QAElC,IAAI,UAAU,KAAK,CAAC;YAAE,OAAO,CAAC,CAAC;QAE/B,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC,WAAW,CAAC,MAAM,GAAG,UAAU,CAAC,GAAG,GAAG,CAAC,CAAC;IAC7D,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,OAA8B;QACpD,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,QAAQ,CAAC,CAAC,MAAM,CAAC;QACjE,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,QAAQ,CAAC,CAAC,MAAM,CAAC;QACjE,MAAM,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC,MAAM,CAAC;QACnE,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,OAAO,CAAC,CAAC,MAAM,CAAC;QAEhE,OAAO,gCAAgC;YAChC,aAAa,MAAM,IAAI;YACvB,aAAa,MAAM,IAAI;YACvB,cAAc,OAAO,IAAI;YACzB,aAAa,MAAM,IAAI;YACvB,YAAY,OAAO,CAAC,MAAM,EAAE,CAAC;IACtC,CAAC;IAED;;OAEG;IACK,kBAAkB,CAAC,UAA8B;QACvD,MAAM,MAAM,GAAa,EAAE,CAAC;QAE5B,MAAM,CAAC,IAAI,CAAC,4BAA4B,CAAC,CAAC;QAC1C,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;QAC5B,MAAM,CAAC,IAAI,CAAC,cAAc,UAAU,CAAC,SAAS,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;QAChE,MAAM,CAAC,IAAI,CAAC,aAAa,UAAU,CAAC,UAAU,CAAC,QAAQ,EAAE,CAAC,CAAC;QAC3D,MAAM,CAAC,IAAI,CAAC,eAAe,UAAU,CAAC,SAAS,GAAG,CAAC,CAAC;QACpD,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAChB,MAAM,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;QAC7B,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;QAE5B,UAAU,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE;YAClC,MAAM,CAAC,IAAI,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;YACtC,MAAM,CAAC,IAAI,CAAC,aAAa,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;YAC1C,MAAM,CAAC,IAAI,CAAC,qBAAqB,MAAM,CAAC,aAAa,IAAI,CAAC,CAAC;YAC3D,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;gBAClB,MAAM,CAAC,IAAI,CAAC,aAAa,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;YAC9D,CAAC;YACD,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC,CAAC,CAAC;QAEH,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QACxB,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;QAC5B,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;QAEhC,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC3B,CAAC;IAED;;OAEG;IACK,kBAAkB,CAAC,UAA8B;QACvD,OAAO;;;;;;;;;;;;;;;;;yCAiB8B,UAAU,CAAC,SAAS,CAAC,WAAW,EAAE;wCACnC,UAAU,CAAC,UAAU,CAAC,QAAQ;0CAC5B,UAAU,CAAC,SAAS;;;;MAIxD,UAAU,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;kCACL,MAAM,CAAC,MAAM;kBAC7B,MAAM,CAAC,MAAM;0CACW,MAAM,CAAC,MAAM;kDACL,MAAM,CAAC,aAAa;mBACnD,MAAM,CAAC,MAAM;;KAE3B,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC;;;;eAIA,UAAU,CAAC,OAAO;;;QAGzB,CAAC;IACP,CAAC;CACF"}
|
|
@@ -0,0 +1,93 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Attack Simulation Engine
|
|
3
|
+
*
|
|
4
|
+
* Provides attack simulation capabilities for authorized security testing
|
|
5
|
+
* and red team exercises.
|
|
6
|
+
*
|
|
7
|
+
* LEGAL NOTICE:
|
|
8
|
+
* For authorized security research, penetration testing, and red team exercises only.
|
|
9
|
+
*/
|
|
10
|
+
export interface AttackSimulationRequest {
|
|
11
|
+
attackType: 'web_application' | 'authentication' | 'injection' | 'persistence' | 'privilege_escalation';
|
|
12
|
+
target: string;
|
|
13
|
+
stealthLevel: number;
|
|
14
|
+
}
|
|
15
|
+
export interface AttackSimulationResult {
|
|
16
|
+
attackType: string;
|
|
17
|
+
target: string;
|
|
18
|
+
stealthLevel: number;
|
|
19
|
+
steps: string[];
|
|
20
|
+
successProbability: number;
|
|
21
|
+
detectionProbability: number;
|
|
22
|
+
impactAssessment: string;
|
|
23
|
+
recommendations: string[];
|
|
24
|
+
}
|
|
25
|
+
export interface PayloadGenerationRequest {
|
|
26
|
+
payloadType: 'sql_injection' | 'xss' | 'command_injection' | 'file_upload' | 'authentication_bypass';
|
|
27
|
+
target: string;
|
|
28
|
+
count: number;
|
|
29
|
+
}
|
|
30
|
+
export interface PayloadGenerationResult {
|
|
31
|
+
payloadType: string;
|
|
32
|
+
target: string;
|
|
33
|
+
count: number;
|
|
34
|
+
payloads: string[];
|
|
35
|
+
usageInstructions: string;
|
|
36
|
+
detectionMethods: string[];
|
|
37
|
+
}
|
|
38
|
+
/**
|
|
39
|
+
* Attack Simulation Engine
|
|
40
|
+
*/
|
|
41
|
+
export declare class AttackSimulationEngine {
|
|
42
|
+
private attackTemplates;
|
|
43
|
+
constructor();
|
|
44
|
+
/**
|
|
45
|
+
* Simulate attack scenario
|
|
46
|
+
*/
|
|
47
|
+
simulateAttack(request: AttackSimulationRequest): Promise<AttackSimulationResult>;
|
|
48
|
+
/**
|
|
49
|
+
* Generate payloads for security testing
|
|
50
|
+
*/
|
|
51
|
+
generatePayloads(request: PayloadGenerationRequest): Promise<PayloadGenerationResult>;
|
|
52
|
+
/**
|
|
53
|
+
* Get available attack types
|
|
54
|
+
*/
|
|
55
|
+
getAvailableAttackTypes(): string[];
|
|
56
|
+
/**
|
|
57
|
+
* Generate attack steps based on template and stealth level
|
|
58
|
+
*/
|
|
59
|
+
private generateAttackSteps;
|
|
60
|
+
/**
|
|
61
|
+
* Calculate success probability
|
|
62
|
+
*/
|
|
63
|
+
private calculateSuccessProbability;
|
|
64
|
+
/**
|
|
65
|
+
* Calculate detection probability
|
|
66
|
+
*/
|
|
67
|
+
private calculateDetectionProbability;
|
|
68
|
+
/**
|
|
69
|
+
* Generate impact assessment
|
|
70
|
+
*/
|
|
71
|
+
private generateImpactAssessment;
|
|
72
|
+
/**
|
|
73
|
+
* Generate attack recommendations
|
|
74
|
+
*/
|
|
75
|
+
private generateAttackRecommendations;
|
|
76
|
+
/**
|
|
77
|
+
* Generate payloads by type
|
|
78
|
+
*/
|
|
79
|
+
private generatePayloadsByType;
|
|
80
|
+
/**
|
|
81
|
+
* Generate usage instructions
|
|
82
|
+
*/
|
|
83
|
+
private generateUsageInstructions;
|
|
84
|
+
/**
|
|
85
|
+
* Generate detection methods
|
|
86
|
+
*/
|
|
87
|
+
private generateDetectionMethods;
|
|
88
|
+
/**
|
|
89
|
+
* Initialize attack templates
|
|
90
|
+
*/
|
|
91
|
+
private initializeAttackTemplates;
|
|
92
|
+
}
|
|
93
|
+
//# sourceMappingURL=attackSimulation.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"attackSimulation.d.ts","sourceRoot":"","sources":["../../../src/security/simulation/attackSimulation.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,MAAM,WAAW,uBAAuB;IACtC,UAAU,EAAE,iBAAiB,GAAG,gBAAgB,GAAG,WAAW,GAAG,aAAa,GAAG,sBAAsB,CAAC;IACxG,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,sBAAsB;IACrC,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,MAAM,CAAC;IACrB,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,oBAAoB,EAAE,MAAM,CAAC;IAC7B,gBAAgB,EAAE,MAAM,CAAC;IACzB,eAAe,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED,MAAM,WAAW,wBAAwB;IACvC,WAAW,EAAE,eAAe,GAAG,KAAK,GAAG,mBAAmB,GAAG,aAAa,GAAG,uBAAuB,CAAC;IACrG,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,uBAAuB;IACtC,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,gBAAgB,EAAE,MAAM,EAAE,CAAC;CAC5B;AAED;;GAEG;AACH,qBAAa,sBAAsB;IACjC,OAAO,CAAC,eAAe,CAA8B;;IAOrD;;OAEG;IACG,cAAc,CAAC,OAAO,EAAE,uBAAuB,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAyBvF;;OAEG;IACG,gBAAgB,CAAC,OAAO,EAAE,wBAAwB,GAAG,OAAO,CAAC,uBAAuB,CAAC;IAe3F;;OAEG;IACH,uBAAuB,IAAI,MAAM,EAAE;IAInC;;OAEG;IACH,OAAO,CAAC,mBAAmB;IAe3B;;OAEG;IACH,OAAO,CAAC,2BAA2B;IAanC;;OAEG;IACH,OAAO,CAAC,6BAA6B;IAerC;;OAEG;IACH,OAAO,CAAC,wBAAwB;IAIhC;;OAEG;IACH,OAAO,CAAC,6BAA6B;IASrC;;OAEG;IACH,OAAO,CAAC,sBAAsB;IA+C9B;;OAEG;IACH,OAAO,CAAC,yBAAyB;IAYjC;;OAEG;IACH,OAAO,CAAC,wBAAwB;IAqChC;;OAEG;IACH,OAAO,CAAC,yBAAyB;CAiHlC"}
|