erosolar-cli 1.7.55 → 1.7.56

package/dist/security/apt-simulation-engine-complete.d.ts

@@ -1,97 +0,0 @@
-/**
- * APT Simulation Engine
- *
- * Comprehensive framework for simulating Advanced Persistent Threat campaigns
- * from initial access through persistence and data exfiltration.
- *
- * Based on MITRE ATT&CK framework and real-world APT tactics.
- */
-export interface APTAttackPhase {
-    id: string;
-    name: string;
-    mitreId: string;
-    description: string;
-    techniques: APTTechnique[];
-    objectives: string[];
-    successCriteria: string[];
-}
-export interface APTTechnique {
-    id: string;
-    name: string;
-    mitreId: string;
-    phase: string;
-    description: string;
-    implementation: string[];
-    detectionMethods: string[];
-    countermeasures: string[];
-    riskLevel: 'low' | 'medium' | 'high' | 'critical';
-}
-export interface APTSimulationConfig {
-    targetPlatform: 'windows' | 'linux' | 'mixed';
-    simulationScope: 'full' | 'initial-access' | 'persistence' | 'lateral-movement' | 'exfiltration';
-    complexity: 'basic' | 'intermediate' | 'advanced';
-    stealthLevel: 'low' | 'medium' | 'high';
-    duration: 'short' | 'medium' | 'extended';
-}
-export interface APTSimulationResult {
-    simulationId: string;
-    timestamp: Date;
-    config: APTSimulationConfig;
-    phasesExecuted: string[];
-    techniquesUsed: APTTechnique[];
-    successRate: number;
-    detectionEvents: DetectionEvent[];
-    recommendations: string[];
-    evidence: SimulationEvidence[];
-}
-export interface DetectionEvent {
-    techniqueId: string;
-    timestamp: Date;
-    detectionMethod: string;
-    confidence: 'low' | 'medium' | 'high';
-    evidence: string;
-}
-export interface SimulationEvidence {
-    phase: string;
-    technique: string;
-    evidenceType: 'file' | 'network' | 'process' | 'registry' | 'log';
-    content: string;
-    location: string;
-}
-/**
- * APT Simulation Engine Class
- */
-export declare class APTSimulationEngine {
-    private attackPhases;
-    private techniques;
-    constructor();
-    /**
-     * Initialize APT attack phases based on MITRE ATT&CK
-     */
-    private initializeAttackPhases;
-    /**
-     * Initialize APT techniques based on MITRE ATT&CK
-     */
-    private initializeTechniques;
-    /**
-     * Get techniques by attack phase
-     */
-    getTechniquesByPhase(phaseId: string): APTTechnique[];
-    /**
-     * Get all attack phases
-     */
-    getAttackPhases(): APTAttackPhase[];
-    /**
-     * Generate APT simulation scenario
-     */
-    generateScenario(config: APTSimulationConfig): APTTechnique[];
-    /**
-     * Determine if technique should be included in simulation
-     */
-    private shouldIncludeTechnique;
-    /**
-     * Simulate APT attack campaign
-     */
-    simulateAttack(config: APTSimulationConfig): Promise<APTSimulationResult>;
-}
-//# sourceMappingURL=apt-simulation-engine-complete.d.ts.map

package/dist/security/apt-simulation-engine-complete.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"apt-simulation-engine-complete.d.ts","sourceRoot":"","sources":["../../src/security/apt-simulation-engine-complete.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,MAAM,WAAW,cAAc;IAC7B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,YAAY,EAAE,CAAC;IAC3B,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,eAAe,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED,MAAM,WAAW,YAAY;IAC3B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,cAAc,EAAE,MAAM,EAAE,CAAC;IACzB,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,SAAS,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;CACnD;AAED,MAAM,WAAW,mBAAmB;IAClC,cAAc,EAAE,SAAS,GAAG,OAAO,GAAG,OAAO,CAAC;IAC9C,eAAe,EAAE,MAAM,GAAG,gBAAgB,GAAG,aAAa,GAAG,kBAAkB,GAAG,cAAc,CAAC;IACjG,UAAU,EAAE,OAAO,GAAG,cAAc,GAAG,UAAU,CAAC;IAClD,YAAY,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;IACxC,QAAQ,EAAE,OAAO,GAAG,QAAQ,GAAG,UAAU,CAAC;CAC3C;AAED,MAAM,WAAW,mBAAmB;IAClC,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,IAAI,CAAC;IAChB,MAAM,EAAE,mBAAmB,CAAC;IAC5B,cAAc,EAAE,MAAM,EAAE,CAAC;IACzB,cAAc,EAAE,YAAY,EAAE,CAAC;IAC/B,WAAW,EAAE,MAAM,CAAC;IACpB,eAAe,EAAE,cAAc,EAAE,CAAC;IAClC,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,QAAQ,EAAE,kBAAkB,EAAE,CAAC;CAChC;AAED,MAAM,WAAW,cAAc;IAC7B,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,EAAE,IAAI,CAAC;IAChB,eAAe,EAAE,MAAM,CAAC;IACxB,UAAU,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;IACtC,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,kBAAkB;IACjC,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,YAAY,EAAE,MAAM,GAAG,SAAS,GAAG,SAAS,GAAG,UAAU,GAAG,KAAK,CAAC;IAClE,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,qBAAa,mBAAmB;IAC9B,OAAO,CAAC,YAAY,CAAmB;IACvC,OAAO,CAAC,UAAU,CAAiB;;IAOnC;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAiN9B;;OAEG;IACH,OAAO,CAAC,oBAAoB;IAsJ5B;;OAEG;IACH,oBAAoB,CAAC,OAAO,EAAE,MAAM,GAAG,YAAY,EAAE;IAIrD;;OAEG;IACH,eAAe,IAAI,cAAc,EAAE;IAOnC;;OAEG;IACH,gBAAgB,CAAC,MAAM,EAAE,mBAAmB,GAAG,YAAY,EAAE;IAa7D;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAsB9B;;OAEG;IACG,cAAc,CAAC,MAAM,EAAE,mBAAmB,GAAG,OAAO,CAAC,mBAAmB,CAAC;CAQlE"}

package/dist/security/apt-simulation-engine-complete.js

@@ -1,441 +0,0 @@
-/**
- * APT Simulation Engine
- *
- * Comprehensive framework for simulating Advanced Persistent Threat campaigns
- * from initial access through persistence and data exfiltration.
- *
- * Based on MITRE ATT&CK framework and real-world APT tactics.
- */
-/**
- * APT Simulation Engine Class
- */
-export class APTSimulationEngine {
-    attackPhases;
-    techniques;
-    constructor() {
-        this.attackPhases = this.initializeAttackPhases();
-        this.techniques = this.initializeTechniques();
-    }
-    /**
-     * Initialize APT attack phases based on MITRE ATT&CK
-     */
-    initializeAttackPhases() {
-        return [
-            {
-                id: 'reconnaissance',
-                name: 'Reconnaissance',
-                mitreId: 'TA0043',
-                description: 'Gathering information about the target environment',
-                techniques: [],
-                objectives: [
-                    'Identify target systems and services',
-                    'Gather network topology information',
-                    'Collect user and system information'
-                ],
-                successCriteria: [
-                    'Target information successfully gathered',
-                    'Network mapping completed',
-                    'Vulnerability assessment performed'
-                ]
-            },
-            {
-                id: 'initial-access',
-                name: 'Initial Access',
-                mitreId: 'TA0001',
-                description: 'Gaining initial foothold in the target environment',
-                techniques: [],
-                objectives: [
-                    'Establish initial access to target systems',
-                    'Bypass perimeter defenses',
-                    'Execute initial payload'
-                ],
-                successCriteria: [
-                    'Initial access established',
-                    'Payload successfully executed',
-                    'Command and control established'
-                ]
-            },
-            {
-                id: 'execution',
-                name: 'Execution',
-                mitreId: 'TA0002',
-                description: 'Running malicious code on target systems',
-                techniques: [],
-                objectives: [
-                    'Execute malicious code',
-                    'Establish persistence mechanisms',
-                    'Escalate privileges'
-                ],
-                successCriteria: [
-                    'Code execution achieved',
-                    'Persistence established',
-                    'Privilege escalation successful'
-                ]
-            },
-            {
-                id: 'persistence',
-                name: 'Persistence',
-                mitreId: 'TA0003',
-                description: 'Maintaining access across system restarts and disruptions',
-                techniques: [],
-                objectives: [
-                    'Establish multiple persistence mechanisms',
-                    'Survive system reboots and updates',
-                    'Maintain long-term access'
-                ],
-                successCriteria: [
-                    'Multiple persistence methods established',
-                    'Access maintained after system events',
-                    'Stealth maintained'
-                ]
-            },
-            {
-                id: 'privilege-escalation',
-                name: 'Privilege Escalation',
-                mitreId: 'TA0004',
-                description: 'Gaining higher-level permissions on target systems',
-                techniques: [],
-                objectives: [
-                    'Escalate to administrative privileges',
-                    'Bypass user account controls',
-                    'Access protected resources'
-                ],
-                successCriteria: [
-                    'Administrative access achieved',
-                    'Protected resources accessed',
-                    'Privilege escalation undetected'
-                ]
-            },
-            {
-                id: 'defense-evasion',
-                name: 'Defense Evasion',
-                mitreId: 'TA0005',
-                description: 'Avoiding detection by security controls',
-                techniques: [],
-                objectives: [
-                    'Bypass antivirus and EDR solutions',
-                    'Evade network monitoring',
-                    'Hide malicious activity'
-                ],
-                successCriteria: [
-                    'Security controls bypassed',
-                    'Activities remain undetected',
-                    'Forensic evidence minimized'
-                ]
-            },
-            {
-                id: 'credential-access',
-                name: 'Credential Access',
-                mitreId: 'TA0006',
-                description: 'Stealing credentials like account names and passwords',
-                techniques: [],
-                objectives: [
-                    'Extract user credentials',
-                    'Access password stores',
-                    'Capture authentication tokens'
-                ],
-                successCriteria: [
-                    'Credentials successfully extracted',
-                    'Authentication mechanisms compromised',
-                    'Access to additional systems gained'
-                ]
-            },
-            {
-                id: 'discovery',
-                name: 'Discovery',
-                mitreId: 'TA0007',
-                description: 'Learning about the target environment',
-                techniques: [],
-                objectives: [
-                    'Map network topology',
-                    'Identify valuable assets',
-                    'Discover security controls'
-                ],
-                successCriteria: [
-                    'Environment fully mapped',
-                    'Critical assets identified',
-                    'Security controls documented'
-                ]
-            },
-            {
-                id: 'lateral-movement',
-                name: 'Lateral Movement',
-                mitreId: 'TA0008',
-                description: 'Moving through the target environment',
-                techniques: [],
-                objectives: [
-                    'Move between systems',
-                    'Access additional network segments',
-                    'Establish foothold on critical systems'
-                ],
-                successCriteria: [
-                    'Multiple systems compromised',
-                    'Network segments traversed',
-                    'Critical systems accessed'
-                ]
-            },
-            {
-                id: 'collection',
-                name: 'Collection',
-                mitreId: 'TA0009',
-                description: 'Gathering target data of interest',
-                techniques: [],
-                objectives: [
-                    'Identify valuable data',
-                    'Stage data for exfiltration',
-                    'Compress and encrypt collected data'
-                ],
-                successCriteria: [
-                    'Target data identified and collected',
-                    'Data prepared for exfiltration',
-                    'Collection activities undetected'
-                ]
-            },
-            {
-                id: 'exfiltration',
-                name: 'Exfiltration',
-                mitreId: 'TA0010',
-                description: 'Stealing and removing data from the target environment',
-                techniques: [],
-                objectives: [
-                    'Transfer data to external systems',
-                    'Evade data loss prevention',
-                    'Cover exfiltration tracks'
-                ],
-                successCriteria: [
-                    'Data successfully exfiltrated',
-                    'Exfiltration undetected',
-                    'Evidence of theft minimized'
-                ]
-            },
-            {
-                id: 'command-and-control',
-                name: 'Command and Control',
-                mitreId: 'TA0011',
-                description: 'Communicating with compromised systems',
-                techniques: [],
-                objectives: [
-                    'Establish communication channels',
-                    'Maintain remote access',
-                    'Evade network monitoring'
-                ],
-                successCriteria: [
-                    'Reliable C2 channels established',
-                    'Communication encrypted and hidden',
-                    'C2 infrastructure resilient'
-                ]
-            }
-        ];
-    }
-    /**
-     * Initialize APT techniques based on MITRE ATT&CK
-     */
-    initializeTechniques() {
-        return [
-            // Initial Access Techniques
-            {
-                id: 'spearphishing-attachment',
-                name: 'Spearphishing Attachment',
-                mitreId: 'T1566.001',
-                phase: 'initial-access',
-                description: 'Send spearphishing emails with malicious attachments',
-                implementation: [
-                    'Craft convincing email with malicious attachment',
-                    'Use social engineering to encourage opening',
-                    'Execute payload when attachment is opened'
-                ],
-                detectionMethods: [
-                    'Email security gateways',
-                    'Endpoint detection and response',
-                    'User behavior analytics'
-                ],
-                countermeasures: [
-                    'User security awareness training',
-                    'Email filtering and sandboxing',
-                    'Application whitelisting'
-                ],
-                riskLevel: 'high'
-            },
-            {
-                id: 'exploit-public-facing-app',
-                name: 'Exploit Public-Facing Application',
-                mitreId: 'T1190',
-                phase: 'initial-access',
-                description: 'Exploit vulnerabilities in internet-facing systems',
-                implementation: [
-                    'Scan for vulnerable services',
-                    'Exploit known vulnerabilities',
-                    'Establish initial foothold'
-                ],
-                detectionMethods: [
-                    'Web application firewalls',
-                    'Intrusion detection systems',
-                    'Vulnerability scanning'
-                ],
-                countermeasures: [
-                    'Regular patching and updates',
-                    'Web application security testing',
-                    'Network segmentation'
-                ],
-                riskLevel: 'critical'
-            },
-            // Persistence Techniques
-            {
-                id: 'scheduled-task',
-                name: 'Scheduled Task',
-                mitreId: 'T1053.005',
-                phase: 'persistence',
-                description: 'Create scheduled tasks for persistence',
-                implementation: [
-                    'Create scheduled task via schtasks or Task Scheduler',
-                    'Configure task to run with SYSTEM privileges',
-                    'Set trigger conditions for execution'
-                ],
-                detectionMethods: [
-                    'Monitor Task Scheduler events',
-                    'Review scheduled task configurations',
-                    'Check for unusual task actions'
-                ],
-                countermeasures: [
-                    'Monitor scheduled task creation',
-                    'Implement application control',
-                    'Regular system auditing'
-                ],
-                riskLevel: 'high'
-            },
-            {
-                id: 'registry-run-keys',
-                name: 'Registry Run Keys',
-                mitreId: 'T1547.001',
-                phase: 'persistence',
-                description: 'Add entries to registry run keys for persistence',
-                implementation: [
-                    'Modify HKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Run',
-                    'Modify HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Run',
-                    'Use registry keys to launch malicious executables'
-                ],
-                detectionMethods: [
-                    'Monitor registry modifications',
-                    'Review run key entries',
-                    'Check for suspicious executable paths'
-                ],
-                countermeasures: [
-                    'Registry monitoring and auditing',
-                    'Application control policies',
-                    'Regular system reviews'
-                ],
-                riskLevel: 'high'
-            },
-            // Lateral Movement Techniques
-            {
-                id: 'windows-admin-shares',
-                name: 'Windows Admin Shares',
-                mitreId: 'T1021.002',
-                phase: 'lateral-movement',
-                description: 'Use Windows administrative shares for lateral movement',
-                implementation: [
-                    'Access administrative shares (C$, ADMIN$)',
-                    'Copy tools and payloads to remote systems',
-                    'Execute commands remotely'
-                ],
-                detectionMethods: [
-                    'Monitor SMB connections',
-                    'Review share access logs',
-                    'Detect unusual file transfers'
-                ],
-                countermeasures: [
-                    'Restrict administrative share access',
-                    'Network segmentation',
-                    'Monitor SMB traffic'
-                ],
-                riskLevel: 'medium'
-            },
-            // Exfiltration Techniques
-            {
-                id: 'exfiltration-over-c2-channel',
-                name: 'Exfiltration Over C2 Channel',
-                mitreId: 'T1041',
-                phase: 'exfiltration',
-                description: 'Exfiltrate data through existing command and control channels',
-                implementation: [
-                    'Encrypt and compress target data',
-                    'Transfer data through C2 channels',
-                    'Use stealthy transfer methods'
-                ],
-                detectionMethods: [
-                    'Network traffic analysis',
-                    'Data loss prevention systems',
-                    'Anomaly detection'
-                ],
-                countermeasures: [
-                    'Network monitoring and filtering',
-                    'Data classification and protection',
-                    'Outbound traffic inspection'
-                ],
-                riskLevel: 'high'
-            }
-        ];
-    }
-    /**
-     * Get techniques by attack phase
-     */
-    getTechniquesByPhase(phaseId) {
-        return this.techniques.filter(tech => tech.phase === phaseId);
-    }
-    /**
-     * Get all attack phases
-     */
-    getAttackPhases() {
-        return this.attackPhases.map(phase => ({
-            ...phase,
-            techniques: this.getTechniquesByPhase(phase.id)
-        }));
-    }
-    /**
-     * Generate APT simulation scenario
-     */
-    generateScenario(config) {
-        const selectedTechniques = [];
-        // Filter techniques based on configuration
-        this.techniques.forEach(technique => {
-            if (this.shouldIncludeTechnique(technique, config)) {
-                selectedTechniques.push(technique);
-            }
-        });
-        return selectedTechniques;
-    }
-    /**
-     * Determine if technique should be included in simulation
-     */
-    shouldIncludeTechnique(technique, config) {
-        // Filter by scope
-        if (config.simulationScope !== 'full' && technique.phase !== config.simulationScope) {
-            return false;
-        }
-        // Filter by platform
-        if (config.targetPlatform === 'windows' && technique.id.includes('linux')) {
-            return false;
-        }
-        if (config.targetPlatform === 'linux' && technique.id.includes('windows')) {
-            return false;
-        }
-        // Filter by complexity
-        if (config.complexity === 'basic' && technique.riskLevel === 'critical') {
-            return false;
-        }
-        return true;
-    }
-    /**
-     * Simulate APT attack campaign
-     */
-    async simulateAttack(config) {
-        const simulationId = this.generateSimulationId();
-        const selectedTechniques = this.generateScenario(config);
-        const detectionEvents = [];
-        const evidence = [];
-        console.log(`Starting APT Simulation: ${simulationId}`);
-        console.log(`Target Platform: ${config.targetPlatform}`);
-        console.log;
-    }
-}
-//# sourceMappingURL=apt-simulation-engine-complete.js.map

package/dist/security/apt-simulation-engine-complete.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"apt-simulation-engine-complete.js","sourceRoot":"","sources":["../../src/security/apt-simulation-engine-complete.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AA4DH;;GAEG;AACH,MAAM,OAAO,mBAAmB;IACtB,YAAY,CAAmB;IAC/B,UAAU,CAAiB;IAEnC;QACE,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC,sBAAsB,EAAE,CAAC;QAClD,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,oBAAoB,EAAE,CAAC;IAChD,CAAC;IAED;;OAEG;IACK,sBAAsB;QAC5B,OAAO;YACL;gBACE,EAAE,EAAE,gBAAgB;gBACpB,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,oDAAoD;gBACjE,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,sCAAsC;oBACtC,qCAAqC;oBACrC,qCAAqC;iBACtC;gBACD,eAAe,EAAE;oBACf,0CAA0C;oBAC1C,2BAA2B;oBAC3B,oCAAoC;iBACrC;aACF;YACD;gBACE,EAAE,EAAE,gBAAgB;gBACpB,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,oDAAoD;gBACjE,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,4CAA4C;oBAC5C,2BAA2B;oBAC3B,yBAAyB;iBAC1B;gBACD,eAAe,EAAE;oBACf,4BAA4B;oBAC5B,+BAA+B;oBAC/B,iCAAiC;iBAClC;aACF;YACD;gBACE,EAAE,EAAE,WAAW;gBACf,IAAI,EAAE,WAAW;gBACjB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,0CAA0C;gBACvD,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,wBAAwB;oBACxB,kCAAkC;oBAClC,qBAAqB;iBACtB;gBACD,eAAe,EAAE;oBACf,yBAAyB;oBACzB,yBAAyB;oBACzB,iCAAiC;iBAClC;aACF;YACD;gBACE,EAAE,EAAE,aAAa;gBACjB,IAAI,EAAE,aAAa;gBACnB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,2DAA2D;gBACxE,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,2CAA2C;oBAC3C,oCAAoC;oBACpC,2BAA2B;iBAC5B;gBACD,eAAe,EAAE;oBACf,0CAA0C;oBAC1C,uCAAuC;oBACvC,oBAAoB;iBACrB;aACF;YACD;gBACE,EAAE,EAAE,sBAAsB;gBAC1B,IAAI,EAAE,sBAAsB;gBAC5B,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,oDAAoD;gBACjE,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,uCAAuC;oBACvC,8BAA8B;oBAC9B,4BAA4B;iBAC7B;gBACD,eAAe,EAAE;oBACf,gCAAgC;oBAChC,8BAA8B;oBAC9B,iCAAiC;iBAClC;aACF;YACD;gBACE,EAAE,EAAE,iBAAiB;gBACrB,IAAI,EAAE,iBAAiB;gBACvB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,yCAAyC;gBACtD,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,oCAAoC;oBACpC,0BAA0B;oBAC1B,yBAAyB;iBAC1B;gBACD,eAAe,EAAE;oBACf,4BAA4B;oBAC5B,8BAA8B;oBAC9B,6BAA6B;iBAC9B;aACF;YACD;gBACE,EAAE,EAAE,mBAAmB;gBACvB,IAAI,EAAE,mBAAmB;gBACzB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,uDAAuD;gBACpE,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,0BAA0B;oBAC1B,wBAAwB;oBACxB,+BAA+B;iBAChC;gBACD,eAAe,EAAE;oBACf,oCAAoC;oBACpC,uCAAuC;oBACvC,qCAAqC;iBACtC;aACF;YACD;gBACE,EAAE,EAAE,WAAW;gBACf,IAAI,EAAE,WAAW;gBACjB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,uCAAuC;gBACpD,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,sBAAsB;oBACtB,0BAA0B;oBAC1B,4BAA4B;iBAC7B;gBACD,eAAe,EAAE;oBACf,0BAA0B;oBAC1B,4BAA4B;oBAC5B,8BAA8B;iBAC/B;aACF;YACD;gBACE,EAAE,EAAE,kBAAkB;gBACtB,IAAI,EAAE,kBAAkB;gBACxB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,uCAAuC;gBACpD,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,sBAAsB;oBACtB,oCAAoC;oBACpC,wCAAwC;iBACzC;gBACD,eAAe,EAAE;oBACf,8BAA8B;oBAC9B,4BAA4B;oBAC5B,2BAA2B;iBAC5B;aACF;YACD;gBACE,EAAE,EAAE,YAAY;gBAChB,IAAI,EAAE,YAAY;gBAClB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,mCAAmC;gBAChD,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,wBAAwB;oBACxB,6BAA6B;oBAC7B,qCAAqC;iBACtC;gBACD,eAAe,EAAE;oBACf,sCAAsC;oBACtC,gCAAgC;oBAChC,kCAAkC;iBACnC;aACF;YACD;gBACE,EAAE,EAAE,cAAc;gBAClB,IAAI,EAAE,cAAc;gBACpB,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,wDAAwD;gBACrE,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,mCAAmC;oBACnC,4BAA4B;oBAC5B,2BAA2B;iBAC5B;gBACD,eAAe,EAAE;oBACf,+BAA+B;oBAC/B,yBAAyB;oBACzB,6BAA6B;iBAC9B;aACF;YACD;gBACE,EAAE,EAAE,qBAAqB;gBACzB,IAAI,EAAE,qBAAqB;gBAC3B,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,wCAAwC;gBACrD,UAAU,EAAE,EAAE;gBACd,UAAU,EAAE;oBACV,kCAAkC;oBAClC,wBAAwB;oBACxB,0BAA0B;iBAC3B;gBACD,eAAe,EAAE;oBACf,kCAAkC;oBAClC,oCAAoC;oBACpC,6BAA6B;iBAC9B;aACF;SACF,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,oBAAoB;QAC1B,OAAO;YACL,4BAA4B;YAC5B;gBACE,EAAE,EAAE,0BAA0B;gBAC9B,IAAI,EAAE,0BAA0B;gBAChC,OAAO,EAAE,WAAW;gBACpB,KAAK,EAAE,gBAAgB;gBACvB,WAAW,EAAE,sDAAsD;gBACnE,cAAc,EAAE;oBACd,kDAAkD;oBAClD,6CAA6C;oBAC7C,2CAA2C;iBAC5C;gBACD,gBAAgB,EAAE;oBAChB,yBAAyB;oBACzB,iCAAiC;oBACjC,yBAAyB;iBAC1B;gBACD,eAAe,EAAE;oBACf,kCAAkC;oBAClC,gCAAgC;oBAChC,0BAA0B;iBAC3B;gBACD,SAAS,EAAE,MAAM;aAClB;YACD;gBACE,EAAE,EAAE,2BAA2B;gBAC/B,IAAI,EAAE,mCAAmC;gBACzC,OAAO,EAAE,OAAO;gBAChB,KAAK,EAAE,gBAAgB;gBACvB,WAAW,EAAE,oDAAoD;gBACjE,cAAc,EAAE;oBACd,8BAA8B;oBAC9B,+BAA+B;oBAC/B,4BAA4B;iBAC7B;gBACD,gBAAgB,EAAE;oBAChB,2BAA2B;oBAC3B,6BAA6B;oBAC7B,wBAAwB;iBACzB;gBACD,eAAe,EAAE;oBACf,8BAA8B;oBAC9B,kCAAkC;oBAClC,sBAAsB;iBACvB;gBACD,SAAS,EAAE,UAAU;aACtB;YAED,yBAAyB;YACzB;gBACE,EAAE,EAAE,gBAAgB;gBACpB,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,WAAW;gBACpB,KAAK,EAAE,aAAa;gBACpB,WAAW,EAAE,wCAAwC;gBACrD,cAAc,EAAE;oBACd,sDAAsD;oBACtD,8CAA8C;oBAC9C,sCAAsC;iBACvC;gBACD,gBAAgB,EAAE;oBAChB,+BAA+B;oBAC/B,sCAAsC;oBACtC,gCAAgC;iBACjC;gBACD,eAAe,EAAE;oBACf,iCAAiC;oBACjC,+BAA+B;oBAC/B,yBAAyB;iBAC1B;gBACD,SAAS,EAAE,MAAM;aAClB;YACD;gBACE,EAAE,EAAE,mBAAmB;gBACvB,IAAI,EAAE,mBAAmB;gBACzB,OAAO,EAAE,WAAW;gBACpB,KAAK,EAAE,aAAa;gBACpB,WAAW,EAAE,kDAAkD;gBAC/D,cAAc,EAAE;oBACd,6EAA6E;oBAC7E,8EAA8E;oBAC9E,mDAAmD;iBACpD;gBACD,gBAAgB,EAAE;oBAChB,gCAAgC;oBAChC,wBAAwB;oBACxB,uCAAuC;iBACxC;gBACD,eAAe,EAAE;oBACf,kCAAkC;oBAClC,8BAA8B;oBAC9B,wBAAwB;iBACzB;gBACD,SAAS,EAAE,MAAM;aAClB;YAED,8BAA8B;YAC9B;gBACE,EAAE,EAAE,sBAAsB;gBAC1B,IAAI,EAAE,sBAAsB;gBAC5B,OAAO,EAAE,WAAW;gBACpB,KAAK,EAAE,kBAAkB;gBACzB,WAAW,EAAE,wDAAwD;gBACrE,cAAc,EAAE;oBACd,2CAA2C;oBAC3C,2CAA2C;oBAC3C,2BAA2B;iBAC5B;gBACD,gBAAgB,EAAE;oBAChB,yBAAyB;oBACzB,0BAA0B;oBAC1B,+BAA+B;iBAChC;gBACD,eAAe,EAAE;oBACf,sCAAsC;oBACtC,sBAAsB;oBACtB,qBAAqB;iBACtB;gBACD,SAAS,EAAE,QAAQ;aACpB;YAED,0BAA0B;YAC1B;gBACE,EAAE,EAAE,8BAA8B;gBAClC,IAAI,EAAE,8BAA8B;gBACpC,OAAO,EAAE,OAAO;gBAChB,KAAK,EAAE,cAAc;gBACrB,WAAW,EAAE,+DAA+D;gBAC5E,cAAc,EAAE;oBACd,kCAAkC;oBAClC,mCAAmC;oBACnC,+BAA+B;iBAChC;gBACD,gBAAgB,EAAE;oBAChB,0BAA0B;oBAC1B,8BAA8B;oBAC9B,mBAAmB;iBACpB;gBACD,eAAe,EAAE;oBACf,kCAAkC;oBAClC,oCAAoC;oBACpC,6BAA6B;iBAC9B;gBACD,SAAS,EAAE,MAAM;aAClB;SACF,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,oBAAoB,CAAC,OAAe;QAClC,OAAO,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,KAAK,KAAK,OAAO,CAAC,CAAC;IAChE,CAAC;IAED;;OAEG;IACH,eAAe;QACb,OAAO,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YACrC,GAAG,KAAK;YACR,UAAU,EAAE,IAAI,CAAC,oBAAoB,CAAC,KAAK,CAAC,EAAE,CAAC;SAChD,CAAC,CAAC,CAAC;IACN,CAAC;IAED;;OAEG;IACH,gBAAgB,CAAC,MAA2B;QAC1C,MAAM,kBAAkB,GAAmB,EAAE,CAAC;QAE9C,2CAA2C;QAC3C,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE;YAClC,IAAI,IAAI,CAAC,sBAAsB,CAAC,SAAS,EAAE,MAAM,CAAC,EAAE,CAAC;gBACnD,kBAAkB,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YACrC,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,OAAO,kBAAkB,CAAC;IAC5B,CAAC;IAED;;OAEG;IACK,sBAAsB,CAAC,SAAuB,EAAE,MAA2B;QACjF,kBAAkB;QAClB,IAAI,MAAM,CAAC,eAAe,KAAK,MAAM,IAAI,SAAS,CAAC,KAAK,KAAK,MAAM,CAAC,eAAe,EAAE,CAAC;YACpF,OAAO,KAAK,CAAC;QACf,CAAC;QAED,qBAAqB;QACrB,IAAI,MAAM,CAAC,cAAc,KAAK,SAAS,IAAI,SAAS,CAAC,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YAC1E,OAAO,KAAK,CAAC;QACf,CAAC;QACD,IAAI,MAAM,CAAC,cAAc,KAAK,OAAO,IAAI,SAAS,CAAC,EAAE,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;YAC1E,OAAO,KAAK,CAAC;QACf,CAAC;QAED,uBAAuB;QACvB,IAAI,MAAM,CAAC,UAAU,KAAK,OAAO,IAAI,SAAS,CAAC,SAAS,KAAK,UAAU,EAAE,CAAC;YACxE,OAAO,KAAK,CAAC;QACf,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,cAAc,CAAC,MAA2B;QAC9C,MAAM,YAAY,GAAG,IAAI,CAAC,oBAAoB,EAAE,CAAC;QACjD,MAAM,kBAAkB,GAAG,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC;QACzD,MAAM,eAAe,GAAqB,EAAE,CAAC;QAC7C,MAAM,QAAQ,GAAyB,EAAE,CAAC;QAE1C,OAAO,CAAC,GAAG,CAAC,4BAA4B,YAAY,EAAE,CAAC,CAAC;QACxD,OAAO,CAAC,GAAG,CAAC,oBAAoB,MAAM,CAAC,cAAc,EAAE,CAAC,CAAC;QACzD,OAAO,CAAC,GAAG,CAAA;IAAA,CAAC,AAAD;CAAA"}

package/dist/security/apt-simulation-engine.d.ts

@@ -1,97 +0,0 @@
-/**
- * APT Simulation Engine
- *
- * Comprehensive framework for simulating Advanced Persistent Threat campaigns
- * from initial access through persistence and data exfiltration.
- *
- * Based on MITRE ATT&CK framework and real-world APT tactics.
- */
-export interface APTAttackPhase {
-    id: string;
-    name: string;
-    mitreId: string;
-    description: string;
-    techniques: APTTechnique[];
-    objectives: string[];
-    successCriteria: string[];
-}
-export interface APTTechnique {
-    id: string;
-    name: string;
-    mitreId: string;
-    phase: string;
-    description: string;
-    implementation: string[];
-    detectionMethods: string[];
-    countermeasures: string[];
-    riskLevel: 'low' | 'medium' | 'high' | 'critical';
-}
-export interface APTSimulationConfig {
-    targetPlatform: 'windows' | 'linux' | 'mixed';
-    simulationScope: 'full' | 'initial-access' | 'persistence' | 'lateral-movement' | 'exfiltration';
-    complexity: 'basic' | 'intermediate' | 'advanced';
-    stealthLevel: 'low' | 'medium' | 'high';
-    duration: 'short' | 'medium' | 'extended';
-}
-export interface APTSimulationResult {
-    simulationId: string;
-    timestamp: Date;
-    config: APTSimulationConfig;
-    phasesExecuted: string[];
-    techniquesUsed: APTTechnique[];
-    successRate: number;
-    detectionEvents: DetectionEvent[];
-    recommendations: string[];
-    evidence: SimulationEvidence[];
-}
-export interface DetectionEvent {
-    techniqueId: string;
-    timestamp: Date;
-    detectionMethod: string;
-    confidence: 'low' | 'medium' | 'high';
-    evidence: string;
-}
-export interface SimulationEvidence {
-    phase: string;
-    technique: string;
-    evidenceType: 'file' | 'network' | 'process' | 'registry' | 'log';
-    content: string;
-    location: string;
-}
-/**
- * APT Simulation Engine Class
- */
-export declare class APTSimulationEngine {
-    private attackPhases;
-    private techniques;
-    constructor();
-    /**
-     * Initialize APT attack phases based on MITRE ATT&CK
-     */
-    private initializeAttackPhases;
-    /**
-     * Initialize APT techniques based on MITRE ATT&CK
-     */
-    private initializeTechniques;
-    /**
-     * Get techniques by attack phase
-     */
-    getTechniquesByPhase(phaseId: string): APTTechnique[];
-    /**
-     * Get all attack phases
-     */
-    getAttackPhases(): APTAttackPhase[];
-    /**
-     * Generate APT simulation scenario
-     */
-    generateScenario(config: APTSimulationConfig): APTTechnique[];
-    /**
-     * Determine if technique should be included in simulation
-     */
-    private shouldIncludeTechnique;
-    /**
-     * Simulate APT attack campaign
-     */
-    simulateAttack(config: APTSimulationConfig): Promise<APTSimulationResult>;
-}
-//# sourceMappingURL=apt-simulation-engine.d.ts.map

package/dist/security/apt-simulation-engine.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"apt-simulation-engine.d.ts","sourceRoot":"","sources":["../../src/security/apt-simulation-engine.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,MAAM,WAAW,cAAc;IAC7B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,YAAY,EAAE,CAAC;IAC3B,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,eAAe,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED,MAAM,WAAW,YAAY;IAC3B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,cAAc,EAAE,MAAM,EAAE,CAAC;IACzB,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,SAAS,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;CACnD;AAED,MAAM,WAAW,mBAAmB;IAClC,cAAc,EAAE,SAAS,GAAG,OAAO,GAAG,OAAO,CAAC;IAC9C,eAAe,EAAE,MAAM,GAAG,gBAAgB,GAAG,aAAa,GAAG,kBAAkB,GAAG,cAAc,CAAC;IACjG,UAAU,EAAE,OAAO,GAAG,cAAc,GAAG,UAAU,CAAC;IAClD,YAAY,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;IACxC,QAAQ,EAAE,OAAO,GAAG,QAAQ,GAAG,UAAU,CAAC;CAC3C;AAED,MAAM,WAAW,mBAAmB;IAClC,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,IAAI,CAAC;IAChB,MAAM,EAAE,mBAAmB,CAAC;IAC5B,cAAc,EAAE,MAAM,EAAE,CAAC;IACzB,cAAc,EAAE,YAAY,EAAE,CAAC;IAC/B,WAAW,EAAE,MAAM,CAAC;IACpB,eAAe,EAAE,cAAc,EAAE,CAAC;IAClC,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,QAAQ,EAAE,kBAAkB,EAAE,CAAC;CAChC;AAED,MAAM,WAAW,cAAc;IAC7B,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,EAAE,IAAI,CAAC;IAChB,eAAe,EAAE,MAAM,CAAC;IACxB,UAAU,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;IACtC,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,kBAAkB;IACjC,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,YAAY,EAAE,MAAM,GAAG,SAAS,GAAG,SAAS,GAAG,UAAU,GAAG,KAAK,CAAC;IAClE,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,qBAAa,mBAAmB;IAC9B,OAAO,CAAC,YAAY,CAAmB;IACvC,OAAO,CAAC,UAAU,CAAiB;;IAOnC;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAiN9B;;OAEG;IACH,OAAO,CAAC,oBAAoB;IAsJ5B;;OAEG;IACH,oBAAoB,CAAC,OAAO,EAAE,MAAM,GAAG,YAAY,EAAE;IAIrD;;OAEG;IACH,eAAe,IAAI,cAAc,EAAE;IAOnC;;OAEG;IACH,gBAAgB,CAAC,MAAM,EAAE,mBAAmB,GAAG,YAAY,EAAE;IAa7D;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAsB9B;;OAEG;IACG,cAAc,CAAC,MAAM,EAAE,mBAAmB,GAAG,OAAO,CAAC,mBAAmB,CAAC;CAQhD"}