nsauditor-ai 0.1.0

package/config/services.json

@@ -0,0 +1,304 @@
+{
+  "services": [
+    {
+      "name": "web",
+      "port": 80,
+      "protocol": "http",
+      "description": "HTTP web server"
+    },
+    {
+      "name": "api",
+      "port": 8080,
+      "protocol": "http",
+      "description": "HTTP API server"
+    },
+    {
+      "name": "database",
+      "port": 5432,
+      "protocol": "tcp",
+      "description": "PostgreSQL database"
+    },
+    {
+      "name": "messaging",
+      "port": 5672,
+      "protocol": "amqp",
+      "description": "AMQP messaging service"
+    },
+    {
+      "name": "cache",
+      "port": 6379,
+      "protocol": "tcp",
+      "description": "Redis caching service"
+    },
+    {
+      "name": "monitoring",
+      "port": 9090,
+      "protocol": "http",
+      "description": "Prometheus monitoring service"
+    },
+    {
+      "name": "ftp-data",
+      "port": 20,
+      "protocol": "tcp",
+      "description": "FTP data transfer"
+    },
+    {
+      "name": "ftp-control",
+      "port": 21,
+      "protocol": "tcp",
+      "description": "FTP control channel"
+    },
+    {
+      "name": "ssh",
+      "port": 22,
+      "protocol": "tcp",
+      "description": "Secure shell access"
+    },
+    {
+      "name": "telnet",
+      "port": 23,
+      "protocol": "tcp",
+      "description": "Unencrypted remote access"
+    },
+    {
+      "name": "smtp",
+      "port": 25,
+      "protocol": "tcp",
+      "description": "Email delivery"
+    },
+    {
+      "name": "dns",
+      "port": 53,
+      "protocol": "tcp/udp",
+      "description": "Domain name resolution"
+    },
+    {
+      "name": "dhcp-server",
+      "port": 67,
+      "protocol": "udp",
+      "description": "DHCP server (BOOTP server)"
+    },
+    {
+      "name": "dhcp-client",
+      "port": 68,
+      "protocol": "udp",
+      "description": "DHCP client (BOOTP client)"
+    },
+    {
+      "name": "tftp",
+      "port": 69,
+      "protocol": "udp",
+      "description": "Trivial file transfer"
+    },
+    {
+      "name": "https",
+      "port": 443,
+      "protocol": "tcp",
+      "description": "Secure HTTP web server"
+    },
+    {
+      "name": "imap",
+      "port": 143,
+      "protocol": "tcp",
+      "description": "Email retrieval"
+    },
+    {
+      "name": "snmp",
+      "port": 161,
+      "protocol": "udp",
+      "description": "Network management"
+    },
+    {
+      "name": "ntp",
+      "port": 123,
+      "protocol": "udp",
+      "description": "Time synchronization"
+    },
+    {
+      "name": "sunrpc",
+      "port": 111,
+      "protocol": "tcp/udp",
+      "description": "Sun RPC portmapper (rpcbind)"
+    },
+    {
+      "name": "mysql",
+      "port": 3306,
+      "protocol": "tcp",
+      "description": "MySQL database"
+    },
+    {
+      "name": "rdp",
+      "port": 3389,
+      "protocol": "tcp",
+      "description": "Remote desktop access"
+    },
+    {
+      "name": "http-alt1",
+      "port": 81,
+      "protocol": "tcp",
+      "description": "Alternative HTTP server"
+    },
+    {
+      "name": "http-alt2",
+      "port": 88,
+      "protocol": "tcp",
+      "description": "Alternative HTTP server"
+    },
+    {
+      "name": "pop3",
+      "port": 110,
+      "protocol": "tcp",
+      "description": "Email retrieval (POP3)"
+    },
+    {
+      "name": "nntp",
+      "port": 119,
+      "protocol": "tcp",
+      "description": "Usenet news transfer"
+    },
+    {
+      "name": "msrpc",
+      "port": 135,
+      "protocol": "tcp",
+      "description": "Microsoft RPC service"
+    },
+    {
+      "name": "netbios-ns",
+      "port": 137,
+      "protocol": "udp",
+      "description": "NetBIOS name service"
+    },
+    {
+      "name": "netbios-dgm",
+      "port": 138,
+      "protocol": "udp",
+      "description": "NetBIOS datagram service"
+    },
+    {
+      "name": "netbios",
+      "port": 139,
+      "protocol": "tcp",
+      "description": "NetBIOS session service"
+    },
+    {
+      "name": "ldap",
+      "port": 389,
+      "protocol": "tcp/udp",
+      "description": "Directory access protocol"
+    },
+    {
+      "name": "smb",
+      "port": 445,
+      "protocol": "tcp",
+      "description": "Server Message Block"
+    },
+    {
+      "name": "smtps",
+      "port": 465,
+      "protocol": "tcp",
+      "description": "Secure email delivery"
+    },
+    {
+      "name": "nntps",
+      "port": 563,
+      "protocol": "tcp",
+      "description": "Secure Usenet transfer"
+    },
+    {
+      "name": "submission",
+      "port": 587,
+      "protocol": "tcp",
+      "description": "Email submission (STARTTLS)"
+    },
+    {
+      "name": "ipp",
+      "port": 631,
+      "protocol": "tcp",
+      "description": "Internet printing protocol"
+    },
+    {
+      "name": "http-alt3",
+      "port": 688,
+      "protocol": "tcp",
+      "description": "Alternative HTTP server"
+    },
+    {
+      "name": "win-rm",
+      "port": 5985,
+      "protocol": "tcp/udp",
+      "description": "Windows Remote Management"
+    },
+    {
+      "name": "http-alt4",
+      "port": 8081,
+      "protocol": "tcp",
+      "description": "Alternative HTTP server"
+    },
+    {
+      "name": "http-alt5",
+      "port": 8088,
+      "protocol": "tcp",
+      "description": "Alternative HTTP server"
+    },
+    {
+      "name": "https-alt",
+      "port": 8443,
+      "protocol": "tcp",
+      "description": "Alternative secure HTTP server"
+    },
+    {
+      "name": "http-alt6",
+      "port": 8888,
+      "protocol": "tcp",
+      "description": "Alternative HTTP server"
+    },
+    {
+      "name": "http-alt7",
+      "port": 9000,
+      "protocol": "tcp",
+      "description": "Alternative HTTP server"
+    },
+    {
+      "name": "elasticsearch",
+      "port": 9200,
+      "protocol": "tcp",
+      "description": "Elasticsearch search engine"
+    },
+    {
+      "name": "imaps",
+      "port": 993,
+      "protocol": "tcp",
+      "description": "Secure email retrieval"
+    },
+    {
+      "name": "pop3s",
+      "port": 995,
+      "protocol": "tcp",
+      "description": "Secure email retrieval (POP3)"
+    },
+    {
+      "name": "http-alt8",
+      "port": 1990,
+      "protocol": "tcp",
+      "description": "Alternative HTTP server"
+    },
+    {
+      "name": "http-alt9",
+      "port": 20005,
+      "protocol": "tcp",
+      "description": "Alternative HTTP server"
+    },
+    {
+      "name": "http-alt10",
+      "port": 5000,
+      "protocol": "tcp",
+      "description": "Alternative HTTP server"
+    },
+    {
+      "name": "http-alt11",
+      "port": 5555,
+      "protocol": "tcp",
+      "description": "Alternative HTTP server"
+    }
+  ]
+}

package/docs/EULA-nsauditor-ai.md

@@ -0,0 +1,324 @@
+# NSAUDITOR AI — END USER LICENSE AGREEMENT (EULA)
+
+**Nsasoft US LLC**
+**Effective Date: [DATE]**
+**Version: 2.0**
+
+---
+
+**IMPORTANT — READ CAREFULLY BEFORE INSTALLING, COPYING, OR USING THIS SOFTWARE.**
+
+This End User License Agreement ("Agreement" or "EULA") is a legally binding contract between you (either an individual or a single entity, referred to herein as "You," "Your," or "Licensee") and Nsasoft US LLC, a Nevada limited liability company ("Nsasoft," "We," "Us," or "Company"), governing Your use of the NSAuditor AI software, including any associated media, printed materials, documentation, updates, patches, plugins, and online or electronic content (collectively, the "Software").
+
+**BY INSTALLING, COPYING, DOWNLOADING, ACCESSING, OR OTHERWISE USING THE SOFTWARE, YOU ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND AGREE TO BE BOUND BY THE TERMS OF THIS AGREEMENT. IF YOU DO NOT AGREE TO THESE TERMS, DO NOT INSTALL OR USE THE SOFTWARE. PROMPTLY DELETE ALL COPIES IN YOUR POSSESSION.**
+
+**IF YOU ARE ACCEPTING THIS AGREEMENT ON BEHALF OF AN ORGANIZATION, YOU REPRESENT AND WARRANT THAT YOU HAVE THE AUTHORITY TO BIND THAT ORGANIZATION TO THESE TERMS.**
+
+---
+
+## 1. DEFINITIONS
+
+**1.1** "Community Edition" or "CE" means the free, MIT-licensed open source version of the Software available at github.com/nsasoft/nsauditor-ai.
+
+**1.2** "Pro Edition" means the paid subscription tier of the Software that includes additional proprietary features available via the @nsasoft/nsauditor-ai-ee package.
+
+**1.3** "Enterprise Edition" or "EE" means the paid subscription tier of the Software that includes all features of the Pro Edition plus additional enterprise capabilities.
+
+**1.4** "License Key" means the digitally signed token (JWT) issued by Nsasoft that activates Pro or Enterprise features.
+
+**1.5** "Scan Data" means any and all data, information, results, reports, findings, network information, credentials, passwords, vulnerabilities, configurations, or other output generated by the Software during its operation.
+
+**1.6** "Target" means any computer, network, device, system, service, or infrastructure that the Software is directed to scan, probe, test, audit, or analyze.
+
+**1.7** "Authorized Target" means a Target that You own, operate, or have explicit written authorization from the owner to scan.
+
+---
+
+## 2. LICENSE GRANT
+
+**2.1 Community Edition.** The Community Edition is licensed under the MIT Expat License. Your rights and obligations with respect to the Community Edition are governed by the MIT License included with the Software, subject to the additional terms in Sections 5 through 14 of this Agreement.
+
+**2.2 Pro and Enterprise Editions.** Subject to Your compliance with this Agreement and payment of applicable fees, Nsasoft grants You a limited, non-exclusive, non-transferable, revocable license to install and use the Pro or Enterprise Edition of the Software during the term of Your active subscription, solely for Your internal business purposes.
+
+**2.3 Scope.** The Software is licensed, not sold. Nsasoft retains all right, title, and interest in and to the Software, including all intellectual property rights therein. This Agreement does not convey any ownership interest in the Software.
+
+---
+
+## 3. LICENSE RESTRICTIONS
+
+You shall not:
+
+**(a)** Sublicense, sell, resell, lease, rent, loan, distribute, or otherwise transfer the Pro or Enterprise Edition or any License Key to any third party;
+
+**(b)** Modify, adapt, translate, reverse engineer, decompile, disassemble, or create derivative works of the Pro or Enterprise Edition, except to the extent expressly permitted by applicable law notwithstanding this limitation;
+
+**(c)** Remove, alter, obscure, or tamper with any proprietary notices, labels, trademarks, license keys, or license enforcement mechanisms in the Software;
+
+**(d)** Use the Software to provide scanning, auditing, or security assessment services to third parties on a managed-service, SaaS, or bureau-service basis without a separate written agreement with Nsasoft;
+
+**(e)** Share, publish, or post any License Key in any public forum, repository, or electronic medium;
+
+**(f)** Circumvent, disable, or interfere with any license validation, capability gating, or feature restriction mechanism in the Software;
+
+**(g)** Use the Software in any manner that violates any applicable local, state, national, or international law or regulation (see Section 5).
+
+---
+
+## 4. SUBSCRIPTION TERMS
+
+**4.1 Fees.** Pro and Enterprise Edition features require an active paid subscription. Fees are as stated on www.nsauditor.com/ai/pricing at the time of purchase.
+
+**4.2 Renewal.** Subscriptions renew automatically unless canceled before the renewal date. You may cancel at any time through Your account portal.
+
+**4.3 Expiration.** Upon expiration or termination of Your subscription, the Pro or Enterprise features will deactivate. The Community Edition features will continue to function without interruption.
+
+**4.4 Refunds.** Subscription fees are non-refundable except as required by applicable law or as otherwise stated in the Nsasoft Terms of Service.
+
+---
+
+## 5. AUTHORIZED USE AND LEGAL COMPLIANCE
+
+**THIS SECTION IS CRITICAL. READ IT CAREFULLY.**
+
+**5.1 Authorization Requirement.** You shall use the Software ONLY against Authorized Targets. You represent and warrant that, for every Target scanned, probed, tested, or analyzed using the Software, You either:
+
+**(a)** Own the Target; or
+
+**(b)** Have obtained explicit, documented, written authorization from the owner, operator, or authorized administrator of the Target to perform the specific type of scanning, testing, or auditing You intend to conduct.
+
+**5.2 Legal Compliance.** You are solely responsible for ensuring that Your use of the Software complies with all applicable laws, regulations, and industry standards, including but not limited to:
+
+- The Computer Fraud and Abuse Act (CFAA), 18 U.S.C. § 1030
+- The Electronic Communications Privacy Act (ECPA)
+- The General Data Protection Regulation (GDPR), where applicable
+- The Health Insurance Portability and Accountability Act (HIPAA), where applicable
+- The Payment Card Industry Data Security Standard (PCI DSS), where applicable
+- Any applicable state, provincial, or national computer crime, privacy, or data protection laws
+- Any applicable terms of service of the Target systems, networks, or services
+
+**5.3 Prohibited Uses.** You shall NOT use the Software to:
+
+**(a)** Scan, probe, test, or attack any Target without explicit authorization from the Target's owner or authorized operator;
+
+**(b)** Conduct any form of unauthorized access, intrusion, penetration, or exploitation of any computer system, network, or service;
+
+**(c)** Harvest, collect, store, or exfiltrate any personal data, credentials, passwords, private keys, or other sensitive information from any Target without the Target owner's explicit consent;
+
+**(d)** Conduct denial-of-service attacks, network flooding, or any activity intended to degrade, disrupt, or destroy the availability of any Target;
+
+**(e)** Violate the privacy, confidentiality, or security of any individual, organization, or system;
+
+**(f)** Develop, create, or assist in the creation of malware, exploits, attack tools, or any software designed to facilitate unauthorized access;
+
+**(g)** Engage in any activity that constitutes or facilitates corporate espionage, competitive intelligence gathering through unauthorized means, or industrial sabotage;
+
+**(h)** Violate any law, regulation, contractual obligation, or third-party right.
+
+**5.4 Your Responsibility.** YOU ACKNOWLEDGE AND AGREE THAT THE SOFTWARE IS A POWERFUL NETWORK SECURITY AUDITING TOOL THAT CAN DISCOVER SENSITIVE INFORMATION INCLUDING BUT NOT LIMITED TO OPEN PORTS, RUNNING SERVICES, SOFTWARE VERSIONS, SYSTEM CONFIGURATIONS, EXPOSED CREDENTIALS, PRIVATE DATA, AND NETWORK VULNERABILITIES. THE DISCOVERY OF SUCH INFORMATION IS THE INTENDED PURPOSE OF THE SOFTWARE WHEN USED ON AUTHORIZED TARGETS. YOU ARE SOLELY AND EXCLUSIVELY RESPONSIBLE FOR:
+
+**(a)** Determining whether Your intended use is lawful in Your jurisdiction;
+
+**(b)** Obtaining all necessary authorizations before scanning any Target;
+
+**(c)** Safeguarding, protecting, and properly handling all Scan Data generated by the Software;
+
+**(d)** Complying with all data protection, privacy, and security regulations applicable to the Scan Data;
+
+**(e)** Any and all consequences arising from Your use of the Software, including any Scan Data discovered, generated, stored, or disclosed.
+
+---
+
+## 6. ZERO DATA EXFILTRATION — DATA OWNERSHIP AND PROCESSING
+
+**6.1 No Data Collection.** The Software operates entirely within Your infrastructure. Nsasoft does NOT collect, receive, transmit, access, process, store, or have any access to any Scan Data generated by the Software. Nsasoft has no technical capability to access Your Scan Data.
+
+**6.2 Not a Data Processor.** Nsasoft is NOT a data processor, data controller, sub-processor, or business associate under any data protection regulation, including GDPR, HIPAA, CCPA, or any other privacy law, with respect to any Scan Data. No Data Processing Agreement (DPA) or Business Associate Agreement (BAA) is required or offered in connection with this Software.
+
+**6.3 Data Ownership.** All Scan Data is and remains Your sole property. You are solely responsible for the collection, storage, protection, retention, deletion, and lawful processing of all Scan Data.
+
+**6.4 AI Integration.** If You configure the Software to use external AI services (such as OpenAI, Anthropic Claude, or other providers), You are responsible for providing Your own API keys, reviewing the AI provider's terms of service and privacy policies, and understanding that Scan Data (after redaction) may be transmitted to the AI provider. Nsasoft has no relationship with, control over, or responsibility for any third-party AI provider. Nsasoft does not receive, process, or store any data transmitted to or received from AI providers.
+
+**6.5 License Validation.** The only data Nsasoft processes is Your License Key and associated subscription information (email address, payment details via Stripe). License validation is performed offline using cryptographic signature verification. No Scan Data, network information, or telemetry of any kind is transmitted to Nsasoft.
+
+---
+
+## 7. DISCLAIMER OF WARRANTIES
+
+**THE SOFTWARE IS PROVIDED "AS IS" AND "AS AVAILABLE," WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, NSASOFT AND ITS SUPPLIERS, LICENSORS, AND AFFILIATES EXPRESSLY DISCLAIM ALL WARRANTIES, WHETHER EXPRESS, IMPLIED, STATUTORY, OR OTHERWISE, INCLUDING BUT NOT LIMITED TO:**
+
+**(a)** IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE, AND NON-INFRINGEMENT;
+
+**(b)** ANY WARRANTY THAT THE SOFTWARE WILL MEET YOUR REQUIREMENTS OR EXPECTATIONS;
+
+**(c)** ANY WARRANTY THAT THE SOFTWARE WILL BE UNINTERRUPTED, TIMELY, SECURE, ACCURATE, COMPLETE, OR ERROR-FREE;
+
+**(d)** ANY WARRANTY THAT THE SOFTWARE WILL DETECT ALL VULNERABILITIES, SECURITY FLAWS, MISCONFIGURATIONS, OR THREATS IN ANY TARGET;
+
+**(e)** ANY WARRANTY THAT THE SCAN DATA OR AI-GENERATED REPORTS ARE ACCURATE, COMPLETE, CURRENT, OR RELIABLE;
+
+**(f)** ANY WARRANTY REGARDING THE RESULTS OBTAINED FROM THE USE OF THE SOFTWARE;
+
+**(g)** ANY WARRANTY THAT DEFECTS WILL BE CORRECTED.
+
+**YOU ACKNOWLEDGE THAT NETWORK SECURITY AUDITING IS INHERENTLY COMPLEX AND THAT NO SCANNING TOOL, INCLUDING THE SOFTWARE, CAN GUARANTEE DETECTION OF ALL VULNERABILITIES OR PROVIDE COMPLETE SECURITY ASSURANCE. THE SOFTWARE IS A TOOL TO ASSIST QUALIFIED SECURITY PROFESSIONALS AND IS NOT A SUBSTITUTE FOR PROFESSIONAL JUDGMENT, MANUAL TESTING, OR COMPREHENSIVE SECURITY ASSESSMENTS.**
+
+---
+
+## 8. LIMITATION OF LIABILITY
+
+**THIS SECTION LIMITS NSASOFT'S LIABILITY TO THE MAXIMUM EXTENT PERMITTED BY LAW. READ IT CAREFULLY.**
+
+**8.1 Exclusion of Consequential Damages.** TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, IN NO EVENT SHALL NSASOFT, ITS OFFICERS, DIRECTORS, EMPLOYEES, AGENTS, SUPPLIERS, LICENSORS, OR AFFILIATES BE LIABLE FOR ANY SPECIAL, INCIDENTAL, INDIRECT, CONSEQUENTIAL, EXEMPLARY, OR PUNITIVE DAMAGES WHATSOEVER, INCLUDING BUT NOT LIMITED TO:
+
+**(a)** DAMAGES FOR LOSS OF PROFITS, REVENUE, BUSINESS, GOODWILL, OR ANTICIPATED SAVINGS;
+
+**(b)** DAMAGES FOR LOSS OF, DAMAGE TO, OR CORRUPTION OF DATA (INCLUDING SCAN DATA);
+
+**(c)** DAMAGES FOR BUSINESS INTERRUPTION, SYSTEM DOWNTIME, OR NETWORK DISRUPTION;
+
+**(d)** DAMAGES FOR LOSS OF PRIVACY, EXPOSURE OF CONFIDENTIAL INFORMATION, OR DATA BREACHES;
+
+**(e)** DAMAGES FOR PERSONAL INJURY (TO THE EXTENT PERMITTED BY LAW);
+
+**(f)** DAMAGES FOR FAILURE TO MEET ANY DUTY INCLUDING OF GOOD FAITH OR OF REASONABLE CARE;
+
+**(g)** DAMAGES FOR NEGLIGENCE;
+
+**(h)** DAMAGES ARISING FROM OR RELATED TO ANY UNAUTHORIZED ACCESS, USE, OR ALTERATION OF YOUR SCAN DATA OR TRANSMISSIONS;
+
+**(i)** ANY OTHER PECUNIARY OR NON-PECUNIARY LOSS WHATSOEVER;
+
+ARISING OUT OF OR IN ANY WAY RELATED TO THE USE OF OR INABILITY TO USE THE SOFTWARE, THE PROVISION OF OR FAILURE TO PROVIDE SUPPORT SERVICES, OR OTHERWISE UNDER OR IN CONNECTION WITH ANY PROVISION OF THIS AGREEMENT, REGARDLESS OF THE LEGAL THEORY (WHETHER CONTRACT, TORT, NEGLIGENCE, STRICT LIABILITY, WARRANTY, OR OTHERWISE), EVEN IF NSASOFT HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
+
+**8.2 Maximum Aggregate Liability.** NOTWITHSTANDING ANY DAMAGES THAT YOU MIGHT INCUR FOR ANY REASON WHATSOEVER (INCLUDING, WITHOUT LIMITATION, ALL DAMAGES REFERENCED ABOVE AND ALL DIRECT OR GENERAL DAMAGES IN CONTRACT, TORT, OR OTHERWISE), THE ENTIRE AGGREGATE LIABILITY OF NSASOFT AND ANY OF ITS SUPPLIERS, LICENSORS, AND AFFILIATES UNDER ANY PROVISION OF THIS AGREEMENT, AND YOUR EXCLUSIVE REMEDY FOR ALL OF THE FOREGOING, SHALL BE LIMITED TO THE GREATER OF:
+
+**(a)** THE AMOUNTS ACTUALLY PAID BY YOU FOR THE SOFTWARE OR SUBSCRIPTION IN THE TWELVE (12) MONTH PERIOD IMMEDIATELY PRECEDING THE EVENT GIVING RISE TO THE CLAIM; OR
+
+**(b)** FIVE U.S. DOLLARS (US $5.00).
+
+**8.3 Application.** THE FOREGOING LIMITATIONS, EXCLUSIONS, AND DISCLAIMERS SHALL APPLY TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, EVEN IF ANY REMEDY FAILS OF ITS ESSENTIAL PURPOSE, AND REGARDLESS OF WHETHER NSASOFT HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. THESE LIMITATIONS APPLY TO ALL CLAIMS RELATED TO THIS AGREEMENT, THE SOFTWARE, AND ANY RELATED SERVICES.
+
+**8.4 Essential Basis.** YOU ACKNOWLEDGE THAT NSASOFT HAS SET ITS PRICES AND ENTERED INTO THIS AGREEMENT IN RELIANCE UPON THE LIMITATIONS OF LIABILITY AND THE DISCLAIMERS OF WARRANTIES AND DAMAGES SET FORTH HEREIN, AND THAT THE SAME FORM AN ESSENTIAL BASIS OF THE BARGAIN BETWEEN THE PARTIES.
+
+---
+
+## 9. INDEMNIFICATION
+
+**9.1 Your Indemnification Obligation.** YOU SHALL INDEMNIFY, DEFEND, AND HOLD HARMLESS NSASOFT, ITS OFFICERS, DIRECTORS, EMPLOYEES, AGENTS, AFFILIATES, SUCCESSORS, AND ASSIGNS FROM AND AGAINST ANY AND ALL CLAIMS, DEMANDS, ACTIONS, SUITS, PROCEEDINGS, LOSSES, DAMAGES, LIABILITIES, COSTS, AND EXPENSES (INCLUDING REASONABLE ATTORNEYS' FEES AND COURT COSTS) ARISING OUT OF OR RELATED TO:
+
+**(a)** Your use of the Software, including any Scan Data generated, discovered, stored, disclosed, or processed;
+
+**(b)** Your breach of any term of this Agreement, including the Authorized Use requirements in Section 5;
+
+**(c)** Your violation of any applicable law, regulation, or third-party right, including but not limited to unauthorized scanning, unauthorized access, privacy violations, or data protection violations;
+
+**(d)** Any claim by any third party that Your use of the Software infringed their rights, damaged their systems, disclosed their data, or caused them harm of any kind;
+
+**(e)** Any claim arising from Scan Data that You shared, disclosed, transmitted, or failed to adequately protect;
+
+**(f)** Any claim arising from Your use of AI integration features, including any data transmitted to third-party AI providers;
+
+**(g)** Your negligent or wrongful acts or omissions in connection with the Software.
+
+**9.2 Survival.** This indemnification obligation shall survive the termination or expiration of this Agreement.
+
+---
+
+## 10. EXPORT COMPLIANCE
+
+You shall comply with all applicable export and import laws, regulations, and orders, including the U.S. Export Administration Regulations, U.S. sanctions laws administered by the Office of Foreign Assets Control (OFAC), and all applicable export restrictions of Your jurisdiction. You represent and warrant that You are not located in, under the control of, or a national or resident of any country to which the United States has embargoed goods or services, and that You are not listed on any U.S. Government list of prohibited or restricted parties.
+
+---
+
+## 11. TERM AND TERMINATION
+
+**11.1 Term.** This Agreement is effective upon Your first use of the Software and continues until terminated.
+
+**11.2 Termination by You.** You may terminate this Agreement at any time by ceasing all use of the Software and deleting all copies in Your possession.
+
+**11.3 Termination by Nsasoft.** Nsasoft may terminate this Agreement immediately and without notice if You breach any term of this Agreement, including the Authorized Use requirements in Section 5. Upon termination, You must immediately cease all use of the Software and delete all copies.
+
+**11.4 Effect of Termination.** Sections 5, 6, 7, 8, 9, 10, 12, 13, and 14 shall survive any termination or expiration of this Agreement.
+
+---
+
+## 12. ACKNOWLEDGMENTS
+
+By using the Software, You acknowledge and agree that:
+
+**12.1** The Software is designed for use by qualified IT and security professionals for legitimate network security auditing, vulnerability assessment, and compliance testing purposes;
+
+**12.2** The Software can discover sensitive information, and You bear full responsibility for handling such information in compliance with all applicable laws;
+
+**12.3** Unauthorized scanning of computer systems and networks is illegal in most jurisdictions and may result in civil and criminal penalties;
+
+**12.4** Nsasoft has no control over, and assumes no responsibility for, how You use the Software or what You do with Scan Data;
+
+**12.5** Nsasoft has no ability to monitor, access, or review Your use of the Software or any Scan Data;
+
+**12.6** You have been advised to consult with legal counsel regarding the lawfulness of Your intended use of the Software in Your jurisdiction;
+
+**12.7** The AI-generated reports and analysis are produced by third-party AI models and may contain inaccuracies, errors, or hallucinations — they are advisory in nature and do not constitute professional security advice;
+
+**12.8** The absence of reported findings does not mean the absence of vulnerabilities.
+
+---
+
+## 13. GOVERNING LAW AND DISPUTE RESOLUTION
+
+**13.1 Governing Law.** This Agreement shall be governed by and construed in accordance with the laws of the State of Nevada, United States of America, without regard to its conflict of law provisions.
+
+**13.2 Jurisdiction.** Any legal action or proceeding arising under this Agreement shall be brought exclusively in the state or federal courts located in Clark County, Nevada, and the parties hereby consent to personal jurisdiction and venue therein.
+
+**13.3 Arbitration.** Any dispute, controversy, or claim arising out of or relating to this Agreement, or the breach, termination, or invalidity thereof, shall be settled by binding arbitration administered by the American Arbitration Association ("AAA") under its Commercial Arbitration Rules. The arbitration shall take place in Las Vegas, Nevada. The arbitrator's decision shall be final and binding. Judgment upon the award rendered by the arbitrator may be entered in any court having jurisdiction thereof.
+
+**13.4 Class Action Waiver.** YOU AND NSASOFT AGREE THAT EACH MAY BRING CLAIMS AGAINST THE OTHER ONLY IN YOUR OR ITS INDIVIDUAL CAPACITY AND NOT AS A PLAINTIFF OR CLASS MEMBER IN ANY PURPORTED CLASS OR REPRESENTATIVE ACTION. THE ARBITRATOR MAY NOT CONSOLIDATE MORE THAN ONE PERSON'S CLAIMS AND MAY NOT OTHERWISE PRESIDE OVER ANY FORM OF A REPRESENTATIVE OR CLASS PROCEEDING.
+
+**13.5 Injunctive Relief.** Notwithstanding the foregoing, Nsasoft shall be entitled to seek injunctive or other equitable relief in any court of competent jurisdiction to prevent the actual or threatened infringement, misappropriation, or violation of Nsasoft's intellectual property rights or confidential information.
+
+---
+
+## 14. GENERAL PROVISIONS
+
+**14.1 Entire Agreement.** This Agreement constitutes the entire agreement between You and Nsasoft with respect to the Software and supersedes all prior or contemporaneous oral or written communications, proposals, and representations.
+
+**14.2 Severability.** If any provision of this Agreement is held to be invalid or unenforceable, the remaining provisions shall continue in full force and effect.
+
+**14.3 Waiver.** No failure or delay by Nsasoft in exercising any right under this Agreement shall constitute a waiver of that right.
+
+**14.4 Assignment.** You may not assign or transfer this Agreement or any rights hereunder without Nsasoft's prior written consent. Nsasoft may assign this Agreement without Your consent in connection with a merger, acquisition, corporate reorganization, or sale of all or substantially all of its assets.
+
+**14.5 Notices.** Any notices required or permitted under this Agreement shall be in writing and shall be sent to legal@nsasoft.us for Nsasoft, and to the email address associated with Your account for You.
+
+**14.6 Force Majeure.** Nsasoft shall not be liable for any failure or delay in performance due to circumstances beyond its reasonable control, including acts of God, war, terrorism, pandemic, natural disaster, labor disputes, government actions, or failures of third-party services.
+
+**14.7 Third-Party Beneficiaries.** This Agreement does not create any third-party beneficiary rights.
+
+**14.8 Headings.** Section headings are for convenience only and shall not affect the interpretation of this Agreement.
+
+**14.9 Language.** This Agreement is written in English. In the event of any conflict between the English version and any translation, the English version shall prevail.
+
+---
+
+## 15. CONTACT INFORMATION
+
+Nsasoft US LLC
+732 S 6TH ST, STE R
+LAS VEGAS, NV 89101
+USA
+
+Legal inquiries: legal@nsasoft.us
+General support: support@nsasoft.us
+Website: https://www.nsauditor.com/ai/
+
+---
+
+**BY INSTALLING, COPYING, OR USING THE SOFTWARE, YOU ACKNOWLEDGE THAT YOU HAVE READ THIS AGREEMENT, UNDERSTAND IT, AND AGREE TO BE BOUND BY ITS TERMS AND CONDITIONS.**
+
+---
+
+*This document is a draft template for review purposes. Nsasoft US LLC should have this Agreement reviewed by a licensed attorney before publication. This does not constitute legal advice.*
+
+---
+
+**END OF LICENSE AGREEMENT**

package/index.mjs

@@ -0,0 +1,15 @@
+// index.mjs — shim (CLI-first)
+// This file exists only for programmatic imports. Prefer the CLI: `node cli.mjs ...`
+import { fileURLToPath } from 'node:url';
+import path from 'node:path';
+
+export { default as PluginManager } from './plugin_manager.mjs';
+export { buildHtmlReport } from './utils/report_html.mjs';
+
+// If run directly, forward to CLI with a helpful message.
+const isDirect = (fileURLToPath(import.meta.url) === path.resolve(process.argv[1] || ''));
+if (isDirect) {
+  console.error('[nsauditor] index.mjs is not a runtime entrypoint. Use the CLI instead:');
+  console.error('  node cli.mjs scan --host 192.168.1.1 --plugins all');
+  process.exit(1);
+}