typescript-virtual-container 1.1.4 → 1.1.6

package/dist/Honeypot/index.d.ts

@@ -0,0 +1,132 @@
+/**
+ * Honeypot tracking and auditing module for virtual shell events.
+ *
+ * Attaches listeners to VirtualShell, VirtualFileSystem, VirtualUserManager,
+ * SshMimic, and SftpMimic instances to log all activity for security auditing,
+ * anomaly detection, and forensic analysis.
+ *
+ * @module honeypot
+ */
+import type { SshMimic } from "../SSHMimic";
+import type { SftpMimic } from "../SSHMimic/sftp";
+import type VirtualFileSystem from "../VirtualFileSystem";
+import type { VirtualShell } from "../VirtualShell";
+import type { VirtualUserManager } from "../VirtualUserManager";
+/**
+ * Audit log entry recorded for each event.
+ */
+export interface AuditLogEntry {
+    timestamp: string;
+    type: string;
+    source: string;
+    details: Record<string, unknown>;
+}
+/**
+ * Statistics tracker for honeypot activity.
+ */
+export interface HoneyPotStats {
+    authAttempts: number;
+    authSuccesses: number;
+    authFailures: number;
+    commands: number;
+    fileWrites: number;
+    fileReads: number;
+    sessionStarts: number;
+    sessionEnds: number;
+    userCreated: number;
+    userDeleted: number;
+    clientConnects: number;
+    clientDisconnects: number;
+}
+/**
+ * HoneyPot audit and event tracking utility.
+ *
+ * Singleton-like helper that attaches listeners to virtual shell components
+ * and maintains an audit log of all activity.
+ */
+export declare class HoneyPot {
+    private auditLog;
+    private stats;
+    private maxLogSize;
+    /**
+     * Creates a new HoneyPot instance.
+     *
+     * @param maxLogSize Maximum audit log entries to retain (default: 10000).
+     */
+    constructor(maxLogSize?: number);
+    /**
+     * Attaches honeypot listeners to all provided event emitters.
+     *
+     * @param shell VirtualShell instance.
+     * @param vfs VirtualFileSystem instance.
+     * @param users VirtualUserManager instance.
+     * @param ssh SshMimic instance (optional).
+     * @param sftp SftpMimic instance (optional).
+     */
+    attach(shell: VirtualShell, vfs: VirtualFileSystem, users: VirtualUserManager, ssh?: SshMimic, sftp?: SftpMimic): void;
+    /**
+     * Attaches to VirtualShell events.
+     */
+    private attachVirtualShell;
+    /**
+     * Attaches to VirtualFileSystem events.
+     */
+    private attachVirtualFileSystem;
+    /**
+     * Attaches to VirtualUserManager events.
+     */
+    private attachVirtualUserManager;
+    /**
+     * Attaches to SshMimic events.
+     */
+    private attachSshMimic;
+    /**
+     * Attaches to SftpMimic events.
+     */
+    private attachSftpMimic;
+    /**
+     * Records an audit log entry.
+     *
+     * @param source Event source (e.g., "SshMimic", "VirtualFileSystem").
+     * @param type Event type.
+     * @param details Event-specific data.
+     */
+    private log;
+    /**
+     * Returns audit log entries matching optional filters.
+     *
+     * @param type Optional event type filter.
+     * @param source Optional source filter.
+     * @returns Filtered audit log entries.
+     */
+    getAuditLog(type?: string, source?: string): AuditLogEntry[];
+    /**
+     * Returns current activity statistics.
+     *
+     * @returns Snapshot of honeypot stats.
+     */
+    getStats(): Readonly<HoneyPotStats>;
+    /**
+     * Clears audit log and resets statistics.
+     */
+    reset(): void;
+    /**
+     * Returns recent log entries in reverse chronological order.
+     *
+     * @param limit Number of recent entries to return (default: 100).
+     * @returns Recent audit log entries.
+     */
+    getRecent(limit?: number): AuditLogEntry[];
+    /**
+     * Detects potential security issues based on activity patterns.
+     *
+     * @returns Array of anomalies detected.
+     */
+    detectAnomalies(): Array<{
+        type: string;
+        severity: "low" | "medium" | "high";
+        message: string;
+    }>;
+}
+export default HoneyPot;
+//# sourceMappingURL=index.d.ts.map

package/dist/Honeypot/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/Honeypot/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAGH,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAC5C,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,kBAAkB,CAAC;AAClD,OAAO,KAAK,iBAAiB,MAAM,sBAAsB,CAAC;AAC1D,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AACpD,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,uBAAuB,CAAC;AAEhE;;GAEG;AACH,MAAM,WAAW,aAAa;IAC7B,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACjC;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC7B,YAAY,EAAE,MAAM,CAAC;IACrB,aAAa,EAAE,MAAM,CAAC;IACtB,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,aAAa,EAAE,MAAM,CAAC;IACtB,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,CAAC;IACpB,cAAc,EAAE,MAAM,CAAC;IACvB,iBAAiB,EAAE,MAAM,CAAC;CAC1B;AAED;;;;;GAKG;AACH,qBAAa,QAAQ;IACpB,OAAO,CAAC,QAAQ,CAAuB;IACvC,OAAO,CAAC,KAAK,CAaX;IAEF,OAAO,CAAC,UAAU,CAAS;IAE3B;;;;OAIG;gBACS,UAAU,GAAE,MAAc;IAItC;;;;;;;;OAQG;IACI,MAAM,CACZ,KAAK,EAAE,YAAY,EACnB,GAAG,EAAE,iBAAiB,EACtB,KAAK,EAAE,kBAAkB,EACzB,GAAG,CAAC,EAAE,QAAQ,EACd,IAAI,CAAC,EAAE,SAAS,GACd,IAAI;IAYP;;OAEG;IACH,OAAO,CAAC,kBAAkB;IAmB1B;;OAEG;IACH,OAAO,CAAC,uBAAuB;IAoB/B;;OAEG;IACH,OAAO,CAAC,wBAAwB;IAkChC;;OAEG;IACH,OAAO,CAAC,cAAc;IAyCtB;;OAEG;IACH,OAAO,CAAC,eAAe;IAyCvB;;;;;;OAMG;IACH,OAAO,CAAC,GAAG;IAuBX;;;;;;OAMG;IACI,WAAW,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,aAAa,EAAE;IAOnE;;;;OAIG;IACI,QAAQ,IAAI,QAAQ,CAAC,aAAa,CAAC;IAI1C;;OAEG;IACI,KAAK,IAAI,IAAI;IAkBpB;;;;;OAKG;IACI,SAAS,CAAC,KAAK,GAAE,MAAY,GAAG,aAAa,EAAE;IAItD;;;;OAIG;IACI,eAAe,IAAI,KAAK,CAAC;QAC/B,IAAI,EAAE,MAAM,CAAC;QACb,QAAQ,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;QACpC,OAAO,EAAE,MAAM,CAAC;KAChB,CAAC;CAkDF;AAED,eAAe,QAAQ,CAAC"}

package/dist/Honeypot/index.js

@@ -0,0 +1,289 @@
+/**
+ * Honeypot tracking and auditing module for virtual shell events.
+ *
+ * Attaches listeners to VirtualShell, VirtualFileSystem, VirtualUserManager,
+ * SshMimic, and SftpMimic instances to log all activity for security auditing,
+ * anomaly detection, and forensic analysis.
+ *
+ * @module honeypot
+ */
+/**
+ * HoneyPot audit and event tracking utility.
+ *
+ * Singleton-like helper that attaches listeners to virtual shell components
+ * and maintains an audit log of all activity.
+ */
+export class HoneyPot {
+    auditLog = [];
+    stats = {
+        authAttempts: 0,
+        authSuccesses: 0,
+        authFailures: 0,
+        commands: 0,
+        fileWrites: 0,
+        fileReads: 0,
+        sessionStarts: 0,
+        sessionEnds: 0,
+        userCreated: 0,
+        userDeleted: 0,
+        clientConnects: 0,
+        clientDisconnects: 0,
+    };
+    maxLogSize;
+    /**
+     * Creates a new HoneyPot instance.
+     *
+     * @param maxLogSize Maximum audit log entries to retain (default: 10000).
+     */
+    constructor(maxLogSize = 10000) {
+        this.maxLogSize = maxLogSize;
+    }
+    /**
+     * Attaches honeypot listeners to all provided event emitters.
+     *
+     * @param shell VirtualShell instance.
+     * @param vfs VirtualFileSystem instance.
+     * @param users VirtualUserManager instance.
+     * @param ssh SshMimic instance (optional).
+     * @param sftp SftpMimic instance (optional).
+     */
+    attach(shell, vfs, users, ssh, sftp) {
+        this.attachVirtualShell(shell);
+        this.attachVirtualFileSystem(vfs);
+        this.attachVirtualUserManager(users);
+        if (ssh) {
+            this.attachSshMimic(ssh);
+        }
+        if (sftp) {
+            this.attachSftpMimic(sftp);
+        }
+    }
+    /**
+     * Attaches to VirtualShell events.
+     */
+    attachVirtualShell(shell) {
+        shell.on("initialized", () => {
+            this.log("VirtualShell", "initialized", {});
+        });
+        shell.on("command", (data) => {
+            this.stats.commands++;
+            this.log("VirtualShell", "command", data);
+        });
+        shell.on("session:start", (data) => {
+            this.stats.sessionStarts++;
+            this.log("VirtualShell", "session:start", data);
+        });
+    }
+    /**
+     * Attaches to VirtualFileSystem events.
+     */
+    attachVirtualFileSystem(vfs) {
+        vfs.on("file:read", (data) => {
+            this.stats.fileReads++;
+            this.log("VirtualFileSystem", "file:read", data);
+        });
+        vfs.on("file:write", (data) => {
+            this.stats.fileWrites++;
+            this.log("VirtualFileSystem", "file:write", data);
+        });
+        vfs.on("dir:create", (data) => {
+            this.log("VirtualFileSystem", "dir:create", data);
+        });
+        vfs.on("mirror:flush", () => {
+            this.log("VirtualFileSystem", "mirror:flush", {});
+        });
+    }
+    /**
+     * Attaches to VirtualUserManager events.
+     */
+    attachVirtualUserManager(users) {
+        users.on("initialized", () => {
+            this.log("VirtualUserManager", "initialized", {});
+        });
+        users.on("user:add", (data) => {
+            this.stats.userCreated++;
+            this.log("VirtualUserManager", "user:add", data);
+        });
+        users.on("user:delete", (data) => {
+            this.stats.userDeleted++;
+            this.log("VirtualUserManager", "user:delete", data);
+        });
+        users.on("session:register", (data) => {
+            this.log("VirtualUserManager", "session:register", data);
+        });
+        users.on("session:unregister", (data) => {
+            this.stats.sessionEnds++;
+            this.log("VirtualUserManager", "session:unregister", data);
+        });
+    }
+    /**
+     * Attaches to SshMimic events.
+     */
+    attachSshMimic(ssh) {
+        ssh.on("start", (data) => {
+            this.log("SshMimic", "start", data);
+        });
+        ssh.on("stop", () => {
+            this.log("SshMimic", "stop", {});
+        });
+        ssh.on("auth:success", (data) => {
+            this.stats.authAttempts++;
+            this.stats.authSuccesses++;
+            this.log("SshMimic", "auth:success", data);
+        });
+        ssh.on("auth:failure", (data) => {
+            this.stats.authAttempts++;
+            this.stats.authFailures++;
+            this.log("SshMimic", "auth:failure", data);
+        });
+        ssh.on("client:connect", () => {
+            this.stats.clientConnects++;
+            this.log("SshMimic", "client:connect", {});
+        });
+        ssh.on("client:disconnect", (data) => {
+            this.stats.clientDisconnects++;
+            this.log("SshMimic", "client:disconnect", data);
+        });
+    }
+    /**
+     * Attaches to SftpMimic events.
+     */
+    attachSftpMimic(sftp) {
+        sftp.on("start", (data) => {
+            this.log("SftpMimic", "start", data);
+        });
+        sftp.on("stop", () => {
+            this.log("SftpMimic", "stop", {});
+        });
+        sftp.on("auth:success", (data) => {
+            this.stats.authAttempts++;
+            this.stats.authSuccesses++;
+            this.log("SftpMimic", "auth:success", data);
+        });
+        sftp.on("auth:failure", (data) => {
+            this.stats.authAttempts++;
+            this.stats.authFailures++;
+            this.log("SftpMimic", "auth:failure", data);
+        });
+        sftp.on("client:connect", () => {
+            this.stats.clientConnects++;
+            this.log("SftpMimic", "client:connect", {});
+        });
+        sftp.on("client:disconnect", (data) => {
+            this.stats.clientDisconnects++;
+            this.log("SftpMimic", "client:disconnect", data);
+        });
+    }
+    /**
+     * Records an audit log entry.
+     *
+     * @param source Event source (e.g., "SshMimic", "VirtualFileSystem").
+     * @param type Event type.
+     * @param details Event-specific data.
+     */
+    log(source, type, details) {
+        const entry = {
+            timestamp: new Date().toISOString(),
+            type,
+            source,
+            details,
+        };
+        this.auditLog.push(entry);
+        // Trim log if exceeds max size
+        if (this.auditLog.length > this.maxLogSize) {
+            this.auditLog = this.auditLog.slice(-this.maxLogSize);
+        }
+        // Console output for real-time monitoring
+        console.log(`[AUDIT] ${entry.timestamp} | ${source} | ${type}`, details);
+    }
+    /**
+     * Returns audit log entries matching optional filters.
+     *
+     * @param type Optional event type filter.
+     * @param source Optional source filter.
+     * @returns Filtered audit log entries.
+     */
+    getAuditLog(type, source) {
+        return this.auditLog.filter((entry) => (!type || entry.type === type) && (!source || entry.source === source));
+    }
+    /**
+     * Returns current activity statistics.
+     *
+     * @returns Snapshot of honeypot stats.
+     */
+    getStats() {
+        return Object.freeze({ ...this.stats });
+    }
+    /**
+     * Clears audit log and resets statistics.
+     */
+    reset() {
+        this.auditLog = [];
+        this.stats = {
+            authAttempts: 0,
+            authSuccesses: 0,
+            authFailures: 0,
+            commands: 0,
+            fileWrites: 0,
+            fileReads: 0,
+            sessionStarts: 0,
+            sessionEnds: 0,
+            userCreated: 0,
+            userDeleted: 0,
+            clientConnects: 0,
+            clientDisconnects: 0,
+        };
+    }
+    /**
+     * Returns recent log entries in reverse chronological order.
+     *
+     * @param limit Number of recent entries to return (default: 100).
+     * @returns Recent audit log entries.
+     */
+    getRecent(limit = 100) {
+        return this.auditLog.slice(Math.max(0, this.auditLog.length - limit));
+    }
+    /**
+     * Detects potential security issues based on activity patterns.
+     *
+     * @returns Array of anomalies detected.
+     */
+    detectAnomalies() {
+        const anomalies = [];
+        // High auth failure rate
+        if (this.stats.authAttempts > 0 &&
+            this.stats.authFailures / this.stats.authAttempts > 0.5) {
+            anomalies.push({
+                type: "high_auth_failure_rate",
+                severity: "medium",
+                message: `Auth failure rate: ${((this.stats.authFailures / this.stats.authAttempts) * 100).toFixed(1)}%`,
+            });
+        }
+        // Excessive auth failures in short time
+        if (this.stats.authFailures > 10) {
+            anomalies.push({
+                type: "excessive_auth_failures",
+                severity: "high",
+                message: `${this.stats.authFailures} authentication failures detected`,
+            });
+        }
+        // Unusual command execution volume
+        if (this.stats.commands > 1000) {
+            anomalies.push({
+                type: "high_command_volume",
+                severity: "low",
+                message: `${this.stats.commands} commands executed`,
+            });
+        }
+        // Unusual file write volume
+        if (this.stats.fileWrites > 500) {
+            anomalies.push({
+                type: "high_write_volume",
+                severity: "medium",
+                message: `${this.stats.fileWrites} file write operations`,
+            });
+        }
+        return anomalies;
+    }
+}
+export default HoneyPot;

package/dist/SSHMimic/index.d.ts

@@ -1,3 +1,4 @@
+import { EventEmitter } from "node:events";
 import { Server as SshServer } from "ssh2";
 import { VirtualShell } from "../VirtualShell";
 /**
@@ -7,7 +8,7 @@ import { VirtualShell } from "../VirtualShell";
  * Create an instance, call {@link SshMimic.start}, and stop it with
  * {@link SshMimic.stop} when your process exits.
  */
-declare class SshMimic {
+declare class SshMimic extends EventEmitter {
     port: number;
     server: SshServer | null;
     private shell;

package/dist/SSHMimic/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/SSHMimic/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,IAAI,SAAS,EAAE,MAAM,MAAM,CAAC;AAC3C,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAI/C;;;;;;GAMG;AACH,cAAM,QAAQ;IACb,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,SAAS,GAAG,IAAI,CAAC;IACzB,OAAO,CAAC,KAAK,CAAe;IAC5B,OAAO,CAAC,aAAa,CAAS;IAE9B;;;;;;OAMG;gBACS,EACX,IAAI,EACJ,QAA0B,EAC1B,KAAkC,GAClC,EAAE;QACF,IAAI,EAAE,MAAM,CAAC;QACb,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,KAAK,CAAC,EAAE,YAAY,CAAC;KACrB;IAOD;;;;OAIG;IACU,KAAK,IAAI,OAAO,CAAC,MAAM,CAAC;IA+GrC;;OAEG;IACI,IAAI,IAAI,IAAI;CAOnB;AAED,OAAO,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AACnC,OAAO,EAAE,QAAQ,EAAE,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/SSHMimic/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAC3C,OAAO,EAAE,MAAM,IAAI,SAAS,EAAE,MAAM,MAAM,CAAC;AAC3C,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAI/C;;;;;;GAMG;AACH,cAAM,QAAS,SAAQ,YAAY;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,SAAS,GAAG,IAAI,CAAC;IACzB,OAAO,CAAC,KAAK,CAAe;IAC5B,OAAO,CAAC,aAAa,CAAS;IAE9B;;;;;;OAMG;gBACS,EACX,IAAI,EACJ,QAA0B,EAC1B,KAAkC,GAClC,EAAE;QACF,IAAI,EAAE,MAAM,CAAC;QACb,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,KAAK,CAAC,EAAE,YAAY,CAAC;KACrB;IAQD;;;;OAIG;IACU,KAAK,IAAI,OAAO,CAAC,MAAM,CAAC;IAwHrC;;OAEG;IACI,IAAI,IAAI,IAAI;CAQnB;AAED,OAAO,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AACnC,OAAO,EAAE,QAAQ,EAAE,CAAC"}

package/dist/SSHMimic/index.js

@@ -1,3 +1,4 @@
+import { EventEmitter } from "node:events";
 import { Server as SshServer } from "ssh2";
 import { VirtualShell } from "../VirtualShell";
 import { runExec } from "./exec";
@@ -9,7 +10,7 @@ import { loadOrCreateHostKey } from "./hostKey";
  * Create an instance, call {@link SshMimic.start}, and stop it with
  * {@link SshMimic.stop} when your process exits.
  */
-class SshMimic {
+class SshMimic extends EventEmitter {
     port;
     server;
     shell;
@@ -22,6 +23,7 @@ class SshMimic {
      * @param shell Optional preconfigured virtual shell instance to reuse.
      */
     constructor({ port, hostname = "typescript-vm", shell = new VirtualShell(hostname), }) {
+        super();
         this.port = port;
         this.shellHostname = hostname;
         this.server = null;
@@ -44,17 +46,23 @@ class SshMimic {
             let authUser = "root";
             let remoteAddress = "unknown";
             let sessionId = null;
+            this.emit("client:connect");
             client.on("authentication", (ctx) => {
                 shell;
                 if (ctx.method === "password") {
                     const candidateUser = ctx.username || "root";
                     remoteAddress = ctx.ip ?? remoteAddress;
                     if (!shell.users.verifyPassword(candidateUser, ctx.password ?? "")) {
+                        this.emit("auth:failure", {
+                            username: candidateUser,
+                            remoteAddress,
+                        });
                         ctx.reject();
                         return;
                     }
                     authUser = candidateUser;
                     sessionId = shell.users.registerSession(authUser, remoteAddress).id;
+                    this.emit("auth:success", { username: authUser, remoteAddress });
                     const homePath = `/home/${authUser}`;
                     if (!shell.vfs.exists(homePath)) {
                         shell.vfs.mkdir(homePath, 0o755);
@@ -68,6 +76,7 @@ class SshMimic {
             });
             client.on("close", () => {
                 shell.users.unregisterSession(sessionId);
+                this.emit("client:disconnect", { user: authUser });
                 sessionId = null;
             });
             client.on("ready", () => {
@@ -100,6 +109,7 @@ class SshMimic {
             this.server?.once("error", (err) => reject(err));
             this.server?.listen(this.port, "0.0.0.0", () => {
                 console.log(`SSH Mimic listening on port ${this.port}`);
+                this.emit("start", { port: this.port });
                 resolve(this.port);
             });
         });
@@ -111,6 +121,7 @@ class SshMimic {
         if (this.server) {
             this.server.close(() => {
                 console.log("SSH Mimic stopped");
+                this.emit("stop");
             });
         }
     }

package/dist/SSHMimic/sftp.d.ts

@@ -1,3 +1,5 @@
+/** biome-ignore-all lint/style/useNamingConvention: const as enum */
+import { EventEmitter } from "node:events";
 import { Server as SshServer } from "ssh2";
 import type VirtualFileSystem from "../VirtualFileSystem";
 import { VirtualShell } from "../VirtualShell";
@@ -9,7 +11,7 @@ export interface SftpMimicOptions {
     vfs?: VirtualFileSystem;
     users?: VirtualUserManager;
 }
-export declare class SftpMimic {
+export declare class SftpMimic extends EventEmitter {
     port: number;
     server: SshServer | null;
     private readonly hostname;

package/dist/SSHMimic/sftp.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"sftp.d.ts","sourceRoot":"","sources":["../../src/SSHMimic/sftp.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,MAAM,IAAI,SAAS,EAAE,MAAM,MAAM,CAAC;AAC3C,OAAO,KAAK,iBAAiB,MAAM,sBAAsB,CAAC;AAC1D,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,uBAAuB,CAAC;AA2HhE,MAAM,WAAW,gBAAgB;IAChC,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,KAAK,CAAC,EAAE,YAAY,CAAC;IACrB,GAAG,CAAC,EAAE,iBAAiB,CAAC;IACxB,KAAK,CAAC,EAAE,kBAAkB,CAAC;CAC3B;AAED,qBAAa,SAAS;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,SAAS,GAAG,IAAI,CAAC;IACzB,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAS;IAClC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAsB;IAC5C,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAoB;IACxC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAqB;IAC3C,OAAO,CAAC,YAAY,CAAK;IACzB,OAAO,CAAC,OAAO,CAAiC;gBAEpC,EACX,IAAI,EACJ,QAA0B,EAC1B,KAAK,EACL,GAAG,EACH,KAAK,GACL,EAAE,gBAAgB;IAsBnB,OAAO,CAAC,MAAM;IAId,OAAO,CAAC,QAAQ;IAIH,KAAK,IAAI,OAAO,CAAC,MAAM,CAAC;IAuI9B,IAAI,IAAI,IAAI;IAQnB;;;;OAIG;IACH,OAAO,CAAC,kBAAkB;IAiB1B;;;;;;OAMG;IACH,OAAO,CAAC,gBAAgB;IAkBxB,OAAO,CAAC,WAAW;IAcnB,OAAO,CAAC,UAAU;IAQlB,OAAO,CAAC,SAAS;IAIjB,OAAO,CAAC,WAAW;IAInB,OAAO,CAAC,kBAAkB;CA6a1B"}
+{"version":3,"file":"sftp.d.ts","sourceRoot":"","sources":["../../src/SSHMimic/sftp.ts"],"names":[],"mappings":"AAAA,qEAAqE;AACrE,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAG3C,OAAO,EAAE,MAAM,IAAI,SAAS,EAAE,MAAM,MAAM,CAAC;AAC3C,OAAO,KAAK,iBAAiB,MAAM,sBAAsB,CAAC;AAC1D,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,uBAAuB,CAAC;AA2HhE,MAAM,WAAW,gBAAgB;IAChC,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,KAAK,CAAC,EAAE,YAAY,CAAC;IACrB,GAAG,CAAC,EAAE,iBAAiB,CAAC;IACxB,KAAK,CAAC,EAAE,kBAAkB,CAAC;CAC3B;AAED,qBAAa,SAAU,SAAQ,YAAY;IAC1C,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,SAAS,GAAG,IAAI,CAAC;IACzB,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAS;IAClC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAsB;IAC5C,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAoB;IACxC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAqB;IAC3C,OAAO,CAAC,YAAY,CAAK;IACzB,OAAO,CAAC,OAAO,CAAiC;gBAEpC,EACX,IAAI,EACJ,QAA0B,EAC1B,KAAK,EACL,GAAG,EACH,KAAK,GACL,EAAE,gBAAgB;IAuBnB,OAAO,CAAC,MAAM;IAId,OAAO,CAAC,QAAQ;IAIH,KAAK,IAAI,OAAO,CAAC,MAAM,CAAC;IAwJ9B,IAAI,IAAI,IAAI;IASnB;;;;OAIG;IACH,OAAO,CAAC,kBAAkB;IAiB1B;;;;;;OAMG;IACH,OAAO,CAAC,gBAAgB;IAkBxB,OAAO,CAAC,WAAW;IAcnB,OAAO,CAAC,UAAU;IAQlB,OAAO,CAAC,SAAS;IAIjB,OAAO,CAAC,WAAW;IAInB,OAAO,CAAC,kBAAkB;CA6a1B"}

package/dist/SSHMimic/sftp.js

@@ -1,4 +1,5 @@
 /** biome-ignore-all lint/style/useNamingConvention: const as enum */
+import { EventEmitter } from "node:events";
 import * as path from "node:path";
 import { Server as SshServer } from "ssh2";
 import { VirtualShell } from "../VirtualShell";
@@ -22,7 +23,7 @@ const OPEN_MODE = {
     TRUNC: 0x00000010,
     EXCL: 0x00000020,
 };
-export class SftpMimic {
+export class SftpMimic extends EventEmitter {
     port;
     server;
     hostname;
@@ -32,6 +33,7 @@ export class SftpMimic {
     nextHandleId = 0;
     handles = new Map();
     constructor({ port, hostname = "typescript-vm", shell, vfs, users, }) {
+        super();
         this.port = port;
         this.server = null;
         this.hostname = hostname;
@@ -80,6 +82,7 @@ export class SftpMimic {
             let authUser = "root";
             let sessionId = null;
             let remoteAddress = "unknown";
+            this.emit("client:connect");
             // Add error handling for the client
             client.on("error", (error) => {
                 console.error(`[SFTP] Client error:`, error);
@@ -104,10 +107,15 @@ export class SftpMimic {
                 console.log(`[SFTP] Auth attempt: user=${candidateUser}, method=${ctx.method}, ip=${remoteAddress}`);
                 if (ctx.method === "password") {
                     if (!this.getUsers().verifyPassword(candidateUser, ctx.password ?? "")) {
+                        this.emit("auth:failure", {
+                            username: candidateUser,
+                            remoteAddress,
+                        });
                         ctx.reject(allowedAuthMethods);
                         return;
                     }
                     acceptSession(candidateUser);
+                    this.emit("auth:success", { username: authUser, remoteAddress });
                     ctx.accept();
                     return;
                 }
@@ -116,10 +124,18 @@ export class SftpMimic {
                     keyboardCtx.prompt([{ prompt: "Password: ", echo: false }], (answers) => {
                         const password = answers[0] ?? "";
                         if (!this.getUsers().verifyPassword(candidateUser, password)) {
+                            this.emit("auth:failure", {
+                                username: candidateUser,
+                                remoteAddress,
+                            });
                             keyboardCtx.reject(allowedAuthMethods);
                             return;
                         }
                         acceptSession(candidateUser);
+                        this.emit("auth:success", {
+                            username: authUser,
+                            remoteAddress,
+                        });
                         keyboardCtx.accept();
                     });
                     return;
@@ -128,6 +144,7 @@ export class SftpMimic {
             });
             client.on("close", () => {
                 this.getUsers().unregisterSession(sessionId);
+                this.emit("client:disconnect", { user: authUser });
                 sessionId = null;
             });
             client.on("ready", () => {
@@ -152,6 +169,7 @@ export class SftpMimic {
                     ? address.port
                     : this.port;
                 console.log(`SFTP Mimic listening on port ${actualPort}`);
+                this.emit("start", { port: actualPort });
                 resolve(actualPort);
             });
         });
@@ -160,6 +178,7 @@ export class SftpMimic {
         if (this.server) {
             this.server.close(() => {
                 console.log("SFTP Mimic stopped");
+                this.emit("stop");
             });
         }
     }

package/dist/VirtualFileSystem/index.d.ts

@@ -1,3 +1,4 @@
+import { EventEmitter } from "node:events";
 import type { RemoveOptions, VfsNodeStats, WriteFileOptions } from "../types/vfs";
 /**
  * In-memory virtual filesystem with tar.gz mirror persistence.
@@ -6,7 +7,7 @@ import type { RemoveOptions, VfsNodeStats, WriteFileOptions } from "../types/vfs
  * {@link VirtualFileSystem.restoreMirror} on startup and
  * {@link VirtualFileSystem.flushMirror} to persist pending changes.
  */
-declare class VirtualFileSystem {
+declare class VirtualFileSystem extends EventEmitter {
     private readonly mirrorRoot;
     private ensureMirrorRoot;
     private resolveFsPath;

package/dist/VirtualFileSystem/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/VirtualFileSystem/index.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EACX,aAAa,EACb,YAAY,EACZ,gBAAgB,EAChB,MAAM,cAAc,CAAC;AAGtB;;;;;;GAMG;AACH,cAAM,iBAAiB;IACtB,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAS;IAEpC,OAAO,CAAC,gBAAgB;IAIxB,OAAO,CAAC,aAAa;IAarB,OAAO,CAAC,cAAc;IAWtB,OAAO,CAAC,qBAAqB;IAa7B,OAAO,CAAC,eAAe;IA4BvB;;;;OAIG;gBACS,OAAO,GAAE,MAAsB;IAI3C;;;;OAIG;IACU,aAAa,IAAI,OAAO,CAAC,IAAI,CAAC;IAI3C;;;;OAIG;IACU,WAAW,IAAI,OAAO,CAAC,IAAI,CAAC;IAIzC;;;;;OAKG;IACI,KAAK,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,GAAE,MAAc,GAAG,IAAI;IAW5D;;;;;;;;OAQG;IACI,SAAS,CACf,UAAU,EAAE,MAAM,EAClB,OAAO,EAAE,MAAM,GAAG,MAAM,EACxB,OAAO,GAAE,gBAAqB,GAC5B,IAAI;IAuBP;;;;;;;OAOG;IACI,QAAQ,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM;IAY3C;;;;;OAKG;IACI,MAAM,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO;IAS1C;;;;;OAKG;IACI,KAAK,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,IAAI;IAQpD;;;;;OAKG;IACI,IAAI,CAAC,UAAU,EAAE,MAAM,GAAG,YAAY;IAqC7C;;;;;OAKG;IACI,IAAI,CAAC,OAAO,GAAE,MAAY,GAAG,MAAM,EAAE;IAS5C;;;;;OAKG;IACI,IAAI,CAAC,OAAO,GAAE,MAAY,GAAG,MAAM;IAW1C;;;;;;;;OAQG;IACI,aAAa,CAAC,UAAU,GAAE,MAAY,GAAG,MAAM;IAQtD;;;;OAIG;IACI,YAAY,CAAC,UAAU,EAAE,MAAM,GAAG,IAAI;IAY7C;;;;OAIG;IACI,cAAc,CAAC,UAAU,EAAE,MAAM,GAAG,IAAI;IAY/C;;;;;OAKG;IACI,MAAM,CAAC,UAAU,EAAE,MAAM,EAAE,OAAO,GAAE,aAAkB,GAAG,IAAI;IA4BpE;;;;;OAKG;IACI,IAAI,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,IAAI;CAsBnD;AAED,eAAe,iBAAiB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/VirtualFileSystem/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAI3C,OAAO,KAAK,EACX,aAAa,EACb,YAAY,EACZ,gBAAgB,EAChB,MAAM,cAAc,CAAC;AAGtB;;;;;;GAMG;AACH,cAAM,iBAAkB,SAAQ,YAAY;IAC3C,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAS;IAEpC,OAAO,CAAC,gBAAgB;IAIxB,OAAO,CAAC,aAAa;IAarB,OAAO,CAAC,cAAc;IAWtB,OAAO,CAAC,qBAAqB;IAa7B,OAAO,CAAC,eAAe;IA4BvB;;;;OAIG;gBACS,OAAO,GAAE,MAAsB;IAK3C;;;;OAIG;IACU,aAAa,IAAI,OAAO,CAAC,IAAI,CAAC;IAI3C;;;;OAIG;IACU,WAAW,IAAI,OAAO,CAAC,IAAI,CAAC;IAKzC;;;;;OAKG;IACI,KAAK,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,GAAE,MAAc,GAAG,IAAI;IAY5D;;;;;;;;OAQG;IACI,SAAS,CACf,UAAU,EAAE,MAAM,EAClB,OAAO,EAAE,MAAM,GAAG,MAAM,EACxB,OAAO,GAAE,gBAAqB,GAC5B,IAAI;IAwBP;;;;;;;OAOG;IACI,QAAQ,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM;IAc3C;;;;;OAKG;IACI,MAAM,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO;IAS1C;;;;;OAKG;IACI,KAAK,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,IAAI;IAQpD;;;;;OAKG;IACI,IAAI,CAAC,UAAU,EAAE,MAAM,GAAG,YAAY;IAqC7C;;;;;OAKG;IACI,IAAI,CAAC,OAAO,GAAE,MAAY,GAAG,MAAM,EAAE;IAS5C;;;;;OAKG;IACI,IAAI,CAAC,OAAO,GAAE,MAAY,GAAG,MAAM;IAW1C;;;;;;;;OAQG;IACI,aAAa,CAAC,UAAU,GAAE,MAAY,GAAG,MAAM;IAQtD;;;;OAIG;IACI,YAAY,CAAC,UAAU,EAAE,MAAM,GAAG,IAAI;IAY7C;;;;OAIG;IACI,cAAc,CAAC,UAAU,EAAE,MAAM,GAAG,IAAI;IAY/C;;;;;OAKG;IACI,MAAM,CAAC,UAAU,EAAE,MAAM,EAAE,OAAO,GAAE,aAAkB,GAAG,IAAI;IA4BpE;;;;;OAKG;IACI,IAAI,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,IAAI;CAsBnD;AAED,eAAe,iBAAiB,CAAC"}