typescript-virtual-container 1.5.3 → 1.5.5

package/examples/honeypot-export.ts

@@ -1,253 +0,0 @@
-/**
- * HoneyPot Advanced: Audit Export & Analysis
- *
- * Shows how to export audit data for external analysis, storage,
- * or integration with security monitoring systems.
- *
- * Run with: bun run examples/honeypot-export.ts
- */
-
-import * as fs from "node:fs";
-import {
-    HoneyPot,
-    SshClient,
-    VirtualShell,
-    VirtualSshServer,
-} from "../src/index";
-
-interface AuditReport {
-	timestamp: string;
-	environment: string;
-	durationMs: number;
-	summary: {
-		totalEvents: number;
-		totalUsers: number;
-		totalCommands: number;
-		failedAuthAttempts: number;
-	};
-	statistics: Record<string, number>;
-	anomalies: Array<{
-		type: string;
-		severity: string;
-		message: string;
-	}>;
-	timeline: Array<{
-		time: string;
-		event: string;
-		user?: string;
-		details: Record<string, unknown>;
-	}>;
-}
-
-async function generateAuditReport() {
-	const startTime = Date.now();
-
-	console.log("📊 HoneyPot Advanced: Generating Audit Report\n");
-
-	// Setup
-	const shell = new VirtualShell("audit-lab");
-	const ssh = new VirtualSshServer({ port: 2222, shell });
-	await ssh.start();
-
-	const users = shell.getUsers()!;
-	const vfs = shell.getVfs()!;
-
-	const honeypot = new HoneyPot(5000);
-	honeypot.attach(shell, vfs, users, ssh);
-
-	console.log("Running simulated workload...\n");
-
-	// Simulate various user activities
-	await users.addUser("analyst", "pass123");
-	await users.addUser("developer", "pass456");
-	await users.removeSudoer("developer");
-
-	// Analyst activities (authorized)
-	const analyst = new SshClient(shell, "analyst");
-	await analyst.mkdir("/data/reports", true);
-	await analyst.writeFile(
-		"/data/reports/analysis.txt",
-		"Security analysis report",
-	);
-	await analyst.ls("/data/reports");
-
-	// Developer activities
-	const dev = new SshClient(shell, "developer");
-	await dev.mkdir("/code/project", true);
-	await dev.writeFile("/code/project/main.ts", "export function main() {}");
-
-	// Some failed operations (tracked)
-	try {
-		await dev.readFile("/etc/shadow"); // Will fail
-	} catch {
-		// Ignored
-	}
-
-	try {
-		await dev.writeFile("/root/.bashrc", "malicious"); // Will fail
-	} catch {
-		// Ignored
-	}
-
-	// Get final duration
-	const duration = Date.now() - startTime;
-
-	console.log("Generating audit report...\n");
-
-	// Build comprehensive audit report
-	const stats = honeypot.getStats();
-	const anomalies = honeypot.detectAnomalies();
-	const auditLog = honeypot.getAuditLog();
-
-	const report: AuditReport = {
-		timestamp: new Date().toISOString(),
-		environment: "audit-lab",
-		durationMs: duration,
-
-		summary: {
-			totalEvents: auditLog.length,
-			totalUsers: stats.userCreated,
-			totalCommands: stats.commands,
-			failedAuthAttempts: stats.authFailures,
-		},
-
-		statistics: {
-			authAttempts: stats.authAttempts,
-			authSuccesses: stats.authSuccesses,
-			authFailures: stats.authFailures,
-			commandsExecuted: stats.commands,
-			fileReads: stats.fileReads,
-			fileWrites: stats.fileWrites,
-			sessionsStarted: stats.sessionStarts,
-			sessionsEnded: stats.sessionEnds,
-			usersCreated: stats.userCreated,
-			usersDeleted: stats.userDeleted,
-			clientConnects: stats.clientConnects,
-			clientDisconnects: stats.clientDisconnects,
-		},
-
-		anomalies: anomalies.map((a) => ({
-			type: a.type,
-			severity: a.severity,
-			message: a.message,
-		})),
-
-		timeline: auditLog.map((entry) => ({
-			time: entry.timestamp,
-			event: `${entry.source}:${entry.type}`,
-			user: (entry.details.username as string) || undefined,
-			details: entry.details,
-		})),
-	};
-
-	// Display summary
-	console.log("📋 Audit Report Summary\n");
-	console.log(`  Environment: ${report.environment}`);
-	console.log(`  Generated: ${report.timestamp}`);
-	console.log(`  Duration: ${report.durationMs}ms\n`);
-
-	console.log("📊 Statistics:");
-	console.log(`  • Total events: ${report.summary.totalEvents}`);
-	console.log(`  • Total users: ${report.summary.totalUsers}`);
-	console.log(`  • Commands executed: ${report.summary.totalCommands}`);
-	console.log(
-		`  • Failed auth attempts: ${report.summary.failedAuthAttempts}\n`,
-	);
-
-	// Display anomalies if any
-	if (report.anomalies.length > 0) {
-		console.log("⚠️  Anomalies:");
-		report.anomalies.forEach((a) => {
-			console.log(`  • [${a.severity}] ${a.type}`);
-			console.log(`    ${a.message}`);
-		});
-		console.log();
-	}
-
-	// Export to JSON file
-	const reportPath = "./audit_report.json";
-	fs.writeFileSync(reportPath, JSON.stringify(report, null, 2));
-	console.log(`✅ Report exported to: ${reportPath}\n`);
-
-	// Export CSV for spreadsheet analysis
-	const csvPath = "./audit_events.csv";
-	const csvHeader = "Timestamp,Source,Event,User,Details\n";
-	const csvRows = report.timeline
-		.map((entry) => {
-			const details = JSON.stringify(entry.details).replace(/"/g, '""');
-			return `"${entry.time}","${entry.event.split(":")[0]}","${
-				entry.event.split(":")[1]
-			}","${entry.user || ""}","${details}"`;
-		})
-		.join("\n");
-
-	fs.writeFileSync(csvPath, csvHeader + csvRows);
-	console.log(`✅ CSV export to: ${csvPath}\n`);
-
-	// Generate summary stats file
-	const statsPath = "./audit_stats.json";
-	fs.writeFileSync(
-		statsPath,
-		JSON.stringify(
-			{
-				summary: report.summary,
-				statistics: report.statistics,
-				anomalies: report.anomalies,
-			},
-			null,
-			2,
-		),
-	);
-	console.log(`✅ Stats export to: ${statsPath}\n`);
-
-	// Show sample data
-	console.log("📄 Sample Report Data:");
-	console.log(`${JSON.stringify(report, null, 2).substring(0, 500)}...\n`);
-
-	// Integration example: Send to external system
-	console.log("🔗 Integration Example:");
-	console.log("To send this data to external systems:");
-	console.log("  • Database: INSERT INTO audit_logs VALUES (...)");
-	console.log("  • API: POST /api/audit-reports (JSON payload)");
-	console.log("  • Message Queue: PUBLISH audit_report (for async processing)");
-	console.log("  • SIEM: Send via syslog or CEF format\n");
-
-	// Query examples
-	console.log("🔍 Query Examples:");
-
-	// Auth failures by user
-	const authFailures = honeypot.getAuditLog("auth:failure");
-	const failuresByUser = new Map<string, number>();
-	authFailures.forEach((entry) => {
-		const user = entry.details.username as string;
-		failuresByUser.set(user, (failuresByUser.get(user) || 0) + 1);
-	});
-
-	if (failuresByUser.size > 0) {
-		console.log("\n  Auth Failures by User:");
-		failuresByUser.forEach((count, user) => {
-			console.log(`    • ${user}: ${count} failures`);
-		});
-	}
-
-	// File operations
-	const fileWrites = honeypot.getAuditLog("file:write");
-	if (fileWrites.length > 0) {
-		console.log(`\n  File Writes: ${fileWrites.length}`);
-		fileWrites.slice(-3).forEach((entry) => {
-			console.log(`    • ${entry.details.path} (${entry.details.size} B)`);
-		});
-	}
-
-	console.log();
-
-	// Cleanup
-	ssh.stop();
-
-	console.log("✅ Audit report generation complete!");
-	console.log(
-		"💡 Tip: Open the generated .json files to view full audit trails.\n",
-	);
-}
-
-generateAuditReport().catch(console.error);

package/examples/honeypot-quickstart.ts

@@ -1,110 +0,0 @@
-/**
- * HoneyPot Quick Start Example
- *
- * A minimal, step-by-step introduction to HoneyPot auditing.
- * Perfect for beginners.
- *
- * Run with: bun run examples/honeypot-quickstart.ts
- */
-
-import {
-	HoneyPot,
-	SshClient,
-	VirtualShell,
-	VirtualSshServer,
-} from "../src/index";
-
-async function quickStart() {
-	console.log("🍯 HoneyPot Quick Start\n");
-
-	// Step 1: Create virtual environment
-	console.log("Step 1️⃣  Creating virtual environment...");
-	const shell = new VirtualShell("my-lab");
-	const ssh = new VirtualSshServer({ port: 2222, shell });
-	await ssh.start();
-
-	const users = shell.getUsers()!;
-	const vfs = shell.getVfs()!;
-
-	console.log("✅ Environment ready\n");
-
-	// Step 2: Create HoneyPot instance
-	console.log("Step 2️⃣  Initializing HoneyPot...");
-	const honeypot = new HoneyPot();
-
-	// Step 3: Attach HoneyPot to all components
-	console.log("Step 3️⃣  Attaching HoneyPot to components...");
-	honeypot.attach(shell, vfs, users, ssh);
-
-	console.log("✅ HoneyPot is now tracking all activity\n");
-
-	// Step 4: Do some work (which will be audited)
-	console.log("Step 4️⃣  Performing some operations...\n");
-
-	// Create a user
-	await users.addUser("dev_user", "secure_pass");
-	console.log("  ✓ Created user 'dev_user'");
-
-	// Create a client
-	const client = new SshClient(shell, "dev_user");
-
-	// Create files
-	await client.mkdir("/app", true);
-	await client.writeFile("/app/config.json", '{"debug":true}');
-	await client.readFile("/app/config.json");
-
-	console.log("  ✓ Created /app directory and config.json");
-	console.log("  ✓ Read config.json\n");
-
-	// Step 5: Get statistics
-	console.log("Step 5️⃣  Viewing activity statistics...\n");
-	const stats = honeypot.getStats();
-	console.log(`  📊 Commands: ${stats.commands}`);
-	console.log(`  📝 File writes: ${stats.fileWrites}`);
-	console.log(`  📖 File reads: ${stats.fileReads}`);
-	console.log(`  👤 Users created: ${stats.userCreated}\n`);
-
-	// Step 6: Get recent events
-	console.log("Step 6️⃣  Last 5 events:\n");
-	honeypot.getRecent(5).forEach((entry, idx) => {
-		console.log(`  ${idx + 1}. [${entry.source}] ${entry.type}`);
-		if (Object.keys(entry.details).length > 0) {
-			console.log(`     └─ ${JSON.stringify(entry.details)}`);
-		}
-	});
-	console.log();
-
-	// Step 7: Query filtered logs
-	console.log("Step 7️⃣  Querying specific event types...\n");
-
-	const userEvents = honeypot.getAuditLog("user:add");
-	console.log(`  👤 User creation events: ${userEvents.length}`);
-
-	const fileEvents = honeypot.getAuditLog(undefined, "VirtualFileSystem");
-	console.log(`  📁 VirtualFileSystem events: ${fileEvents.length}\n`);
-
-	// Step 8: Detect anomalies
-	console.log("Step 8️⃣  Checking for anomalies...\n");
-	const anomalies = honeypot.detectAnomalies();
-	if (anomalies.length === 0) {
-		console.log("  ✅ No anomalies detected\n");
-	} else {
-		console.log("  ⚠️  Anomalies found:");
-		anomalies.forEach((a) => {
-			console.log(`     • ${a.message}`);
-		});
-		console.log();
-	}
-
-	// Step 9: Export audit data (for storage/analysis)
-	console.log("Step 9️⃣  Exporting audit log...\n");
-	const fullLog = honeypot.getAuditLog();
-	console.log(`  ✓ Exported ${fullLog.length} audit entries`);
-	console.log(`  ✓ Ready to store in database, file, or monitoring system\n`);
-
-	// Cleanup
-	ssh.stop();
-	console.log("✅ Example complete!");
-}
-
-quickStart().catch(console.error);

package/examples/index.html

@@ -1,82 +0,0 @@
-<!doctype html>
-<html>
-  <head>
-    <meta charset="utf-8" />
-    <meta name="viewport" content="width=device-width,initial-scale=1" />
-    <title>Virtual Shell — Web Demo</title>
-    <style>
-      *, *::before, *::after { box-sizing: border-box; }
-
-      html, body {
-        height: 100%;
-        margin: 0;
-      }
-
-      body {
-        display: flex;
-        flex-direction: column;
-        font-family: 'Cascadia Code', 'Fira Code', 'JetBrains Mono', monospace;
-        font-size: 14px;
-        line-height: 1.5;
-        background: #0b0f14;
-        color: #e6eef6;
-      }
-
-      #terminal {
-        flex: 1;
-        overflow-y: auto;
-        padding: 12px 16px;
-        cursor: text;
-        user-select: text;
-        scrollbar-width: none;       /* Firefox */
-      }
-
-      #terminal::-webkit-scrollbar {
-        display: none;               /* Chrome/Safari */
-      }
-
-      #output {
-        white-space: pre-wrap;
-        word-break: break-all;
-        user-select: text;
-      }
-
-      #output span,
-      #output .input-line {
-        user-select: text;
-      }
-
-      /* Hidden input — keystroke sink only */
-      #cmd {
-        position: fixed;
-        left: -9999px;
-        opacity: 0;
-        width: 1px;
-        height: 1px;
-        pointer-events: none;
-      }
-
-      .cursor {
-        display: inline-block;
-        min-width: 0.6em;
-        background: #e6eef6;
-        color: #0b0f14;
-        animation: blink 1s step-start infinite;
-        pointer-events: none;
-        user-select: none;
-      }
-
-      @keyframes blink {
-        0%, 100% { opacity: 1; }
-        50%       { opacity: 0; }
-      }
-    </style>
-  </head>
-  <body>
-    <div id="terminal">
-      <div id="output"></div>
-    </div>
-    <input id="cmd" autocomplete="off" autocorrect="off" autocapitalize="off" spellcheck="false" />
-    <script type="module" src="./app.js"></script>
-  </body>
-</html>

package/examples/server.js

@@ -1,55 +0,0 @@
-import { readFile } from 'node:fs/promises';
-import { createServer } from 'node:http';
-import { extname, join, resolve } from 'node:path';
-import { fileURLToPath } from 'node:url';
-
-const __dirname = resolve(fileURLToPath(import.meta.url), '..');
-const examplesDir = __dirname;
-
-const mimeTypes = {
-  '.html': 'text/html',
-  '.js': 'application/javascript',
-  '.json': 'application/json',
-  '.css': 'text/css',
-  '.map': 'application/json',
-};
-
-const server = createServer(async (req, res) => {
-  const reqPath = req.url === '/' ? '/index.html' : req.url;
-  const filePath = join(examplesDir, reqPath);
-  console.log(`[${new Date().toISOString()}] ${req.method} ${req.url} -> ${filePath}`);
-  
-  try {
-    const content = await readFile(filePath);
-    const ext = extname(filePath);
-    const mimeType = mimeTypes[ext] || 'application/octet-stream';
-    
-    // Headers to bypass Cloudflare challenges and allow ES6 modules
-    const headers = {
-      'Content-Type': mimeType,
-      'Cache-Control': 'public, max-age=3600',
-      'X-Content-Type-Options': 'nosniff',
-      'Access-Control-Allow-Origin': '*',
-      'Access-Control-Allow-Methods': 'GET, HEAD, OPTIONS',
-    };
-    
-    // Cloudflare-specific header to bypass challenge
-    if (reqPath === '/index.html' || reqPath === '/app.js' || reqPath === '/web.min.js') {
-      headers['CF-Mitigate-Challenge'] = 'bypass';
-    }
-    
-    res.writeHead(200, headers);
-    res.end(content);
-    console.log(`  ✓ 200 ${mimeType}`);
-  } catch (err) {
-    console.log(`  ✗ 404 ${err.code}`);
-    res.writeHead(404, { 'Content-Type': 'text/plain' });
-    res.end('404 Not Found');
-  }
-});
-
-const PORT = 8787;
-server.listen(PORT, () => {
-  console.log(`Server running at http://localhost:${PORT}`);
-  console.log(`Serving files from: ${examplesDir}`);
-});

package/polyfills/buffer.js

@@ -1,117 +0,0 @@
-class BrowserBuffer extends Uint8Array {
-    static from(data, encoding) {
-        if (typeof data === 'string') {
-            const enc = encoding || 'utf8';
-            if (enc === 'hex') {
-                const arr = new BrowserBuffer(data.length / 2);
-                for (let i = 0; i < arr.length; i++)
-                    arr[i] = parseInt(data.slice(i * 2, i * 2 + 2), 16);
-                return arr;
-            }
-            if (enc === 'base64') {
-                const bin = atob(data);
-                const arr = new BrowserBuffer(bin.length);
-                for (let i = 0; i < bin.length; i++) arr[i] = bin.charCodeAt(i);
-                return arr;
-            }
-            return new BrowserBuffer(new TextEncoder().encode(data));
-        }
-        if (data instanceof ArrayBuffer) return new BrowserBuffer(data);
-        return new BrowserBuffer(data);
-    }
-
-    static alloc(size, fill = 0) {
-        return new BrowserBuffer(size).fill(fill);
-    }
-
-    static allocUnsafe(size) {
-        return new BrowserBuffer(size);
-    }
-
-    static isBuffer(obj) {
-        return obj instanceof BrowserBuffer || obj instanceof Uint8Array;
-    }
-
-    static concat(bufs, totalLength) {
-        const len = totalLength ?? bufs.reduce((s, b) => s + b.length, 0);
-        const out = new BrowserBuffer(len);
-        let offset = 0;
-        for (const b of bufs) { out.set(b, offset); offset += b.length; }
-        return out;
-    }
-
-    static byteLength(str, enc = 'utf8') {
-        if (enc === 'hex') return str.length / 2;
-        if (enc === 'base64') return Math.floor(str.length * 3 / 4);
-        return new TextEncoder().encode(str).length;
-    }
-
-    // ── write methods ──────────────────────────────────────────────────────────
-    writeUInt8(val, offset = 0) { this[offset] = val & 0xff; return offset + 1; }
-    writeInt8(val, offset = 0) { this[offset] = val & 0xff; return offset + 1; }
-
-    writeUInt16BE(val, offset = 0) { this[offset] = (val >>> 8) & 0xff; this[offset + 1] = val & 0xff; return offset + 2; }
-    writeUInt16LE(val, offset = 0) { this[offset] = val & 0xff; this[offset + 1] = (val >>> 8) & 0xff; return offset + 2; }
-    writeInt16BE(val, offset = 0) { return this.writeUInt16BE(val, offset); }
-    writeInt16LE(val, offset = 0) { return this.writeUInt16LE(val, offset); }
-
-    writeUInt32BE(val, offset = 0) { new DataView(this.buffer, this.byteOffset + offset).setUint32(0, val, false); return offset + 4; }
-    writeUInt32LE(val, offset = 0) { new DataView(this.buffer, this.byteOffset + offset).setUint32(0, val, true); return offset + 4; }
-    writeInt32BE(val, offset = 0) { new DataView(this.buffer, this.byteOffset + offset).setInt32(0, val, false); return offset + 4; }
-    writeInt32LE(val, offset = 0) { new DataView(this.buffer, this.byteOffset + offset).setInt32(0, val, true); return offset + 4; }
-
-    writeBigUInt64BE(val, offset = 0) { new DataView(this.buffer, this.byteOffset + offset).setBigUint64(0, BigInt(val), false); return offset + 8; }
-    writeBigUInt64LE(val, offset = 0) { new DataView(this.buffer, this.byteOffset + offset).setBigUint64(0, BigInt(val), true); return offset + 8; }
-
-    writeFloatBE(val, offset = 0) { new DataView(this.buffer, this.byteOffset + offset).setFloat32(0, val, false); return offset + 4; }
-    writeFloatLE(val, offset = 0) { new DataView(this.buffer, this.byteOffset + offset).setFloat32(0, val, true); return offset + 4; }
-    writeDoubleBE(val, offset = 0) { new DataView(this.buffer, this.byteOffset + offset).setFloat64(0, val, false); return offset + 8; }
-    writeDoubleLE(val, offset = 0) { new DataView(this.buffer, this.byteOffset + offset).setFloat64(0, val, true); return offset + 8; }
-
-    // ── read methods ───────────────────────────────────────────────────────────
-    readUInt8(offset = 0) { return this[offset]; }
-    readInt8(offset = 0) { const v = this[offset]; return v >= 128 ? v - 256 : v; }
-
-    readUInt16BE(offset = 0) { return (this[offset] << 8) | this[offset + 1]; }
-    readUInt16LE(offset = 0) { return this[offset] | (this[offset + 1] << 8); }
-    readInt16BE(offset = 0) { const v = this.readUInt16BE(offset); return v >= 0x8000 ? v - 0x10000 : v; }
-    readInt16LE(offset = 0) { const v = this.readUInt16LE(offset); return v >= 0x8000 ? v - 0x10000 : v; }
-
-    readUInt32BE(offset = 0) { return new DataView(this.buffer, this.byteOffset + offset).getUint32(0, false); }
-    readUInt32LE(offset = 0) { return new DataView(this.buffer, this.byteOffset + offset).getUint32(0, true); }
-    readInt32BE(offset = 0) { return new DataView(this.buffer, this.byteOffset + offset).getInt32(0, false); }
-    readInt32LE(offset = 0) { return new DataView(this.buffer, this.byteOffset + offset).getInt32(0, true); }
-
-    readBigUInt64BE(offset = 0) { return new DataView(this.buffer, this.byteOffset + offset).getBigUint64(0, false); }
-    readBigUInt64LE(offset = 0) { return new DataView(this.buffer, this.byteOffset + offset).getBigUint64(0, true); }
-
-    readFloatBE(offset = 0) { return new DataView(this.buffer, this.byteOffset + offset).getFloat32(0, false); }
-    readFloatLE(offset = 0) { return new DataView(this.buffer, this.byteOffset + offset).getFloat32(0, true); }
-    readDoubleBE(offset = 0) { return new DataView(this.buffer, this.byteOffset + offset).getFloat64(0, false); }
-    readDoubleLE(offset = 0) { return new DataView(this.buffer, this.byteOffset + offset).getFloat64(0, true); }
-
-    // ── misc ───────────────────────────────────────────────────────────────────
-    toString(enc = 'utf8', start = 0, end = this.length) {
-        const slice = this.subarray(start, end);
-        if (enc === 'hex') return Array.from(slice).map(b => b.toString(16).padStart(2, '0')).join('');
-        if (enc === 'base64') return btoa(String.fromCharCode(...slice));
-        return new TextDecoder(enc === 'utf8' ? 'utf-8' : enc).decode(slice);
-    }
-
-    copy(target, targetStart = 0, sourceStart = 0, sourceEnd = this.length) {
-        target.set(this.subarray(sourceStart, sourceEnd), targetStart);
-    }
-    equals(other) {
-        if (this.length !== other.length) return false;
-        for (let i = 0; i < this.length; i++)
-            if (this[i] !== other[i]) return false;
-        return true;
-    }
-
-    slice(start, end) { return new BrowserBuffer(super.slice(start, end)); }
-    subarray(start, end) { return new BrowserBuffer(super.subarray(start, end)); }
-
-    get length() { return this.byteLength; }
-}
-
-globalThis.Buffer = BrowserBuffer;

package/polyfills/node_child_process/index.js

@@ -1,2 +0,0 @@
-export function spawn(){ throw new Error('child_process.spawn not supported in browser'); }
-export default { spawn };