From d139729fa210e2b38857b7de0fb989bc0b5cd0ac Mon Sep 17 00:00:00 2001 From: anti Date: Wed, 8 Apr 2026 00:38:03 -0400 Subject: [PATCH] docs: revert incorrect roadmap ticks --- development/DEVELOPMENT.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/development/DEVELOPMENT.md b/development/DEVELOPMENT.md index 7e5c7dc..6e4362e 100644 --- a/development/DEVELOPMENT.md +++ b/development/DEVELOPMENT.md @@ -6,7 +6,7 @@ - [ ] **Canary tokens** — Embed fake AWS keys and honeydocs into decky filesystems. - [ ] **Tarpit mode** — Slow down attackers by drip-feeding bytes or delaying responses. - [x] **Dynamic decky mutation** — Rotate exposed services or OS fingerprints over time. -- [x] **Credential harvesting DB** — Centralized database for all username/password attempts. +- [ ] **Credential harvesting DB** — Centralized database for all username/password attempts. - [ ] **Session recording** — Full capture for SSH/Telnet sessions. - [ ] **Payload capture** — Store and hash files uploaded by attackers. @@ -23,7 +23,7 @@ - [x] **Web dashboard** — Real-time React SPA + FastAPI backend for logs and fleet status. - [x] **Decky Inventory** — Dedicated "Decoy Fleet" page showing all deployed assets. - [ ] **Pre-built Kibana/Grafana dashboards** — Ship JSON exports for ELK/Grafana. -- [x] **CLI live feed** — `decnet watch` command for a unified, colored terminal stream. +- [ ] **CLI live feed** — `decnet watch` command for a unified, colored terminal stream. - [ ] **Traversal graph export** — Export attacker movement as DOT or JSON. ## Deployment & Infrastructure