anti/DECNET
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 54b1fbed14 feat(services): declarative config_schema on BaseService + SSH/HTTP/HTTPS descriptors anti 2026-04-29 11:28:53 -04:00
  • d314470d7f fix(stats): keep TopologyDecky.state in sync with docker so ACTIVE DECKIES counts right anti 2026-04-29 11:09:32 -04:00
  • 57e527534c fix(mutator): auto-fall-back to legacy builder when buildx wedges live decky add anti 2026-04-29 10:59:04 -04:00
  • 892219ec87 feat(mutator): refuse forwards_l3 promotion on non-DMZ deckies anti 2026-04-29 00:38:51 -04:00
  • c002c5a4f1 feat(ui): forwards_l3 toggle in Inspector with destructive-recreate confirm anti 2026-04-29 00:29:46 -04:00
  • a27e3f5e0f fix(tests+mutator): unbreak the docker-shadow test env + let mutator delete from active anti 2026-04-29 00:24:17 -04:00
  • 98c929894c feat(mutator): selective materialisation for apply_update_decky + tests anti 2026-04-29 00:18:20 -04:00
  • e3afec4e70 feat(mutator): live network.disconnect for apply_detach_decky anti 2026-04-29 00:15:39 -04:00
  • f347a3a736 feat(mutator): live network.connect for apply_attach_decky anti 2026-04-29 00:15:11 -04:00
  • eed55619cb feat(mutator): live teardown for apply_remove_decky anti 2026-04-29 00:14:44 -04:00
  • 8c06190e69 feat(mutator): live spawn for apply_add_decky + shared materialisation helpers anti 2026-04-29 00:14:18 -04:00
  • 578cdf9e2e fix(mutator): reject hostile apply_update_lan changes on live topologies anti 2026-04-29 00:12:44 -04:00
  • 2731b2608b fix(ui): keep multi-homed deckies in their home LAN on rehydrate anti 2026-04-29 00:01:29 -04:00
  • 472c84b9c8 fix(mutator): materialise live LAN add/remove on docker, not just the DB anti 2026-04-29 00:00:02 -04:00
  • bbed52a962 fix(bus): topic segments can't contain dots — service.added → service_added anti 2026-04-28 23:53:25 -04:00
  • d595240f55 fix(engine): post-deploy verify topology containers, mark DEGRADED on boot crash anti 2026-04-28 23:39:50 -04:00
  • 9e8d0b0464 fix(ui): route palette drops + design-time remove through live API on active topologies anti 2026-04-28 23:38:37 -04:00
  • 463877b8fc fix(ui): hit /topologies/ with trailing slash to keep bearer anti 2026-04-28 23:18:39 -04:00
  • 0e5484648f feat: forward decky.*.service.* on per-topology SSE stream anti 2026-04-28 23:15:38 -04:00
  • e7d49d7237 feat(ui): live service add/remove on fleet DeckyCard anti 2026-04-28 23:13:46 -04:00
  • 1a631c9400 fix(ui): narrow services type for Inspector live-add picker anti 2026-04-28 23:11:39 -04:00
  • 2fabcd1c29 feat(ui): live service add/remove on MazeNET Inspector anti 2026-04-28 23:11:02 -04:00
  • 06f208c86e feat: surface fleet_singleton flag on /topologies/services anti 2026-04-28 23:08:29 -04:00
  • 4287e94deb feat(ui): file drops tab on CanaryTokens anti 2026-04-28 23:06:53 -04:00
  • c942d4d333 feat(ui): scope canary tokens to MazeNET topology deckies anti 2026-04-28 23:04:13 -04:00
  • 6ac8cac908 feat(deckies): live service add/remove without full redeploy anti 2026-04-28 22:51:42 -04:00
  • 0bc4b05c73 feat(deckies): generic file drops on fleet + MazeNET deckies anti 2026-04-28 22:43:34 -04:00
  • 3fe999d706 feat(canary): allow custom canaries on MazeNET deckies via API anti 2026-04-28 22:34:45 -04:00
  • 5802de1f86 feat(canary): seed baseline canaries on MazeNET deckies anti 2026-04-28 22:30:11 -04:00
  • 04b0637c24 feat(bounty): wire artifact download into BountyInspector drawer anti 2026-04-28 22:03:58 -04:00
  • e3ddeb0395 feat(bounty): surface file drops and stored mail in the Vault anti 2026-04-28 19:42:54 -04:00
  • 88f276e9e7 feat(collector): drop native unix daemon syslog from ingestion anti 2026-04-28 19:21:39 -04:00
  • 6055f9c837 fix(deckies): set MSGID=command on bash PROMPT_COMMAND syslog lines anti 2026-04-28 19:12:11 -04:00
  • d4591b38dc fix(profiler): aggregate bash PROMPT_COMMAND lines into attacker profile anti 2026-04-28 19:09:41 -04:00
  • 862e4dbb31 merge: testing → main (reconcile 2-week divergence) main anti 2026-04-28 18:36:00 -04:00
  • b12d46ff9d ci: auto-merge dev → testing testing DECNET CI 2026-04-28 22:17:36 +00:00
  • 8033137be6 dev(ci): simplified pipeline anti 2026-04-28 18:16:26 -04:00
  • 2ce076cd37 ci: auto-merge dev → testing [skip ci] DECNET CI 2026-04-28 22:03:20 +00:00
  • 17097cc3dc chores(order): moved some markdown files to the development folder anti 2026-04-28 17:56:29 -04:00
  • 89268f19fb dev(ci): modified ruff call to not check dev scripts/ anti 2026-04-28 17:47:28 -04:00
  • 150e5eb5be docs(readme): add Ko-Fi button anti 2026-04-28 16:15:02 -04:00
  • f2e01d8ea6 dev(ci): modified ci to not run fuzzing tests; done locally anti 2026-04-28 16:13:32 -04:00
  • 15b2e7ba5c refactor(db): split credentials.py into a credentials/ subpackage anti 2026-04-28 16:05:57 -04:00
  • 3d00de8fd3 refactor(db): split attackers.py into an attackers/ subpackage anti 2026-04-28 15:46:28 -04:00
  • 5e7d68fde3 refactor(db): split topology.py into a topology/ subpackage anti 2026-04-28 15:16:42 -04:00
  • 20e89eb0a6 refactor(db): extract TopologyMixin anti 2026-04-28 15:11:14 -04:00
  • 7483d01311 refactor(db): extract IdentitiesMixin and CampaignsMixin anti 2026-04-28 15:07:39 -04:00
  • 912171d053 refactor(db): extract AttackersMixin anti 2026-04-28 15:04:51 -04:00
  • 7ba8bafcaa refactor(db): extract CredentialsMixin anti 2026-04-28 15:00:04 -04:00
  • 5b1af331b9 refactor(db): extract CanaryMixin anti 2026-04-28 14:55:52 -04:00
  • 03b3c8855c refactor(db): extract OrchestratorMixin anti 2026-04-28 14:54:20 -04:00
  • 555cd13f09 refactor(db): extract RealismMixin anti 2026-04-28 14:52:59 -04:00
  • 9b845269c9 refactor(db): extract LogsMixin anti 2026-04-28 14:51:35 -04:00
  • a0aeba5abc refactor(db): extract FleetMixin and promote JSON helpers anti 2026-04-28 14:50:01 -04:00
  • d989cd0461 refactor(db): extract WebhooksMixin anti 2026-04-28 14:47:42 -04:00
  • 167f140b0e refactor(db): extract BountiesMixin anti 2026-04-28 14:46:39 -04:00
  • c6804d79b6 refactor(db): extract DeckiesMixin anti 2026-04-28 14:45:15 -04:00
  • eebf9e4c97 refactor(db): extract AuthMixin anti 2026-04-28 14:43:49 -04:00
  • 99adbebe75 refactor(db): extract SwarmMixin anti 2026-04-28 14:42:58 -04:00
  • 85c914e754 refactor(db): extract AttackerIntelMixin anti 2026-04-28 14:40:36 -04:00
  • e16f47ad24 refactor(db): extract _safe_session/_detach_close to _helpers.py anti 2026-04-28 14:38:26 -04:00
  • 4167345d51 refactor(db): convert sqlmodel_repo.py to a package anti 2026-04-28 14:37:18 -04:00
  • 6d8c90777d chore: remove vulture-flagged dead code, add whitelist anti 2026-04-28 14:30:12 -04:00
  • b994250ef6 dev(ci): added CVE-2026-3219 to ignore vulns; no fix is yet available anti 2026-04-28 14:24:57 -04:00
  • b4adc7246f fixed: deleted line from pyproject anti 2026-04-28 13:03:14 -04:00
  • 674ac7dd13 test(db): cover BaseRepository.update_identity_fingerprints anti 2026-04-28 13:01:37 -04:00
  • cc6abf7256 fix(tests/stress): eliminate 0-request flakes in locust runs anti 2026-04-28 13:01:11 -04:00
  • 681931d9bb docs(roadmap): tick certificate details and three sibling roadmap items anti 2026-04-28 11:41:17 -04:00
  • 72cc928ebf feat(prober-cert): roll up fingerprints onto AttackerIdentity anti 2026-04-28 11:28:54 -04:00
  • 9ab43b4ea4 feat(prober-cert): UI for active TLS certificate captures anti 2026-04-28 11:23:34 -04:00
  • 5f8149daee feat(prober-cert): capture leaf TLS cert after successful JARM anti 2026-04-28 11:14:44 -04:00
  • 4749c972e5 feat(prober-cert): schema for active TLS cert capture anti 2026-04-28 11:09:25 -04:00
  • e986e81421 fix(test-schemathesis): drop unsupported_method check anti 2026-04-28 10:20:43 -04:00
  • ccc8619387 fix(test-schemathesis): disable rate limiter in fuzz subprocess anti 2026-04-28 09:51:49 -04:00
  • 9b1168ce0b fix(api): scope 429 OpenAPI injection to rate-limited routes anti 2026-04-28 01:00:34 -04:00
  • 5d883466a2 fix(api): advertise 429 on every operation in OpenAPI anti 2026-04-28 00:58:37 -04:00
  • 6b407e8c9c fix(tests): align stale tests with current behavior anti 2026-04-28 00:44:40 -04:00
  • 8344b539c8 fix(ssh-template): drop sshd/pam_unix native chatter at rsyslog anti 2026-04-27 23:26:53 -04:00
  • 9350ce195a fix(collector,correlation): extract attacker IP from sshd/pam free-form prose anti 2026-04-27 23:16:42 -04:00
  • 3c571cce5a fix(correlation): prober events no longer count as attacker traversal anti 2026-04-27 23:02:23 -04:00
  • e03a6d10a0 fix(collector): retry on event-stream errors and add periodic reconciler anti 2026-04-27 22:56:13 -04:00
  • c5db1d7ba2 fix(config-ini): strip inline # and ; comments from values anti 2026-04-27 22:55:58 -04:00
  • 0b1a17b4eb fix(agent): pass --always-recreate-deps so service netns shares stay fresh anti 2026-04-27 22:55:48 -04:00
  • 0a525ebd37 fix(web): proxy follows DECNET_API_HOST instead of hardcoding 127.0.0.1 anti 2026-04-27 22:55:25 -04:00
  • 673bc5b819 ops(init): ship logrotate config so /var/log/decnet can't fill the disk anti 2026-04-27 21:26:13 -04:00
  • 5415e98458 sec(api): mode-gate and eager-load JWT secret in lifespan anti 2026-04-27 21:26:03 -04:00
  • 1a7da33375 sec(env): refuse to start master API with footgun public-binding config anti 2026-04-27 21:15:15 -04:00
  • 28e2a93355 sec(updater): harden tarball extraction and verify sha256 before extract anti 2026-04-27 21:14:48 -04:00
  • 1de4136ed9 style(realism-ui): adopt the persona-page design language anti 2026-04-27 18:08:58 -04:00
  • 2950fc216e feat(realism-ui): human-readable content_class labels anti 2026-04-27 18:04:33 -04:00
  • 56a88d7bd4 feat(realism-ui): operator panel for planner weights + canary probability anti 2026-04-27 18:01:35 -04:00
  • 2cc60bd677 feat(realism): operator-tunable planner weights via realism_config anti 2026-04-27 18:00:08 -04:00
  • da3c35c6a4 fix(realism): synthetic_files path fits MySQL utf8mb4 index cap anti 2026-04-27 17:55:35 -04:00
  • 397a1a111e feat(realism): LLM/breaker status on orchestrator heartbeat anti 2026-04-27 17:51:00 -04:00
  • 55e86f606c feat(realism-ui): synthetic files browser anti 2026-04-27 17:48:05 -04:00
  • 87cb61c8b2 feat(realism): synthetic-files browser API anti 2026-04-27 17:44:53 -04:00
  • 2eeec15f9c feat(orchestrator-ui): mark file-edit events with an EDIT badge anti 2026-04-27 17:42:21 -04:00
  • 147f52467f feat(canary): kind reflects trip surface per generator anti 2026-04-27 17:40:37 -04:00
  • 49da15823f refactor(realism): single source of truth for persona→login anti 2026-04-27 17:39:04 -04:00
  • 7e9bc6d49a refactor(realism): enforce synthetic_files 64KB cap at the repo anti 2026-04-27 17:37:36 -04:00