anti/DECNET
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
Files
8bdc5b98c9b476fdc7aa886bedec0f1617f2f875
DECNET/decnet
History
anti 8bdc5b98c9 feat(collector): parse real PROCID and extract IPs from logger kv pairs 
- Relaxed RFC 5424 regex to accept either NILVALUE or a numeric PROCID;
  sshd / sudo go through rsyslog with their real PID, while
  syslog_bridge emitters keep using '-'.
- Added a fallback pass that scans the MSG body for IP-shaped
  key=value tokens. This rescues attacker attribution for plain logger
  callers like the SSH PROMPT_COMMAND shim, which emits
  'CMD … src=IP …' without SD-element params.
2026-04-18 05:37:08 -04:00
..
collector
feat(collector): parse real PROCID and extract IPs from logger kv pairs
2026-04-18 05:37:08 -04:00
correlation
refactor: strip DECNET tokens from container-visible surface
2026-04-17 22:57:53 -04:00
engine
refactor: strip DECNET tokens from container-visible surface
2026-04-17 22:57:53 -04:00
logging
refactor: strip DECNET tokens from container-visible surface
2026-04-17 22:57:53 -04:00
mutator
feat: complete OTEL tracing across all services with pipeline bridge and docs
2026-04-16 00:58:08 -04:00
prober
refactor: strip DECNET tokens from container-visible surface
2026-04-17 22:57:53 -04:00
profiler
chores: cleanup; added: viteconfig
2026-04-16 02:09:30 -04:00
services
feat(web): attacker artifacts endpoint + UI drawer
2026-04-18 05:36:48 -04:00
sniffer
refactor: strip DECNET tokens from container-visible surface
2026-04-17 22:57:53 -04:00
web
feat(web): attacker artifacts endpoint + UI drawer
2026-04-18 05:36:48 -04:00
__init__.py
Initial commit: DECNET honeypot/deception network framework
2026-04-03 18:56:25 -03:00
archetypes.py
refactor(ssh): consolidate real_ssh into ssh, remove duplication
2026-04-11 19:51:41 -04:00
cli.py
fix(cli): keep FileNotFoundError handling on decnet api
2026-04-17 19:09:15 -04:00
composer.py
feat: fleet-wide MACVLAN sniffer microservice
2026-04-14 15:02:34 -04:00
config.py
fix: RotatingFileHandler reopens on external deletion/rotation
2026-04-17 13:42:15 -04:00
custom_service.py
Add per-service customization, stealth hardening, and BYOS support
2026-04-04 04:08:27 -03:00
distros.py
fix: stabilize tests with synchronous DB init and handle Bandit security findings
2026-04-09 01:33:15 -04:00
env.py
feat(db): bulk add_logs for one-commit ingestion batches
2026-04-17 16:23:09 -04:00
fleet.py
feat: fleet-wide MACVLAN sniffer microservice
2026-04-14 15:02:34 -04:00
ini_loader.py
fix: align tests with model validation and API error reporting
2026-04-13 01:43:52 -04:00
models.py
fix: align tests with model validation and API error reporting
2026-04-13 01:43:52 -04:00
network.py
fix: stabilize tests with synchronous DB init and handle Bandit security findings
2026-04-09 01:33:15 -04:00
os_fingerprint.py
feat(os_fingerprint): Phase 2 — add icmp_ratelimit + icmp_ratemask sysctls
2026-04-10 16:41:23 -04:00
privdrop.py
fix: chown log files to sudo-invoking user so non-root API can append
2026-04-17 13:39:09 -04:00
telemetry.py
fix: resolve all ruff and bandit lint/security issues
2026-04-16 01:04:57 -04:00