anti/DECNET
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
Files
ce2699455b3cbe9c47f7039ba8ec796200900843
DECNET/decnet
History
anti ce2699455b feat: DECNET-PROBER standalone JARM fingerprinting service 
Add active TLS probing via JARM to identify C2 frameworks (Cobalt Strike,
Sliver, Metasploit) by their TLS server implementation quirks. Runs as a
detached host-level process — no container dependency.

- decnet/prober/jarm.py: pure-stdlib JARM implementation (10 crafted probes)
- decnet/prober/worker.py: standalone async worker with RFC 5424 + JSON output
- CLI: `decnet probe --targets ip:port` and `--probe-targets` on deploy
- Ingester: JARM bounty extraction (fingerprint type)
- 68 new tests covering JARM logic and bounty extraction
2026-04-14 12:14:32 -04:00
..
collector
revert: undo service badge filter, parser normalization, and SSH relay
2026-04-14 02:14:46 -04:00
correlation
revert: undo service badge filter, parser normalization, and SSH relay
2026-04-14 02:14:46 -04:00
engine
feat: add component-aware RFC 5424 application logging system
2026-04-13 07:39:01 -04:00
logging
feat: add component-aware RFC 5424 application logging system
2026-04-13 07:39:01 -04:00
mutator
feat: add component-aware RFC 5424 application logging system
2026-04-13 07:39:01 -04:00
prober
feat: DECNET-PROBER standalone JARM fingerprinting service
2026-04-14 12:14:32 -04:00
services
feat: add HTTPS honeypot service template
2026-04-14 00:57:38 -04:00
web
feat: DECNET-PROBER standalone JARM fingerprinting service
2026-04-14 12:14:32 -04:00
__init__.py
Initial commit: DECNET honeypot/deception network framework
2026-04-03 18:56:25 -03:00
archetypes.py
refactor(ssh): consolidate real_ssh into ssh, remove duplication
2026-04-11 19:51:41 -04:00
cli.py
feat: DECNET-PROBER standalone JARM fingerprinting service
2026-04-14 12:14:32 -04:00
composer.py
fix(conpot): use honeynet/conpot:latest base, run as conpot user
2026-04-11 03:32:11 -04:00
config.py
feat: add component-aware RFC 5424 application logging system
2026-04-13 07:39:01 -04:00
custom_service.py
Add per-service customization, stealth hardening, and BYOS support
2026-04-04 04:08:27 -03:00
distros.py
fix: stabilize tests with synchronous DB init and handle Bandit security findings
2026-04-09 01:33:15 -04:00
env.py
Refactor: implemented Repository Factory and Async Mutator Engine. Decoupled storage logic and enforced Dependency Injection across CLI and Web API. Updated documentation.
2026-04-12 07:48:17 -04:00
fleet.py
fix: align tests with model validation and API error reporting
2026-04-13 01:43:52 -04:00
ini_loader.py
fix: align tests with model validation and API error reporting
2026-04-13 01:43:52 -04:00
models.py
fix: align tests with model validation and API error reporting
2026-04-13 01:43:52 -04:00
network.py
fix: stabilize tests with synchronous DB init and handle Bandit security findings
2026-04-09 01:33:15 -04:00
os_fingerprint.py
feat(os_fingerprint): Phase 2 — add icmp_ratelimit + icmp_ratemask sysctls
2026-04-10 16:41:23 -04:00