Skip to content

sumansingh20/Aegis-Offensive-Security-Framework

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

🛡️ CyberShield

Professional Cybersecurity Platform

The ultimate cybersecurity toolkit with 40+ security tools, AI-powered threat detection, and enterprise-grade penetration testing capabilities.

Next.js TypeScript MongoDB Tailwind CSS

License: MIT Vercel GitHub Issues PRs Welcome

🚀 Live Demo📖 Documentation🐛 Report Bug💡 Request Feature


📋 Table of Contents

🎯 Overview

CyberShield is a modern, full-stack cybersecurity platform built with Next.js 15 and TypeScript. It provides security professionals with a comprehensive suite of real network tools, vulnerability scanners, and AI-powered threat detection capabilities - all accessible through a beautiful, responsive web interface.

🚀 Key Features

🔧 Tool Categories 🎯 Capabilities 📊 Status
Network & Reconnaissance 15+ Tools ✅ Active
Web Security Testing 12+ Tools ✅ Active
AI-Powered Security 8+ Tools 🚀 Enhanced
Expert Exploitation 10+ Tools ⚡ Advanced

🛡️ Network & Reconnaissance Arsenal

Tool Description Key Features
🌐 Network Scanner Comprehensive network discovery Live host detection, TCP/UDP scanning, OS fingerprinting
🔍 Port Scanner Advanced port enumeration Service detection, banner grabbing, stealth scanning
📡 DNS Lookup Complete DNS analysis A, AAAA, MX, TXT, NS, SOA records, Zone transfers
🔎 WHOIS Lookup Domain intelligence gathering Registration data, ownership info, DNS servers
🗂️ Subdomain Enumeration Hidden subdomain discovery Certificate transparency, brute force, DNS enumeration
📊 Ping Sweep Network range discovery ICMP, TCP, UDP ping variants, host enumeration

⚔️ Web Security Testing Suite

Tool Description Vulnerability Focus
🕷️ XSS Scanner Cross-site scripting detection Reflected, Stored, DOM-based XSS
💉 SQL Injection Scanner Database vulnerability assessment Union, Boolean, Time-based attacks
🗃️ Directory Buster Hidden resource discovery Common paths, backup files, admin panels
🛡️ WAF Bypass Firewall evasion techniques Encoding, fragmentation, protocol abuse
📋 HTTP Headers Analyzer Security header assessment CSP, HSTS, X-Frame-Options, CORS
📶 Wireless Scanner WiFi security assessment Network enumeration, security analysis

🤖 AI-Powered Security Intelligence

AI Tool Capability Use Case
🎣 AI Phishing Detection Email/URL threat analysis Real-time phishing detection
🧠 AI Threat Intelligence Behavioral threat analysis Anomaly detection, pattern recognition
🤖 AI Security Assistant Intelligent recommendations Vulnerability prioritization, remediation
🔍 AI Fraud Detection Financial fraud prevention Transaction analysis, risk scoring

⚡ Expert Exploitation Framework

Advanced Tool Description Expertise Level
💥 Metasploit Integration Professional exploitation 🔴 Expert
🎯 Payload Generator Custom payload creation 🔴 Expert
🎭 Social Engineering Attack simulation 🟠 Advanced
🔬 Reverse Shell Generator Post-exploitation tools 🔴 Expert
💣 Exploit Database Vulnerability research 🟠 Advanced

🏗️ Tech Stack

Frontend

  • Framework: Next.js 15.5.3 with App Router
  • Language: TypeScript 5.0+
  • Styling: Tailwind CSS 3.4+ with custom themes
  • UI Components: Radix UI with shadcn/ui
  • State Management: React Hooks with Context API
  • Authentication: JWT with refresh tokens

Backend

  • API: Next.js API Routes with Edge Runtime
  • Database: MongoDB Atlas with Mongoose ODM
  • Authentication: bcryptjs password hashing
  • Security: Rate limiting, CORS, input validation
  • Email: Nodemailer with Gmail SMTP
  • SMS: Twilio integration for 2FA

Infrastructure

  • Deployment: Vercel (recommended) or any Node.js hosting
  • Database: MongoDB Atlas (cloud) or self-hosted MongoDB
  • File Storage: Local storage with planned cloud integration
  • Monitoring: Built-in logging and error tracking

⚡ Quick Start

Prerequisites

  • Node.js 18.0 or higher
  • MongoDB Atlas account or local MongoDB installation
  • Gmail account for email notifications (optional)
  • Twilio account for SMS 2FA (optional)

Installation

  1. Clone the repository

    git clone https://github.com/sumansingh20/CyberShield.git
    cd CyberShield
  2. Install dependencies

    npm install
    # or
    pnpm install
    # or
    yarn install
  3. Environment Setup

    Create a .env.local file in the root directory:

    # Database Configuration
    MONGODB_URI=your_mongodb_connection_string
    
    # JWT Secrets
    JWT_SECRET=your_jwt_secret_key
    JWT_REFRESH_SECRET=your_jwt_refresh_secret
    
    # Optional: Email Configuration (Gmail)
    SMTP_HOST=smtp.gmail.com
    SMTP_PORT=587
    SMTP_USER=your_gmail_address
    SMTP_PASS=your_gmail_app_password
    
    # Optional: Twilio SMS (for 2FA)
    TWILIO_ACCOUNT_SID=your_twilio_sid
    TWILIO_AUTH_TOKEN=your_twilio_token
    TWILIO_PHONE_NUMBER=your_twilio_phone
  4. Run the development server

    npm run dev
    # or
    pnpm dev
    # or
    yarn dev
  5. Open your browser

    Navigate to http://localhost:3000 to see the application.

🖥️ Live Demo & Screenshots

Professional cybersecurity tools accessible directly in your browser

Feature Demo Status
🔧 40+ Security Tools All functional ✅ Live
🤖 AI-Powered Analysis Real-time detection ✅ Active
🛡️ Enterprise Auth JWT + 2FA ✅ Secure
📊 Professional UI Responsive design ✅ Modern

🚀 Deployment Guide

⚡ One-Click Deployments

Deploy with Vercel Deploy on Railway Deploy to Render

🎯 Vercel (Recommended)

Perfect for: Production deployments with global CDN and auto-scaling

# 1. Clone and setup
git clone https://github.com/sumansingh20/CyberShield.git
cd CyberShield
npm install

# 2. Configure environment
cp .env.example .env.local
# Edit .env.local with your MongoDB URI and JWT secrets

# 3. Deploy to Vercel
npm run build
npx vercel --prod

🐳 Docker Deployment

Perfect for: Containerized deployments and local development

# Quick start with Docker
docker build -t cybershield .
docker run -d -p 3000:3000 --name cybershield-app cybershield

# Or use Docker Compose (includes MongoDB)
docker-compose up -d

☁️ Cloud Platform Options

Platform Type Best For Setup Time
🚀 Vercel Serverless Production (Recommended) 2 min
🚂 Railway Container Full-stack with DB 3 min
🎨 Render Static/Server Custom configurations 5 min
🌐 Netlify Static Frontend-only builds 3 min
☁️ AWS/GCP Custom Enterprise/Scale 15+ min

🔧 Manual Deployment

For traditional hosting providers:

# Build optimized production bundle
npm run build

# Start production server
npm start

# Or generate static export
npm run export  # Deploy 'out' folder

Security Tools

Network Scanner

const scanResult = await fetch('/api/tools/network-scanner', {
  method: 'POST',
  headers: { 'Content-Type': 'application/json' },
  body: JSON.stringify({
    target: '192.168.1.0/24',
    ports: '22,80,443,3389',
    timeout: 5000
  })
});

Vulnerability Scanner

const vulnScan = await fetch('/api/tools/vuln-scanner', {
  method: 'POST',
  headers: { 'Content-Type': 'application/json' },
  body: JSON.stringify({
    target: 'https://example.com',
    scanType: 'comprehensive'
  })
});

🔒 Environment Variables

Variable Description Required Default
MONGODB_URI MongoDB connection string -
JWT_SECRET JWT signing secret -
JWT_REFRESH_SECRET JWT refresh token secret -
SMTP_HOST Email server hostname smtp.gmail.com
SMTP_PORT Email server port 587
SMTP_USER Email username -
SMTP_PASS Email password/app password -
TWILIO_ACCOUNT_SID Twilio account SID -
TWILIO_AUTH_TOKEN Twilio auth token -
TWILIO_PHONE_NUMBER Twilio phone number -
NEXT_PUBLIC_APP_URL Public app URL http://localhost:3000

Contributing

We welcome contributions from the community! Please read our contributing guidelines before submitting pull requests.

Development Setup

  1. Fork the repository
  2. Create a feature branch
  3. Make your changes
  4. Add tests if applicable
  5. Submit a pull request

Code Style

  • Use TypeScript for all new code
  • Follow ESLint configuration
  • Use Prettier for code formatting
  • Write meaningful commit messages

Security

This platform is designed for authorized security testing and educational purposes only. Users must ensure they have proper authorization before testing any systems.

If you discover a security vulnerability, please email: security@cybershield.dev

🔧 API Reference & Examples

Network Scanner API

// Comprehensive network discovery
const networkScan = await fetch('/api/tools/network-scanner', {
  method: 'POST',
  headers: { 'Content-Type': 'application/json' },
  body: JSON.stringify({
    target: '192.168.1.0/24',
    ports: '22,80,443,3389',
    timeout: 5000,
    scanType: 'comprehensive'
  })
});

const results = await networkScan.json();
console.log('Live hosts:', results.liveHosts);

XSS Vulnerability Scanner

// Cross-site scripting detection
const xssScan = await fetch('/api/tools/xss-scanner', {
  method: 'POST',
  headers: { 'Content-Type': 'application/json' },
  body: JSON.stringify({
    url: 'https://target-site.com',
    testType: 'comprehensive',
    payloads: ['<script>alert(1)</script>', '"><script>alert(1)</script>']
  })
});

const vulnerabilities = await xssScan.json();

AI Threat Analysis

// AI-powered threat detection
const threatAnalysis = await fetch('/api/ai/threat-analysis', {
  method: 'POST',
  headers: { 'Content-Type': 'application/json' },
  body: JSON.stringify({
    input: 'suspicious-url-or-content',
    analysisType: 'comprehensive',
    includeRecommendations: true
  })
});

🤝 Contributing

We welcome contributions from the cybersecurity community!

Quick Contribution Guide

  1. 🍴 Fork the repository
  2. 🌿 Create your feature branch (git checkout -b feature/amazing-tool)
  3. ✅ Test your changes thoroughly
  4. ��� Commit with clear messages (git commit -m 'Add amazing security tool')
  5. 🚀 Push to your branch (git push origin feature/amazing-tool)
  6. 🔄 Create a Pull Request

Development Setup

# Clone your fork
git clone https://github.com/your-username/CyberShield.git

# Install dependencies
npm install

# Run development server
npm run dev

# Run tests
npm test

# Build for production
npm run build

💬 Support & Community

Resource Description Link
📖 Documentation Comprehensive guides & API docs docs/README.md
🐛 Bug Reports Report issues & bugs GitHub Issues
💡 Feature Requests Suggest new features GitHub Issues
💬 Discussions Community discussions GitHub Discussions
📧 Email Support Direct support security@cybershield.dev

🗺️ Roadmap

🚀 2024 Q4

  • Advanced AI Models: Enhanced threat detection algorithms
  • Custom Payloads: User-defined payload templates
  • Team Features: Collaboration and sharing tools
  • Advanced Reports: Comprehensive security assessment reports

🎯 2025 Q1

  • Mobile App: Native iOS/Android applications
  • Cloud Integration: AWS/Azure security services integration
  • Enterprise SSO: SAML/OAuth enterprise authentication
  • Real-time Monitoring: Continuous security monitoring dashboard

👥 Contributors

🌟 Core Team

Dynamic Trio - Lead Developers & Security Architects

🤝 Community Contributors

See our amazing Contributors

Want to contribute? Check out our Contributing Guidelines


📜 License

This project is licensed under the MIT License - see the LICENSE file for details.

Usage Rights

✅ Commercial use
✅ Modification
✅ Distribution
✅ Private use


🙏 Acknowledgments

Special thanks to the amazing open-source community:

  • Next.js Team - Revolutionary React framework
  • MongoDB - Robust NoSQL database
  • Tailwind CSS - Utility-first CSS framework
  • Radix UI - Accessible component primitives
  • Vercel - Seamless deployment platform
  • Security Research Community - Continuous inspiration and knowledge sharing

⭐ Star us on GitHub!

If CyberShield helps you in your cybersecurity journey, please consider giving us a star ⭐

Made with 💜 by the Dynamic Trio

Building the future of accessible cybersecurity tools

About

No description, website, or topics provided.

Resources

License

Security policy

Stars

Watchers

Forks

Releases

No releases published

Packages

 
 
 

Contributors

Languages