Releases: moon0deva/CyberRemedy
CyberRemedy v1.2
~ ML pipeline — Full machine learning subsystem with auto-training on startup, LSTM sequential anomaly detector (PyTorch), Random Forest attack classifier, Isolation Forest, and pre-trained model files.
~ SIEM Wi-Fi monitor — Full SIEM subsystem with 10 sub-components: active packet capture, device discovery, IoT detection, Capture detection, VPN fingerprinting & deep inspection, and a unified SIEMManager integration point.
~ SQLite data — Replaces per-event JSON writes with a buffered batch SQLite writer. Tables for alerts, events, network flows, DNS events, and assets. Ships with an actual cyberremedy.db database file.
~Dark web monitor — Monitors dark web & data breach sources.
~ PDF report generator — Generates professional PDF reports via ReportLab.
~ VM traffic monitor —Agentless monitoring of VirtualBox VMs in Bridged mode.
~ SOAR StackStorm playbooks — Automated response playbooks: credential compromise response, data exfiltration response, lateral movement detection, and malware containment.
~ Forensics data — Pre-seeded forensic timeline JSON files (TL-0001 through TL-0029). Also added data/darkweb_cache/, data/ioc_store.json, data/siem_devices.json, data/feed_cache.json, and data/sigma_rules/community_rules.yml.
~ YARA rules — Additional YARA ruleset complementing the existing builtin and malware_generic rulesets.
CyberRemedy v1.1
CyberRemedy v1.1
- Simulation fallback has been removed to eliminate the risk of test/fake data.
- Web Traffic Analysis.
- User Interface Improvements.
- Bug Fixes