A Unified Cybersecurity Platform for Internship Assessment
AEGIS is a comprehensive cybersecurity assessment project consisting of three integrated modules:
Tamper-Evident Logging System
- Cryptographically linked audit logs using SHA-256 hashing
- Blockchain-inspired chain integrity verification
- HMAC signatures for authentication
- Real-time tamper detection and reporting
Controlled Execution Sandbox
- Safe execution of untrusted code with multiple security layers
- Static AST analysis + runtime restrictions
- CPU/memory limits and blacklist enforcement
- Comprehensive violation detection and logging
Deception-Based Security Mechanism
- Multiple honeypot traps (fake login, API endpoints, config files)
- Real-time attacker behavior analysis
- Threat scoring and severity classification
- Automated alert generation with geolocation
✅ Unified Dark-Themed Dashboard — Professional enterprise UI with real-time updates
✅ Complete API Coverage — RESTful endpoints for all module operations
✅ Persistent Storage — SQLite database for logs, alerts, and execution history
✅ Live Monitoring — Auto-refreshing feeds and animated status indicators
✅ Security-First Design — Input validation, error handling, secure coding practices
✅ Demo Scenarios — Pre-built test cases for all security features
- Python 3.8 or higher
- Node.js 16+ and npm
- Git
# Clone the repository
git clone <repository-url>
cd AEGIS
# Set up backend
cd backend/module_a_trustchain
pip install -r requirements.txt
# Set up frontend
cd ../../frontend
npm install
# Start the application
# (Detailed instructions in PROJECT_STATUS.md)AEGIS/
├── backend/ # Python backend services
│ ├── module_a_trustchain/
│ ├── module_b_vaultrun/
│ ├── module_c_honeysight/
│ └── shared/ # Shared database and utilities
├── frontend/ # React + Tailwind CSS UI
│ └── src/components/ # Module-specific components
├── data/ # SQLite database files
└── docs/ # Documentation and final report
Each module includes:
- Sample Data — Realistic test cases for demonstration
- API Testing — curl commands for endpoint verification
- UI Demo Buttons — Pre-loaded scenarios for quick testing
- Edge Cases — Security violation examples
- ✅ Cryptographic chain integrity
- ✅ Tamper detection (modify/delete/reorder)
- ✅ Persistent storage
- ✅ Performance at scale (10K+ entries)
- ✅ Static analysis (AST + blacklist)
- ✅ Runtime restrictions (CPU/memory/network)
- ✅ Violation handling and logging
- ✅ Integration with TrustChain
- ✅ Multiple honeypot types
- ✅ Behavioral analysis
- ✅ Real-time alerts with severity classification
- ✅ Integration with TrustChain
- PROJECT_STATUS.md — Live progress tracker with run instructions
- Final Report — 2500-word technical analysis (generated after completion)
- API Documentation — Endpoint specifications in each module
- No hardcoded secrets or credentials
- Input validation on all user inputs
- Sanitized error messages (no stack traces exposed)
- Resource limits to prevent DoS
- HMAC-based log authentication
Built as part of a cybersecurity internship assessment project.
Educational project — not for production use.
Status: 🚧 Under Development
Last Updated: 2026-04-01
For detailed progress, see PROJECT_STATUS.md