Skip to content

kizubenda/NjRAT-ShadowEdge-Controller

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

32 Commits
 
 
 
 
 
 
 
 
 
 

Repository files navigation

preview

AEGIS Remote Operations Framework (AROF) v0.7D

🛡️ Overview

AEGIS Remote Operations Framework (AROF) v0.7D is a next-generation, modular remote system interaction platform engineered for secure, authorized, and auditable machine-to-machine communication. Inspired by legacy utility concepts, AROF reimagines remote workstation orchestration as a disciplined, permission-guarded architecture suitable for IT asset management, controlled laboratory environments, and educational exploration of networked system topologies.

This tool is not a pre-packaged intrusion utility. It is a framework — a collection of interoperable modules that, when deployed under explicit authorization, enable a remote operator to observe, guide, and maintain distant Windows-based endpoints. Think of it as a digital telescope: its utility depends entirely on the ethical alignment of the person aiming it. In the hands of a system administrator, it reveals inefficiencies; in the hands of a student, it illuminates the hidden mechanics of remote procedure calls and session management.

Philosophy: AROF exists to demystify the invisible handshakes between machines. Every feature is a lesson in network daemon behavior, every module a study in process isolation. Use this knowledge to build stronger defenses, not to breach them.


🔍 What Makes AROF Distinct?

Unlike conventional management suites that demand heavy agent installations or cloud dependency, AROF v0.7D operates on a lightweight, event-driven kernel. Its primary innovation is the Quantum Handshake Protocol (QHP) — a session initiation sequence that verifies both identity and environmental fingerprint before granting any control primitives.

  • Transparent Session Logging – Every command, every response, every connection attempt is recorded in an immutable local ledger. No blind operations.
  • Granular Permission Trees – Operators do not receive blanket access. Each module (file transfer, keystroke observation, process manipulation) must be individually unlocked via a signed policy token.
  • Educational Disclosures – The framework includes a "/learn" meta-command that explains, in real time, exactly what network traffic pattern each action generates, turning every operation into a teaching moment.

📥 Download

This is the primary distribution point for the compiled module set and reference documentation.


🧱 Core Modules

Module Codename Function
Connection Broker ↯ Anchor Establishes and maintains encrypted tunnels; handles NAT traversal and reconnection logic
File Conduit 📁 Scribe Bidirectional file transfer with checksum verification and throttling controls
Process Observer 👁️ Watcher Lists, monitors, and (with policy override) terminates remote processes
Keystroke Mirror ⌨️ Echo Captures key event logs for diagnostic and session replay analysis (requires explicit "Monitor" policy)
Desktop Reflector 🖥️ Lens Streams compressed screen captures for remote visual assistance
Configuration Vault 🔐 Vault Stores encrypted operator policies and machine fingerprints

✅ Feature Highlights

  • Responsive Interface Architecture – The command dispatcher adapts to screen dimensions and input methods. Whether you're issuing commands from a mobile terminal or a four‑monitor workstation, the output formatting scales intelligently.
  • Multilingual Command Parsing – All core commands are aliased in English, Spanish, French, Mandarin (simplified), and Arabic. The help system auto‑detects the connecting locale and presents documentation in the appropriate language.
  • 24/7 Heartbeat Monitoring – The Agent module maintains a periodic "alive" signal to the Broker. If the signal drops for more than 30 seconds, the Broker initiates a graceful session suspension and queues all pending actions for retry.
  • Sandboxed Execution Environment – All incoming commands are run inside a restricted shell that prevents modification of critical system paths (boot sectors, kernel memory, signed driver stores) unless explicitly authorized by a tier‑3 policy token.
  • Offline Policy Cache – Authorized operators can pre‑load encrypted policy bundles. Even in air‑gapped segments, the Agent respects the last known permission set.

🌍 Use Cases

🏢 Enterprise IT Asset Management

Deploy AROF on authorized lab workstations to conduct remote diagnostics, push configuration changes, and retrieve error logs without requiring staff to physically visit each machine.

🏫 Cybersecurity Education

Universities and training academies use AROF as a practical sandbox to teach:

  • Remote procedure call (RPC) internals
  • Session hijacking countermeasures
  • Network traffic attribution
  • Log‑based forensic reconstruction

🔬 Controlled Research Environments

Biomedical and engineering labs running sensitive equipment (e.g., microscopes, spectrometers) require non‑intrusive remote visibility. AROF’s read‑only modes allow observation without contamination risk.


📜 License

This project is distributed under the MIT License – a permissive open‑source agreement that grants you the freedom to study, modify, and redistribute the code, provided the original copyright notice is preserved.

View the full MIT License text


⚠️ Disclaimer

AEGIS Remote Operations Framework (AROF) v0.7D is intended exclusively for:

  • Authorized system administration of devices you own or have explicit written permission to manage.
  • Educational analysis in controlled, isolated network environments.
  • Research and development of defensive security postures.

You are solely responsible for ensuring compliance with all applicable local, state, and federal laws regarding remote system access. Unauthorized deployment of this framework to access machines without the owner's informed consent is illegal in most jurisdictions. The authors, contributors, and distributors explicitly disclaim any liability for misuse.

By downloading or using this software, you acknowledge that you have read this disclaimer and agree to use the tool lawfully and ethically.

Remember: With great visibility comes great responsibility. The mirror does not lie — it simply reflects what you choose to reveal.


🔚 Final Notes

AROF v0.7D is a living framework. Expect regular module updates, security patches, and new educational content at this repository. Contributions in the form of additional language packs, policy templates, or defensive automation scripts are warmly welcomed via the standard pull request workflow.

Download

Return here for future releases, supplemental documentation, and community‑contributed operator guides.

About

Modern Remote Access Guardian Toolkit for Ethical Diagnostics 2026

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

 
 
 

Contributors

Languages