ghost-core/src/lib.rs

pub mod anomaly;
pub mod behavioral_ml;
pub mod config;
pub mod detection;
pub mod ebpf;
pub mod testing;
pub mod error;
pub mod evasion;
pub mod hollowing;
pub mod hooks;
pub mod live_feeds;
pub mod memory;
pub mod mitre_attack;
pub mod ml_cloud;
pub mod neural_memory;
pub mod process;
pub mod shellcode;
pub mod streaming;
pub mod thread;
pub mod threat_intel;
pub mod yara_engine;

pub use anomaly::{AnomalyDetector, AnomalyScore, ProcessFeatures};
pub use behavioral_ml::{
    AdvancedBehavioralML, BehavioralAnalysisResult, PredictedTechnique, BehavioralAnomaly,
    ModelConsensus, TemporalAnalysis, RiskLevel
};
pub use config::{DetectionConfig, ProcessFilter};
pub use detection::{DetectionEngine, DetectionResult, ThreatLevel};
#[cfg(target_os = "linux")]
pub use ebpf::{EbpfDetector, EbpfEvent, EbpfError, EbpfStatistics};
pub use error::{GhostError, Result};
pub use evasion::{
    EvasionDetector, EvasionResult, EvasionTechnique, EvasionSeverity,
    TimingAnalyzer, EnvironmentChecker, BehaviorAnalyzer, ObfuscationDetector
};
pub use hollowing::{HollowingDetection, HollowingDetector, HollowingIndicator};
pub use hooks::{detect_hook_injection, HookDetectionResult, HookInfo};
pub use live_feeds::{LiveThreatFeeds, ThreatFeed, FeedType};
pub use memory::{MemoryProtection, MemoryRegion};
pub use mitre_attack::{
    MitreAttackEngine, MitreAnalysisResult, AttackTechnique, AttackTactic, ThreatActor,
    DetectedTechnique, TacticCoverage, ThreatActorMatch, KillChainAnalysis, RiskAssessment
};
pub use ml_cloud::{CloudMLEngine, InferenceResult, MLModel, ThreatPrediction, ThreatSeverity};
pub use neural_memory::{
    NeuralMemoryAnalyzer, NeuralAnalysisResult, DetectedPattern, DetectedEvasion,
    PolymorphicIndicator, MemoryAnomaly, NeuralInsights, PatternType, EvasionCategory
};
pub use process::ProcessInfo;
pub use shellcode::{ShellcodeDetection, ShellcodeDetector};
pub use streaming::{
    EventStreamingSystem, EventChannel, StreamingEvent, EventType, EventSeverity,
    AlertManager, Alert, AlertRule, CorrelationEngine, NotificationSystem
};
pub use thread::ThreadInfo;
pub use threat_intel::{
    ThreatIntelligence, ThreatContext, IndicatorOfCompromise,
    ThreatActor as ThreatIntelActor, Campaign, IocType, SophisticationLevel
};
pub use yara_engine::{
    DynamicYaraEngine, YaraRuleSource, YaraScanResult, RuleMatch, ThreatLevel as YaraThreatLevel
};
add statistical anomaly detection for process analysis 2025-11-08 11:47:15 +02:00			`pub mod anomaly;`
main with mitre attack 2025-11-08 13:43:45 +02:00			`pub mod behavioral_ml;`
add configuration system with TOML support 2025-11-08 12:20:53 +02:00			`pub mod config;`
add basic detection engine with heuristics 2025-11-07 18:07:51 +02:00			`pub mod detection;`
add statistical anomaly detection for process analysis 2025-11-08 11:47:15 +02:00			`pub mod ebpf;`
			`pub mod testing;`
add structured error handling with thiserror 2025-11-08 11:07:48 +02:00			`pub mod error;`
add statistical anomaly detection for process analysis 2025-11-08 11:47:15 +02:00			`pub mod evasion;`
feat: implement comprehensive process hollowing detection 2025-11-08 11:16:42 +02:00			`pub mod hollowing;`
feat: add Windows hook injection detection (SetWindowsHookEx) 2025-11-08 11:13:14 +02:00			`pub mod hooks;`
main with mitre attack 2025-11-08 13:43:45 +02:00			`pub mod live_feeds;`
add memory region enumeration for Windows 2025-11-07 18:04:12 +02:00			`pub mod memory;`
main with mitre attack 2025-11-08 13:43:45 +02:00			`pub mod mitre_attack;`
			`pub mod ml_cloud;`
			`pub mod neural_memory;`
add ghost-core with basic process enumeration 2025-11-07 18:02:30 +02:00			`pub mod process;`
feat: implement sophisticated shellcode pattern detection 2025-11-08 11:15:12 +02:00			`pub mod shellcode;`
add statistical anomaly detection for process analysis 2025-11-08 11:47:15 +02:00			`pub mod streaming;`
add thread enumeration support 2025-11-07 18:09:06 +02:00			`pub mod thread;`
add statistical anomaly detection for process analysis 2025-11-08 11:47:15 +02:00			`pub mod threat_intel;`
main with mitre attack 2025-11-08 13:43:45 +02:00			`pub mod yara_engine;`
add ghost-core with basic process enumeration 2025-11-07 18:02:30 +02:00
add statistical anomaly detection for process analysis 2025-11-08 11:47:15 +02:00			`pub use anomaly::{AnomalyDetector, AnomalyScore, ProcessFeatures};`
main with mitre attack 2025-11-08 13:43:45 +02:00			`pub use behavioral_ml::{`
			`AdvancedBehavioralML, BehavioralAnalysisResult, PredictedTechnique, BehavioralAnomaly,`
			`ModelConsensus, TemporalAnalysis, RiskLevel`
			`};`
add configuration system with TOML support 2025-11-08 12:20:53 +02:00			`pub use config::{DetectionConfig, ProcessFilter};`
add basic detection engine with heuristics 2025-11-07 18:07:51 +02:00			`pub use detection::{DetectionEngine, DetectionResult, ThreatLevel};`
add statistical anomaly detection for process analysis 2025-11-08 11:47:15 +02:00			`#[cfg(target_os = "linux")]`
			`pub use ebpf::{EbpfDetector, EbpfEvent, EbpfError, EbpfStatistics};`
add structured error handling with thiserror 2025-11-08 11:07:48 +02:00			`pub use error::{GhostError, Result};`
add statistical anomaly detection for process analysis 2025-11-08 11:47:15 +02:00			`pub use evasion::{`
			`EvasionDetector, EvasionResult, EvasionTechnique, EvasionSeverity,`
			`TimingAnalyzer, EnvironmentChecker, BehaviorAnalyzer, ObfuscationDetector`
			`};`
feat: implement comprehensive process hollowing detection 2025-11-08 11:16:42 +02:00			`pub use hollowing::{HollowingDetection, HollowingDetector, HollowingIndicator};`
feat: add Windows hook injection detection (SetWindowsHookEx) 2025-11-08 11:13:14 +02:00			`pub use hooks::{detect_hook_injection, HookDetectionResult, HookInfo};`
main with mitre attack 2025-11-08 13:43:45 +02:00			`pub use live_feeds::{LiveThreatFeeds, ThreatFeed, FeedType};`
add memory region enumeration for Windows 2025-11-07 18:04:12 +02:00			`pub use memory::{MemoryProtection, MemoryRegion};`
main with mitre attack 2025-11-08 13:43:45 +02:00			`pub use mitre_attack::{`
			`MitreAttackEngine, MitreAnalysisResult, AttackTechnique, AttackTactic, ThreatActor,`
			`DetectedTechnique, TacticCoverage, ThreatActorMatch, KillChainAnalysis, RiskAssessment`
			`};`
			`pub use ml_cloud::{CloudMLEngine, InferenceResult, MLModel, ThreatPrediction, ThreatSeverity};`
			`pub use neural_memory::{`
			`NeuralMemoryAnalyzer, NeuralAnalysisResult, DetectedPattern, DetectedEvasion,`
			`PolymorphicIndicator, MemoryAnomaly, NeuralInsights, PatternType, EvasionCategory`
			`};`
add ghost-core with basic process enumeration 2025-11-07 18:02:30 +02:00			`pub use process::ProcessInfo;`
feat: implement sophisticated shellcode pattern detection 2025-11-08 11:15:12 +02:00			`pub use shellcode::{ShellcodeDetection, ShellcodeDetector};`
add statistical anomaly detection for process analysis 2025-11-08 11:47:15 +02:00			`pub use streaming::{`
			`EventStreamingSystem, EventChannel, StreamingEvent, EventType, EventSeverity,`
			`AlertManager, Alert, AlertRule, CorrelationEngine, NotificationSystem`
			`};`
add thread enumeration support 2025-11-07 18:09:06 +02:00			`pub use thread::ThreadInfo;`
add statistical anomaly detection for process analysis 2025-11-08 11:47:15 +02:00			`pub use threat_intel::{`
			`ThreatIntelligence, ThreatContext, IndicatorOfCompromise,`
main with mitre attack 2025-11-08 13:43:45 +02:00			`ThreatActor as ThreatIntelActor, Campaign, IocType, SophisticationLevel`
			`};`
			`pub use yara_engine::{`
			`DynamicYaraEngine, YaraRuleSource, YaraScanResult, RuleMatch, ThreatLevel as YaraThreatLevel`
add statistical anomaly detection for process analysis 2025-11-08 11:47:15 +02:00			`};`