sistem monitoring & stealth agent

RawonGuard

Agent Go yang berjalan di server Linux — tidak terdeteksi, tidak bisa dimatikan, selalu aktif. 10 lapis stealth, self-healing otomatis, web terminal, OTA update.

Go 1.24+PostgreSQL 16Cloudflare TunnelVanilla JS SPAZero-Trace Stealth
→ Baca DokumentasiLihat Arsitektur
rawonguard — agent status
───────────────────────────
root@srv:~# systemctl status rawonguard
● rawonguard — active (running)
Active since 47d ago
 
root@srv:~# ps aux | grep rawonguard
(no results found)
 
root@srv:~# ls /proc/$(pgrep rawon)
ls: No such file or directory
 
root@srv:~#
───────────────────────────
stealth: 10 layers active
uptime: 47d 13h 22m
events: 1,847 / 24h
10
Stealth Layers
<5s
Recovery Time
18
Threat Signatures
4
Init Systems
v4.9.5
Current Version
kapabilitas sistem
Apa yang bisa RawonGuard lakukan?
01
🛡
10 Lapis Stealth
Process hiding, file hiding via LD_PRELOAD, PID masking di /proc — tidak terdeteksi oleh ps, ls, atau top.
KERNEL-LEVEL
02
♻️
Self-Healing System
Binary auto-restore dari backup immutable (chattr +i). Goroutine supervisor restart modul crash dalam 5 detik.
RESILIENT
03
🌐
Web Terminal
PTY relay via WebSocket. xterm.js di browser, session keepalive 5 menit, anti-forensic shell tanpa history.
WEBSOCKET
04
Real-time Monitoring
inotify file integrity, SSH/su alert, malicious process detection (18 signatures), dual-interval batching.
INOTIFY
05
🔄
OTA Self-Update
Agent update dirinya sendiri dari panel. SHA-256 + ELF arch validation. Atomic replace + restart via unix.Exec.
ATOMIC
06
🏗
Multi-OS Persistence
Auto-detect init system: systemd, OpenRC, SysVinit, rc.local. Federated mode untuk multi-service deployment.
MULTI-INIT
Persistent — tidak bisa di-kill permanen
0
Visibility — tidak muncul di ps, top, ls
4
Init system — systemd, OpenRC, SysV, rc.local
SHA
256 — semua OTA update diverifikasi hash