Vigil Security Scanner detects rogue ports and leaked secrets swiftly, ensuring a secure environment. With an intuitive CRM-style dashboard, it provides real-time monitoring and auto-killing capabilities for threats. All actions are cryptographically verified, allowing users to maintain complete control over their security without relying on the cloud.
Vigil Security Scanner
Vigil Security Scanner is a powerful tool designed to protect systems from potential vulnerabilities caused by AI agents. With a simple command, users can quickly scan their systems for rogue agent ports, leaked secrets, and suspicious processes. The scanner not only identifies threats but also has the capability to automatically neutralize them, making the system more secure.
Key Features
-
Comprehensive System Scanning: Vigil scans for various types of security threats including rogue agent ports (such as Ollama and Jupyter), leaked secrets like AWS credentials or GitHub tokens, and suspicious processes monitored via eBPF.
-
Automated Threat Neutralization: The tool can automatically kill identified threats unless it is run in dry-run mode, enhancing the ease of use and efficiency in maintaining security.
-
User-Friendly CRM Dashboard: The results from the scans are presented in a clear, local dashboard styled like a CRM, ensuring that users can easily interpret the data at a glance. The dashboard provides a real-time security score (ranging from 0 to 100), detects rogue ports, tracks leaked secrets, and maintains an immutable audit log.
-
Cryptographic Proof of Actions: Every action taken by the scanner is backed by cryptographic signatures, ensuring the integrity and authenticity of the operations performed.
Local Installation and Usage
To install Vigil Security Scanner, execute the following command:
curl -sSL https://raw.githubusercontent.com/vigil-xy/scan/main/scripts/vigil.sh | sh
Launch the dashboard with:
vigil-scan dashboard
For a preliminary scan without changing any system settings, use:
vigil-scan --dry-run
Example Output
Here is a glimpse of what the output may look like after running a security scan:
π Vigil Security Scanner v0.2.0
π¦ Downloading vigil-scan-darwin-arm64...
β
Installed to /Users/you/.local/bin/vigil-scan
π Running security scan...
π¨ Rogue agent port 11434 (Ollama) is OPEN
π¨ Process 12345 (node) has AWS key in env
π Summary: 2 threats detected, 2 actions taken
β
Log signed: 0x4f3d...
Launch dashboard: vigil-scan dashboard
Community Engagement
Vigil Security Scanner welcomes user feedback and contributions. Connect with other users and the development team on Discord: Join the community. For source code and development contributions, visit GitHub.
Supported Platforms
- Linux (AMD64, ARM64)
- macOS (Intel, Apple Silicon)
The installer automatically detects the userβs system, ensuring a seamless setup.
For Security Teams
It is advisable for security teams to perform verification before installation:
git clone https://github.com/vigil-xy/scan.git
cd scan
bash scripts/verify_installer.sh # β
Ed25519 signature verification
Vigil Security Scanner provides essential safeguards for systems deploying AI agents, reducing the risk of security incidents. It is an invaluable tool for anyone involved in AI development or deployment.
No comments yet.
Sign in to be the first to comment.