fantasm01/portscanner

# PortScanner / PortGuard 一个小型 Python 网络工具包，专为 CYB333 实践构建，并扩展为防御性监控实用程序。 ## 项目 ### PortScanner 一个用于授权目标的简单 TCP 端口扫描器。 - 位于：`src/portscanner.py` ### PortGuard (新功能) PortGuard 是一个用于 localhost (fantasm0) 的**手动端口状态警报器**。它跟踪端口状态变化，当一扇“门”打开或关闭时发出警报，然后允许你进行调查并手动重置。 - 位于：`src/portguard.py` - 数据目录：`~/.portguard/`（baselines、state、logs） ## 用法 ## PortGuard 命令 ``` sudo portguard baseline``` create baseline snapshot ```bash sudo portguard arm``` baseline + initialize state tracking ```bash sudo portguard check``` one-time port change detection ```bash sudo portguard watch``` continuous monitoring mode ```bash sudo portguard investigate --port ``` identify process owning a listening port ```bash sudo portguard reset``` accept current state as normal ```bash sudo portguard report``` snapshot of baseline, state, and current ports ```bash sudo portguard status``` show PortGuard state files and paths ```bash sudo portguard logs``` inspect recent logs or follow live updates ```bash sudo portguard logs --tail 10``` inspect last 10 logs or follow live updates ```bash sudo portguard logs --follow``` inspect recent logs and follow live updates ```bash sudo portguard help-ports``` explain supported port formats ### 笔记 > Authorized/educational use only > Future Expansion: LAN/home-lab monitoring and automation integration. ```

标签：CYB333, DNS查询工具, Linux系统管理, Python, Scapy, SOCK_RAW, TCP端口, 基线监控, 安全工具开发, 密码管理, 异常检测, 插件系统, 教育项目, 无后门, 无线安全, 本地主机监控, 端口扫描器, 端口状态检测, 网络安全, 网络安全审计, 网络审计, 进程识别, 逆向工具, 防御性安全, 隐私保护