SNF

Offline passive NDR for air-gapped networks. Written in Rust

1 follower

Offline passive NDR for air-gapped networks. Written in Rust

1 follower

SNF (Shadow Network Fingerprinting) is a passive NDR engine for air-gapped environments: defense networks, nuclear infrastructure, ICS, and classified SOCs. It fingerprints TLS via JA3/JA4, detects C2 beacons, DGA domains, DNS tunnels, and full ICS/SCADA protocol abuse. Zero network calls. Ever. Not a setting. Architecture. Output is deterministic NDJSON with SHA-256 verification and court-admissible evidence bundles. Open-core layer Apache 2.0. Full intelligence engine proprietary.

Free Options

Launch tags:Open Source•Developer Tools•GitHub

Launch Team

Viktor.comThe AI employee that does the work, in Slack & Teams

Promoted

Maker

📌

Happy to answer any questions about the architecture, detection logic, or the air-gap design constraints. The open-core layer is live on GitHub if you want to dig into the internals. GitHub: https://github.com/padigeltejas/... Website: https://shadownf.com LinkedIn: https://www.linkedin.com/company...

Report

2mo ago

Reviews