.gitignore
LICENSE
README.md
THREAT_ENGINE_DESIGN.md
config.example.yaml
pyproject.toml
argus/ARGUS_COLLAB.md
argus/CODEX_TO_CLAUDE_001.md
argus/README.md
argus/config.example.toml
argus/config.example.yaml
argus/config.toml
argus/config.yaml
argus/pyproject.toml
argus/argus/__init__.py
argus/argus/__main__.py
argus/argus/cli.py
argus/argus/config.py
argus/argus/daemon.py
argus/argus/models.py
argus/argus/normalize.py
argus/argus/settings_ui.py
argus/argus/tray.py
argus/argus/actions/__init__.py
argus/argus/actions/evidence.py
argus/argus/actions/lock.py
argus/argus/actions/network_isolation.py
argus/argus/core/__init__.py
argus/argus/core/disarm.py
argus/argus/core/events.py
argus/argus/core/persistence.py
argus/argus/core/pin.py
argus/argus/core/state.py
argus/argus/core/timelock.py
argus/argus/core/updater.py
argus/argus/emitters/__init__.py
argus/argus/emitters/base.py
argus/argus/emitters/jsonl.py
argus/argus/hooks/__init__.py
argus/argus/hooks/scheduled_tasks.py
argus/argus/monitors/__init__.py
argus/argus/monitors/ads.py
argus/argus/monitors/anti_tamper.py
argus/argus/monitors/audit_policy.py
argus/argus/monitors/browser_extensions.py
argus/argus/monitors/defender_health.py
argus/argus/monitors/dns.py
argus/argus/monitors/file_sentinel.py
argus/argus/monitors/firewall.py
argus/argus/monitors/inactivity.py
argus/argus/monitors/persistence.py
argus/argus/monitors/posture.py
argus/argus/monitors/process.py
argus/argus/monitors/registry.py
argus/argus/monitors/service.py
argus/argus/monitors/session.py
argus/argus/monitors/types.py
argus/argus/monitors/usb.py
argus/argus/monitors/windows_events.py
argus/argus/monitors/wmi_subs.py
argus/argus/sinks/__init__.py
argus/argus/sinks/jsonl.py
argus/argus/sinks/sms.py
argus/argus/sinks/syslog.py
argus/argus/sinks/webhook.py
argus/argus/sources/__init__.py
argus/argus/sources/base.py
argus/argus/sources/journalctl.py
argus/tests/test_anti_tamper_monitor.py
argus/tests/test_daemon_lockdown_gate.py
argus/tests/test_disarm.py
argus/tests/test_evidence_action.py
argus/tests/test_file_sentinel.py
argus/tests/test_jsonl_sink.py
argus/tests/test_normalize.py
argus/tests/test_persistence.py
argus/tests/test_persistence_monitor.py
argus/tests/test_process_monitor.py
argus/tests/test_session_monitor.py
argus/tests/test_state_machine.py
argus/tests/test_syslog_sink.py
argus/tests/test_webhook_sink.py
docs/GUIDE.md
rules/ossec/shallots-local.xml
rules/suricata/shallots-home.rules
security_shallots.egg-info/PKG-INFO
security_shallots.egg-info/SOURCES.txt
security_shallots.egg-info/dependency_links.txt
security_shallots.egg-info/entry_points.txt
security_shallots.egg-info/requires.txt
security_shallots.egg-info/top_level.txt
setup/shallot-doctor
setup/shallot-setup
setup/endpoint/clove
setup/endpoint/clove-watchdog
setup/endpoint/clove.ps1
setup/grafana/dashboards/ai-triage.json
setup/grafana/dashboards/host-security.json
setup/grafana/dashboards/network-overview.json
setup/grafana/dashboards/pfsense-firewall.json
setup/grafana/dashboards/threat-intel.json
setup/systemd/shallot.service
setup/systemd/victorialogs.service
shallots/__init__.py
shallots/__main__.py
shallots/alerter.py
shallots/cli.py
shallots/config.py
shallots/daemon.py
shallots/health.py
shallots/ioc_feeds.py
shallots/mcp_server.py
shallots/sigma_engine.py
shallots/tls_monitor.py
shallots/ai/__init__.py
shallots/ai/autopilot.py
shallots/ai/baselines.py
shallots/ai/clusterer.py
shallots/ai/correlator.py
shallots/ai/graph_engine.py
shallots/ai/incidents.py
shallots/ai/investigator.py
shallots/ai/killchain.py
shallots/ai/ml_detector.py
shallots/ai/ollama_client.py
shallots/ai/prompts.py
shallots/ai/query.py
shallots/ai/triage.py
shallots/data/netsec_knowledge.json
shallots/ingest/__init__.py
shallots/ingest/argus.py
shallots/ingest/crowdsec.py
shallots/ingest/eve.py
shallots/ingest/pfsense.py
shallots/ingest/pihole.py
shallots/ingest/syslog_receiver.py
shallots/ingest/wazuh.py
shallots/ingest/webapp.py
shallots/pipeline/__init__.py
shallots/pipeline/classifier.py
shallots/pipeline/dedup.py
shallots/pipeline/enricher.py
shallots/pipeline/normalizer.py
shallots/store/__init__.py
shallots/store/db.py
shallots/store/models.py
shallots/store/shipper.py
shallots/web/__init__.py
shallots/web/app.py
shallots/web/ws.py
shallots/web/api/__init__.py
shallots/web/api/agents.py
shallots/web/api/ai.py
shallots/web/api/alerts.py
shallots/web/api/incidents.py
shallots/web/api/rules.py
shallots/web/api/system.py
shallots/web/api/threat_engine.py
shallots/web/static/app.css
shallots/web/static/app.js
shallots/web/static/index.html
shallots/web/static/ml.html
shallots/web/static/setup.js
shallots/web/static/topology.html
shallots/web/static/wiki.js
tests/__init__.py
tests/conftest.py
tests/test_db.py
tests/test_dedup.py
tests/test_enricher.py
tests/test_models.py
tests/test_normalizer.py
tests/test_sql_validation.py