diff --git a/ARCHITECTURE.md b/ARCHITECTURE.md index 1a1f8f7..d3a2bb7 100644 --- a/ARCHITECTURE.md +++ b/ARCHITECTURE.md @@ -26,7 +26,20 @@ The system rests on four load-bearing components, each genuinely irreplaceable i ### the kernel -A custom Linux build with significant Rust integration — not Linux-with-Rust-bolted-on, but Linux taking the rust-in-kernel work seriously. Memory-safe modules where memory safety matters most. A deliberate library of system calls that lets userspace ask the system about itself in ways a vanilla kernel cannot. The kernel is not a black box — it's an active participant in the system's awareness of itself. +A custom Linux 6.19 build with significant Rust integration — not Linux-with-Rust-bolted-on, but Linux taking the rust-in-kernel work seriously. Memory-safe modules where memory safety matters most. The kernel is not a black box — it's an active participant in the system's awareness of itself. + +The numbers say it plainly: + +| | | +|---|---| +| **Rust kernel modules** | **22**, loadable | +| **Rust LOC at ring 0** | **29,269** | +| **hand-written C** | **492 lines** — nine thin FFI shims, nothing more | +| **the rest of the C** | kbuild-generated artifacts, not authored | + +The AI and security surface is *entirely Rust*. The only C anyone writes is the last-mile glue to legacy kernel-source helpers that have no Rust binding yet — and as Rust-for-Linux upstream grows, that shrinks. Modules expose their capability through a misc **character-device + `ioctl`** interface (`/dev/synos_*`): root-only, `CAP_SYS_ADMIN`-gated, Ed25519-signed — the kernel refuses to load a module that isn't signed. Every one is QEMU-boot-validated: the build boots the kernel and asserts each `ioctl` op responds before the module ships. + +The deeper internals — what those modules *decide* — live with the source. The shape is public; the special sauce stays in the pot. ### ALFRED diff --git a/GRIMOIRE.md b/GRIMOIRE.md index ffef758..6221d5d 100644 --- a/GRIMOIRE.md +++ b/GRIMOIRE.md @@ -20,11 +20,13 @@ It's the platform we ship to the community. It's the closest thing we know how t | | | |---|---| -| Hand-authored labs | **108** (GRIMOIRE catalog **1.0**), exact (enforced by integrity manifest) | -| Lab categories | **13** (beginner, advanced, crypto, web, network, forensics, reversing, ai-red-team, ad, cloud, mobile, hardware, osint) | +| Hand-authored labs | **113** (GRIMOIRE catalog **1.0**), exact (enforced by integrity manifest) | +| Lab categories | **13** (beginner, intermediate, advanced, nightmare, crypto, forensics, privesc, defense, ai-red-team, mesh, homelab, raids, quests) | +| Playable factions | **7** (DarkArmy, AzureWatch, GraySyndicate, Warden, Crimson Spire, ChurchOfMalware, + neutrals) | | Certification paths mapped | **11** (CompTIA Security+ / CySA+ / PenTest+, OSCP, OSWE, CRTP, CRTO, CEH, CISSP foundations, GIAC GPEN/GCIH, eJPT) | -| Game engine plugins | **8** (cutscene, mindmap, retro filter, cyberspace, skill tree, faction HQ, rehoboam, twin) | -| Game-mode crates | ~110+ modules, ~53,000 lines of code | +| Game engine plugins | **13** (cutscene, mindmap, retro filter, cyberspace, skill tree, faction HQ, rehoboam, twin, multiplayer, lab launcher, playbook editor, receipt overlay, + more) | +| Gamification engine | **84 modules, ~105,000 lines of code** | +| Live systems | XP curve (`100·N^1.73`), perk synergies, morality-with-consequence, seasonal faction wars, credit economy with real sinks | | First-boot onboarding | **Wizard-driven**, faction selection, calibration, opening lab seed | --- diff --git a/README.md b/README.md index b8ab317..2cd3492 100644 --- a/README.md +++ b/README.md @@ -111,7 +111,7 @@ Public release plans (the ISOs that aren't yet distributed publicly): - **GRIMOIRE Public ISO** — the gamified training platform, signed, downloadable, with first-boot wizard, faction selection, lab progression. Target: imminent. - **Goodlife ISO** — the AI research variant. Target: imminent. -- **⛧ ChurchOfMalware Edition** — a community variant built *with* the [Church of Malware](https://churchofmalware.org) offensive-security org. A dedicated, slim, cyberpunk-themed image distributed through the Church's own forge, where members get a **personalized edition**: auto-enrollment into the ChurchOfMalware GRIMOIRE faction, a baked-in starting loadout, an XP head-start, and member-exclusive labs forged from the community's own craft — mesh C2, RF/wireless, anti-scam ops, OSINT. *The plague doctor boots in green-on-black: code is scripture, exploitation is sermon, defense is salvation.* The faction, perk engine, induction ceremony, quest chain, and boot ritual are **already built**; the ISO is **in active build now.** Target: imminent. +- **⛧ ChurchOfMalware Edition** — a community variant built *with* the [Church of Malware](https://churchofmalware.org) offensive-security org. A dedicated, slim, cyberpunk-themed image distributed through the Church's own forge, where members get a **personalized edition**: auto-enrollment into the ChurchOfMalware GRIMOIRE faction, a baked-in starting loadout, an XP head-start, and member-exclusive labs forged from the community's own craft — mesh C2, RF/wireless, anti-scam ops, OSINT. *The plague doctor boots in green-on-black: code is scripture · exploitation is sermon · INFECTION is salvation.* The faction, perk engine, induction ceremony, quest chain, and boot ritual are **already built**; the ISO is **in active build now.** Target: imminent. - **Cohort programs** — multi-tenant GRIMOIRE deployments for classes, clubs, security teams. - **Public Sigstore + Rekor** — signed releases verifiable against the public transparency log. - **Hive expansion** — public Ansible playbook for self-hosting the 8-node Arcanum Hive.