Initial release: Vigil Anti-Surveillance Shield v0.1.0

KernelSU-Next/Magisk/APatch module providing: - Threat scanner with 11,000+ IOCs (stalkerware, Pegasus, government spyware) - FrostGuard file integrity monitor (pseudo-locked-bootloader) - Encryption key wiper / BFU mode transition - Forensic Shield (anti-Cellebrite with 71 known binary hashes) - Silent SMS detection (Type-0, Class-0, WAP Push) - Network monitor with C2/tracker domain and IP blocking - vigild daemon with periodic scanning and alert management - Full CLI interface
2026-03-31 03:09:00 -07:00
commit cf00838b6d
27 changed files with 16772 additions and 0 deletions
--- a/service.sh
+++ b/service.sh
@@ -0,0 +1,44 @@
+#!/system/bin/sh
+# Vigil — late_start service stage (runs after boot completes)
+# Starts the main Vigil daemon
+
+MODDIR="${0%/*}"
+VIGIL_DATA="/data/adb/vigil"
+VIGIL_BIN="$MODDIR/vigil/bin"
+VIGIL_LOG="$VIGIL_DATA/vigil.log"
+
+log_vigil() {
+    echo "[$(date '+%Y-%m-%d %H:%M:%S')] [service] $1" >> "$VIGIL_LOG"
+}
+
+# Wait for boot to complete
+while [ "$(getprop sys.boot_completed)" != "1" ]; do
+    sleep 1
+done
+
+# Small delay to let system settle
+sleep 5
+
+log_vigil "Vigil service stage starting"
+
+# Symlink CLI to PATH
+[ ! -f /data/adb/vigil/bin/vigil ] && {
+    mkdir -p /data/adb/vigil/bin
+    ln -sf "$VIGIL_BIN/vigil" /data/adb/vigil/bin/vigil
+}
+# Make accessible via su
+mount --bind "$VIGIL_BIN/vigil" /system/bin/vigil 2>/dev/null || {
+    # Fallback: create wrapper in a PATH-accessible location
+    cat > /data/local/tmp/vigil <<WRAPPER
+#!/system/bin/sh
+exec "$VIGIL_BIN/vigil" "\$@"
+WRAPPER
+    chmod 755 /data/local/tmp/vigil
+}
+
+# Start the main daemon
+log_vigil "Starting vigild daemon"
+nohup "$VIGIL_BIN/vigild" >> "$VIGIL_LOG" 2>&1 &
+DAEMON_PID=$!
+echo $DAEMON_PID > "$VIGIL_DATA/vigild.pid"
+log_vigil "vigild started (PID: $DAEMON_PID)"