AIC-Lab is a research project related to adaptive system simulation, introspection engine and protection pipeline. Therefore, the security of the source code and simulation environment is a top priority.
If you discover a security issue:
ndtribk@gmail.com (example)
In the email, please describe:
- how to reproduce the bug,
- potential impact,
- related files,
- temporary solution (if any).
Absolutely do not create a public issue when the bug can cause risks.
- simulation engine C++ code
- packet generator
- introspection logic
- behavior rules
- Python utilities
- pipeline visualization scripts
- AIC Core (managed in another repo)
- third-party dependencies
- notebook output
- malware
- shell injection
- backdoor
- exploit demo in production code
If you need to simulate an attack → use anomaly simulation safely.
- API keys
- private endpoint
- internal URL
Notebook only simulates, does not interfere with real systems.
- Receive report via email
- Confirm within 72 hours
- Classify the level
- Fix the error within:
- high level: 72 hours
- medium level: 7 days
- low level: 14 days
- Public announcement after patching
AIC-Lab prioritizes:
- transparency
- honesty
- academic nature
- fast fix, no blame
The more transparent the system → the harder it is to exploit → the more trustworthy.