Shadow Gateway is a high-assurance security infrastructure that enforces a Ghost State on backend services. By utilizing mimetic middleware, the infrastructure remains invisible to the public internet—returning a 404 Not Found to all unauthorized traffic—until it is "Summoned" via a secure Control Plane.
| Developer | GitHub Identity | |
|---|---|---|
| 🛡️ | Aryan Raj | @aryan200420 |
| ⚡ | Adya Priyam | @Adya-Priyam |
| 🕵️ | Raj Lakshmi | @RajLakshmi-23 |
The system operates on a dual-plane architecture designed to decouple Identity Verification from Resource Access.
[Image of zero trust network architecture]
The "Summoning" portal is a high-fidelity command center built with React.js and Tailwind CSS.
- Identity Provisioning: Validates developer credentials via Firebase Auth.
- Temporal Dashboards: Real-time countdowns for active JIT access windows.
- Manifestation Trigger: On-demand IP whitelisting with instantaneous global propagation.
Powered by FastAPI, the backend acts as the silent gatekeeper.
- Stealth Middleware: Intercepts traffic at the edge. Unauthorized packets receive a
404to prevent server footprinting. - Just-In-Time (JIT) Bridge: A 30-minute temporal window that automatically collapses via background cleanup threads.
- State Synchronization: Real-time integration with Firebase RTDB for sub-second security updates.
Important
MIMETIC OBSCURITY: Traditional firewalls return a 403 Forbidden, leaking that a resource exists but is protected. Shadow Gateway returns a standard 404, making the server appear non-existent to automated reconnaissance tools.
Caution
TEMPORAL DECAY: Access is a lease, not a permanent state. The JIT window ensures that even if a developer's machine is compromised, the window of vulnerability is limited to the 30-minute bridge duration.
| Component | Tech | Logo | Purpose |
|---|---|---|---|
| Backend | FastAPI |  |
Asynchronous Enforcement Engine |
| Frontend | React |  |
Control Plane Dashboard |
| Auth/DB | Firebase |  |
Real-time State Orchestration |
| Styling | Tailwind |  |
Security Terminal UI Design |
| Scripting | Python |  |
Logic & Background Cleanup |
| Environment | Node.js |  |
Runtime environment for the React-based Control Plane |
Ensure serviceAccountKey.json is present in the root directory and your Firebase Realtime Database rules are set to auth != null.
# Initialize Backend Enforcement
cd backend && pip install -r requirements.txt
uvicorn main:app --host 0.0.0.0 --port 8000 --reload
# Launch Control Plane
cd frontend && npm install
npm startshadow-gateway/
├── backend/
│ ├── main.py # FastAPI Enforcement & JIT Logic
│ ├── requirements.txt # Backend dependencies
│ └── serviceAccountKey.json # Firebase Admin SDK Credentials
├── frontend/
│ ├── src/
│ │ ├── App.js # Control Plane Dashboard Logic
│ │ ├── firebaseConfig.js # Firebase Client Configuration
│ │ └── index.css # Tailwind & Global Styles
│ ├── public/ # Static assets
│ └── package.json # Frontend dependencies
└── README.md # System Manifest