"Know your server. The moment you log in." MIT License — Use freely, modify freely.
This project is a Proof of Concept (PoC) and part of ongoing research and development at VisionGaia Technology. It is not a certified or production-ready product.
Use at your own risk. The software may contain security vulnerabilities, bugs, or unexpected behavior. It may break your environment if misconfigured or used improperly.
Do not deploy in critical production environments unless you have thoroughly audited the code and understand the implications. For enterprise-grade, verified protection, we recommend established and officially certified solutions.
Found a vulnerability or have an improvement? Open an issue or contact us.
A compiled Go binary that renders a full Tactical Intelligence HUD directly in your terminal on every SSH login — concurrent data extraction, kernel-level syscalls, zero external dependencies beyond the Go standard library.
Old Bash MOTD: VGT SSH Dashboard Go Edition:
→ Sequential execution → Concurrent goroutines (3 parallel engines)
→ Subshell overhead → Direct syscalls (Sysinfo, Statfs, Uname)
→ External tool dependency → Pure Go — no bash, awk, grep required
→ No input sanitization → CWE-150 hardened output sanitization
→ PATH hijacking risk → Absolute binary paths (CWE-426)
→ No timeout enforcement → 850ms global context deadline
▊ ▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
▊ VISIONGAIA TECHNOLOGY // OMEGA PROTOCOL
▊ NODE: HOSTNAME AUTH: ROOT SYS: Ubuntu 22.04 LTS
▊ ▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
▊ TACTICAL INTEL ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
▊ IDS Status : 247 attackers blocked (fail2ban)
▊ ▶ DROP 185.220.101.47 via sshd [03:12]
▊ ▶ DROP 94.102.49.193 via sshd [07:44]
▊ Last Auth :
▊ ▶ GRANT root from 1.2.3.4 -> still logged in
▊ ▶ GRANT deploy from 10.0.0.5 -> Wed Apr 9
▊ SYSTEM MATRIX ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
▊ CPU Load : 0.12, 0.08, 0.05 [4 Cores] Up: 12d 4h 22m
▊ RAM Target : [████████████············] 3.2G / 8.0G
▊ Disk Mount : [████████················] 42.0G / 220.0G
▊ EDGE NETWORK ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
▊ Routing IPs: L: 192.168.1.10 P: 1.2.3.4
▊ Daemons : [●] fail2ban [●] nginx [●] mysql
▊ ▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
main()
│
├── getSystemState() goroutine → syscall.Sysinfo, /proc/meminfo, syscall.Statfs
├── getNetworkState() goroutine → UDP dial (Local IP), DNS TXT whoami.cloudflare (Public IP)
└── getSecurityState() goroutine → parseFail2BanLog(), exec /usr/bin/last
All three run concurrently with an 850ms global context deadline.
Timeout = graceful render with available data, no hang.
| Component | Method |
|---|---|
| Uptime / Load | syscall.Sysinfo — direct kernel struct |
| Kernel / OS | syscall.Uname + /etc/os-release |
| Memory | /proc/meminfo — line-by-line scanner |
| Disk | syscall.Statfs("/") |
| Local IP | UDP dial to 1.1.1.1:80 — reads local addr |
| Public IP | DNS TXT lookup whoami.cloudflare — no HTTP call |
| fail2ban | Last 64KB of /var/log/fail2ban.log — bounded read |
| Services | /bin/systemctl is-active --quiet <name> |
| Logins | /usr/bin/last -a -w -n 10 |
| Hardening | Detail |
|---|---|
| CWE-150 — Terminal Injection | sanitizeStr() and sanitizeIP() applied to all external data before output |
| CWE-426 — PATH Hijacking | Absolute paths hardcoded: /bin/systemctl, /usr/bin/last |
| Context Deadline | 850ms global timeout — no infinite hang possible |
| Bounded I/O | fail2ban log: last 64KB only — no full-file read on large logs |
No clear |
Scrollback buffer preserved — admin history never wiped |
| Regex pre-compiled | rxFail2Ban and rxLast compiled once at startup — O(1) per line |
# Install Go
apt install golang-gosudo rm /etc/update-motd.d/99-vgt-dashboardgit clone https://github.com/visiongaiatechnology/sshdashboard
cd sshdashboard
# Build optimized binary (stripped symbols, minimal size)
go build -ldflags="-s -w" -o vgt-hud sshdashboard.gosudo mv vgt-hud /usr/local/bin/vgt-hud
sudo chown root:root /usr/local/bin/vgt-hud
sudo chmod 755 /usr/local/bin/vgt-hud# Create MOTD wrapper
echo '#!/bin/bash' | sudo tee /etc/update-motd.d/99-vgt-dashboard
echo '/usr/local/bin/vgt-hud' | sudo tee -a /etc/update-motd.d/99-vgt-dashboard
sudo chmod +x /etc/update-motd.d/99-vgt-dashboard
# Disable default Ubuntu MOTD scripts
sudo chmod -x /etc/update-motd.d/*
sudo chmod +x /etc/update-motd.d/99-vgt-dashboardsudo run-parts /etc/update-motd.d/Or open a new SSH session — the HUD appears immediately.
Open sshdashboard.go and edit the branding section:
// Header — replace with your own name/label:
printRail(fmt.Sprintf(" YOURNAME // YOUR ENGINE"))
// Footer — replace the credit line:
// Find the footer printRail and update accordinglyColors — all ANSI 256 constants at the top of the file:
cRail = "\033[38;5;39m" // Cyan rail — left border glyph
cBrand = "\033[38;5;81m" // Brand color — header
cOk = "\033[38;5;113m" // Green — active services
cWarn = "\033[38;5;220m" // Yellow — warnings
cCrit = "\033[38;5;196m" // Red — critical / bans
cMag = "\033[38;5;170m" // Magenta — IPs / highlightsAfter any change, rebuild:
go build -ldflags="-s -w" -o vgt-hud sshdashboard.go
sudo mv vgt-hud /usr/local/bin/vgt-hud| Requirement | Detail |
|---|---|
| OS | Linux (Ubuntu 22.04+ / Debian 11+ recommended) |
| Go | 1.21+ (apt install golang-go) |
| Build tag | //go:build linux — Linux only |
| Root access | Required for fail2ban log read and MOTD installation |
| Network | Optional — DNS lookup has 850ms hard deadline |
| Method | Address |
|---|---|
| PayPal | paypal.me/dergoldenelotus |
| Bitcoin | bc1q3ue5gq822tddmkdrek79adlkm36fatat3lz0dm |
| ETH | 0xD37DEfb09e07bD775EaaE9ccDaFE3a5b2348Fe85 |
| USDT (ERC-20) | 0xD37DEfb09e07bD775EaaE9ccDaFE3a5b2348Fe85 |
| Tool | Type | Purpose |
|---|---|---|
| 🖥️ VGT SSH Dashboard | Terminal HUD | System intelligence on every SSH login — you are here |
| ⚔️ VGT Auto-Punisher | IDS | L4+L7 Hybrid IDS — attackers terminated before they knock |
| 🌐 VGT Global Threat Sync | Preventive | Daily threat feed — block known attackers before they arrive |
| ⚔️ VGT Sentinel | WAF / IDS | Zero-Trust WordPress Security Suite |
| 🔥 VGT Windows Firewall Burner | Windows | 280,000+ APT IPs in native Windows Firewall |
Pull requests are welcome. Tested configurations and compatibility reports for other distros are especially appreciated.
Licensed under MIT — use freely, modify freely.
VisionGaia Technology builds enterprise-grade security infrastructure — engineered to the DIAMANT VGT SUPREME standard.
"The first thing you see when you log in should tell you everything. Not a blank screen."
VGT SSH Dashboard V3 APEX — Terminal Intelligence HUD // sshdashboard.go // Go // MIT License