Overview
sentinelmft is a Python library and CLI tool that provides secure, intelligent, and policy-driven file transfers across cloud and on-prem networks. It integrates Google Cloud services (GCS, Pub/Sub, Secret Manager) with AI-driven anomaly detection, cryptography (AES-256 + RSA), and a software-defined firewall layer for transfer sessions.
It’s like combining MFT + Firewall + AI Monitoring into one lightweight Python package.
Key Features
Security & Cryptography
- AES-256-GCM encryption for file transfers.
- RSA/ECC for key exchange.
- Envelope encryption with Google Cloud KMS.
- Secure token & secret retrieval from Secret Manager.
Managed File Transfer
- Upload/download between GCS, databases, and local servers.
- Policy-based transfer rules (size limits, allowed MIME types).
- Scheduled/triggered transfers with Cloud Scheduler + Pub/Sub.
- Retry, resumable transfers, and logging to BigQuery.
AI & Cybersecurity
- Anomaly detection on transfer logs (Isolation Forest/Random Forest).
- Predictive modeling of transfer times and failures.
- AI-driven firewall rules — detect unusual IPs, ports, or traffic spikes.
- Auto-block suspicious transfers and alert via Pub/Sub or Slack webhook.
Firewall + Network Layer
- Lightweight Python-based firewall for transfer sessions (IP whitelisting, geofencing).
- Logs connection attempts into BigQuery or Postgres.
- AI engine detects brute force or abnormal packet patterns.
Database Security Integration
- Secure transfer of database dumps (MySQL, Postgres) to GCS with encryption.
- Verify dump integrity using digital signatures (SHA-256/ECDSA).
- Auto-cleanup + lifecycle policies for compliance.
Example Usage
# Install
pip install sentinelmft
from sentinelmft import TransferManager, FirewallAI
# Transfer a file to GCS with encryption
tm = TransferManager()
tm.upload_secure("backup.sql", "my-bucket", "secure/backup.sql")
# Predict transfer time
print("Estimated time:", tm.predict_transfer_time("backup.sql"))
# Run AI firewall check
fw = FirewallAI()
if fw.is_suspicious("192.168.1.10"):
print("Blocked suspicious IP!")
CLI
# Encrypt & transfer
sentinelmft transfer --src backup.sql --dst gs://my-bucket/secure/ --encrypt
# Train AI anomaly model
sentinelmft ai-train --logfile transfers.csv
# Run firewall in learning mode
sentinelmft firewall --mode ai
Tech Stack
- Python 3.9+
- Google Cloud SDKs (google-cloud-storage, google-cloud-secret-manager)
- Cryptography (cryptography package)
- AI/ML (scikit-learn, pandas)
- Database (psycopg2, sqlalchemy)
- Firewall (scapy or pydivert for traffic inspection)
Use Cases
- Enterprises needing AI-driven MFT + firewall in one tool.
- Healthcare/Finance — secure regulated data transfers with compliance logs.
- DevOps — push encrypted DB backups to GCS + anomaly detection.
- IoT/Edge — secure telemetry file transfer with auto-blocking of rogue nodes.
Why It’s Unique
- Unlike typical MFT tools, sentinelmft combines:
- File transfer + cryptography + AI predictions + firewall protection
- Works across cloud + on-prem + databases
- Provides a single package for security, automation, and intelligence
License
Copyright (c) 2025 Raghava Chellu
Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
Top comments (0)