littlewolf9527/xsight — reverse-engineered prompt

Build me xSight, a distributed DDoS detection and response platform for network operators.

I want a controller that can collect traffic stats from multiple nodes, either from XDP and eBPF packet counting on mirror ports or from sFlow, NetFlow, and IPFIX. It should detect attacks using fixed PPS and BPS thresholds plus dynamic baselines, track inbound and outbound traffic, show per IP and per protocol details, and raise clear attack events.

The controller should store time series data, expose an API, and include a web dashboard with English and Chinese support, classic and amber themes, traffic overview charts, attack timelines, response history, node status, and config pages for detection profiles and response actions.

For mitigation, support pushing xDrop firewall rules, BGP blackhole announcements, webhooks, and shell scripts, including cleanup when attacks expire. Also expose Prometheus metrics.

Use Go for the backend and node components, Vue 3 for the UI, gRPC between nodes and controller, and TimescaleDB for storage. Look up current docs online if needed.