CoreChat

Professional P2P Messaging & Accountability

Serverless, encrypted, and moderated by CensorCore.

Overview

CoreChat is a production-ready communication platform leveraging WebRTC for direct, encrypted peer-to-peer connections. Optimized for accountability and professional utility, it balances privacy with a robust local audit system, ensuring all interactions are logged and synchronized without ever touching a central server.

Key Features

Peer-to-Peer Architecture: Direct browser-to-browser communication. No central database and no third-party message storage.
Automated Moderation: Real-time filtering via the CensorCore engine and anti-spam protocols protect the environment from flooding and restricted content.
Local Accountability: Integrated Persistent Audit Logs provide a secure record of all session activity (logins, file transfers, and violations) stored locally on each device.
Advanced Utility: Native support for 2MB file/image sharing, read receipts, and tab presence detection to ensure transparent and productive communication.
End-to-End Security: Uses industry-standard DTLS/SRTP encryption standards native to WebRTC.

View the project on GitHub:
CoreChat Repository

Technical Overview

CoreChat operates as a Static Web Application (SWA) with a decentralized signaling and synchronization model.

The Connection Lifecycle

Signaling: You receive a unique 6-character ID. When you share this with a peer, a "handshake" occurs via a signaling server to exchange session descriptions.
NAT Traversal: STUN (Session Traversal Utilities for NAT) servers identify your public IP address to navigate through firewalls.
DataChannel: Once the handshake is complete, a direct encrypted tunnel is opened. From this point on, all messages and file transfers are strictly peer-to-peer.

Safety Standards

To ensure professional accountability in a serverless environment, CoreChat implements advanced client-side safeguards:

Anti-Spam Protocols: Prevents flood-abuse by rate-limiting users (maximum of 5 messages every 3 seconds).
Synced Audit Trails: Every connection event, including IP addresses and moderation flags, is recorded in a hidden, persistent log synced between peers.
Fuzzy-Logic Detection: Automatically identifies "leetspeak" variations of blocked words to prevent filter-bypassing attempts.
Tab Presence Tracking: Notifies users when a peer leaves or returns to the chat tab, ensuring engagement transparency.

Summary Architecture Moderation Security Features Requirements

CoreChat Production Documentation

Executive Summary

CoreChat is a high-performance, serverless peer-to-peer messaging framework designed for secure, private, and accountable communication. By utilizing the WebRTC protocol, CoreChat eliminates the need for intermediary servers, while its Local Accountability system ensures that session history and audit logs are preserved even across browser restarts.

Project Vision and Architecture

The primary objective of CoreChat is to provide an accountability-focused messaging solution where privacy is maintained by the encrypted architecture, but professional standards are enforced by local logging. The application leverages PeerJS to manage the decentralized signaling and synchronization model.

Network Topology and Signaling

Signaling: Clients register a unique 6-character ID via a global signaling server to facilitate the initial handshake.
NAT Traversal: Uses STUN servers to identify public IP addresses and navigate through firewalls for direct peer discovery.
Data Tunneling: Once established, a bidirectional DataChannel handles all text and file buffers (up to 2MB) directly between browser memories.

Moderation Stack & Accountability

A multi-layered moderation stack ensures professional standards are maintained without a central database.

CensorCore Content Filtering

Fuzzy-Logic Validation: Checks content against weighted dictionaries, detecting "leetspeak" and orthographic obfuscation using Levenshtein distance calculations.
Anti-Spam Protocol: Rate-limits users to a maximum of 5 messages every 3 seconds to prevent flood-abuse.
Automated Interception: Prohibited content is discarded before transmission, preventing the peer from receiving harmful data.

Persistent Audit Log (PAL)

All session events (IPs, timestamps, and violations) are stored in a hidden overlay accessible via CTRL + ALT + Q.
Logs are synchronized between peers in real-time and saved to persistent storage, ensuring long-term accountability for session activity.

Security and Encryption Standards

DTLS/SRTP: All data, including file transfers, is encrypted using industry-standard protocols native to WebRTC.
Perfect Forward Secrecy: Keys are negotiated per session; previous sessions remain secure even if future keys are compromised.
Local Data Ownership: History is stored strictly on-device, ensuring that data ownership remains with the users while maintaining transparency.

Advanced Feature Specifications

Productivity & Transparency

Rich Media: Native support for P2P transfers of images and documents up to 2MB with inline previews.
Read Receipts: Visual confirmation (green checkmarks) synced across the DataChannel.
Presence Detection: Real-time notification when a peer leaves or returns to the chat tab, ensuring engagement transparency.

Developer Operations

A hidden administrative portal is embedded for overriding local suspensions. Users can trigger the authorization prompt using the keyboard sequence Alt + Q + W and entering the developer override key.

Technical Requirements

Browser: Modern evergreen browsers (Chrome 60+, Firefox 55+, Safari 11+, Edge 79+).
Connectivity: Support for WebRTC protocols.
Protocol: Must be served over HTTPS for peer discovery and persistent storage permissions.

Version History

v2.0.0 Accountability & Utility Update

The most significant evolution of CoreChat, transitioning from a simple messenger to a professional utility tool. This version introduces robust local logging and enhanced communication features while maintaining its core serverless P2P architecture.

Persistent Audit Log (PAL): Secure, local record of all session activity (CTRL+ALT+Q).
Anti-Spam & Presence: Rate-limiting flood protection and tab-activity tracking.
Rich Media: Support for 2MB file and image sharing with inline previews.
Transparency: Real-time read receipts and synchronized audit trails between peers.
Admin Override: Hidden developer portal for managing local suspensions.

View Release on GitHub

v1.0.0 Moderation Overhaul

Introduced the CensorCore Library to provide a safer environment without requiring a central database. This update focused on automated moderation and a modernized UI.

CensorCore Integration: Real-time filtering of blocked content.
Fuzzy Matching: Detection of "leetspeak" and filter-bypass attempts.
UI Redesign: Complete overhaul using the Slate/Indigo professional color palette.
Progressive Discipline: Automatic temporary suspensions for repeated violations.

View Release on GitHub

About the Developer

Derrick Richard is a student developer from Poth, Texas (Class of 2029) dedicated to building professional, utility-driven tools and lightweight libraries.

Other Projects

CensorCore Library — The engine powering CoreChat moderation.
Dev.to Articles — Weekly insights on web development and P2P technology.
daily.dev Articles — Weekly insights on web development and P2P technology.
GitHub Profile — Open source contributions and repositories.

Visit Official Portfolio