@jshookmcp/jshook 0.2.2 → 0.2.5
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/LICENSE +661 -661
- package/README.md +15 -6
- package/README.zh.md +19 -4
- package/dist/native/scripts/linux/enum-windows.sh +12 -12
- package/dist/native/scripts/macos/enum-windows.applescript +22 -22
- package/dist/native/scripts/windows/enum-windows-by-class.ps1 +51 -51
- package/dist/native/scripts/windows/enum-windows.ps1 +44 -44
- package/dist/native/scripts/windows/inject-dll.ps1 +21 -21
- package/dist/packages/extension-sdk/src/bridges/shared.js +2 -2
- package/dist/packages/extension-sdk/src/plugin.d.ts +5 -0
- package/dist/packages/extension-sdk/src/plugin.js +119 -33
- package/dist/packages/extension-sdk/src/workflow.d.ts +156 -0
- package/dist/packages/extension-sdk/src/workflow.js +236 -0
- package/dist/src/config/search-defaults.js +161 -0
- package/dist/src/constants.d.ts +3 -0
- package/dist/src/constants.js +4 -1
- package/dist/src/index.d.ts +1 -1
- package/dist/src/index.js +13 -17
- package/dist/src/modules/analyzer/CodeAnalyzer.d.ts +1 -3
- package/dist/src/modules/analyzer/CodeAnalyzer.js +16 -28
- package/dist/src/modules/analyzer/CodeAnalyzerDataFlow.d.ts +1 -2
- package/dist/src/modules/analyzer/CodeAnalyzerDataFlow.js +1 -45
- package/dist/src/modules/analyzer/IntelligentAnalyzer.d.ts +1 -37
- package/dist/src/modules/analyzer/IntelligentAnalyzer.js +9 -142
- package/dist/src/modules/analyzer/PatternDetector.js +3 -3
- package/dist/src/modules/analyzer/PatternDetectorAuthPatterns.js +1 -1
- package/dist/src/modules/browser/BrowserDiscovery.d.ts +6 -5
- package/dist/src/modules/browser/BrowserDiscovery.js +3 -3
- package/dist/src/modules/browser/BrowserModeManager.d.ts +1 -1
- package/dist/src/modules/browser/BrowserModeManager.js +11 -10
- package/dist/src/modules/browser/TabRegistry.js +2 -2
- package/dist/src/modules/browser/UnifiedBrowserManager.d.ts +1 -0
- package/dist/src/modules/browser/UnifiedBrowserManager.js +19 -4
- package/dist/src/modules/captcha/AICaptchaDetector.d.ts +14 -23
- package/dist/src/modules/captcha/AICaptchaDetector.js +8 -202
- package/dist/src/modules/captcha/CaptchaDetector.d.ts +31 -17
- package/dist/src/modules/captcha/CaptchaDetector.js +1 -1
- package/dist/src/modules/collector/CodeCache.d.ts +2 -2
- package/dist/src/modules/collector/CodeCollector.d.ts +12 -9
- package/dist/src/modules/collector/CodeCollector.js +5 -6
- package/dist/src/modules/collector/DOMInspector.d.ts +3 -2
- package/dist/src/modules/collector/DOMInspector.js +49 -59
- package/dist/src/modules/collector/PageController.d.ts +17 -4
- package/dist/src/modules/collector/PageController.js +2 -5
- package/dist/src/modules/collector/PageScriptCollectors.js +3 -3
- package/dist/src/modules/crypto/CryptoDetector.d.ts +1 -4
- package/dist/src/modules/crypto/CryptoDetector.js +2 -42
- package/dist/src/modules/crypto/CryptoRules.js +1 -1
- package/dist/src/modules/debugger/BlackboxManager.js +1 -1
- package/dist/src/modules/debugger/DebuggerManager.impl.core.scope.js +1 -1
- package/dist/src/modules/debugger/ScriptManager.impl.extract-function-tree.js +5 -3
- package/dist/src/modules/debugger/WatchExpressionManager.js +1 -1
- package/dist/src/modules/deobfuscator/Deobfuscator.d.ts +1 -4
- package/dist/src/modules/deobfuscator/Deobfuscator.js +4 -39
- package/dist/src/modules/deobfuscator/JSVMPDeobfuscator.d.ts +0 -3
- package/dist/src/modules/deobfuscator/JSVMPDeobfuscator.js +2 -8
- package/dist/src/modules/deobfuscator/JSVMPDeobfuscator.restore.d.ts +2 -3
- package/dist/src/modules/deobfuscator/JSVMPDeobfuscator.restore.js +5 -57
- package/dist/src/modules/deobfuscator/JScramblerDeobfuscator.js +3 -4
- package/dist/src/modules/deobfuscator/PackerDeobfuscator.js +1 -1
- package/dist/src/modules/deobfuscator/VMDeobfuscator.d.ts +2 -10
- package/dist/src/modules/deobfuscator/VMDeobfuscator.js +3 -128
- package/dist/src/modules/deobfuscator/webcrack.js +15 -2
- package/dist/src/modules/emulator/AIEnvironmentAnalyzer.d.ts +5 -8
- package/dist/src/modules/emulator/AIEnvironmentAnalyzer.js +10 -102
- package/dist/src/modules/emulator/EnvironmentEmulator.d.ts +1 -5
- package/dist/src/modules/emulator/EnvironmentEmulator.js +7 -91
- package/dist/src/modules/emulator/EnvironmentEmulatorFetch.js +58 -61
- package/dist/src/modules/emulator/templates/chrome-env.d.ts +17 -7
- package/dist/src/modules/emulator/templates/chrome-env.js +14 -7
- package/dist/src/modules/external/ExternalToolRunner.d.ts +1 -1
- package/dist/src/modules/external/ExternalToolRunner.js +26 -23
- package/dist/src/modules/monitor/ConsoleMonitor.impl.core.class.d.ts +13 -0
- package/dist/src/modules/monitor/ConsoleMonitor.impl.core.class.js +42 -0
- package/dist/src/modules/monitor/FetchInterceptor.d.ts +46 -0
- package/dist/src/modules/monitor/FetchInterceptor.js +191 -0
- package/dist/src/modules/monitor/PerformanceMonitor.js +8 -7
- package/dist/src/modules/process/BaseMemoryManager.d.ts +1 -1
- package/dist/src/modules/process/LinuxProcessManager.js +4 -2
- package/dist/src/modules/process/MacProcessManager.js +1 -1
- package/dist/src/modules/process/MemoryManager.d.ts +1 -1
- package/dist/src/modules/process/MemoryManager.js +2 -2
- package/dist/src/modules/process/ProcessManager.impl.js +1 -1
- package/dist/src/modules/process/memory/AuditTrail.js +1 -1
- package/dist/src/modules/process/memory/reader.js +35 -3
- package/dist/src/modules/process/memory/regions.enumerate.js +1 -1
- package/dist/src/modules/process/memory/regions.protection.js +42 -9
- package/dist/src/modules/process/memory/scanner.d.ts +5 -1
- package/dist/src/modules/process/memory/scanner.darwin.js +57 -0
- package/dist/src/modules/process/memory/scanner.js +88 -4
- package/dist/src/modules/process/memory/writer.js +44 -4
- package/dist/src/modules/security/ExecutionSandbox.js +7 -8
- package/dist/src/modules/stealth/FingerprintManager.js +1 -1
- package/dist/src/modules/stealth/StealthScripts.d.ts +4 -2
- package/dist/src/modules/stealth/StealthScripts.js +53 -14
- package/dist/src/modules/stealth/StealthVerifier.d.ts +1 -1
- package/dist/src/modules/stealth/StealthVerifier.js +2 -4
- package/dist/src/modules/symbolic/JSVMPSymbolicExecutor.d.ts +14 -0
- package/dist/src/modules/symbolic/JSVMPSymbolicExecutor.js +181 -2
- package/dist/src/modules/trace/TraceDB.js +12 -6
- package/dist/src/modules/trace/TraceRecorder.js +1 -5
- package/dist/src/native/AntiCheatDetector.js +67 -16
- package/dist/src/native/CodeInjector.js +4 -4
- package/dist/src/native/HardwareBreakpoint.js +25 -16
- package/dist/src/native/HeapAnalyzer.js +2 -2
- package/dist/src/native/MemoryController.js +1 -1
- package/dist/src/native/MemoryScanSession.js +2 -2
- package/dist/src/native/MemoryScanner.js +4 -8
- package/dist/src/native/NativeMemoryManager.impl.js +2 -2
- package/dist/src/native/PEAnalyzer.js +14 -15
- package/dist/src/native/PointerChainEngine.js +2 -4
- package/dist/src/native/ScriptLoader.js +4 -9
- package/dist/src/native/Speedhack.js +1 -1
- package/dist/src/native/StructureAnalyzer.js +52 -33
- package/dist/src/native/Win32API.d.ts +1 -0
- package/dist/src/native/Win32API.js +13 -0
- package/dist/src/native/Win32Debug.js +19 -19
- package/dist/src/native/platform/darwin/DarwinAPI.d.ts +2 -0
- package/dist/src/native/platform/darwin/DarwinAPI.js +8 -0
- package/dist/src/native/platform/darwin/DarwinMemoryProvider.js +6 -1
- package/dist/src/server/MCPServer.context.d.ts +2 -1
- package/dist/src/server/MCPServer.d.ts +2 -1
- package/dist/src/server/MCPServer.domain.d.ts +1 -1
- package/dist/src/server/MCPServer.domain.js +81 -16
- package/dist/src/server/MCPServer.js +42 -14
- package/dist/src/server/MCPServer.resources.d.ts +2 -0
- package/dist/src/server/MCPServer.resources.js +91 -0
- package/dist/src/server/MCPServer.search.handlers.call.js +2 -1
- package/dist/src/server/MCPServer.search.helpers.js +2 -2
- package/dist/src/server/MCPServer.tools.js +1 -1
- package/dist/src/server/MCPServer.transport.js +12 -0
- package/dist/src/server/ToolCallContextGuard.d.ts +5 -0
- package/dist/src/server/ToolCallContextGuard.js +85 -0
- package/dist/src/server/ToolRouter.d.ts +26 -10
- package/dist/src/server/ToolRouter.intent.d.ts +26 -0
- package/dist/src/server/ToolRouter.intent.js +77 -0
- package/dist/src/server/ToolRouter.js +103 -284
- package/dist/src/server/ToolRouter.policy.d.ts +22 -0
- package/dist/src/server/ToolRouter.policy.js +163 -0
- package/dist/src/server/ToolRouter.probe.d.ts +17 -0
- package/dist/src/server/ToolRouter.probe.js +103 -0
- package/dist/src/server/ToolRouter.renderer.d.ts +9 -0
- package/dist/src/server/ToolRouter.renderer.js +52 -0
- package/dist/src/server/activation/ActivationController.js +15 -12
- package/dist/src/server/activation/CompoundConditionEngine.js +1 -1
- package/dist/src/server/activation/PredictiveBooster.js +1 -3
- package/dist/src/server/domains/analysis/definitions.js +155 -655
- package/dist/src/server/domains/analysis/handlers.impl.d.ts +8 -8
- package/dist/src/server/domains/analysis/handlers.impl.js +34 -28
- package/dist/src/server/domains/analysis/handlers.web-tools.js +4 -3
- package/dist/src/server/domains/analysis/manifest.js +6 -4
- package/dist/src/server/domains/antidebug/definitions.js +25 -111
- package/dist/src/server/domains/browser/definitions.tools.advanced.js +59 -88
- package/dist/src/server/domains/browser/definitions.tools.behavior.js +120 -227
- package/dist/src/server/domains/browser/definitions.tools.page-core.js +157 -386
- package/dist/src/server/domains/browser/definitions.tools.page-system.js +108 -250
- package/dist/src/server/domains/browser/definitions.tools.runtime.js +61 -174
- package/dist/src/server/domains/browser/definitions.tools.security.js +92 -237
- package/dist/src/server/domains/browser/handlers/camoufox-browser.js +3 -2
- package/dist/src/server/domains/browser/handlers/captcha-solver.js +3 -3
- package/dist/src/server/domains/browser/handlers/dom-query.js +2 -1
- package/dist/src/server/domains/browser/handlers/facade-initializer.d.ts +3 -3
- package/dist/src/server/domains/browser/handlers/facade-initializer.js +3 -3
- package/dist/src/server/domains/browser/handlers/framework-state.js +231 -3
- package/dist/src/server/domains/browser/handlers/indexeddb-dump.js +21 -20
- package/dist/src/server/domains/browser/handlers/script-management.js +1 -1
- package/dist/src/server/domains/browser/handlers/stealth-injection.js +8 -2
- package/dist/src/server/domains/browser/handlers.impl.d.ts +15 -12
- package/dist/src/server/domains/browser/handlers.impl.js +5 -6
- package/dist/src/server/domains/browser/manifest.js +37 -13
- package/dist/src/server/domains/coordination/definitions.js +50 -149
- package/dist/src/server/domains/coordination/index.d.ts +20 -1
- package/dist/src/server/domains/coordination/index.js +133 -0
- package/dist/src/server/domains/coordination/manifest.js +15 -0
- package/dist/src/server/domains/debugger/definitions.tools.advanced.js +72 -189
- package/dist/src/server/domains/debugger/definitions.tools.core.js +114 -288
- package/dist/src/server/domains/debugger/manifest.js +9 -2
- package/dist/src/server/domains/encoding/definitions.js +43 -153
- package/dist/src/server/domains/encoding/handlers.base.js +2 -2
- package/dist/src/server/domains/evidence/definitions.d.ts +2 -0
- package/dist/src/server/domains/evidence/definitions.js +42 -0
- package/dist/src/server/domains/evidence/handlers.d.ts +582 -0
- package/dist/src/server/domains/evidence/handlers.js +60 -0
- package/dist/src/server/domains/evidence/index.d.ts +2 -0
- package/dist/src/server/domains/evidence/index.js +2 -0
- package/dist/src/server/domains/evidence/manifest.d.ts +63 -0
- package/dist/src/server/domains/evidence/manifest.js +78 -0
- package/dist/src/server/domains/graphql/definitions.js +53 -141
- package/dist/src/server/domains/graphql/handlers.impl.core.runtime.replay.js +92 -114
- package/dist/src/server/domains/hooks/ai-handlers.d.ts +0 -7
- package/dist/src/server/domains/hooks/ai-handlers.js +4 -70
- package/dist/src/server/domains/hooks/definitions.js +69 -335
- package/dist/src/server/domains/hooks/manifest.d.ts +1 -1
- package/dist/src/server/domains/hooks/manifest.js +1 -2
- package/dist/src/server/domains/instrumentation/definitions.d.ts +2 -0
- package/dist/src/server/domains/instrumentation/definitions.js +99 -0
- package/dist/src/server/domains/instrumentation/handlers.d.ts +78 -0
- package/dist/src/server/domains/instrumentation/handlers.js +206 -0
- package/dist/src/server/domains/instrumentation/index.d.ts +2 -0
- package/dist/src/server/domains/instrumentation/index.js +2 -0
- package/dist/src/server/domains/instrumentation/manifest.d.ts +63 -0
- package/dist/src/server/domains/instrumentation/manifest.js +114 -0
- package/dist/src/server/domains/macro/definitions.js +16 -43
- package/dist/src/server/domains/maintenance/definitions.js +60 -219
- package/dist/src/server/domains/maintenance/handlers.d.ts +2 -2
- package/dist/src/server/domains/maintenance/handlers.extensions.js +78 -20
- package/dist/src/server/domains/maintenance/handlers.js +2 -2
- package/dist/src/server/domains/memory/definitions.js +387 -559
- package/dist/src/server/domains/memory/handlers/hooks.d.ts +55 -0
- package/dist/src/server/domains/memory/handlers/hooks.js +115 -0
- package/dist/src/server/domains/memory/handlers/integrity.d.ts +77 -0
- package/dist/src/server/domains/memory/handlers/integrity.js +180 -0
- package/dist/src/server/domains/memory/handlers/pointer-chain.d.ts +29 -0
- package/dist/src/server/domains/memory/handlers/pointer-chain.js +82 -0
- package/dist/src/server/domains/memory/handlers/readwrite.d.ts +41 -0
- package/dist/src/server/domains/memory/handlers/readwrite.js +78 -0
- package/dist/src/server/domains/memory/handlers/scan.d.ts +35 -0
- package/dist/src/server/domains/memory/handlers/scan.js +97 -0
- package/dist/src/server/domains/memory/handlers/session.d.ts +23 -0
- package/dist/src/server/domains/memory/handlers/session.js +49 -0
- package/dist/src/server/domains/memory/handlers/structure.d.ts +29 -0
- package/dist/src/server/domains/memory/handlers/structure.js +74 -0
- package/dist/src/server/domains/memory/handlers.impl.d.ts +49 -54
- package/dist/src/server/domains/memory/handlers.impl.js +63 -494
- package/dist/src/server/domains/memory/manifest.js +236 -64
- package/dist/src/server/domains/native-bridge/definitions.js +54 -192
- package/dist/src/server/domains/native-bridge/index.d.ts +1 -0
- package/dist/src/server/domains/native-bridge/index.js +2 -1
- package/dist/src/server/domains/network/auth-extractor.js +1 -1
- package/dist/src/server/domains/network/definitions.js +175 -578
- package/dist/src/server/domains/network/handlers.base.core.d.ts +64 -0
- package/dist/src/server/domains/network/handlers.base.core.js +623 -0
- package/dist/src/server/domains/network/handlers.base.d.ts +2 -124
- package/dist/src/server/domains/network/handlers.base.js +3 -878
- package/dist/src/server/domains/network/handlers.base.performance.d.ts +63 -0
- package/dist/src/server/domains/network/handlers.base.performance.js +193 -0
- package/dist/src/server/domains/network/handlers.base.types.d.ts +42 -0
- package/dist/src/server/domains/network/handlers.base.types.js +89 -0
- package/dist/src/server/domains/network/handlers.impl.core.runtime.d.ts +1 -1
- package/dist/src/server/domains/network/handlers.impl.core.runtime.intercept.d.ts +21 -0
- package/dist/src/server/domains/network/handlers.impl.core.runtime.intercept.js +186 -0
- package/dist/src/server/domains/network/handlers.impl.core.runtime.js +1 -1
- package/dist/src/server/domains/network/manifest.js +15 -0
- package/dist/src/server/domains/network/replay.js +1 -4
- package/dist/src/server/domains/platform/definitions.js +121 -112
- package/dist/src/server/domains/platform/handlers/bridge-handlers.d.ts +5 -1
- package/dist/src/server/domains/platform/handlers/bridge-handlers.js +194 -5
- package/dist/src/server/domains/platform/handlers/electron-asar-helpers.js +26 -6
- package/dist/src/server/domains/platform/handlers/electron-dual-cdp.d.ts +3 -0
- package/dist/src/server/domains/platform/handlers/electron-dual-cdp.js +170 -0
- package/dist/src/server/domains/platform/handlers/electron-fuse-handler.d.ts +3 -0
- package/dist/src/server/domains/platform/handlers/electron-fuse-handler.js +193 -0
- package/dist/src/server/domains/platform/handlers/electron-handlers.d.ts +6 -0
- package/dist/src/server/domains/platform/handlers/electron-handlers.js +95 -2
- package/dist/src/server/domains/platform/handlers/electron-ipc-sniffer.d.ts +2 -0
- package/dist/src/server/domains/platform/handlers/electron-ipc-sniffer.js +370 -0
- package/dist/src/server/domains/platform/handlers/electron-userdata-handler.d.ts +2 -0
- package/dist/src/server/domains/platform/handlers/electron-userdata-handler.js +78 -0
- package/dist/src/server/domains/platform/handlers/miniapp-handlers.d.ts +1 -1
- package/dist/src/server/domains/platform/handlers/miniapp-handlers.js +4 -4
- package/dist/src/server/domains/platform/handlers/v8-bytecode-handler.d.ts +2 -0
- package/dist/src/server/domains/platform/handlers/v8-bytecode-handler.js +207 -0
- package/dist/src/server/domains/platform/handlers.d.ts +48 -0
- package/dist/src/server/domains/platform/handlers.js +29 -0
- package/dist/src/server/domains/platform/manifest.js +38 -0
- package/dist/src/server/domains/process/definitions.js +163 -647
- package/dist/src/server/domains/process/handlers.base.d.ts +3 -95
- package/dist/src/server/domains/process/handlers.base.js +7 -462
- package/dist/src/server/domains/process/handlers.base.process.d.ts +61 -0
- package/dist/src/server/domains/process/handlers.base.process.js +417 -0
- package/dist/src/server/domains/process/handlers.base.types.d.ts +57 -0
- package/dist/src/server/domains/process/handlers.base.types.js +50 -0
- package/dist/src/server/domains/process/handlers.impl.core.runtime.inject.js +19 -17
- package/dist/src/server/domains/process/manifest.js +6 -1
- package/dist/src/server/domains/sandbox/definitions.js +11 -33
- package/dist/src/server/domains/sandbox/handlers.js +8 -3
- package/dist/src/server/domains/shared/ResponseBuilder.d.ts +209 -0
- package/dist/src/server/domains/shared/ResponseBuilder.js +48 -0
- package/dist/src/server/domains/shared/modules.d.ts +0 -2
- package/dist/src/server/domains/shared/modules.js +0 -1
- package/dist/src/server/domains/sourcemap/definitions.js +27 -111
- package/dist/src/server/domains/sourcemap/handlers.impl.sourcemap-common.js +7 -2
- package/dist/src/server/domains/sourcemap/handlers.impl.sourcemap-main.js +1 -1
- package/dist/src/server/domains/sourcemap/handlers.impl.sourcemap-parse-base.js +1 -1
- package/dist/src/server/domains/sourcemap/manifest.d.ts +1 -1
- package/dist/src/server/domains/sourcemap/manifest.js +1 -1
- package/dist/src/server/domains/streaming/definitions.js +36 -148
- package/dist/src/server/domains/streaming/handlers.impl.streaming-sse.js +163 -164
- package/dist/src/server/domains/streaming/handlers.impl.streaming-ws.js +1 -1
- package/dist/src/server/domains/trace/TraceSummarizer.d.ts +60 -0
- package/dist/src/server/domains/trace/TraceSummarizer.js +112 -0
- package/dist/src/server/domains/trace/definitions.tools.js +51 -176
- package/dist/src/server/domains/trace/handlers.d.ts +2 -1
- package/dist/src/server/domains/trace/handlers.js +62 -9
- package/dist/src/server/domains/trace/index.d.ts +2 -1
- package/dist/src/server/domains/trace/index.js +2 -1
- package/dist/src/server/domains/trace/manifest.js +18 -4
- package/dist/src/server/domains/transform/definitions.js +50 -210
- package/dist/src/server/domains/transform/handlers.impl.transform-base.js +6 -6
- package/dist/src/server/domains/transform/handlers.impl.transform-crypto.js +18 -19
- package/dist/src/server/domains/transform/manifest.d.ts +1 -1
- package/dist/src/server/domains/transform/manifest.js +1 -1
- package/dist/src/server/domains/wasm/definitions.js +55 -232
- package/dist/src/server/domains/wasm/handlers.js +3 -3
- package/dist/src/server/domains/workflow/definitions.js +144 -414
- package/dist/src/server/domains/workflow/handlers.impl.workflow-account-bundle.js +2 -2
- package/dist/src/server/domains/workflow/handlers.impl.workflow-base.d.ts +2 -0
- package/dist/src/server/domains/workflow/handlers.impl.workflow-base.js +126 -87
- package/dist/src/server/domains/workflow/handlers.impl.workflow-batch.js +5 -5
- package/dist/src/server/evidence/ReverseEvidenceGraph.d.ts +20 -0
- package/dist/src/server/evidence/ReverseEvidenceGraph.js +208 -0
- package/dist/src/server/evidence/index.d.ts +2 -0
- package/dist/src/server/evidence/index.js +1 -0
- package/dist/src/server/evidence/types.d.ts +22 -0
- package/dist/src/server/evidence/types.js +1 -0
- package/dist/src/server/extensions/ExtensionManager.d.ts +1 -0
- package/dist/src/server/extensions/ExtensionManager.discovery.js +72 -9
- package/dist/src/server/extensions/ExtensionManager.integrity.js +1 -1
- package/dist/src/server/extensions/ExtensionManager.js +193 -40
- package/dist/src/server/extensions/ExtensionManager.roots.d.ts +1 -1
- package/dist/src/server/extensions/ExtensionManager.roots.js +19 -9
- package/dist/src/server/extensions/plugin-config.js +1 -1
- package/dist/src/server/extensions/plugin-env.d.ts +1 -1
- package/dist/src/server/extensions/plugin-env.js +10 -4
- package/dist/src/server/extensions/types.d.ts +17 -0
- package/dist/src/server/extensions/types.js +1 -1
- package/dist/src/server/http/HttpMiddleware.js +1 -1
- package/dist/src/server/instrumentation/EvidenceGraphBridge.d.ts +13 -0
- package/dist/src/server/instrumentation/EvidenceGraphBridge.js +150 -0
- package/dist/src/server/instrumentation/InstrumentationSession.d.ts +60 -0
- package/dist/src/server/instrumentation/InstrumentationSession.js +269 -0
- package/dist/src/server/instrumentation/index.d.ts +2 -0
- package/dist/src/server/instrumentation/index.js +2 -0
- package/dist/src/server/instrumentation/types.d.ts +62 -0
- package/dist/src/server/instrumentation/types.js +7 -0
- package/dist/src/server/macros/MacroConfigLoader.d.ts +6 -5
- package/dist/src/server/macros/MacroConfigLoader.js +61 -59
- package/dist/src/server/macros/MacroRunner.js +6 -2
- package/dist/src/server/macros/builtins/index.d.ts +2 -3
- package/dist/src/server/macros/builtins/index.js +51 -7
- package/dist/src/server/plugins/PluginContract.d.ts +1 -1
- package/dist/src/server/registry/contracts.d.ts +7 -1
- package/dist/src/server/registry/discovery.js +5 -4
- package/dist/src/server/registry/ensure-browser-core.js +0 -3
- package/dist/src/server/registry/index.js +4 -4
- package/dist/src/server/registry/tool-builder.d.ts +46 -0
- package/dist/src/server/registry/tool-builder.js +105 -0
- package/dist/src/server/sandbox/MCPBridge.d.ts +9 -0
- package/dist/src/server/sandbox/MCPBridge.js +22 -0
- package/dist/src/server/sandbox/QuickJSSandbox.d.ts +4 -1
- package/dist/src/server/sandbox/QuickJSSandbox.js +162 -2
- package/dist/src/server/sandbox/types.d.ts +13 -0
- package/dist/src/server/search/AffinityGraph.d.ts +7 -1
- package/dist/src/server/search/AffinityGraph.js +24 -3
- package/dist/src/server/search/EmbeddingWorker.js +5 -3
- package/dist/src/server/search/FeedbackTracker.d.ts +9 -0
- package/dist/src/server/search/FeedbackTracker.js +26 -0
- package/dist/src/server/search/QueryNormalizer.d.ts +6 -0
- package/dist/src/server/search/QueryNormalizer.js +94 -0
- package/dist/src/server/search/ToolSearchEngineImpl.d.ts +2 -3
- package/dist/src/server/search/ToolSearchEngineImpl.js +38 -88
- package/dist/src/server/workflows/WorkflowContract.d.ts +24 -0
- package/dist/src/server/workflows/WorkflowContract.js +12 -0
- package/dist/src/server/workflows/WorkflowEngine.d.ts +1 -0
- package/dist/src/server/workflows/WorkflowEngine.js +136 -3
- package/dist/src/types/config.d.ts +0 -14
- package/dist/src/types/deobfuscator.d.ts +0 -1
- package/dist/src/types/index.d.ts +1 -1
- package/dist/src/utils/DetailedDataManager.js +2 -0
- package/dist/src/utils/RingBuffer.js +5 -5
- package/dist/src/utils/TokenBudgetManager.js +1 -1
- package/dist/src/utils/UnifiedCacheManager.d.ts +1 -1
- package/dist/src/utils/UnifiedCacheManager.js +3 -3
- package/dist/src/utils/artifactRetention.js +2 -2
- package/dist/src/utils/betterSqlite3.d.ts +11 -0
- package/dist/src/utils/betterSqlite3.js +88 -0
- package/dist/src/utils/browserExecutable.js +2 -2
- package/dist/src/utils/cliFastPath.js +17 -6
- package/dist/src/utils/config.js +4 -26
- package/dist/src/utils/environmentDoctor.js +138 -11
- package/dist/src/utils/outputPaths.js +16 -9
- package/dist/src/utils/parallel.js +1 -3
- package/package.json +76 -72
- package/scripts/postinstall.cjs +37 -37
- package/src/native/scripts/linux/enum-windows.sh +12 -12
- package/src/native/scripts/macos/enum-windows.applescript +22 -22
- package/src/native/scripts/windows/enum-windows-by-class.ps1 +51 -51
- package/src/native/scripts/windows/enum-windows.ps1 +44 -44
- package/src/native/scripts/windows/inject-dll.ps1 +21 -21
- package/workflows/.gitkeep +0 -0
- package/dist/src/modules/analyzer/AISummarizer.d.ts +0 -39
- package/dist/src/modules/analyzer/AISummarizer.js +0 -122
- package/dist/src/modules/hook/AIHookGenerator.d.ts +0 -52
- package/dist/src/modules/hook/AIHookGenerator.js +0 -360
- package/dist/src/modules/hook/AIHookGeneratorTemplates.d.ts +0 -9
- package/dist/src/modules/hook/AIHookGeneratorTemplates.js +0 -157
- package/dist/src/server/macros/builtins/deobfuscate-ast-flow.d.ts +0 -2
- package/dist/src/server/macros/builtins/deobfuscate-ast-flow.js +0 -25
- package/dist/src/server/macros/builtins/unpacker-flow.d.ts +0 -2
- package/dist/src/server/macros/builtins/unpacker-flow.js +0 -25
- package/dist/src/services/LLMService.d.ts +0 -37
- package/dist/src/services/LLMService.js +0 -233
- package/dist/src/services/prompts/analysis.d.ts +0 -9
- package/dist/src/services/prompts/analysis.js +0 -158
- package/dist/src/services/prompts/crypto.d.ts +0 -2
- package/dist/src/services/prompts/crypto.js +0 -108
- package/dist/src/services/prompts/deobfuscation.d.ts +0 -6
- package/dist/src/services/prompts/deobfuscation.js +0 -300
- package/dist/src/services/prompts/environment.d.ts +0 -16
- package/dist/src/services/prompts/environment.js +0 -372
- package/dist/src/services/prompts/intelligence.d.ts +0 -4
- package/dist/src/services/prompts/intelligence.js +0 -250
- package/dist/src/services/prompts/taint.d.ts +0 -2
- package/dist/src/services/prompts/taint.js +0 -54
|
@@ -0,0 +1,55 @@
|
|
|
1
|
+
import type { HardwareBreakpointEngine } from '../../../../native/HardwareBreakpoint.js';
|
|
2
|
+
import type { CodeInjector } from '../../../../native/CodeInjector.js';
|
|
3
|
+
export declare class HookHandlers {
|
|
4
|
+
private readonly bpEngine;
|
|
5
|
+
private readonly injector;
|
|
6
|
+
constructor(bpEngine: HardwareBreakpointEngine | null, injector: CodeInjector);
|
|
7
|
+
handleBreakpointSet(args: Record<string, unknown>): Promise<{
|
|
8
|
+
content: {
|
|
9
|
+
type: "text";
|
|
10
|
+
text: string;
|
|
11
|
+
}[];
|
|
12
|
+
}>;
|
|
13
|
+
handleBreakpointRemove(args: Record<string, unknown>): Promise<{
|
|
14
|
+
content: {
|
|
15
|
+
type: "text";
|
|
16
|
+
text: string;
|
|
17
|
+
}[];
|
|
18
|
+
}>;
|
|
19
|
+
handleBreakpointList(_args: Record<string, unknown>): Promise<{
|
|
20
|
+
content: {
|
|
21
|
+
type: "text";
|
|
22
|
+
text: string;
|
|
23
|
+
}[];
|
|
24
|
+
}>;
|
|
25
|
+
handleBreakpointTrace(args: Record<string, unknown>): Promise<{
|
|
26
|
+
content: {
|
|
27
|
+
type: "text";
|
|
28
|
+
text: string;
|
|
29
|
+
}[];
|
|
30
|
+
}>;
|
|
31
|
+
handlePatchBytes(args: Record<string, unknown>): Promise<{
|
|
32
|
+
content: {
|
|
33
|
+
type: "text";
|
|
34
|
+
text: string;
|
|
35
|
+
}[];
|
|
36
|
+
}>;
|
|
37
|
+
handlePatchNop(args: Record<string, unknown>): Promise<{
|
|
38
|
+
content: {
|
|
39
|
+
type: "text";
|
|
40
|
+
text: string;
|
|
41
|
+
}[];
|
|
42
|
+
}>;
|
|
43
|
+
handlePatchUndo(args: Record<string, unknown>): Promise<{
|
|
44
|
+
content: {
|
|
45
|
+
type: "text";
|
|
46
|
+
text: string;
|
|
47
|
+
}[];
|
|
48
|
+
}>;
|
|
49
|
+
handleCodeCaves(args: Record<string, unknown>): Promise<{
|
|
50
|
+
content: {
|
|
51
|
+
type: "text";
|
|
52
|
+
text: string;
|
|
53
|
+
}[];
|
|
54
|
+
}>;
|
|
55
|
+
}
|
|
@@ -0,0 +1,115 @@
|
|
|
1
|
+
function toTextResponse(payload) {
|
|
2
|
+
return {
|
|
3
|
+
content: [{ type: 'text', text: JSON.stringify(payload, null, 2) }],
|
|
4
|
+
};
|
|
5
|
+
}
|
|
6
|
+
function toErrorResponse(tool, error) {
|
|
7
|
+
return toTextResponse({
|
|
8
|
+
success: false,
|
|
9
|
+
tool,
|
|
10
|
+
error: error instanceof Error ? error.message : String(error),
|
|
11
|
+
});
|
|
12
|
+
}
|
|
13
|
+
export class HookHandlers {
|
|
14
|
+
bpEngine;
|
|
15
|
+
injector;
|
|
16
|
+
constructor(bpEngine, injector) {
|
|
17
|
+
this.bpEngine = bpEngine;
|
|
18
|
+
this.injector = injector;
|
|
19
|
+
}
|
|
20
|
+
async handleBreakpointSet(args) {
|
|
21
|
+
try {
|
|
22
|
+
const config = await this.bpEngine.setBreakpoint(args.pid, args.address, args.access, args.size ?? 4);
|
|
23
|
+
return toTextResponse({
|
|
24
|
+
success: true,
|
|
25
|
+
...config,
|
|
26
|
+
hint: `Hardware breakpoint set on DR register. Use memory_breakpoint_trace to collect hits.`,
|
|
27
|
+
});
|
|
28
|
+
}
|
|
29
|
+
catch (error) {
|
|
30
|
+
return toErrorResponse('memory_breakpoint_set', error);
|
|
31
|
+
}
|
|
32
|
+
}
|
|
33
|
+
async handleBreakpointRemove(args) {
|
|
34
|
+
try {
|
|
35
|
+
return toTextResponse({
|
|
36
|
+
success: true,
|
|
37
|
+
removed: await this.bpEngine.removeBreakpoint(args.breakpointId),
|
|
38
|
+
});
|
|
39
|
+
}
|
|
40
|
+
catch (error) {
|
|
41
|
+
return toErrorResponse('memory_breakpoint_remove', error);
|
|
42
|
+
}
|
|
43
|
+
}
|
|
44
|
+
async handleBreakpointList(_args) {
|
|
45
|
+
try {
|
|
46
|
+
const bps = this.bpEngine.listBreakpoints();
|
|
47
|
+
return toTextResponse({ success: true, breakpoints: bps, count: bps.length });
|
|
48
|
+
}
|
|
49
|
+
catch (error) {
|
|
50
|
+
return toErrorResponse('memory_breakpoint_list', error);
|
|
51
|
+
}
|
|
52
|
+
}
|
|
53
|
+
async handleBreakpointTrace(args) {
|
|
54
|
+
try {
|
|
55
|
+
const hits = await this.bpEngine.traceAccess(args.pid, args.address, args.access, args.maxHits, args.timeoutMs);
|
|
56
|
+
return toTextResponse({
|
|
57
|
+
success: true,
|
|
58
|
+
hits,
|
|
59
|
+
hitCount: hits.length,
|
|
60
|
+
hint: hits.length > 0
|
|
61
|
+
? `${hits.length} accesses captured. Check instructionAddress to find the code accessing this address.`
|
|
62
|
+
: 'No hits captured within timeout.',
|
|
63
|
+
});
|
|
64
|
+
}
|
|
65
|
+
catch (error) {
|
|
66
|
+
return toErrorResponse('memory_breakpoint_trace', error);
|
|
67
|
+
}
|
|
68
|
+
}
|
|
69
|
+
async handlePatchBytes(args) {
|
|
70
|
+
try {
|
|
71
|
+
const patch = await this.injector.patchBytes(args.pid, args.address, args.bytes);
|
|
72
|
+
return toTextResponse({
|
|
73
|
+
success: true,
|
|
74
|
+
...patch,
|
|
75
|
+
hint: `Patch applied. Use memory_patch_undo with patchId "${patch.id}" to restore.`,
|
|
76
|
+
});
|
|
77
|
+
}
|
|
78
|
+
catch (error) {
|
|
79
|
+
return toErrorResponse('memory_patch_bytes', error);
|
|
80
|
+
}
|
|
81
|
+
}
|
|
82
|
+
async handlePatchNop(args) {
|
|
83
|
+
try {
|
|
84
|
+
const patch = await this.injector.nopBytes(args.pid, args.address, args.count);
|
|
85
|
+
return toTextResponse({
|
|
86
|
+
success: true,
|
|
87
|
+
...patch,
|
|
88
|
+
hint: `${args.count} bytes NOP'd. Use memory_patch_undo to restore.`,
|
|
89
|
+
});
|
|
90
|
+
}
|
|
91
|
+
catch (error) {
|
|
92
|
+
return toErrorResponse('memory_patch_nop', error);
|
|
93
|
+
}
|
|
94
|
+
}
|
|
95
|
+
async handlePatchUndo(args) {
|
|
96
|
+
try {
|
|
97
|
+
return toTextResponse({
|
|
98
|
+
success: true,
|
|
99
|
+
restored: await this.injector.unpatch(args.patchId),
|
|
100
|
+
});
|
|
101
|
+
}
|
|
102
|
+
catch (error) {
|
|
103
|
+
return toErrorResponse('memory_patch_undo', error);
|
|
104
|
+
}
|
|
105
|
+
}
|
|
106
|
+
async handleCodeCaves(args) {
|
|
107
|
+
try {
|
|
108
|
+
const caves = await this.injector.findCodeCaves(args.pid, args.minSize);
|
|
109
|
+
return toTextResponse({ success: true, caves, count: caves.length });
|
|
110
|
+
}
|
|
111
|
+
catch (error) {
|
|
112
|
+
return toErrorResponse('memory_code_caves', error);
|
|
113
|
+
}
|
|
114
|
+
}
|
|
115
|
+
}
|
|
@@ -0,0 +1,77 @@
|
|
|
1
|
+
import type { HeapAnalyzer } from '../../../../native/HeapAnalyzer.js';
|
|
2
|
+
import type { PEAnalyzer } from '../../../../native/PEAnalyzer.js';
|
|
3
|
+
import type { AntiCheatDetector } from '../../../../native/AntiCheatDetector.js';
|
|
4
|
+
import type { Speedhack } from '../../../../native/Speedhack.js';
|
|
5
|
+
export declare class IntegrityHandlers {
|
|
6
|
+
private readonly speedhackEngine;
|
|
7
|
+
private readonly heapAnalyzer;
|
|
8
|
+
private readonly peAnalyzer;
|
|
9
|
+
private readonly antiCheatDetector;
|
|
10
|
+
constructor(speedhackEngine: Speedhack | null, heapAnalyzer: HeapAnalyzer | null, peAnalyzer: PEAnalyzer | null, antiCheatDetector: AntiCheatDetector | null);
|
|
11
|
+
handleSpeedhackApply(args: Record<string, unknown>): Promise<{
|
|
12
|
+
content: {
|
|
13
|
+
type: "text";
|
|
14
|
+
text: string;
|
|
15
|
+
}[];
|
|
16
|
+
}>;
|
|
17
|
+
handleSpeedhackSet(args: Record<string, unknown>): Promise<{
|
|
18
|
+
content: {
|
|
19
|
+
type: "text";
|
|
20
|
+
text: string;
|
|
21
|
+
}[];
|
|
22
|
+
}>;
|
|
23
|
+
handleHeapEnumerate(args: Record<string, unknown>): Promise<{
|
|
24
|
+
content: {
|
|
25
|
+
type: "text";
|
|
26
|
+
text: string;
|
|
27
|
+
}[];
|
|
28
|
+
}>;
|
|
29
|
+
handleHeapStats(args: Record<string, unknown>): Promise<{
|
|
30
|
+
content: {
|
|
31
|
+
type: "text";
|
|
32
|
+
text: string;
|
|
33
|
+
}[];
|
|
34
|
+
}>;
|
|
35
|
+
handleHeapAnomalies(args: Record<string, unknown>): Promise<{
|
|
36
|
+
content: {
|
|
37
|
+
type: "text";
|
|
38
|
+
text: string;
|
|
39
|
+
}[];
|
|
40
|
+
}>;
|
|
41
|
+
handlePEHeaders(args: Record<string, unknown>): Promise<{
|
|
42
|
+
content: {
|
|
43
|
+
type: "text";
|
|
44
|
+
text: string;
|
|
45
|
+
}[];
|
|
46
|
+
}>;
|
|
47
|
+
handlePEImportsExports(args: Record<string, unknown>): Promise<{
|
|
48
|
+
content: {
|
|
49
|
+
type: "text";
|
|
50
|
+
text: string;
|
|
51
|
+
}[];
|
|
52
|
+
}>;
|
|
53
|
+
handleInlineHookDetect(args: Record<string, unknown>): Promise<{
|
|
54
|
+
content: {
|
|
55
|
+
type: "text";
|
|
56
|
+
text: string;
|
|
57
|
+
}[];
|
|
58
|
+
}>;
|
|
59
|
+
handleAntiCheatDetect(args: Record<string, unknown>): Promise<{
|
|
60
|
+
content: {
|
|
61
|
+
type: "text";
|
|
62
|
+
text: string;
|
|
63
|
+
}[];
|
|
64
|
+
}>;
|
|
65
|
+
handleGuardPages(args: Record<string, unknown>): Promise<{
|
|
66
|
+
content: {
|
|
67
|
+
type: "text";
|
|
68
|
+
text: string;
|
|
69
|
+
}[];
|
|
70
|
+
}>;
|
|
71
|
+
handleIntegrityCheck(args: Record<string, unknown>): Promise<{
|
|
72
|
+
content: {
|
|
73
|
+
type: "text";
|
|
74
|
+
text: string;
|
|
75
|
+
}[];
|
|
76
|
+
}>;
|
|
77
|
+
}
|
|
@@ -0,0 +1,180 @@
|
|
|
1
|
+
function toTextResponse(payload) {
|
|
2
|
+
return {
|
|
3
|
+
content: [{ type: 'text', text: JSON.stringify(payload, null, 2) }],
|
|
4
|
+
};
|
|
5
|
+
}
|
|
6
|
+
function toErrorResponse(tool, error) {
|
|
7
|
+
return toTextResponse({
|
|
8
|
+
success: false,
|
|
9
|
+
tool,
|
|
10
|
+
error: error instanceof Error ? error.message : String(error),
|
|
11
|
+
});
|
|
12
|
+
}
|
|
13
|
+
export class IntegrityHandlers {
|
|
14
|
+
speedhackEngine;
|
|
15
|
+
heapAnalyzer;
|
|
16
|
+
peAnalyzer;
|
|
17
|
+
antiCheatDetector;
|
|
18
|
+
constructor(speedhackEngine, heapAnalyzer, peAnalyzer, antiCheatDetector) {
|
|
19
|
+
this.speedhackEngine = speedhackEngine;
|
|
20
|
+
this.heapAnalyzer = heapAnalyzer;
|
|
21
|
+
this.peAnalyzer = peAnalyzer;
|
|
22
|
+
this.antiCheatDetector = antiCheatDetector;
|
|
23
|
+
}
|
|
24
|
+
async handleSpeedhackApply(args) {
|
|
25
|
+
try {
|
|
26
|
+
const result = await this.speedhackEngine.apply(args.pid, args.speed);
|
|
27
|
+
return toTextResponse({
|
|
28
|
+
...result,
|
|
29
|
+
success: true,
|
|
30
|
+
hint: `Speedhack active (${args.speed}x). Use memory_speedhack_set to adjust.`,
|
|
31
|
+
});
|
|
32
|
+
}
|
|
33
|
+
catch (error) {
|
|
34
|
+
return toErrorResponse('memory_speedhack_apply', error);
|
|
35
|
+
}
|
|
36
|
+
}
|
|
37
|
+
async handleSpeedhackSet(args) {
|
|
38
|
+
try {
|
|
39
|
+
return toTextResponse({
|
|
40
|
+
success: true,
|
|
41
|
+
updated: await this.speedhackEngine.setSpeed(args.pid, args.speed),
|
|
42
|
+
newSpeed: args.speed,
|
|
43
|
+
});
|
|
44
|
+
}
|
|
45
|
+
catch (error) {
|
|
46
|
+
return toErrorResponse('memory_speedhack_set', error);
|
|
47
|
+
}
|
|
48
|
+
}
|
|
49
|
+
async handleHeapEnumerate(args) {
|
|
50
|
+
try {
|
|
51
|
+
const result = await this.heapAnalyzer.enumerateHeaps(args.pid);
|
|
52
|
+
return toTextResponse({
|
|
53
|
+
success: true,
|
|
54
|
+
...result,
|
|
55
|
+
hint: `Enumerated ${result.heaps.length} heaps. Use memory_heap_stats for statistics or memory_heap_anomalies to check for issues.`,
|
|
56
|
+
});
|
|
57
|
+
}
|
|
58
|
+
catch (error) {
|
|
59
|
+
return toErrorResponse('memory_heap_enumerate', error);
|
|
60
|
+
}
|
|
61
|
+
}
|
|
62
|
+
async handleHeapStats(args) {
|
|
63
|
+
try {
|
|
64
|
+
const stats = await this.heapAnalyzer.getStats(args.pid);
|
|
65
|
+
return toTextResponse({ success: true, ...stats });
|
|
66
|
+
}
|
|
67
|
+
catch (error) {
|
|
68
|
+
return toErrorResponse('memory_heap_stats', error);
|
|
69
|
+
}
|
|
70
|
+
}
|
|
71
|
+
async handleHeapAnomalies(args) {
|
|
72
|
+
try {
|
|
73
|
+
const anomalies = await this.heapAnalyzer.detectAnomalies(args.pid);
|
|
74
|
+
return toTextResponse({
|
|
75
|
+
success: true,
|
|
76
|
+
anomalies,
|
|
77
|
+
count: anomalies.length,
|
|
78
|
+
hint: anomalies.length > 0
|
|
79
|
+
? `Found ${anomalies.length} anomalies — inspect types for spray, UAF, or suspicious patterns.`
|
|
80
|
+
: 'No heap anomalies detected.',
|
|
81
|
+
});
|
|
82
|
+
}
|
|
83
|
+
catch (error) {
|
|
84
|
+
return toErrorResponse('memory_heap_anomalies', error);
|
|
85
|
+
}
|
|
86
|
+
}
|
|
87
|
+
async handlePEHeaders(args) {
|
|
88
|
+
try {
|
|
89
|
+
const headers = await this.peAnalyzer.parseHeaders(args.pid, args.moduleBase);
|
|
90
|
+
return toTextResponse({ success: true, ...headers });
|
|
91
|
+
}
|
|
92
|
+
catch (error) {
|
|
93
|
+
return toErrorResponse('memory_pe_headers', error);
|
|
94
|
+
}
|
|
95
|
+
}
|
|
96
|
+
async handlePEImportsExports(args) {
|
|
97
|
+
try {
|
|
98
|
+
const table = args.table || 'both';
|
|
99
|
+
const base = args.moduleBase;
|
|
100
|
+
const pid = args.pid;
|
|
101
|
+
const result = { success: true };
|
|
102
|
+
if (table === 'imports' || table === 'both') {
|
|
103
|
+
result.imports = await this.peAnalyzer.parseImports(pid, base);
|
|
104
|
+
}
|
|
105
|
+
if (table === 'exports' || table === 'both') {
|
|
106
|
+
result.exports = await this.peAnalyzer.parseExports(pid, base);
|
|
107
|
+
}
|
|
108
|
+
return toTextResponse(result);
|
|
109
|
+
}
|
|
110
|
+
catch (error) {
|
|
111
|
+
return toErrorResponse('memory_pe_imports_exports', error);
|
|
112
|
+
}
|
|
113
|
+
}
|
|
114
|
+
async handleInlineHookDetect(args) {
|
|
115
|
+
try {
|
|
116
|
+
const hooks = await this.peAnalyzer.detectInlineHooks(args.pid, args.moduleName);
|
|
117
|
+
return toTextResponse({
|
|
118
|
+
success: true,
|
|
119
|
+
hooks,
|
|
120
|
+
count: hooks.length,
|
|
121
|
+
hint: hooks.length > 0
|
|
122
|
+
? `Detected ${hooks.length} inline hooks — check hookType and jumpTarget for each.`
|
|
123
|
+
: 'No inline hooks detected — exports match disk bytes.',
|
|
124
|
+
});
|
|
125
|
+
}
|
|
126
|
+
catch (error) {
|
|
127
|
+
return toErrorResponse('memory_inline_hook_detect', error);
|
|
128
|
+
}
|
|
129
|
+
}
|
|
130
|
+
async handleAntiCheatDetect(args) {
|
|
131
|
+
try {
|
|
132
|
+
const detections = await this.antiCheatDetector.detect(args.pid);
|
|
133
|
+
return toTextResponse({
|
|
134
|
+
success: true,
|
|
135
|
+
detections,
|
|
136
|
+
count: detections.length,
|
|
137
|
+
hint: detections.length > 0
|
|
138
|
+
? `Found ${detections.length} anti-debug mechanisms. Each includes a bypassSuggestion.`
|
|
139
|
+
: 'No anti-debug mechanisms detected in imports.',
|
|
140
|
+
});
|
|
141
|
+
}
|
|
142
|
+
catch (error) {
|
|
143
|
+
return toErrorResponse('memory_anticheat_detect', error);
|
|
144
|
+
}
|
|
145
|
+
}
|
|
146
|
+
async handleGuardPages(args) {
|
|
147
|
+
try {
|
|
148
|
+
const pages = await this.antiCheatDetector.findGuardPages(args.pid);
|
|
149
|
+
return toTextResponse({
|
|
150
|
+
success: true,
|
|
151
|
+
guardPages: pages,
|
|
152
|
+
count: pages.length,
|
|
153
|
+
hint: pages.length > 0
|
|
154
|
+
? `Found ${pages.length} guard page regions — these may indicate anti-tampering.`
|
|
155
|
+
: 'No guard pages found.',
|
|
156
|
+
});
|
|
157
|
+
}
|
|
158
|
+
catch (error) {
|
|
159
|
+
return toErrorResponse('memory_guard_pages', error);
|
|
160
|
+
}
|
|
161
|
+
}
|
|
162
|
+
async handleIntegrityCheck(args) {
|
|
163
|
+
try {
|
|
164
|
+
const results = await this.antiCheatDetector.checkIntegrity(args.pid, args.moduleName);
|
|
165
|
+
const modified = results.filter((r) => r.isModified);
|
|
166
|
+
return toTextResponse({
|
|
167
|
+
success: true,
|
|
168
|
+
sections: results,
|
|
169
|
+
totalChecked: results.length,
|
|
170
|
+
modifiedCount: modified.length,
|
|
171
|
+
hint: modified.length > 0
|
|
172
|
+
? `${modified.length} section(s) modified — code may have been patched or hooked.`
|
|
173
|
+
: 'All checked sections match disk — no runtime modifications detected.',
|
|
174
|
+
});
|
|
175
|
+
}
|
|
176
|
+
catch (error) {
|
|
177
|
+
return toErrorResponse('memory_integrity_check', error);
|
|
178
|
+
}
|
|
179
|
+
}
|
|
180
|
+
}
|
|
@@ -0,0 +1,29 @@
|
|
|
1
|
+
import type { PointerChainEngine } from '../../../../native/PointerChainEngine.js';
|
|
2
|
+
export declare class PointerChainHandlers {
|
|
3
|
+
private readonly ptrEngine;
|
|
4
|
+
constructor(ptrEngine: PointerChainEngine);
|
|
5
|
+
handlePointerChainScan(args: Record<string, unknown>): Promise<{
|
|
6
|
+
content: {
|
|
7
|
+
type: "text";
|
|
8
|
+
text: string;
|
|
9
|
+
}[];
|
|
10
|
+
}>;
|
|
11
|
+
handlePointerChainValidate(args: Record<string, unknown>): Promise<{
|
|
12
|
+
content: {
|
|
13
|
+
type: "text";
|
|
14
|
+
text: string;
|
|
15
|
+
}[];
|
|
16
|
+
}>;
|
|
17
|
+
handlePointerChainResolve(args: Record<string, unknown>): Promise<{
|
|
18
|
+
content: {
|
|
19
|
+
type: "text";
|
|
20
|
+
text: string;
|
|
21
|
+
}[];
|
|
22
|
+
}>;
|
|
23
|
+
handlePointerChainExport(args: Record<string, unknown>): Promise<{
|
|
24
|
+
content: {
|
|
25
|
+
type: "text";
|
|
26
|
+
text: string;
|
|
27
|
+
}[];
|
|
28
|
+
}>;
|
|
29
|
+
}
|
|
@@ -0,0 +1,82 @@
|
|
|
1
|
+
function toTextResponse(payload) {
|
|
2
|
+
return {
|
|
3
|
+
content: [{ type: 'text', text: JSON.stringify(payload, null, 2) }],
|
|
4
|
+
};
|
|
5
|
+
}
|
|
6
|
+
function toErrorResponse(tool, error) {
|
|
7
|
+
return toTextResponse({
|
|
8
|
+
success: false,
|
|
9
|
+
tool,
|
|
10
|
+
error: error instanceof Error ? error.message : String(error),
|
|
11
|
+
});
|
|
12
|
+
}
|
|
13
|
+
export class PointerChainHandlers {
|
|
14
|
+
ptrEngine;
|
|
15
|
+
constructor(ptrEngine) {
|
|
16
|
+
this.ptrEngine = ptrEngine;
|
|
17
|
+
}
|
|
18
|
+
async handlePointerChainScan(args) {
|
|
19
|
+
try {
|
|
20
|
+
const result = await this.ptrEngine.scan(args.pid, args.targetAddress, {
|
|
21
|
+
maxDepth: args.maxDepth,
|
|
22
|
+
maxOffset: args.maxOffset,
|
|
23
|
+
staticOnly: args.staticOnly,
|
|
24
|
+
modules: args.modules,
|
|
25
|
+
maxResults: args.maxResults,
|
|
26
|
+
});
|
|
27
|
+
return toTextResponse({
|
|
28
|
+
success: true,
|
|
29
|
+
...result,
|
|
30
|
+
hint: result.totalFound > 0
|
|
31
|
+
? `Found ${result.totalFound} pointer chains. Static chains survive process restarts.`
|
|
32
|
+
: 'No pointer chains found. Try increasing maxDepth or maxOffset.',
|
|
33
|
+
});
|
|
34
|
+
}
|
|
35
|
+
catch (error) {
|
|
36
|
+
return toErrorResponse('memory_pointer_chain_scan', error);
|
|
37
|
+
}
|
|
38
|
+
}
|
|
39
|
+
async handlePointerChainValidate(args) {
|
|
40
|
+
try {
|
|
41
|
+
const chains = JSON.parse(args.chains);
|
|
42
|
+
const results = await this.ptrEngine.validateChains(args.pid, chains);
|
|
43
|
+
return toTextResponse({
|
|
44
|
+
success: true,
|
|
45
|
+
results,
|
|
46
|
+
validCount: results.filter((r) => r.isValid).length,
|
|
47
|
+
totalChecked: chains.length,
|
|
48
|
+
});
|
|
49
|
+
}
|
|
50
|
+
catch (error) {
|
|
51
|
+
return toErrorResponse('memory_pointer_chain_validate', error);
|
|
52
|
+
}
|
|
53
|
+
}
|
|
54
|
+
async handlePointerChainResolve(args) {
|
|
55
|
+
try {
|
|
56
|
+
const chain = JSON.parse(args.chain);
|
|
57
|
+
const resolved = await this.ptrEngine.resolveChain(args.pid, chain);
|
|
58
|
+
return toTextResponse({
|
|
59
|
+
success: true,
|
|
60
|
+
chainId: chain.id,
|
|
61
|
+
resolvedAddress: resolved,
|
|
62
|
+
isResolvable: resolved !== null,
|
|
63
|
+
});
|
|
64
|
+
}
|
|
65
|
+
catch (error) {
|
|
66
|
+
return toErrorResponse('memory_pointer_chain_resolve', error);
|
|
67
|
+
}
|
|
68
|
+
}
|
|
69
|
+
async handlePointerChainExport(args) {
|
|
70
|
+
try {
|
|
71
|
+
const chains = JSON.parse(args.chains);
|
|
72
|
+
return toTextResponse({
|
|
73
|
+
success: true,
|
|
74
|
+
exportedData: this.ptrEngine.exportChains(chains),
|
|
75
|
+
chainCount: chains.length,
|
|
76
|
+
});
|
|
77
|
+
}
|
|
78
|
+
catch (error) {
|
|
79
|
+
return toErrorResponse('memory_pointer_chain_export', error);
|
|
80
|
+
}
|
|
81
|
+
}
|
|
82
|
+
}
|
|
@@ -0,0 +1,41 @@
|
|
|
1
|
+
import type { MemoryController } from '../../../../native/MemoryController.js';
|
|
2
|
+
export declare class ReadWriteHandlers {
|
|
3
|
+
private readonly memCtrl;
|
|
4
|
+
constructor(memCtrl: MemoryController);
|
|
5
|
+
handleWriteValue(args: Record<string, unknown>): Promise<{
|
|
6
|
+
content: {
|
|
7
|
+
type: "text";
|
|
8
|
+
text: string;
|
|
9
|
+
}[];
|
|
10
|
+
}>;
|
|
11
|
+
handleFreeze(args: Record<string, unknown>): Promise<{
|
|
12
|
+
content: {
|
|
13
|
+
type: "text";
|
|
14
|
+
text: string;
|
|
15
|
+
}[];
|
|
16
|
+
}>;
|
|
17
|
+
handleUnfreeze(args: Record<string, unknown>): Promise<{
|
|
18
|
+
content: {
|
|
19
|
+
type: "text";
|
|
20
|
+
text: string;
|
|
21
|
+
}[];
|
|
22
|
+
}>;
|
|
23
|
+
handleDump(args: Record<string, unknown>): Promise<{
|
|
24
|
+
content: {
|
|
25
|
+
type: "text";
|
|
26
|
+
text: string;
|
|
27
|
+
}[];
|
|
28
|
+
}>;
|
|
29
|
+
handleWriteUndo(_args: Record<string, unknown>): Promise<{
|
|
30
|
+
content: {
|
|
31
|
+
type: "text";
|
|
32
|
+
text: string;
|
|
33
|
+
}[];
|
|
34
|
+
}>;
|
|
35
|
+
handleWriteRedo(_args: Record<string, unknown>): Promise<{
|
|
36
|
+
content: {
|
|
37
|
+
type: "text";
|
|
38
|
+
text: string;
|
|
39
|
+
}[];
|
|
40
|
+
}>;
|
|
41
|
+
}
|
|
@@ -0,0 +1,78 @@
|
|
|
1
|
+
function toTextResponse(payload) {
|
|
2
|
+
return {
|
|
3
|
+
content: [{ type: 'text', text: JSON.stringify(payload, null, 2) }],
|
|
4
|
+
};
|
|
5
|
+
}
|
|
6
|
+
function toErrorResponse(tool, error) {
|
|
7
|
+
return toTextResponse({
|
|
8
|
+
success: false,
|
|
9
|
+
tool,
|
|
10
|
+
error: error instanceof Error ? error.message : String(error),
|
|
11
|
+
});
|
|
12
|
+
}
|
|
13
|
+
export class ReadWriteHandlers {
|
|
14
|
+
memCtrl;
|
|
15
|
+
constructor(memCtrl) {
|
|
16
|
+
this.memCtrl = memCtrl;
|
|
17
|
+
}
|
|
18
|
+
async handleWriteValue(args) {
|
|
19
|
+
try {
|
|
20
|
+
const entry = await this.memCtrl.writeValue(args.pid, args.address, args.value, args.valueType);
|
|
21
|
+
return toTextResponse({ success: true, ...entry, hint: 'Use memory_write_undo to revert.' });
|
|
22
|
+
}
|
|
23
|
+
catch (error) {
|
|
24
|
+
return toErrorResponse('memory_write_value', error);
|
|
25
|
+
}
|
|
26
|
+
}
|
|
27
|
+
async handleFreeze(args) {
|
|
28
|
+
try {
|
|
29
|
+
const entry = await this.memCtrl.freeze(args.pid, args.address, args.value, args.valueType, args.intervalMs);
|
|
30
|
+
return toTextResponse({
|
|
31
|
+
success: true,
|
|
32
|
+
...entry,
|
|
33
|
+
hint: `Frozen. Use memory_unfreeze with freezeId "${entry.id}" to stop.`,
|
|
34
|
+
});
|
|
35
|
+
}
|
|
36
|
+
catch (error) {
|
|
37
|
+
return toErrorResponse('memory_freeze', error);
|
|
38
|
+
}
|
|
39
|
+
}
|
|
40
|
+
async handleUnfreeze(args) {
|
|
41
|
+
try {
|
|
42
|
+
return toTextResponse({
|
|
43
|
+
success: true,
|
|
44
|
+
unfrozen: await this.memCtrl.unfreeze(args.freezeId),
|
|
45
|
+
});
|
|
46
|
+
}
|
|
47
|
+
catch (error) {
|
|
48
|
+
return toErrorResponse('memory_unfreeze', error);
|
|
49
|
+
}
|
|
50
|
+
}
|
|
51
|
+
async handleDump(args) {
|
|
52
|
+
try {
|
|
53
|
+
const hexDump = await this.memCtrl.dumpMemoryHex(args.pid, args.address, args.size ?? 256);
|
|
54
|
+
return toTextResponse({ success: true, dump: hexDump });
|
|
55
|
+
}
|
|
56
|
+
catch (error) {
|
|
57
|
+
return toErrorResponse('memory_dump', error);
|
|
58
|
+
}
|
|
59
|
+
}
|
|
60
|
+
async handleWriteUndo(_args) {
|
|
61
|
+
try {
|
|
62
|
+
const entry = await this.memCtrl.undo();
|
|
63
|
+
return toTextResponse({ success: true, undone: entry !== null, entry });
|
|
64
|
+
}
|
|
65
|
+
catch (error) {
|
|
66
|
+
return toErrorResponse('memory_write_undo', error);
|
|
67
|
+
}
|
|
68
|
+
}
|
|
69
|
+
async handleWriteRedo(_args) {
|
|
70
|
+
try {
|
|
71
|
+
const entry = await this.memCtrl.redo();
|
|
72
|
+
return toTextResponse({ success: true, redone: entry !== null, entry });
|
|
73
|
+
}
|
|
74
|
+
catch (error) {
|
|
75
|
+
return toErrorResponse('memory_write_redo', error);
|
|
76
|
+
}
|
|
77
|
+
}
|
|
78
|
+
}
|
|
@@ -0,0 +1,35 @@
|
|
|
1
|
+
import type { MemoryScanner } from '../../../../native/MemoryScanner.js';
|
|
2
|
+
export declare class ScanHandlers {
|
|
3
|
+
private readonly scanner;
|
|
4
|
+
constructor(scanner: MemoryScanner);
|
|
5
|
+
handleFirstScan(args: Record<string, unknown>): Promise<{
|
|
6
|
+
content: {
|
|
7
|
+
type: "text";
|
|
8
|
+
text: string;
|
|
9
|
+
}[];
|
|
10
|
+
}>;
|
|
11
|
+
handleNextScan(args: Record<string, unknown>): Promise<{
|
|
12
|
+
content: {
|
|
13
|
+
type: "text";
|
|
14
|
+
text: string;
|
|
15
|
+
}[];
|
|
16
|
+
}>;
|
|
17
|
+
handleUnknownScan(args: Record<string, unknown>): Promise<{
|
|
18
|
+
content: {
|
|
19
|
+
type: "text";
|
|
20
|
+
text: string;
|
|
21
|
+
}[];
|
|
22
|
+
}>;
|
|
23
|
+
handlePointerScan(args: Record<string, unknown>): Promise<{
|
|
24
|
+
content: {
|
|
25
|
+
type: "text";
|
|
26
|
+
text: string;
|
|
27
|
+
}[];
|
|
28
|
+
}>;
|
|
29
|
+
handleGroupScan(args: Record<string, unknown>): Promise<{
|
|
30
|
+
content: {
|
|
31
|
+
type: "text";
|
|
32
|
+
text: string;
|
|
33
|
+
}[];
|
|
34
|
+
}>;
|
|
35
|
+
}
|