cyberchef 10.23.0 → 10.24.0

package/CHANGELOG.md

@@ -13,6 +13,30 @@ All major and minor version changes will be documented in this file. Details of
 
 ## Details
 
+### [10.24.0] - 2026-04-27
+- Update CONTRIBUTING.md [@GCHQDeveloper581] | [#2333]
+- Fix, and link, Fernet tests [@GCHQDeveloper581] | [#2335]
+- [#927] added parity bit operation [@j83305] | [#1036]
+- Feature md link blanks [@BjoernAkAManf] [@GCHQDeveloper581] | [#660]
+- Accessibility - Add support for screenreaders in operations search [@mattnotmitt] | [#1862]
+- Added metadata extraction for UUID strings. [@ko80240] | [#2322]
+- chore (deps): bump the patch-updates group with 6 updates  | [#2330]
+- chore (deps): bump @codemirror/search from 6.6.0 to 6.7.0  | [#2331]
+- (Feature) Improve CI [@GCHQDeveloper581] | [#2328]
+- Update dependabot.yml [@GCHQDeveloper581] | [#2326]
+- chore (deps): bump lodash, grunt-legacy-log and grunt-legacy-util  | [#2327]
+- chore (deps): bump the patch-updates group with 6 updates [@GCHQDeveloper581] | [#2323]
+- chore (deps): bump autoprefixer from 10.4.27 to 10.5.0  | [#2324]
+- chore (deps): bump dompurify from 3.3.3 to 3.4.0  | [#2321]
+- chore (deps): bump follow-redirects from 1.15.11 to 1.16.0  | [#2320]
+- Regular Expression operation email address regex: Support IPv4 domains [@C85297] [@GCHQDeveloper581] | [#2167]
+- Rewriting fixCryptoApiImports and fixSnackbarMarkup to js to make it OS agnostic [@BigYellowHammer] | [#2298]
+- chore (deps): bump basic-ftp from 5.2.1 to 5.2.2  | [#2317]
+- chore (deps): bump axios from 1.13.6 to 1.15.0  | [#2316]
+- chore (deps): bump webpack from 5.105.4 to 5.106.0  | [#2315]
+- chore (deps): bump basic-ftp from 5.2.0 to 5.2.1  | [#2313]
+- Update vulnerable dependencies [@GCHQDeveloper581] | [#2311]
+
 ### [10.23.0] - 2026-04-06
 - Properly escape HTML entities in sampleDelim to avoid XSS issue [@GCHQDeveloper581] | [#2307]
 - chore (deps): bump lodash from 4.17.23 to 4.18.1  | [#2304]
@@ -596,6 +620,7 @@ All major and minor version changes will be documented in this file. Details of
 ## [4.0.0] - 2016-11-28
 -  Initial open source commit [@n1474335] | [b1d73a72](https://github.com/gchq/CyberChef/commit/b1d73a725dc7ab9fb7eb789296efd2b7e4b08306)
 
+[10.24.0]: https://github.com/gchq/CyberChef/releases/tag/v10.24.0
 [10.23.0]: https://github.com/gchq/CyberChef/releases/tag/v10.23.0
 [10.22.0]: https://github.com/gchq/CyberChef/releases/tag/v10.22.0
 [10.21.0]: https://github.com/gchq/CyberChef/releases/tag/v10.21.0
@@ -872,6 +897,10 @@ All major and minor version changes will be documented in this file. Details of
 [@aby-jo]: https://github.com/aby-jo
 [@atsiv1]: https://github.com/atsiv1
 [@fjh1997]: https://github.com/fjh1997
+[@j83305]: https://github.com/j83305
+[@BjoernAkAManf]: https://github.com/BjoernAkAManf
+[@ko80240]: https://github.com/ko80240
+[@BigYellowHammer]: https://github.com/BigYellowHammer
 
 
 [8ad18b]: https://github.com/gchq/CyberChef/commit/8ad18bc7db6d9ff184ba3518686293a7685bf7b7
@@ -1141,4 +1170,26 @@ All major and minor version changes will be documented in this file. Details of
 [#2194]: https://github.com/gchq/CyberChef/pull/2194
 [#2193]: https://github.com/gchq/CyberChef/pull/2193
 [#2192]: https://github.com/gchq/CyberChef/pull/2192
+[#2333]: https://github.com/gchq/CyberChef/pull/2333
+[#2335]: https://github.com/gchq/CyberChef/pull/2335
+[#1036]: https://github.com/gchq/CyberChef/pull/1036
+[#660]: https://github.com/gchq/CyberChef/pull/660
+[#1862]: https://github.com/gchq/CyberChef/pull/1862
+[#2322]: https://github.com/gchq/CyberChef/pull/2322
+[#2330]: https://github.com/gchq/CyberChef/pull/2330
+[#2331]: https://github.com/gchq/CyberChef/pull/2331
+[#2328]: https://github.com/gchq/CyberChef/pull/2328
+[#2326]: https://github.com/gchq/CyberChef/pull/2326
+[#2327]: https://github.com/gchq/CyberChef/pull/2327
+[#2323]: https://github.com/gchq/CyberChef/pull/2323
+[#2324]: https://github.com/gchq/CyberChef/pull/2324
+[#2321]: https://github.com/gchq/CyberChef/pull/2321
+[#2320]: https://github.com/gchq/CyberChef/pull/2320
+[#2167]: https://github.com/gchq/CyberChef/pull/2167
+[#2298]: https://github.com/gchq/CyberChef/pull/2298
+[#2317]: https://github.com/gchq/CyberChef/pull/2317
+[#2316]: https://github.com/gchq/CyberChef/pull/2316
+[#2315]: https://github.com/gchq/CyberChef/pull/2315
+[#2313]: https://github.com/gchq/CyberChef/pull/2313
+[#2311]: https://github.com/gchq/CyberChef/pull/2311
 

package/CONTRIBUTING.md

@@ -6,10 +6,13 @@ There are lots of opportunities to contribute to CyberChef. If you want ideas, t
 
 Before your contributions can be accepted, you must:
 
- - Sign the [GCHQ Contributor Licence Agreement](https://cla-assistant.io/gchq/CyberChef)
+ - Fork the CyberChef repo
+ - Create a new branch within your fork for the changes
  - Push your changes to your fork.
+ - Sign the [GCHQ Contributor Licence Agreement](https://cla-assistant.io/gchq/CyberChef)
  - Submit a pull request.
 
+Please note that we will ***reject*** pull requests from the master branch of your fork owing to the mess it makes of our own working repositories and the extra work entailed.
 
 ## Coding conventions
 

package/Gruntfile.js

@@ -411,25 +411,11 @@ module.exports = function (grunt) {
                 stdout: false,
             },
             fixCryptoApiImports: {
-                command: function () {
-                    switch (process.platform) {
-                        case "darwin":
-                            return `find ./node_modules/crypto-api/src/ \\( -type d -name .git -prune \\) -o -type f -print0 | xargs -0 sed -i '' -e '/\\.mjs/!s/\\(from "\\.[^"]*\\)";/\\1.mjs";/g'`;
-                        default:
-                            return `find ./node_modules/crypto-api/src/ \\( -type d -name .git -prune \\) -o -type f -print0 | xargs -0 sed -i -e '/\\.mjs/!s/\\(from "\\.[^"]*\\)";/\\1.mjs";/g'`;
-                    }
-                },
+                command: `node ${nodeFlags} src/core/config/scripts/fixCryptoApiImports.mjs`,
                 stdout: false
             },
             fixSnackbarMarkup: {
-                command: function () {
-                    switch (process.platform) {
-                        case "darwin":
-                            return `sed -i '' 's/<div id=snackbar-container\\/>/<div id=snackbar-container>/g' ./node_modules/snackbarjs/src/snackbar.js`;
-                        default:
-                            return `sed -i 's/<div id=snackbar-container\\/>/<div id=snackbar-container>/g' ./node_modules/snackbarjs/src/snackbar.js`;
-                    }
-                },
+                command: `node ${nodeFlags} src/core/config/scripts/fixSnackBarMarkup.mjs`,
                 stdout: false
             },
         },

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "cyberchef",
-  "version": "10.23.0",
+  "version": "10.24.0",
   "description": "The Cyber Swiss Army Knife for encryption, encoding, compression and data analysis.",
   "author": "n1474335 <n1474335@gmail.com>",
   "homepage": "https://gchq.github.io/CyberChef",
@@ -46,10 +46,10 @@
     "@babel/runtime": "^7.29.2",
     "@codemirror/commands": "^6.10.3",
     "@codemirror/language": "^6.12.3",
-    "@codemirror/search": "^6.6.0",
+    "@codemirror/search": "^6.7.0",
     "@codemirror/state": "^6.5.4",
-    "@codemirror/view": "^6.41.0",
-    "autoprefixer": "^10.4.27",
+    "@codemirror/view": "^6.41.1",
+    "autoprefixer": "^10.5.0",
     "babel-loader": "^10.1.1",
     "base64-loader": "^1.0.0",
     "chromedriver": "^146.0.6",
@@ -63,7 +63,7 @@
     "eslint": "^9.39.4",
     "eslint-plugin-jsdoc": "^50.8.0",
     "globals": "^15.15.0",
-    "grunt": "^1.6.1",
+    "grunt": "^1.6.2",
     "grunt-chmod": "~1.1.1",
     "grunt-concurrent": "^3.0.0",
     "grunt-contrib-clean": "~2.0.1",
@@ -74,19 +74,19 @@
     "grunt-exec": "~3.0.0",
     "grunt-webpack": "^6.0.0",
     "grunt-zip": "^1.0.0",
-    "html-webpack-plugin": "^5.6.6",
+    "html-webpack-plugin": "^5.6.7",
     "imports-loader": "^5.0.0",
     "mini-css-extract-plugin": "2.10.2",
     "modify-source-webpack-plugin": "^4.1.0",
     "nightwatch": "^3.15.0",
-    "postcss": "^8.5.8",
+    "postcss": "^8.5.10",
     "postcss-css-variables": "^0.19.0",
     "postcss-import": "^16.1.1",
     "postcss-loader": "^8.2.1",
     "prompt": "^1.3.0",
     "sitemap": "^8.0.3",
-    "terser": "^5.46.1",
-    "webpack": "^5.105.4",
+    "terser": "^5.46.2",
+    "webpack": "^5.106.2",
     "webpack-bundle-analyzer": "^4.10.2",
     "webpack-dev-server": "5.0.4",
     "webpack-node-externals": "^3.0.0",
@@ -97,7 +97,7 @@
     "@astronautlabs/amf": "^0.0.6",
     "@blu3r4y/lzma": "^2.3.3",
     "@wavesenterprise/crypto-gost-js": "^2.1.0-RC1",
-    "@xmldom/xmldom": "^0.8.12",
+    "@xmldom/xmldom": "^0.8.13",
     "argon2-browser": "^1.18.0",
     "arrive": "^2.5.3",
     "assert": "^2.1.0",
@@ -121,7 +121,7 @@
     "d3": "7.9.0",
     "d3-hexbin": "^0.2.2",
     "diff": "^5.2.2",
-    "dompurify": "^3.3.3",
+    "dompurify": "^3.4.1",
     "es6-promisify": "^7.0.0",
     "escodegen": "^2.1.0",
     "esprima": "^4.0.1",
@@ -135,7 +135,7 @@
     "hash-wasm": "^4.12.0",
     "highlight.js": "^11.11.1",
     "ieee754": "^1.2.1",
-    "jimp": "^1.6.0",
+    "jimp": "1.6.0",
     "jq-web": "^0.5.1",
     "jquery": "3.7.1",
     "js-sha3": "^0.9.3",
@@ -145,7 +145,7 @@
     "jsonpath-plus": "^10.4.0",
     "jsonwebtoken": "9.0.3",
     "jsqr": "^1.4.0",
-    "jsrsasign": "^11.1.1",
+    "jsrsasign": "^11.1.3",
     "kbpgp": "^2.1.17",
     "libbzip2-wasm": "0.0.4",
     "libyara-wasm": "^1.2.1",
@@ -168,7 +168,7 @@
     "path": "^0.12.7",
     "popper.js": "^1.16.1",
     "process": "^0.11.10",
-    "protobufjs": "^7.5.4",
+    "protobufjs": "^7.5.5",
     "qr-image": "^3.2.0",
     "reflect-metadata": "^0.2.2",
     "rison": "^0.1.1",

package/src/core/config/Categories.json

@@ -465,7 +465,8 @@
             "Luhn Checksum",
             "CRC Checksum",
             "TCP/IP Checksum",
-            "XOR Checksum"
+            "XOR Checksum",
+            "Parity Bit"
         ]
     },
     {

package/src/core/config/OperationConfig.json

@@ -702,13 +702,19 @@
     },
     "Analyse UUID": {
         "module": "Crypto",
-        "description": "Tries to determine information about a given UUID and suggests which version may have been used to generate it",
+        "description": "Operation for extracting metadata and detecting the version of a given UUID.",
         "infoURL": "https://wikipedia.org/wiki/Universally_unique_identifier",
         "inputType": "string",
         "outputType": "string",
         "flowControl": false,
         "manualBake": false,
-        "args": []
+        "args": [
+            {
+                "name": "Include Metadata",
+                "type": "boolean",
+                "value": true
+            }
+        ]
     },
     "Argon2": {
         "module": "Crypto",
@@ -13218,6 +13224,46 @@
             }
         ]
     },
+    "Parity Bit": {
+        "module": "Default",
+        "description": "A parity bit, or check bit, is the simplest form of error detection. It is a bit which is added to a string of bits and represents if the number of 1's in the binary string is an even number or odd number.<br><br>If a delimiter is specified, the parity bit calculation will be performed on each 'block' of the input data, where the blocks are created by slicing the input at each occurence of the delimiter character",
+        "infoURL": "https://wikipedia.org/wiki/Parity_bit",
+        "inputType": "string",
+        "outputType": "string",
+        "flowControl": false,
+        "manualBake": false,
+        "args": [
+            {
+                "name": "Mode",
+                "type": "option",
+                "value": [
+                    "Even Parity",
+                    "Odd Parity"
+                ]
+            },
+            {
+                "name": "Postion",
+                "type": "option",
+                "value": [
+                    "Start",
+                    "End"
+                ]
+            },
+            {
+                "name": "Encode or Decode",
+                "type": "option",
+                "value": [
+                    "Encode",
+                    "Decode"
+                ]
+            },
+            {
+                "name": "Delimiter",
+                "type": "shortString",
+                "value": ""
+            }
+        ]
+    },
     "Parse ASN.1 hex string": {
         "module": "PublicKey",
         "description": "Abstract Syntax Notation One (ASN.1) is a standard and notation that describes rules and structures for representing, encoding, transmitting, and decoding data in telecommunications and computer networking.<br><br>This operation parses arbitrary ASN.1 data (encoded as an hex string: use the 'To Hex' operation if necessary) and presents the resulting tree.",
@@ -15436,7 +15482,7 @@
                     },
                     {
                         "name": "Email address",
-                        "value": "(?:[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9!#$%&'*+/=?^_`{|}~-]+(?:\\.[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9!#$%&'*+/=?^_`{|}~-]+)*|\"(?:[\\x01-\\x08\\x0b\\x0c\\x0e-\\x1f\\x21\\x23-\\x5b\\x5d-\\x7f]|\\[\\x01-\\x09\\x0b\\x0c\\x0e-\\x7f])*\")@(?:(?:[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9](?:[\\u00A0-\\uD7FF\\uE000-\\uFFFF-a-z0-9-]*[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9])?\\.)+[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9](?:[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9-]*[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9])?|\\[(?:(?:(2(5[0-5]|[0-4][0-9])|1[0-9][0-9]|[1-9]?[0-9]))\\.){3}\\])"
+                        "value": "(?:[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9!#$%&'*+/=?^_`{|}~-]+(?:\\.[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9!#$%&'*+/=?^_`{|}~-]+)*|\"(?:[\\x01-\\x08\\x0b\\x0c\\x0e-\\x1f\\x21\\x23-\\x5b\\x5d-\\x7f]|\\\\[\\x01-\\x09\\x0b\\x0c\\x0e-\\x7f])*\")@(?:(?:[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9](?:[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9-]*[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9])?\\.)+[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9](?:[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9-]*[\\u00A0-\\uD7FF\\uE000-\\uFFFFa-z0-9])?|\\[(?:(?:(2(5[0-5]|[0-4][0-9])|1[0-9][0-9]|[1-9]?[0-9]))\\.){3}(?:(2(5[0-5]|[0-4][0-9])|1[0-9][0-9]|[1-9]?[0-9]))\\])"
                     },
                     {
                         "name": "URL",
@@ -15660,6 +15706,11 @@
                 "name": "Enable syntax highlighting",
                 "type": "boolean",
                 "value": true
+            },
+            {
+                "name": "Open links in new tab.",
+                "type": "boolean",
+                "value": false
             }
         ]
     },

package/src/core/config/modules/Default.mjs

@@ -115,6 +115,7 @@ import PHPDeserialize from "../../operations/PHPDeserialize.mjs";
 import PHPSerialize from "../../operations/PHPSerialize.mjs";
 import PLISTViewer from "../../operations/PLISTViewer.mjs";
 import PadLines from "../../operations/PadLines.mjs";
+import ParityBit from "../../operations/ParityBit.mjs";
 import ParseColourCode from "../../operations/ParseColourCode.mjs";
 import ParseDateTime from "../../operations/ParseDateTime.mjs";
 import ParseEthernetFrame from "../../operations/ParseEthernetFrame.mjs";
@@ -324,6 +325,7 @@ OpModules.Default = {
     "PHP Serialize": PHPSerialize,
     "P-list Viewer": PLISTViewer,
     "Pad lines": PadLines,
+    "Parity Bit": ParityBit,
     "Parse colour code": ParseColourCode,
     "Parse DateTime": ParseDateTime,
     "Parse Ethernet frame": ParseEthernetFrame,

package/src/core/config/scripts/fixCryptoApiImports.mjs

@@ -0,0 +1,54 @@
+/**
+ * This script updates crypto-api package
+ * It adds .mjs to local imports where its missing
+ *
+ * before:
+ * import foo from "./bar";
+ * after
+ * import foo from "./bar.mjs";
+ *
+ */
+
+/* eslint no-console: ["off"] */
+
+import { readdirSync, readFileSync, writeFileSync } from "fs";
+import { join } from "path";
+
+// Base directory of crypto-api source
+const baseDir = join(process.cwd(), "node_modules/crypto-api/src");
+
+/**
+ * Recursively walk a directory, updating import statements
+ * to include ".mjs" if missing
+ */
+function walk(dir) {
+    const entries = readdirSync(dir, { withFileTypes: true });
+
+    for (const entry of entries) {
+        if (entry.name === ".git") continue;
+
+        const fullPath = join(dir, entry.name);
+
+        if (entry.isDirectory()) {
+            walk(fullPath);
+        } else if (entry.isFile()) {
+            const content = readFileSync(fullPath, "utf8");
+
+            // Add .mjs to imports if not present
+            const updated = content.replace(
+                /from "(\.[^"]*)";/g,
+                (match, p1) => {
+                    if (p1.endsWith(".mjs")) return match;
+                    return `from "${p1}.mjs";`;
+                }
+            );
+
+            if (updated !== content) {
+                writeFileSync(fullPath, updated, "utf8");
+            }
+        }
+    }
+}
+
+// Run the walker
+walk(baseDir);

package/src/core/config/scripts/fixSnackBarMarkup.mjs

@@ -0,0 +1,28 @@
+/**
+ * This script updates snackbarjs package
+ * Replaces self-closing div with standard opening div
+ *
+ * before:
+ * <div id=snackbar-container/>
+ * after:
+ * <div id=snackbar-container>
+ *
+ */
+
+/* eslint no-console: ["off"] */
+
+import { readFileSync, writeFileSync } from "fs";
+import { join } from "path";
+
+// Base directory of snackbarjs source
+const filePath = join(process.cwd(), "node_modules/snackbarjs/src/snackbar.js");
+
+const content = readFileSync(filePath, "utf8");
+
+// Replace self-closing div with standard opening div
+const updated = content.replace(
+    /<div id=snackbar-container\/>/g,
+    "<div id=snackbar-container>"
+);
+
+writeFileSync(filePath, updated, "utf8");

package/src/core/lib/Extract.mjs

@@ -45,6 +45,11 @@ export function search(input, searchRegex, removeRegex=null, sortBy=null, unique
     return results;
 }
 
+/**
+ * Email regular expression
+ */
+export const EMAIL_REGEX = /(?:[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9!#$%&'*+/=?^_`{|}~-]+(?:\.[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9!#$%&'*+/=?^_`{|}~-]+)*|"(?:[\x01-\x08\x0b\x0c\x0e-\x1f\x21\x23-\x5b\x5d-\x7f]|\\[\x01-\x09\x0b\x0c\x0e-\x7f])*")@(?:(?:[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9](?:[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9-]*[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9])?\.)+[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9](?:[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9-]*[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9])?|\[(?:(?:(2(5[0-5]|[0-4][0-9])|1[0-9][0-9]|[1-9]?[0-9]))\.){3}(?:(2(5[0-5]|[0-4][0-9])|1[0-9][0-9]|[1-9]?[0-9]))\])/ig;
+
 
 /**
  * URL regular expression

package/src/core/lib/ParityBit.mjs

@@ -0,0 +1,50 @@
+/**
+ * Parity Bit functions.
+ *
+ * @author j83305 [awz22@protonmail.com]
+ * @copyright Crown Copyright 2020
+ * @license Apache-2.0
+ *
+ */
+
+import OperationError from "../errors/OperationError.mjs";
+
+/**
+ * Function to take the user input and encode using the given arguments
+ * @param input string of binary
+ * @param args array
+ */
+export function calculateParityBit(input, args) {
+    let count1s = 0;
+    for (let i = 0; i < input.length; i++) {
+        const character = input.charAt(i);
+        if (character === "1") {
+            count1s++;
+        } else if (character !== args[3] && character !== "0" && character !== " ") {
+            throw new OperationError("unexpected character encountered: \"" + character + "\"");
+        }
+    }
+    let parityBit = "1";
+    const flipflop = args[0] === "Even Parity" ? 0 : 1;
+    if (count1s % 2 === flipflop) {
+        parityBit = "0";
+    }
+    if (args[1] === "End") {
+        return input + parityBit;
+    } else {
+        return parityBit + input;
+    }
+}
+
+/**
+ * just removes the parity bit to return the original data
+ * @param input string of binary, encoded
+ * @param args array
+ */
+export function decodeParityBit(input, args) {
+    if (args[1] === "End") {
+        return input.slice(0, -1);
+    } else {
+        return input.slice(1);
+    }
+}

package/src/core/operations/AnalyseUUID.mjs

@@ -1,5 +1,6 @@
 /**
  * @author n1474335 [n1474335@gmail.com]
+ * @author ko80240 [csk.dev@proton.me]
  * @copyright Crown Copyright 2023
  * @license Apache-2.0
  */
@@ -8,6 +9,7 @@ import * as uuid from "uuid";
 
 import Operation from "../Operation.mjs";
 import OperationError from "../errors/OperationError.mjs";
+import { toHex } from "../lib/Hex.mjs";
 
 /**
  * Analyse UUID operation
@@ -22,27 +24,128 @@ class AnalyseUUID extends Operation {
 
         this.name = "Analyse UUID";
         this.module = "Crypto";
-        this.description = "Tries to determine information about a given UUID and suggests which version may have been used to generate it";
+        this.description = "Operation for extracting metadata and detecting the version of a given UUID.";
         this.infoURL = "https://wikipedia.org/wiki/Universally_unique_identifier";
         this.inputType = "string";
         this.outputType = "string";
-        this.args = [];
+        this.args = [
+            {
+                name: "Include Metadata",
+                type: "boolean",
+                value: true
+            }
+        ];
     }
 
     /**
-     * @param {string} input
+     * @param {string} input - Expects a valid UUID string
      * @param {Object[]} args
      * @returns {string}
      */
     run(input, args) {
+        input = input.trim();
+
+        let uuidVersion, uuidBytes;
         try {
-            const uuidVersion = uuid.version(input);
-            return "UUID version: " + uuidVersion;
+            uuidVersion = uuid.version(input); // Re-using the uuid library to extract version
+            uuidBytes = uuid.parse(input);     // Re-using the uuid library to parse bytes
         } catch (error) {
             throw new OperationError("Invalid UUID");
         }
-    }
 
+        const [includeMetadata] = args;
+        const dv = new DataView(uuidBytes.buffer, uuidBytes.byteOffset, uuidBytes.byteLength); // Dataview helps handle the multi-byte ints
+        const uuidInteger = (dv.getBigUint64(0) << 64n) | dv.getBigUint64(8);
+
+        const sections = [`Version:\n${uuidVersion}`];
+
+        if (includeMetadata) {
+            const parser = UUID_PARSERS[uuidVersion];
+            const decoded = parser?.(uuidBytes, dv);
+            sections.push(formatDecoded(decoded));
+        }
+
+        sections.push(`UUID Integer:\n${uuidInteger}`);
+
+        return sections.filter(Boolean).join("\n\n");
+    }
 }
 
 export default AnalyseUUID;
+
+/**
+ * Metadata can be extracted for versions 1, 6, and 7.
+ * Enum-like frozen mapping of UUID version to parser function.
+ */
+const UUID_PARSERS = Object.freeze({
+    1: parsev1v6,
+    6: parsev1v6,
+    7: parsev7,
+});
+
+/**
+ * Versions 1 and 6. Note 6 is a re-order of 1.
+ * Version 1 == layout: timeLow(32) | timeMid(16) | timeHi(12)
+ * Version 6 == layout: timeHi(32)  | timeMid(16) | timeLow(12)
+ */
+function parsev1v6(uuidBytes, dv) {
+    const isV1 = (uuidBytes[6] >> 4) === 1;
+
+    const timeStamp =
+        isV1 ? (
+            (BigInt(dv.getUint16(6) & 0x0fff) << 48n) | // mask off version bits
+            (BigInt(dv.getUint16(4)) << 32n) |
+            BigInt(dv.getUint32(0))
+        ) : (
+            (BigInt(dv.getUint32(0)) << 28n) |
+            (BigInt(dv.getUint16(4)) << 12n) |
+            (BigInt(dv.getUint16(6) & 0x0fff))
+        );
+
+    // Convert to Unix time
+    const milliseconds =
+        Number(
+            (timeStamp - 122192928000000000n) / 10000n
+        );
+
+    return {
+        timestamp: milliseconds,
+        isoTimestamp: new Date(milliseconds).toISOString(),
+        clock: ((uuidBytes[8] & 0x3f) << 8) | uuidBytes[9],
+        node: toHex(uuidBytes.slice(10), ":").toUpperCase()
+    };
+}
+
+/** Version 7 */
+function parsev7(uuidBytes, dv) {
+    const milliseconds = Number((BigInt(dv.getUint32(0)) << 16n) | BigInt(dv.getUint16(4)));
+
+    return {
+        timestamp: milliseconds,
+        isoTimestamp: new Date(milliseconds).toISOString(),
+        randA: ((uuidBytes[6] & 0x0f) << 8) | uuidBytes[7],
+        randB: toHex(uuidBytes.slice(8), "").toUpperCase()
+    };
+}
+
+/**
+ * Formats metadata
+ *
+ * @param {Object|undefined} decoded
+ * @returns {string}
+ */
+function formatDecoded(decoded) {
+    if (!decoded) return "No metadata available. Only versions 1, 6, 7 are supported.";
+
+    return Object.entries({
+        "Timestamp": decoded.timestamp,
+        "Timestamp (ISO)": decoded.isoTimestamp,
+        "Node": decoded.node,
+        "Clock": decoded.clock,
+        "Rand A": decoded.randA,
+        "Rand B": decoded.randB
+    })
+        .filter(([, value]) => value !== undefined)
+        .map(([label, value]) => `${label}:\n${value}`)
+        .join("\n\n");
+}

package/src/core/operations/ExtractEmailAddresses.mjs

@@ -5,7 +5,7 @@
  */
 
 import Operation from "../Operation.mjs";
-import { search } from "../lib/Extract.mjs";
+import { EMAIL_REGEX, search } from "../lib/Extract.mjs";
 import { caseInsensitiveSort } from "../lib/Sort.mjs";
 
 /**
@@ -50,8 +50,7 @@ class ExtractEmailAddresses extends Operation {
      */
     run(input, args) {
         const [displayTotal, sort, unique] = args,
-            // email regex from: https://www.regextester.com/98066
-            regex = /(?:[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9!#$%&'*+/=?^_`{|}~-]+(?:\.[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9!#$%&'*+/=?^_`{|}~-]+)*|"(?:[\x01-\x08\x0b\x0c\x0e-\x1f\x21\x23-\x5b\x5d-\x7f]|\\[\x01-\x09\x0b\x0c\x0e-\x7f])*")@(?:(?:[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9](?:[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9-]*[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9])?\.)+[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9](?:[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9-]*[\u00A0-\uD7FF\uE000-\uFFFFa-z0-9])?|\[(?:(?:(2(5[0-5]|[0-4][0-9])|1[0-9][0-9]|[1-9]?[0-9]))\.){3}(?:(2(5[0-5]|[0-4][0-9])|1[0-9][0-9]|[1-9]?[0-9]))\])/ig;
+            regex = EMAIL_REGEX;
 
         const results = search(
             input,