npm - deepspider - Versions diffs - 0.1.0 - Mend

deepspider 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (261) hide show

package/.claude/agents/check.md +122 -0
package/.claude/agents/debug.md +106 -0
package/.claude/agents/dispatch.md +214 -0
package/.claude/agents/implement.md +96 -0
package/.claude/agents/plan.md +396 -0
package/.claude/agents/research.md +120 -0
package/.claude/commands/evolve/merge.md +80 -0
package/.claude/commands/trellis/before-backend-dev.md +13 -0
package/.claude/commands/trellis/before-frontend-dev.md +13 -0
package/.claude/commands/trellis/break-loop.md +107 -0
package/.claude/commands/trellis/check-backend.md +13 -0
package/.claude/commands/trellis/check-cross-layer.md +153 -0
package/.claude/commands/trellis/check-frontend.md +13 -0
package/.claude/commands/trellis/create-command.md +154 -0
package/.claude/commands/trellis/finish-work.md +129 -0
package/.claude/commands/trellis/integrate-skill.md +219 -0
package/.claude/commands/trellis/onboard.md +358 -0
package/.claude/commands/trellis/parallel.md +193 -0
package/.claude/commands/trellis/record-session.md +62 -0
package/.claude/commands/trellis/start.md +280 -0
package/.claude/commands/trellis/update-spec.md +213 -0
package/.claude/hooks/inject-subagent-context.py +758 -0
package/.claude/hooks/ralph-loop.py +374 -0
package/.claude/hooks/session-start.py +126 -0
package/.claude/settings.json +41 -0
package/.claude/skills/deepagents-guide/SKILL.md +428 -0
package/.cursor/commands/trellis-before-backend-dev.md +13 -0
package/.cursor/commands/trellis-before-frontend-dev.md +13 -0
package/.cursor/commands/trellis-break-loop.md +107 -0
package/.cursor/commands/trellis-check-backend.md +13 -0
package/.cursor/commands/trellis-check-cross-layer.md +153 -0
package/.cursor/commands/trellis-check-frontend.md +13 -0
package/.cursor/commands/trellis-create-command.md +154 -0
package/.cursor/commands/trellis-finish-work.md +129 -0
package/.cursor/commands/trellis-integrate-skill.md +219 -0
package/.cursor/commands/trellis-onboard.md +358 -0
package/.cursor/commands/trellis-record-session.md +62 -0
package/.cursor/commands/trellis-start.md +156 -0
package/.cursor/commands/trellis-update-spec.md +213 -0
package/.env.example +11 -0
package/.husky/pre-commit +1 -0
package/.mcp.json +8 -0
package/.trellis/.template-hashes.json +65 -0
package/.trellis/.version +1 -0
package/.trellis/scripts/add-session.sh +384 -0
package/.trellis/scripts/common/developer.sh +129 -0
package/.trellis/scripts/common/git-context.sh +263 -0
package/.trellis/scripts/common/paths.sh +208 -0
package/.trellis/scripts/common/phase.sh +150 -0
package/.trellis/scripts/common/registry.sh +247 -0
package/.trellis/scripts/common/task-queue.sh +142 -0
package/.trellis/scripts/common/task-utils.sh +151 -0
package/.trellis/scripts/common/worktree.sh +128 -0
package/.trellis/scripts/create-bootstrap.sh +299 -0
package/.trellis/scripts/get-context.sh +7 -0
package/.trellis/scripts/get-developer.sh +15 -0
package/.trellis/scripts/init-developer.sh +34 -0
package/.trellis/scripts/multi-agent/cleanup.sh +396 -0
package/.trellis/scripts/multi-agent/create-pr.sh +241 -0
package/.trellis/scripts/multi-agent/plan.sh +207 -0
package/.trellis/scripts/multi-agent/start.sh +310 -0
package/.trellis/scripts/multi-agent/status.sh +828 -0
package/.trellis/scripts/task.sh +1118 -0
package/.trellis/spec/backend/deepagents-guide.md +337 -0
package/.trellis/spec/backend/directory-structure.md +126 -0
package/.trellis/spec/backend/examples/skills/deepagents-guide/README.md +11 -0
package/.trellis/spec/backend/examples/skills/deepagents-guide/agent.js.template +20 -0
package/.trellis/spec/backend/examples/skills/deepagents-guide/skills-config.js.template +13 -0
package/.trellis/spec/backend/examples/skills/deepagents-guide/subagent.js.template +19 -0
package/.trellis/spec/backend/hook-guidelines.md +178 -0
package/.trellis/spec/backend/index.md +36 -0
package/.trellis/spec/backend/quality-guidelines.md +201 -0
package/.trellis/spec/backend/state-management.md +76 -0
package/.trellis/spec/backend/tool-guidelines.md +144 -0
package/.trellis/spec/backend/type-safety.md +71 -0
package/.trellis/spec/guides/code-reuse-thinking-guide.md +92 -0
package/.trellis/spec/guides/cross-layer-thinking-guide.md +94 -0
package/.trellis/spec/guides/index.md +79 -0
package/.trellis/tasks/archive/02-02-evolving-skills/prd.md +61 -0
package/.trellis/tasks/archive/02-02-evolving-skills/task.json +29 -0
package/.trellis/tasks/archive/2026-02/00-bootstrap-guidelines/prd.md +86 -0
package/.trellis/tasks/archive/2026-02/00-bootstrap-guidelines/task.json +27 -0
package/.trellis/tasks/archive/2026-02/02-02-skills-system/check.jsonl +3 -0
package/.trellis/tasks/archive/2026-02/02-02-skills-system/debug.jsonl +2 -0
package/.trellis/tasks/archive/2026-02/02-02-skills-system/implement.jsonl +5 -0
package/.trellis/tasks/archive/2026-02/02-02-skills-system/prd.md +33 -0
package/.trellis/tasks/archive/2026-02/02-02-skills-system/task.json +41 -0
package/.trellis/workflow.md +407 -0
package/.trellis/workspace/index.md +123 -0
package/.trellis/workspace/pony/index.md +40 -0
package/.trellis/workspace/pony/journal-1.md +7 -0
package/.trellis/worktree.yaml +47 -0
package/AGENTS.md +18 -0
package/CLAUDE.md +292 -0
package/README.md +134 -0
package/agents/deepspider.md +142 -0
package/docs/DEBUG.md +42 -0
package/docs/GUIDE.md +334 -0
package/docs/PROMPT.md +60 -0
package/docs/USAGE.md +226 -0
package/eslint.config.js +51 -0
package/package.json +78 -0
package/requirements-crypto.txt +14 -0
package/src/agent/index.js +97 -0
package/src/agent/logger.js +164 -0
package/src/agent/middleware/filterTools.js +64 -0
package/src/agent/middleware/report.js +79 -0
package/src/agent/prompts/system.js +315 -0
package/src/agent/run.js +575 -0
package/src/agent/skills/anti-detect/SKILL.md +28 -0
package/src/agent/skills/anti-detect/evolved.md +12 -0
package/src/agent/skills/captcha/SKILL.md +37 -0
package/src/agent/skills/captcha/evolved.md +12 -0
package/src/agent/skills/config.js +30 -0
package/src/agent/skills/crawler/SKILL.md +9 -0
package/src/agent/skills/crawler/evolved.md +16 -0
package/src/agent/skills/dynamic-analysis/SKILL.md +91 -0
package/src/agent/skills/dynamic-analysis/evolved.md +12 -0
package/src/agent/skills/env/SKILL.md +72 -0
package/src/agent/skills/env/evolved.md +12 -0
package/src/agent/skills/evolve.js +79 -0
package/src/agent/skills/general/SKILL.md +12 -0
package/src/agent/skills/general/evolved.md +12 -0
package/src/agent/skills/js2python/SKILL.md +30 -0
package/src/agent/skills/js2python/evolved.md +13 -0
package/src/agent/skills/report/SKILL.md +21 -0
package/src/agent/skills/report/evolved.md +12 -0
package/src/agent/skills/sandbox/SKILL.md +22 -0
package/src/agent/skills/sandbox/evolved.md +16 -0
package/src/agent/skills/static-analysis/SKILL.md +93 -0
package/src/agent/skills/static-analysis/evolved.md +12 -0
package/src/agent/skills/xpath/SKILL.md +119 -0
package/src/agent/subagents/anti-detect.js +45 -0
package/src/agent/subagents/captcha.js +51 -0
package/src/agent/subagents/crawler.js +138 -0
package/src/agent/subagents/dynamic.js +64 -0
package/src/agent/subagents/env-agent.js +82 -0
package/src/agent/subagents/index.js +37 -0
package/src/agent/subagents/js2python.js +72 -0
package/src/agent/subagents/sandbox.js +55 -0
package/src/agent/subagents/static.js +66 -0
package/src/agent/tools/analysis.js +135 -0
package/src/agent/tools/analyzer.js +85 -0
package/src/agent/tools/anti-detect.js +89 -0
package/src/agent/tools/antidebug.js +64 -0
package/src/agent/tools/async.js +43 -0
package/src/agent/tools/browser.js +324 -0
package/src/agent/tools/captcha.js +223 -0
package/src/agent/tools/capture.js +179 -0
package/src/agent/tools/correlate.js +303 -0
package/src/agent/tools/crawler.js +116 -0
package/src/agent/tools/cryptohook.js +80 -0
package/src/agent/tools/debug.js +246 -0
package/src/agent/tools/deobfuscator.js +90 -0
package/src/agent/tools/env.js +83 -0
package/src/agent/tools/envdump.js +92 -0
package/src/agent/tools/evolve.js +164 -0
package/src/agent/tools/extract.js +114 -0
package/src/agent/tools/extractor.js +54 -0
package/src/agent/tools/file.js +224 -0
package/src/agent/tools/hook.js +84 -0
package/src/agent/tools/hookManager.js +178 -0
package/src/agent/tools/index.js +137 -0
package/src/agent/tools/nodejs.js +101 -0
package/src/agent/tools/patch.js +46 -0
package/src/agent/tools/preprocess.js +71 -0
package/src/agent/tools/profile.js +122 -0
package/src/agent/tools/python.js +627 -0
package/src/agent/tools/report.js +124 -0
package/src/agent/tools/runtime.js +132 -0
package/src/agent/tools/sandbox.js +79 -0
package/src/agent/tools/store.js +73 -0
package/src/agent/tools/trace.js +74 -0
package/src/agent/tools/tracing.js +201 -0
package/src/agent/tools/utils.js +51 -0
package/src/agent/tools/verify.js +184 -0
package/src/agent/tools/webcrack.js +109 -0
package/src/analyzer/ASTAnalyzer.js +387 -0
package/src/analyzer/CallStackAnalyzer.js +379 -0
package/src/analyzer/Deobfuscator.js +289 -0
package/src/analyzer/EncryptionAnalyzer.js +99 -0
package/src/analyzer/index.js +22 -0
package/src/browser/EnvBridge.js +186 -0
package/src/browser/cdp.js +168 -0
package/src/browser/client.js +197 -0
package/src/browser/collector.js +444 -0
package/src/browser/collectors/RequestCryptoLinker.js +109 -0
package/src/browser/collectors/ResponseSearcher.js +107 -0
package/src/browser/collectors/ScriptCollector.js +158 -0
package/src/browser/collectors/index.js +26 -0
package/src/browser/defaultHooks.js +932 -0
package/src/browser/hooks/crypto.js +55 -0
package/src/browser/hooks/index.js +64 -0
package/src/browser/hooks/native.js +9 -0
package/src/browser/hooks/network.js +33 -0
package/src/browser/index.js +42 -0
package/src/browser/interceptors/NetworkInterceptor.js +116 -0
package/src/browser/interceptors/ScriptInterceptor.js +76 -0
package/src/browser/interceptors/index.js +6 -0
package/src/browser/ui/analysisPanel.js +1782 -0
package/src/browser/ui/confirmDialog.js +158 -0
package/src/browser/ui/panel.html +152 -0
package/src/browser/ui/selector.js +170 -0
package/src/config/index.js +5 -0
package/src/config/paths.js +71 -0
package/src/config/patterns/crypto.js +36 -0
package/src/config/profiles/chrome.json +71 -0
package/src/config/profiles/firefox.json +44 -0
package/src/config/profiles/safari.json +38 -0
package/src/core/EnvMonitor.js +200 -0
package/src/core/PatchGenerator.js +278 -0
package/src/core/Sandbox.js +181 -0
package/src/env/AntiAntiDebug.js +111 -0
package/src/env/AsyncHook.js +68 -0
package/src/env/BrowserAPIList.js +265 -0
package/src/env/CookieHook.js +48 -0
package/src/env/CryptoHook.js +205 -0
package/src/env/EnvCodeGenerator.js +157 -0
package/src/env/EnvDumper.js +356 -0
package/src/env/EnvExtractor.js +220 -0
package/src/env/HookBase.js +618 -0
package/src/env/NetworkHook.js +159 -0
package/src/env/modules/bom/history.js +29 -0
package/src/env/modules/bom/location.js +26 -0
package/src/env/modules/bom/navigator.js +70 -0
package/src/env/modules/bom/screen.js +26 -0
package/src/env/modules/bom/storage.js +23 -0
package/src/env/modules/dom/document.js +110 -0
package/src/env/modules/dom/event.js +51 -0
package/src/env/modules/index.js +34 -0
package/src/env/modules/webapi/fetch.js +46 -0
package/src/env/modules/webapi/url.js +47 -0
package/src/env/modules/webapi/xhr.js +48 -0
package/src/index.js +27 -0
package/src/mcp/server.js +89 -0
package/src/store/DataStore.js +708 -0
package/src/store/Store.js +158 -0
package/src/store/Validator.js +24 -0
package/test/analyze.test.js +90 -0
package/test/envdump.test.js +74 -0
package/test/flow.test.js +90 -0
package/test/hooks.test.js +138 -0
package/test/plugin.test.js +35 -0
package/test/refactor-full.test.js +30 -0
package/test/refactor.test.js +21 -0
package/test/samples/obfuscated.js +61 -0
package/test/samples/original.js +66 -0
package/test/samples/v10_eval_chain.js +52 -0
package/test/samples/v11_bytecode_vm.js +81 -0
package/test/samples/v12_polymorphic.js +69 -0
package/test/samples/v1_ob_basic.js +98 -0
package/test/samples/v2_ob_advanced.js +99 -0
package/test/samples/v3_jjencode.js +77 -0
package/test/samples/v4_aaencode.js +73 -0
package/test/samples/v5_control_flow.js +86 -0
package/test/samples/v6_string_encryption.js +71 -0
package/test/samples/v7_jsvmp.js +83 -0
package/test/samples/v8_anti_debug.js +79 -0
package/test/samples/v9_proxy_trap.js +49 -0
package/test/samples.test.js +96 -0
package/test/webcrack.test.js +55 -0

package/src/core/Sandbox.js ADDED Viewed

@@ -0,0 +1,181 @@
+/**
+ * DeepSpider - 沙箱管理器
+ * 基于 isolated-vm 的安全执行环境
+ */
+import ivm from 'isolated-vm';
+import { EnvMonitor } from './EnvMonitor.js';
+export class Sandbox {
+  constructor() {
+    this.isolate = null;
+    this.context = null;
+    this.missingEnv = [];
+    this.monitor = new EnvMonitor();
+    this.envLoaded = false;
+  }
+  async init(options = {}) {
+    const { memoryLimit = 128 } = options;
+    this.isolate = new ivm.Isolate({ memoryLimit });
+    this.context = await this.isolate.createContext();
+    const jail = this.context.global;
+    await jail.set('global', jail.derefInto());
+    await this._injectBase(jail);
+    await this._injectMonitor(jail);
+    return this;
+  }
+  // 加载环境代码
+  async loadEnv(envCode) {
+    if (!envCode) return;
+    await this.context.eval(envCode);
+    this.envLoaded = true;
+  }
+  async _injectBase(jail) {
+    // console
+    await jail.set('console', {
+      log: new ivm.Callback((...args) => console.log('[DeepSpider:sandbox]', ...args)),
+      error: new ivm.Callback((...args) => console.error('[DeepSpider:sandbox]', ...args)),
+      warn: new ivm.Callback((...args) => console.warn('[DeepSpider:sandbox]', ...args))
+    }, { copy: true });
+    // Base64
+    await jail.set('atob', new ivm.Callback((s) =>
+      Buffer.from(s, 'base64').toString('binary')
+    ));
+    await jail.set('btoa', new ivm.Callback((s) =>
+      Buffer.from(s, 'binary').toString('base64')
+    ));
+    // Timers (stub)
+    await jail.set('setTimeout', new ivm.Callback(() => 0));
+    await jail.set('setInterval', new ivm.Callback(() => 0));
+    await jail.set('clearTimeout', new ivm.Callback(() => {}));
+    await jail.set('clearInterval', new ivm.Callback(() => {}));
+  }
+  async _injectMonitor(jail) {
+    const self = this;
+    await jail.set('__recordMissing__', new ivm.Callback((path) => {
+      if (!self.missingEnv.includes(path)) {
+        self.missingEnv.push(path);
+      }
+    }));
+    const monitorCode = `
+      const window = global;
+      global.window = window;
+      global.self = window;
+      global.__createProxy__ = function(obj, path) {
+        return new Proxy(obj, {
+          get(t, p) {
+            if (typeof p === 'symbol') return t[p];
+            const fullPath = path ? path + '.' + p : String(p);
+            if (t[p] === undefined && !(p in t)) {
+              __recordMissing__(fullPath);
+            }
+            return t[p];
+          }
+        });
+      };
+    `;
+    await this.context.eval(monitorCode);
+  }
+  async inject(code) {
+    try {
+      await this.context.eval(code);
+      // 返回更多信息帮助 Agent 判断下一步
+      return {
+        success: true,
+        message: '代码已注入沙箱，请使用 sandbox_execute 验证执行',
+        codeLength: code.length,
+        hint: '建议调用 sandbox_execute 测试注入的函数是否可用'
+      };
+    } catch (e) {
+      return {
+        success: false,
+        error: e.message,
+        hint: '注入失败，请检查代码语法'
+      };
+    }
+  }
+  async execute(code, options = {}) {
+    const { timeout = 5000 } = options;
+    this.missingEnv = [];
+    try {
+      const script = await this.isolate.compileScript(code);
+      const result = await script.run(this.context, { timeout });
+      // 记录到监控系统
+      this.missingEnv.forEach(p => this.monitor.logMissing(p));
+      return {
+        success: true,
+        result: this._serialize(result),
+        missingEnv: [...this.missingEnv],
+        stats: this.monitor.getStats()
+      };
+    } catch (e) {
+      return {
+        success: false,
+        error: e.message,
+        errorType: this._classifyError(e),
+        missingEnv: [...this.missingEnv],
+        stats: this.monitor.getStats()
+      };
+    }
+  }
+  // 错误分类（帮助判断是环境缺失还是代码错误）
+  _classifyError(e) {
+    const msg = e.message || '';
+    if (/is not defined/.test(msg)) return 'undefined-reference';
+    if (/is not a function/.test(msg)) return 'not-a-function';
+    if (/Cannot read propert/.test(msg)) return 'null-access';
+    if (/timeout/.test(msg)) return 'timeout';
+    return 'runtime-error';
+  }
+  _serialize(val) {
+    if (val === undefined) return 'undefined';
+    if (val === null) return 'null';
+    if (typeof val === 'function') return `[Function]`;
+    if (typeof val === 'object') {
+      try { return JSON.stringify(val); }
+      catch { return '[Object]'; }
+    }
+    return String(val);
+  }
+  async reset() {
+    await this.dispose();
+    this.monitor.clearLogs();
+    this.envLoaded = false;
+    await this.init();
+  }
+  async dispose() {
+    if (this.context) {
+      this.context.release();
+      this.context = null;
+    }
+    if (this.isolate) {
+      this.isolate.dispose();
+      this.isolate = null;
+    }
+  }
+}
+export default Sandbox;

package/src/env/AntiAntiDebug.js ADDED Viewed

@@ -0,0 +1,111 @@
+/**
+ * DeepSpider - 反反调试模块
+ * 绕过常见的反调试检测
+ */
+import { HookBase } from './HookBase.js';
+export class AntiAntiDebug {
+  /**
+   * 绕过无限 debugger
+   */
+  generateAntiDebuggerCode() {
+    return HookBase.getBaseCode() + `
+(function() {
+  const deepspider = window.__deepspider__;
+  if (!deepspider) return;
+  const origCtor = Function.prototype.constructor;
+  Function.prototype.constructor = deepspider.native(function(...args) {
+    if (args[0] && args[0].includes('debugger')) {
+      deepspider.log('debug', { action: 'block.debugger.constructor' });
+      return function() {};
+    }
+    return origCtor.apply(this, args);
+  }, origCtor);
+  const origEval = eval;
+  eval = deepspider.native(function(code) {
+    if (typeof code === 'string' && code.includes('debugger')) {
+      deepspider.log('debug', { action: 'block.debugger.eval' });
+      code = code.replace(/debugger/g, '');
+    }
+    return origEval(code);
+  }, origEval);
+  const origSetInterval = setInterval;
+  setInterval = deepspider.native(function(fn, delay) {
+    if (fn.toString().includes('debugger')) {
+      deepspider.log('debug', { action: 'block.debugger.setInterval' });
+      return 0;
+    }
+    return origSetInterval(fn, delay);
+  }, origSetInterval);
+  console.log('[DeepSpider:debug] 无限 debugger 防护已启用');
+})();
+`;
+  }
+  /**
+   * 绕过控制台检测
+   */
+  generateAntiConsoleDetectCode() {
+    return HookBase.getBaseCode() + `
+(function() {
+  const deepspider = window.__deepspider__;
+  if (!deepspider) return;
+  Object.defineProperty(window, 'outerWidth', { get: () => window.innerWidth });
+  Object.defineProperty(window, 'outerHeight', { get: () => window.innerHeight + 100 });
+  const origLog = console.log;
+  console.log = deepspider.native(function(...args) {
+    if (args[0]?.toString?.().includes('devtools')) {
+      deepspider.log('debug', { action: 'block.console.devtools' });
+      return;
+    }
+    return origLog.apply(console, args);
+  }, origLog);
+  console.table = function() {};
+  console.clear = function() {};
+  console.log('[DeepSpider:debug] 控制台检测防护已启用');
+})();
+`;
+  }
+  /**
+   * 绕过 CDP 检测
+   */
+  generateAntiCDPDetectCode() {
+    return HookBase.getBaseCode() + `
+(function() {
+  delete window.cdc_adoQpoasnfa76pfcZLmcfl_Array;
+  delete window.cdc_adoQpoasnfa76pfcZLmcfl_Promise;
+  delete window.cdc_adoQpoasnfa76pfcZLmcfl_Symbol;
+  Object.defineProperty(navigator, 'webdriver', {
+    get: () => false,
+    configurable: true
+  });
+  console.log('[DeepSpider:debug] CDP 检测防护已启用');
+})();
+`;
+  }
+  /**
+   * 生成完整的反反调试代码
+   */
+  generateFullAntiDebugCode() {
+    return [
+      this.generateAntiDebuggerCode(),
+      this.generateAntiConsoleDetectCode(),
+      this.generateAntiCDPDetectCode(),
+    ].join('\n');
+  }
+}
+export default AntiAntiDebug;

package/src/env/AsyncHook.js ADDED Viewed

@@ -0,0 +1,68 @@
+/**
+ * DeepSpider - 异步追踪 Hook
+ * 追踪 Promise、setTimeout 等异步调用
+ */
+import { HookBase } from './HookBase.js';
+export class AsyncHook {
+  /**
+   * 生成 Promise Hook 代码
+   */
+  generatePromiseHookCode() {
+    return HookBase.getBaseCode() + `
+(function() {
+  const deepspider = window.__deepspider__;
+  if (!deepspider) return;
+  const originalThen = Promise.prototype.then;
+  Promise.prototype.then = deepspider.native(function(onFulfilled, onRejected) {
+    const stack = new Error().stack;
+    const wrappedFulfilled = onFulfilled ? function(value) {
+      deepspider.log('async', { action: 'promise.then', stack });
+      return onFulfilled(value);
+    } : onFulfilled;
+    return originalThen.call(this, wrappedFulfilled, onRejected);
+  }, originalThen);
+  console.log('[DeepSpider:async] Promise Hook 已启用');
+})();
+`;
+  }
+  /**
+   * 生成 setTimeout/setInterval Hook 代码
+   */
+  generateTimerHookCode() {
+    return HookBase.getBaseCode() + `
+(function() {
+  const deepspider = window.__deepspider__;
+  if (!deepspider) return;
+  const origSetTimeout = setTimeout;
+  const origSetInterval = setInterval;
+  setTimeout = deepspider.native(function(fn, delay) {
+    deepspider.log('timer', { action: 'setTimeout', delay });
+    return origSetTimeout(function() {
+      deepspider.log('timer', { action: 'setTimeout.callback', delay });
+      if (typeof fn === 'function') fn.apply(this, arguments);
+    }, delay);
+  }, origSetTimeout);
+  setInterval = deepspider.native(function(fn, delay) {
+    deepspider.log('timer', { action: 'setInterval', delay });
+    return origSetInterval(function() {
+      if (typeof fn === 'function') fn.apply(this, arguments);
+    }, delay);
+  }, origSetInterval);
+  console.log('[DeepSpider:timer] Timer Hook 已启用');
+})();
+`;
+  }
+}
+export default AsyncHook;

package/src/env/BrowserAPIList.js ADDED Viewed

@@ -0,0 +1,265 @@
+/**
+ * DeepSpider - 浏览器 API 列表
+ * 借鉴 v_jstools 的 v_getsetfunc_list.js
+ * 用于批量 Hook 和环境代码生成
+ */
+// Getter/Setter 属性列表 [类名, 属性名]
+export const GETSET_LIST = [
+  // Navigator
+  ['Navigator', 'userAgent'],
+  ['Navigator', 'platform'],
+  ['Navigator', 'language'],
+  ['Navigator', 'languages'],
+  ['Navigator', 'cookieEnabled'],
+  ['Navigator', 'onLine'],
+  ['Navigator', 'hardwareConcurrency'],
+  ['Navigator', 'deviceMemory'],
+  ['Navigator', 'maxTouchPoints'],
+  ['Navigator', 'webdriver'],
+  ['Navigator', 'vendor'],
+  ['Navigator', 'appVersion'],
+  ['Navigator', 'appName'],
+  ['Navigator', 'product'],
+  ['Navigator', 'productSub'],
+  // Screen
+  ['Screen', 'width'],
+  ['Screen', 'height'],
+  ['Screen', 'availWidth'],
+  ['Screen', 'availHeight'],
+  ['Screen', 'colorDepth'],
+  ['Screen', 'pixelDepth'],
+  // Document
+  ['Document', 'cookie'],
+  ['Document', 'domain'],
+  ['Document', 'referrer'],
+  ['Document', 'title'],
+  ['Document', 'URL'],
+  ['Document', 'documentElement'],
+  ['Document', 'body'],
+  ['Document', 'head'],
+  ['Document', 'hidden'],
+  ['Document', 'visibilityState'],
+  // Location
+  ['Location', 'href'],
+  ['Location', 'protocol'],
+  ['Location', 'host'],
+  ['Location', 'hostname'],
+  ['Location', 'port'],
+  ['Location', 'pathname'],
+  ['Location', 'search'],
+  ['Location', 'hash'],
+  ['Location', 'origin'],
+  // Window
+  ['Window', 'innerWidth'],
+  ['Window', 'innerHeight'],
+  ['Window', 'outerWidth'],
+  ['Window', 'outerHeight'],
+  ['Window', 'screenX'],
+  ['Window', 'screenY'],
+  ['Window', 'devicePixelRatio'],
+  ['Window', 'localStorage'],
+  ['Window', 'sessionStorage'],
+  ['Window', 'name'],
+  // HTMLElement
+  ['HTMLElement', 'offsetWidth'],
+  ['HTMLElement', 'offsetHeight'],
+  ['HTMLElement', 'clientWidth'],
+  ['HTMLElement', 'clientHeight'],
+  ['HTMLElement', 'scrollWidth'],
+  ['HTMLElement', 'scrollHeight'],
+  ['HTMLElement', 'innerHTML'],
+  ['HTMLElement', 'innerText'],
+  ['HTMLElement', 'textContent'],
+  // Canvas
+  ['HTMLCanvasElement', 'width'],
+  ['HTMLCanvasElement', 'height'],
+  ['CanvasRenderingContext2D', 'fillStyle'],
+  ['CanvasRenderingContext2D', 'strokeStyle'],
+  ['CanvasRenderingContext2D', 'font'],
+  // WebGL
+  ['WebGLRenderingContext', 'drawingBufferWidth'],
+  ['WebGLRenderingContext', 'drawingBufferHeight'],
+];
+// 方法列表 [类名, 方法名]
+export const FUNC_LIST = [
+  // Document
+  ['Document', 'getElementById'],
+  ['Document', 'getElementsByClassName'],
+  ['Document', 'getElementsByTagName'],
+  ['Document', 'getElementsByName'],
+  ['Document', 'querySelector'],
+  ['Document', 'querySelectorAll'],
+  ['Document', 'createElement'],
+  ['Document', 'createTextNode'],
+  ['Document', 'createEvent'],
+  ['Document', 'write'],
+  ['Document', 'writeln'],
+  // Element
+  ['Element', 'querySelector'],
+  ['Element', 'querySelectorAll'],
+  ['Element', 'getAttribute'],
+  ['Element', 'setAttribute'],
+  ['Element', 'removeAttribute'],
+  ['Element', 'hasAttribute'],
+  ['Element', 'getBoundingClientRect'],
+  ['Element', 'getClientRects'],
+  // Canvas
+  ['HTMLCanvasElement', 'getContext'],
+  ['HTMLCanvasElement', 'toDataURL'],
+  ['HTMLCanvasElement', 'toBlob'],
+  ['CanvasRenderingContext2D', 'fillRect'],
+  ['CanvasRenderingContext2D', 'fillText'],
+  ['CanvasRenderingContext2D', 'strokeText'],
+  ['CanvasRenderingContext2D', 'measureText'],
+  ['CanvasRenderingContext2D', 'getImageData'],
+  ['CanvasRenderingContext2D', 'putImageData'],
+  ['CanvasRenderingContext2D', 'drawImage'],
+  // WebGL
+  ['WebGLRenderingContext', 'getParameter'],
+  ['WebGLRenderingContext', 'getExtension'],
+  ['WebGLRenderingContext', 'getSupportedExtensions'],
+  ['WebGLRenderingContext', 'getShaderPrecisionFormat'],
+  ['WebGL2RenderingContext', 'getParameter'],
+  // Navigator
+  ['Navigator', 'getBattery'],
+  ['Navigator', 'getGamepads'],
+  ['Navigator', 'sendBeacon'],
+  ['Navigator', 'vibrate'],
+  // Window
+  ['Window', 'getComputedStyle'],
+  ['Window', 'matchMedia'],
+  ['Window', 'requestAnimationFrame'],
+  ['Window', 'cancelAnimationFrame'],
+  ['Window', 'fetch'],
+  ['Window', 'open'],
+  ['Window', 'close'],
+  ['Window', 'postMessage'],
+  // Storage
+  ['Storage', 'getItem'],
+  ['Storage', 'setItem'],
+  ['Storage', 'removeItem'],
+  ['Storage', 'clear'],
+  ['Storage', 'key'],
+  // Performance
+  ['Performance', 'now'],
+  ['Performance', 'getEntries'],
+  ['Performance', 'getEntriesByType'],
+  ['Performance', 'getEntriesByName'],
+  // Crypto
+  ['Crypto', 'getRandomValues'],
+  ['SubtleCrypto', 'encrypt'],
+  ['SubtleCrypto', 'decrypt'],
+  ['SubtleCrypto', 'sign'],
+  ['SubtleCrypto', 'verify'],
+  ['SubtleCrypto', 'digest'],
+  // Event
+  ['EventTarget', 'addEventListener'],
+  ['EventTarget', 'removeEventListener'],
+  ['EventTarget', 'dispatchEvent'],
+];
+// HTML 标签到类的映射
+export const HTML_TAG_MAP = {
+  HTMLElement: ['abbr', 'address', 'article', 'aside', 'b', 'bdi', 'bdo', 'cite', 'code', 'dd', 'dfn', 'dt', 'em', 'figcaption', 'figure', 'footer', 'header', 'hgroup', 'i', 'kbd', 'main', 'mark', 'nav', 'noscript', 'rp', 'rt', 'ruby', 's', 'samp', 'section', 'small', 'strong', 'sub', 'summary', 'sup', 'u', 'var', 'wbr'],
+  HTMLAnchorElement: ['a'],
+  HTMLAreaElement: ['area'],
+  HTMLAudioElement: ['audio'],
+  HTMLBRElement: ['br'],
+  HTMLBaseElement: ['base'],
+  HTMLBodyElement: ['body'],
+  HTMLButtonElement: ['button'],
+  HTMLCanvasElement: ['canvas'],
+  HTMLDListElement: ['dl'],
+  HTMLDataElement: ['data'],
+  HTMLDataListElement: ['datalist'],
+  HTMLDetailsElement: ['details'],
+  HTMLDialogElement: ['dialog'],
+  HTMLDivElement: ['div'],
+  HTMLEmbedElement: ['embed'],
+  HTMLFieldSetElement: ['fieldset'],
+  HTMLFormElement: ['form'],
+  HTMLFrameSetElement: ['frameset'],
+  HTMLHRElement: ['hr'],
+  HTMLHeadElement: ['head'],
+  HTMLHeadingElement: ['h1', 'h2', 'h3', 'h4', 'h5', 'h6'],
+  HTMLHtmlElement: ['html'],
+  HTMLIFrameElement: ['iframe'],
+  HTMLImageElement: ['img'],
+  HTMLInputElement: ['input'],
+  HTMLLIElement: ['li'],
+  HTMLLabelElement: ['label'],
+  HTMLLegendElement: ['legend'],
+  HTMLLinkElement: ['link'],
+  HTMLMapElement: ['map'],
+  HTMLMetaElement: ['meta'],
+  HTMLMeterElement: ['meter'],
+  HTMLOListElement: ['ol'],
+  HTMLObjectElement: ['object'],
+  HTMLOptGroupElement: ['optgroup'],
+  HTMLOptionElement: ['option'],
+  HTMLOutputElement: ['output'],
+  HTMLParagraphElement: ['p'],
+  HTMLPictureElement: ['picture'],
+  HTMLPreElement: ['pre'],
+  HTMLProgressElement: ['progress'],
+  HTMLQuoteElement: ['blockquote', 'q'],
+  HTMLScriptElement: ['script'],
+  HTMLSelectElement: ['select'],
+  HTMLSlotElement: ['slot'],
+  HTMLSourceElement: ['source'],
+  HTMLSpanElement: ['span'],
+  HTMLStyleElement: ['style'],
+  HTMLTableCaptionElement: ['caption'],
+  HTMLTableCellElement: ['td', 'th'],
+  HTMLTableColElement: ['col', 'colgroup'],
+  HTMLTableElement: ['table'],
+  HTMLTableRowElement: ['tr'],
+  HTMLTableSectionElement: ['thead', 'tbody', 'tfoot'],
+  HTMLTemplateElement: ['template'],
+  HTMLTextAreaElement: ['textarea'],
+  HTMLTimeElement: ['time'],
+  HTMLTitleElement: ['title'],
+  HTMLTrackElement: ['track'],
+  HTMLUListElement: ['ul'],
+  HTMLVideoElement: ['video'],
+};
+// 获取类的原型链
+export function getPrototypeChain(className) {
+  const chains = {
+    'HTMLDivElement': ['HTMLDivElement', 'HTMLElement', 'Element', 'Node', 'EventTarget'],
+    'HTMLCanvasElement': ['HTMLCanvasElement', 'HTMLElement', 'Element', 'Node', 'EventTarget'],
+    'HTMLInputElement': ['HTMLInputElement', 'HTMLElement', 'Element', 'Node', 'EventTarget'],
+    'Document': ['Document', 'Node', 'EventTarget'],
+    'Window': ['Window', 'EventTarget'],
+    'Navigator': ['Navigator'],
+    'Screen': ['Screen'],
+    'Location': ['Location'],
+  };
+  return chains[className] || [className];
+}
+export default {
+  GETSET_LIST,
+  FUNC_LIST,
+  HTML_TAG_MAP,
+  getPrototypeChain,
+};

package/src/env/CookieHook.js ADDED Viewed

@@ -0,0 +1,48 @@
+/**
+ * DeepSpider - Cookie 监控模块
+ * 监控 document.cookie 的读写操作
+ */
+import { HookBase } from './HookBase.js';
+export class CookieHook {
+  /**
+   * 生成 Cookie Hook 代码
+   */
+  generateCookieHookCode(options = {}) {
+    const { trackRead = true, trackWrite = true } = options;
+    return HookBase.getBaseCode() + `
+(function() {
+  const deepspider = window.__deepspider__;
+  if (!deepspider) return;
+  const cookieDesc = Object.getOwnPropertyDescriptor(Document.prototype, 'cookie') ||
+                     Object.getOwnPropertyDescriptor(HTMLDocument.prototype, 'cookie');
+  if (cookieDesc) {
+    Object.defineProperty(document, 'cookie', {
+      ${trackRead ? `
+      get: function() {
+        const value = cookieDesc.get.call(document);
+        deepspider.log('cookie', { action: 'read', value: value?.slice(0, 100) });
+        return value;
+      },
+      ` : 'get: cookieDesc.get,'}
+      ${trackWrite ? `
+      set: function(val) {
+        deepspider.log('cookie', { action: 'write', value: val });
+        return cookieDesc.set.call(document, val);
+      },
+      ` : 'set: cookieDesc.set,'}
+      configurable: true
+    });
+  }
+  console.log('[DeepSpider:cookie] Cookie Hook 已启用');
+})();
+`;
+  }
+}
+export default CookieHook;