AI Security Review
scanned 3d ago · by lpm-firewall-aiThe package is an obfuscated bulk email/red-team toolkit with webmail browser automation and evasion features. Install-time behavior is limited, but user-invoked CLI commands enable abuse-oriented mass messaging and browser-extension injection.
Decision evidence
public snapshot- package.json exposes CLI main .ad/x0.js and postinstall hook
- scripts/postinstall.js writes a Windows nolimit.cmd shim during install
- .ad/x0.js is heavily obfuscated and implements bulk email/contact commands
- .ad/x0.js includes red-team/evasion features: html_smuggling, header_randomization, dkim_spoofing, adaptive_attack_selection
- .ad/web-command.js creates a Chrome extension under homedir and injects src/web-panel/ws.js into active webmail tabs
- src/web-panel/ws.js automates Gmail/Outlook/Yahoo compose and send actions for loaded targets
- postinstall.js only creates a Windows CLI shim and exits on non-Windows
- No install-time credential harvesting or external exfiltration endpoint confirmed
- Network use is mostly package-aligned SMTP/OAuth/DNS/webmail behavior
- Templates contain placeholder content rather than embedded credential theft pages
Source & flagged code
5 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgSource contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
src/web-panel/ws.jsView on unpkg · L269Source file is highly similar to a previously finalized malicious package; route for source-aware review.
scripts/postinstall.jsView on unpkgSource fingerprint signature matches a known malicious package signature; route for source-aware review.
scripts/postinstall.jsView on unpkg