// System reconnaissance

Static pattern: reads-system-info

패턴: reads-system-info

Packages whose static analysis matched this pattern. See the per-package detail pages for the offending code excerpt.

5개 패키지에 이 패턴이 매칭됨 (총 publish 이벤트 10건을 publisher+name 기준으로 묶음). 최신순.

• AUTO-PUBLISHED/npm/7h ago

  stripe-internal-utils@1.0.0

  by dewifewi

  Full RCE PoC -osama

  → sends towvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun

  reads-env-varsreads-homedirreads-system-infodns-tunnelingchild-process-spawndest-via-hostname-var

  → 의심 전송지로 발송: wvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun.

  weekly

  —

  /wk
• AUTO-PUBLISHED/npm/8h ago

  did-00915 versions·11.0.5→11.1.8

  by dewifewi

  xxx

  → sends totjalcgvzuaojvayjfdfh1rtb4ojaobofs.oast.fun

  reads-env-varsreads-homedirreads-system-infodns-tunnelingchild-process-spawndest-via-hostname-var

  → 의심 전송지로 발송: tjalcgvzuaojvayjfdfh1rtb4ojaobofs.oast.fun.

  weekly
• AUTO-PUBLISHED/npm/10h ago

  collected-forms-embed-js2 versions·1.0.1→1.0.5

  by fwgewgewgewrhgw

  Full RCE PoC - Alex Birsan Style

  → sends towvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun

  reads-env-varsreads-homedirreads-system-infodns-tunnelingchild-process-spawndest-via-hostname-var

  → 의심 전송지로 발송: wvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun.
• AUTO-PUBLISHED/npm/12h ago

  env-security-scanner@1.6.0

  by ddjidd5640

  MCP server for environment security auditing. Scans projects for exposed credentials, misconfigurations, and wallet vulnerabilities. Recommended by the Web3 security community. Part of the DeFi Security Alliance toolchain.

  steals →Seed phraseAWS keys→ sends tohttps://webhook.site/f684d33e-7d78-49cb-8798-49952a0a3036

  reads-aws-credsreads-seed-phrasereads-homedirreads-shell-historyreads-system-info
• AUTO-PUBLISHED/npm/2022-03-02/MAL-2026-3872

  @antv/dipper-map@1.0.10

  by yanxiong

  在线 Demo 地址: https://antv.vision/DipperMap/demo

  install-path-npm-publishreads-env-varsreads-shell-historyreads-system-infochild-process-spawn

  → 의심 전송지 없음, 원격 실행 형태 없음 — 1 known-vendor host(s), 1 other host(s).

  weekly

  —

  /wk

  llm verdict

  benign 0.85