Research
Security News
Malicious npm Packages Use Telegram to Exfiltrate BullX Credentials
Socket uncovers an npm Trojan stealing crypto wallets and BullX credentials via obfuscated code and Telegram exfiltration.
By Kush Pandya - May 08, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
github.com/grafov/streamsurfer
- Version published
- Created
As I moved away from videostreaming development I not more interested in this project. So I leave code as is in unfinished state. I'll continue to maintain m3u8 library as it is used in some other projects.
Stream Surfer
Current state: code broken. Don't use!
Stream Surfer — probe utiliy for HTTP video streaming. The utility detects errors in HTTP Streams (Apple HLS now supported) and monitor health of any HTTP resources. It may be used as regular monitoring tool and stress testing for mediaservers (and any HTTP-servers too).
Features are:
- parse M3U8-playlists (master and single-bitrate playlists)
- detect bad playlists format (empty playlists, incorrect chunk durations)
- check HTTP response statuses
- collects response time statistics
- webreports to represent collected statistics
- integration with Zabbix (http://zabbix.com) monitoring software
Planned features:
- probe more formats beside HLS (planned HDS, DASH, Widevine VOD)
- probe chunks with
mediainfoutility (from ffmpeg) - REST HTTP to represent collected data and utility control
- aggregate and analyze statistics from other streamsurfer nodes
- visualize monitoring information in Web UI
- persistent storage for statistics and reports generation
This software can't be used for HLS playback.
streamsurfer is an furfer development of Python hlsprobe (https://github.com/grafov/hlsprobe).
Install
You need Go language (http://golang.org) environment installed. Then:
go get github.com/grafov/bcast
go get github.com/grafov/m3u8
go get github.com/gorilla/mux
git clone https://github.com/grafov/streamsurfer
cd streamsurfer
sudo make install
The code includes Bootstrap 2 (http://getbootstrap.com) library (under Apache License).
It may be packaged with streamsurfer due GPLv3 license.
To simplify installation Bootstrap code yet included in streamsurfer package.
Later it will be splitted and Bootstrap will be downloaded separately.
Usage
Setup configuration file (copy one of templates from package) and start utility:
streamsurfer --config=config.yml
All stream problems logged to error log (error-log parameter in the config params section).
Web reports available at localhost:8088 (define listener with http-api-listen).
Similar projects
Build status
FAQs
Unknown package
Package last updated on 18 Jul 2015
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
Backdooring the IDE: Malicious npm Packages Hijack Cursor Editor on macOS
Malicious npm packages posing as developer tools target macOS Cursor IDE users, stealing credentials and modifying files to gain persistent backdoor access.
By Kirill Boychenko - May 07, 2025
Security News
AI Slop Is Polluting Bug Bounty Platforms with Fake Vulnerability Reports
AI-generated slop reports are making bug bounty triage harder, wasting maintainer time, and straining trust in vulnerability disclosure programs.
By Sarah Gooding - May 06, 2025