
Research
/Security News
11 Malicious NuGet Tools Pose as Game Cheats to Drop a Windows Host-Surveillance Payload
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.
@ducatuscore/p2p
Advanced tools
The peer-to-peer networking protocol for BTC.
ducatuscore-p2p adds Bitcoin protocol support for Ducatuscore.
npm install @ducatuscore/p2p
In order to connect to the Bitcoin network, you'll need to know the IP address of at least one node of the network, or use Pool to discover peers using a DNS seed.
var Peer = require('@ducatuscore/p2p').Peer;
var peer = new Peer({ host: '127.0.0.1' });
peer.on('ready', function() {
// peer info
console.log(peer.version, peer.subversion, peer.bestHeight);
});
peer.on('disconnect', function() {
console.log('connection closed');
});
peer.connect();
Then, you can get information from other peers by using:
// handle events
peer.on('inv', function(message) {
// message.inventory[]
});
peer.on('tx', function(message) {
// message.transaction
});
Take a look at this guide on the usage of the Peer class.
FAQs
Interface to the bitcoin P2P network for ducatuscore
The npm package @ducatuscore/p2p receives a total of 3 weekly downloads. As such, @ducatuscore/p2p popularity was classified as not popular.
We found that @ducatuscore/p2p demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
/Security News
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.

Research
/Security News
4 compromised asyncapi packages deliver miasma botnet loader on macOS, Linux and Windows.

Research
/Security News
A compromised jscrambler npm release added a malicious preinstall hook that runs hidden native binaries on Linux, macOS, and Windows.