
Research
/Security News
Malicious npm Packages Target WhatsApp Developers with Remote Kill Switch
Two npm packages masquerading as WhatsApp developer libraries include a kill switch that deletes all files if the phone number isn’t whitelisted.
@nichoth/tree-kill
Advanced tools
Kill all processes in the process tree, including the root process.
A fork of pkrumins/node-tree-kill
npm install @nichoth/tree-kill
Kill all the descendent processes of the process with pid 1
, including the process with pid 1
itself:
var kill = require('tree-kill');
kill(1);
Send a signal other than SIGTERM.:
var kill = require('tree-kill');
kill(1, 'SIGKILL');
Run a callback when done killing the processes. Passes an error argument if there was an error.
var kill = require('tree-kill');
kill(1, 'SIGKILL', function(err) {
// Do things
});
You can also install tree-kill globally and use it as a command:
tree-kill 1 # sends SIGTERM to process 1 and its descendents
tree-kill 1 SIGTERM # same
tree-kill 1 SIGKILL # sends KILL instead of TERMINATE
Sends signal signal
to all children processes of the process with pid pid
, including pid
. Signal defaults to SIGTERM
.
For Linux, this uses ps -o pid --no-headers --ppid PID
to find the parent pids of PID
.
For Darwin/OSX, this uses pgrep -P PID
to find the parent pids of PID
.
For Windows, this uses 'taskkill /pid PID /T /F'
to kill the process tree. Note that on Windows, sending the different kinds of POSIX signals is not possible.
MIT
pid
parameter to fix arbitrary code execution vulnerabilitykill(pid, callback)
works. Before you had to use kill(pid, signal, callback)
tree-kill
CLIFAQs
kill trees of processes
We found that @nichoth/tree-kill demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
/Security News
Two npm packages masquerading as WhatsApp developer libraries include a kill switch that deletes all files if the phone number isn’t whitelisted.
Research
/Security News
Socket uncovered 11 malicious Go packages using obfuscated loaders to fetch and execute second-stage payloads via C2 domains.
Security News
TC39 advances 11 JavaScript proposals, with two moving to Stage 4, bringing better math, binary APIs, and more features one step closer to the ECMAScript spec.