Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
bufferfromfile
Advanced tools
Module in JavaScript providing convenient means for using files as standard ArrayBuffer making mmap behind the scene.
Module in JavaScript providing convenient means for using files as buffer making mmap behind the scene. BufferFromFile use mmap to map file from hard drive to memory returning ArrayBuffer or TypedBuffer which can be manipulated just like ordinary buffer. mmap() creates a new mapping in the virtual address space of the calling process. During mmap operation all performance issues addressed operation system, so it's nearly fastest way to get data from / store on hard drive with zero copy. Just like native version of the routine BufferFromFile can accept ( protection ), ( flags ), ( offset ), ( size ) and even ( advise ) parameters. BufferFromFIle works on Windows, OsX, Lynux other Unix-like systems. Does not depend of NaN and does not support deprecated versions of Nodejs.
var buffer = BufferFromFile( filePath ).Uint8Array();
// edit single byte
buffer[ 0 ] = 48 + Math.round( Math.random()*9 );
// print the buffer
console.log( 'buffer.length :',buffer.length );
console.log( 'buffer.toString :',buffer.toString() );
// unmap file
BufferFromFile.unmap( buffer );
// mmap file
var filePath = __dirname + '/TestFile.txt';
var buffer = BufferFromFile({ filePath : filePath, protection : BufferFromFile.Protection.read }).Uint8Array();
// attempt to write data would give error
/* buffer[ 0 ] = 48 + Math.round( Math.random()*9 ); */
// read data and status
console.log( 'buffer.toString :',buffer.toString() );
console.log( 'status',BufferFromFile.status( buffer ) );
// unmap file
BufferFromFile.unmap( buffer );
// mmap file
var buffer = BufferFromFile( filePath ).Uint8Array();
// write data
buffer[ 0 ] = 48 + Math.round( Math.random()*9 );
// flush written data to make sure data on will get on hard drive shortly
BufferFromFile.flush( buffer );
// rewrite data
buffer[ 0 ] = 48 + Math.round( Math.random()*9 );
// unmap file
BufferFromFile.unmap( buffer );
FAQs
The module in JavaScript provides convenient means for using files as standard ArrayBuffer making mmap behind the scene.
The npm package bufferfromfile receives a total of 15 weekly downloads. As such, bufferfromfile popularity was classified as not popular.
We found that bufferfromfile demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.