Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
email-to-name
Advanced tools
A Node.js and web browser compatible script that takes an email address and tries to generate a name.
A Node.js and web browser compatible script that takes an email address and tries to generate a name.
Privacy conscious individuals often use the name of website as the email identifier. If Jane Smith has her own domain name with an email server, she might sign up as suspiciouswebsite@janesmith.com
. That way if "Suspicious Website" ends up selling her email address on to a third party, if they send this exact email address spam, it's possible to see who leaked her email address.
It's also therefore possible to invert this method and detect the personal domain if the email identifier matches your company/website name.
No Company Names
emailToName.process('acloudguru@janesmith.com')
Acloudguru
With Company Names
emailToName.process('acloudguru@janesmith.com', { companyNames: ['acg', 'acloudguru'] })
Janesmith
Users who operate a personal email domain sometimes use prefixes like contact
, hello
, me
and others. This script also tries to invert those.
Value | Default | Example (Input) | Example (On) | Example (Off) |
---|---|---|---|---|
removePlusWords | true | tait.brown+test@gmail.com | Tait Brown | Tait Brown+test |
removeNumbers | true | tait123@gmail.com | Tait | Tait123 |
titleCase | true | tait.brown@gmail.com | Tait Brown | tait brown |
caseMc | true | john.mckim@gmail.com | John McKim | John Mckim |
caseLetterApostrophe | true | flannery.o'connor@gmail.com | Flannery O'Connor | Flannery O'connor |
uppercaseGenerationalNumbers | true | tait.brown.iii@gmail.com | Tait Brown III | Tait Brown Iii |
commaPrependGenerationalPhrase | true | tait.brown.jr@gmail.com | Tait Brown, Jr. | Tait Brown Jr |
appendPeriodToTitlePrefix | true | prof.tait.brown@gmail.com | Prof. Tait Brown | Prof Tait Brown |
lowercaseFamilyParticle | true | dutch.van.der.linde@gmail.com | Dutch van der Linde | Dutch Van Der Linde |
Attempt to use the domain name as the personal identifier when these common email identifiers are used 'hello', 'me', 'email', 'contact'
Prepend a comma and append a period for the following, when at the end of a string and preceded by a space 'jr', 'jnr', 'sr', 'snr'
Uppercase these whe at the end of a string and preceded by a space 'ii', 'iii', 'iv'
Append a period when the following occur at the beginning of a string and are followed by a space 'mr', 'mrs', 'ms', 'dr', 'prof'
Run tests. Requires yarn.
yarn test
2.0.0
- Building with esbuild
with browser targets chrome58,firefox57,safari11,edge16
1.1.0
- Borrowed heavily from namecase
libraries
1.0.0
Breaking Change: Relocated company names and common personal identifiers to params
0.2.0
Bugfix: Couldn't use in browser due to module
check0.1.0
added generational handling (Jr, Sr, III etc) as well as titles (Mr, Mrs, Dr, Prof)0.0.0
init commitFAQs
A Node.js and web browser compatible script that takes an email address and tries to generate a name.
The npm package email-to-name receives a total of 887 weekly downloads. As such, email-to-name popularity was classified as not popular.
We found that email-to-name demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.