Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
By Olivia Brown - Sep 22, 2025
etsc-net-intelligence-api
Advanced tools
Ethereum Social Network Intelligence API
This is the backend service which runs along with multi-geth and tracks the network status, fetches information through JSON-RPC and connects through WebSockets to stats.ethereumsocial.kr to feed information. For full install instructions please read the wiki.
Prerequisite
- geth(multi-geth) or Parity
- node
- npm
Setup
Install multi-geth node
$ sudo apt-get install build-essential unzip
$ wget https://github.com/ethereumsocial/multi-geth/releases/download/v1.8.4/multi-geth-linux-v1.8.4.zip
$ unzip multi-geth-linux-v1.8.4
$ sudo mv geth /usr/local/bin/geth
$ sudo nano /etc/systemd/system/ethereumsocial.service
Copy the following service settings
[Unit]
Description=Ethereum Social
After=network-online.target
[Service]
Type=simple
ExecStart=/usr/local/bin/geth --social --cache=1024 --maxpeers=125 --rpc --rpcaddr 127.0.0.1 --rpcport 8545
KillMode=process
Restart=always
RestartSec=10
User=<your-user-name>
[Install]
WantedBy=multi-user.target
Start the multi-geth node
$ sudo systemctl start ethereumsocial
$ sudo systemctl enable ethereumsocial
Now install the node.js with etsc-net-intelligence-api
$ curl -sL https://deb.nodesource.com/setup_8.x | sudo -E bash -
$ sudo apt-get install -y nodejs
$ git clone https://github.com/ethereumsocial/etsc-net-intelligence-api
$ cd etsc-net-intelligence-api
$ npm install
$ sudo npm install -g pm2
Configuration
Configure the app modifying app.json. Ensure that geth node is running on the backgruond with --rpc enabled.
"env":
{
"NODE_ENV" : "production", // tell the client we're in production environment
"RPC_HOST" : "127.0.0.1", // eth JSON-RPC host
"RPC_PORT" : "8545", // eth JSON-RPC port
"LISTENING_PORT" : "30303", // eth listening port (only used for display)
"INSTANCE_NAME" : "", // whatever you wish to name your node
"CONTACT_DETAILS" : "", // add your contact details here if you wish (email/skype)
"WS_SERVER" : "wss://stats.ethereumsocial.kr", // path to eth-netstats WebSockets api server
"WS_SECRET" : "NewEthereumSocial", // WebSockets api server secret used for login
"VERBOSITY" : 2 // Set the verbosity (0 = silent, 1 = error, warn, 2 = error, warn, info, success, 3 = all logs)
}
Run
Run it using pm2:
pm2 start app.json
FAQs
Ethereum Social Network Intelligence API
We found that etsc-net-intelligence-api demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 18 Apr 2018
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
/Security News
Identifying and Preventing Fraudulent Engineering Candidates: An Investigation into 80 Confirmed Cases
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
By Lauren Valencia, Kirill Boychenko - Sep 17, 2025
Application Security
/Research
/Security News
Updated and Ongoing Supply Chain Attack Targets CrowdStrike npm Packages
Socket detected multiple compromised CrowdStrike npm packages, continuing the "Shai-Hulud" supply chain attack that has now impacted nearly 500 packages.
By Kush Pandya, Peter van der Zee, Olivia Brown, Socket Research Team - Sep 16, 2025