Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
By Socket Research Team - Dec 02, 2024
Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
node-multi-hashing
Cryptocurrency hashing functions for node.js.
Algorithms
- quark
- x11
- x13
- nist5
- scrypt
- scryptn
- scryptjane
- keccak
- bcrypt
- skein
- groestl
- blake
- fugue
- qubit
- hefty1
- shavite3
Usage
Use node v0.12+
Install
npm install multi-hashing
So far this native Node.js addon can do the following hashing algos
var multiHashing = require('multi-hashing');
var algorithms = ['quark', 'x11', 'scrypt', 'scryptn', 'scryptjane', 'keccak', 'bcrypt', 'skein', 'blake'];
var data = new Buffer("7000000001e980924e4e1109230383e66d62945ff8e749903bea4336755c00000000000051928aff1b4d72416173a8c3948159a09a73ac3bb556aa6bfbcad1a85da7f4c1d13350531e24031b939b9e2b", "hex");
var hashedData = algorithms.map(function(algo){
if (algo === 'scryptjane'){
//scryptjane needs block.nTime and nChainStartTime (found in coin source)
var yaCoinChainStartTime = 1367991200;
var nTime = Math.round(Date.now() / 1000);
return multiHashing[algo](data, nTime, yaCoinChainStartTime);
}
else{
return multiHashing[algo](data);
}
});
console.log(hashedData);
//<SlowBuffer 0b de 16 ef 2d 92 e4 35 65 c6 6c d8 92 d9 66 b4 3d 65 ..... >
Credits
- NSA and NIST for creation or sponsoring creation of SHA2 and SHA3 algos
- Keccak - Guido Bertoni, Joan Daemen, Michaël Peeters, and Gilles Van Assche
- Skein - Bruce Schneier, Stefan Lucks, Niels Ferguson, Doug Whiting, Mihir Bellare, Tadayoshi Kohno, Jon Callas and Jesse Walker.
- BLAKE - Jean-Philippe Aumasson, Luca Henzen, Willi Meier, and Raphael C.-W. Phan
- Grøstl - Praveen Gauravaram, Lars Knudsen, Krystian Matusiewicz, Florian Mendel, Christian Rechberger, Martin Schläffer, and Søren S. Thomsen
- JH - Hongjun Wu
- Fugue - Shai Halevi, William E. Hall, and Charanjit S. Jutla
- scrypt - Colin Percival
- bcrypt - Niels Provos and David Mazières
- X11, Hefty1, Quark creators (they just mixed together a bunch of the above algos)
FAQs
node-multi-hashing ===============
The npm package hashing receives a total of 25 weekly downloads. As such, hashing popularity was classified as not popular.
We found that hashing demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 07 Jan 2018
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Research
Typosquatting Cryptographic Libraries: Malicious npm Packages Threaten Crypto Developers with Keylogging and Wallet Theft
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
By Kirill Boychenko - Nov 27, 2024
Security News
Weekly Downloads Now Available in npm Package Search Results
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
By Sarah Gooding - Nov 26, 2024