Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
node-hidspy
Advanced tools
An event based node.js c++ addon/binding to detect the hid device insertion/removal and notify the subscribed apps.
An event based node.js c++ addon/binding to detect the hid device insertion/removal and notify the subscribed apps.
Before installing this package, make sure you have Node.js addon build tool node-gyp installed in your machine.
As node-gyp
uses Python 2.x
, make sure it is installed in your machine and it is on your EVN path.
If you dont have the python installed, then it is recommanded to install the windows-build-tools
. To installl windows build tool, open CLI as adminstrator and execute the below command as per the issue discussed here.
npm --add-python-to-path='true' --debug install --global windows-build-tools
The above command would install pythin 2.x and build tools needed for windows. It would take few mins to complete the installation.
To install node-hidspy
execute the below command
if you prefer npm
npm install node-hidspy
for yarn
,
yarn add node-hidspy
Upon installation, node-gyp
would start generating the c++ addon project as per the configuration we set in binding.gyp
and compile the same. If the compilation is successfull, it would have generated the executable lib files in the build
folder with Release
configuration.
require('node-hidspy')
would populate the hidspy object which is of event type.
var hidspy = require('node-hidspy');
hidspy.spyOn().then(() => {
...
})
hidspy.spyOff() // would stop listening for the usb detection.
There is an event change
which would be emitted when a usb device is inserted or removed. You can subscribe for the event and do necessory action upon the event.
hidspy.on('change', (device) => {
console.log(device);
/* {
name: '\\\\?\\HID#VID_1044&PID_7A13&MI_03#8&2346c4b6&0&0000#{4d1e55b2-f16f-11cf-88cb-001111000030}',
vid: 4164,
pid: 31251,
hid: 0,
guid: '4d1e55b2-f16f-11cf-001111000030',
status: 1
} */
});
hidspy.on('end', () => {
// would be triggered when you call `spyOff` function.
})
When an usb device is inserted, an Device
object would be generated and emitted.
Device
object has,
device_status
- It is an integer type property. The possible values for this property is 0 or 1 when 0 indicates the device is been removed from the system and the 1 indicates the device is been added.guid
- It is an string type property. The unique numeric assigned to the usb storage device by the windows.vid
- It is an integer type property. The vendor id is assigned by the USB Implementers Forum to a specific company.pid
- It is an integer type property. The product id is assigned by the company for the individual product.interface
- It is an integer type property. It is the interface index of the hid device.name
- It is an string type property. It is the device name in device manager of windows.There are four methods available in hidspy
.
spyOn
method takes a callback as parameter and returns a promise object. Here callback
is optional. Since spyOn returns promise, you can use then
to kick start the detection.
When the addon is ready, callback
would be called with true
which indicates everything is OK if passed otherwise the promise would be resolve/rejected.
spyOff
should be called when you wanted to stop listening for the usb device change.
There are two events emitted from the hidspy
module.
When any usb storage device is been inserted/removed into/from the machine, change
event would be triggered with the Device
object.
When the spyOff
method is called, the end
event would be triggered.
You can have a look into example/test.js
for usage and example.
var hidspy = require('../index');
hidspy.spyOn().then(function() {
hidspy.on('change', function(data) {
console.log(data);
});
hidspy.on("end", function() {
console.log('Stop to listen');
});
});
setTimeout(() => {
hidspy.spyOff();
}, 5000); // after 5 secs, would stop wathcing for device change.
When you DEBUG the c++ code, you have to comment the line#16 in the usbspy.h
FAQs
An event based node.js c++ addon/binding to detect the hid device insertion/removal and notify the subscribed apps.
The npm package node-hidspy receives a total of 0 weekly downloads. As such, node-hidspy popularity was classified as not popular.
We found that node-hidspy demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.