Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
quickbit-native
Advanced tools
https://github.com/holepunchto/libquickbit JavaScript bindings for Node.js.
npm install quickbit-native
const { get, set, indexOf } = require('quickbit-native')
const field = Buffer.alloc(256) // 2048 bits
const changed = set(field, 1000)
// true
get(field, 1000)
// true
indexOf(field, true)
// 1000
const b = get(field, bit)
Get the given bit, which will either be true
(set) or false
(unset).
const changed = set(field, bit[, value])
Set the given bit to value
, which defaults to true
. Returns true
if the bit changed, otherwise false
.
field = fill(field, value[, start[, end]])
Fill the given bit range with value
. start
defaults to 0
and end
defaults to the bit length of the field. Returns the modified field.
const i = indexOf(field, value[, position][, index])
Return the index of the first occurrence of value
, or -1
if not found. If position
is given, return the first index that is greater than or equal to position
. An index
may be passed to improve performance.
const i = lastIndexOf(field, value[, position][, index])
Return the index of the last occurrence of value
, or -1
if not found. If position
is given, return the last index that is less than or equal to position
. An index
may be passed to improve performance.
const index = new Index(field)
Construct an index of the bits in field
.
const changed = index.update(bit)
Reindex the given bit.
ISC
FAQs
libquickbit JavaScript bindings for Node.js
The npm package quickbit-native receives a total of 2,287 weekly downloads. As such, quickbit-native popularity was classified as popular.
We found that quickbit-native demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.