Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
scrcpy-client
Advanced tools
Node.js client for scrcpy server (https://github.com/Genymobile/scrcpy). scrcpy allows you to record your android device / emulator screen. It does not need root access.
This module is installed via npm:
npm install --save scrcpy-client
It will connect to adb server, push the jar to the device and emit events with the h264 frames.
const Scrcpy = require('scrcpy-client');
const scrcpy = new Scrcpy();
scrcpy.on('data', (pts, data) => console.log(`[${pts}] Data: ${data.length}b`));
scrcpy.start()
.then(info => console.log(`Started -> ${info.name} at ${info.width}x${info.height}`))
.catch(e => console.error('Impossible to start', e));
{
adbHost: 'localhost',
adbPort: 5037,
deviceId: null,
port: 8099,
maxSize: 600,
bitrate: 999999999,
tunnelForward: true,
crop: '9999:9999:0:0',
sendFrameMeta: true
}
deviceId
is not defined (or null) it will try to use the first device available.sendFrameMeta
is true data
events will contain 2 parameters pts
and data
.You can find them in the examples
folder.
This module uses debug for debugging, you can enable debug messages with:
DEBUG=scrcpy
npm test
In case you never heard about the MIT license.
See the LICENSE file for details.
All credits for scrcpy server goes to Genymobile. The compiled version distributed with this library is a mirror of their built, not compiled by me, to ensure SHA1 signature remains the same and comes from a trust source.
FAQs
Client for scrcpy android server
The npm package scrcpy-client receives a total of 1 weekly downloads. As such, scrcpy-client popularity was classified as not popular.
We found that scrcpy-client demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.