UNPKG

@eladtest/mcp

Version:

MCP server for shellfirm - provides interactive command validation with captcha

141 lines (111 loc) ā€¢ 5.24 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
#!/usr/bin/env node /** * Test script for the browser challenge system (CommonJS) */ const { BrowserChallenge } = require('./lib/browser-challenge.js'); const { validateSplitCommandWithOptions } = require('./lib/shellfirm-wasm.js'); async function testMathChallenge() { console.log('\nšŸ§® Testing Math Challenge...'); console.log('ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”'); const challengeData = { command: 'rm -rf * && iptables -F && ufw disable', patterns: ['file deletion', 'recursive removal'], severity: 'critical', matches: [ { id: 'fs_recursive_delete', severity: 'critical', description: 'Recursive file deletion (*, -rf)' }, { id: 'network_firewall_flush', severity: 'high', description: 'Flush firewall rules (iptables -F)' }, { id: 'ufw_disable', severity: 'high', description: 'Disable UFW firewall' } ] }; // Print WASM validation result for the command const wasmResult = await validateSplitCommandWithOptions(challengeData.command); console.log('WASM Validation Result:', wasmResult); const result = await BrowserChallenge.showChallenge('math', challengeData, 30000); console.log('Math Challenge Result:', result); return result; } async function testWordChallenge() { console.log('\nšŸ”¤ Testing Word Challenge...'); console.log('ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”'); const challengeData = { command: 'sudo chmod 777 /etc/passwd', patterns: ['permission change', 'system file modification'], severity: 'high', matches: [ { id: 'chmod_world_writable', severity: 'high', description: 'Sets world-writable permissions (777)' }, { id: 'system_file_modify', severity: 'high', description: 'Modifies critical system file (/etc/passwd)' } ] }; // Print WASM validation result for the command const wasmResult = await validateSplitCommandWithOptions(challengeData.command); console.log('WASM Validation Result:', wasmResult); const result = await BrowserChallenge.showChallenge('word', challengeData, 30000); console.log('Word Challenge Result:', result); return result; } async function testConfirmChallenge() { console.log('\nāš ļø Testing Confirm Challenge...'); console.log('ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”'); const challengeData = { command: 'iptables -F && ufw disable', patterns: ['firewall disable', 'network security'], severity: 'medium', matches: [ { id: 'network_firewall_flush', severity: 'high', description: 'Flush firewall rules (iptables -F)' }, { id: 'ufw_disable', severity: 'high', description: 'Disable UFW firewall' } ] }; // Print WASM validation result for the command const wasmResult = await validateSplitCommandWithOptions(challengeData.command); console.log('WASM Validation Result:', wasmResult); const result = await BrowserChallenge.showChallenge('confirm', challengeData, 30000); console.log('Confirm Challenge Result:', result); return result; } async function runAllTests() { console.log('šŸš€ Browser Challenge System Test Suite'); console.log('ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•ā•'); console.log('Testing browser-based security challenges...'); console.log(''); console.log('Each test will open a browser window with a different'); console.log('type of security challenge. Complete or close the'); console.log('challenge to see the results.'); const results = []; try { // Test each challenge type results.push(await testMathChallenge()); results.push(await testWordChallenge()); results.push(await testConfirmChallenge()); // 'enter' challenge removed // 'yes' challenge removed // Summary console.log('\nšŸ“Š Test Summary'); console.log('ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”ā”'); results.forEach((result, index) => { const types = ['Math', 'Word', 'Confirm']; const status = result.approved ? 'āœ… APPROVED' : 'āŒ DENIED'; console.log(`${types[index]} Challenge: ${status}`); if (result.error) { console.log(` Error: ${result.error}`); } }); const approvedCount = results.filter(r => r.approved).length; console.log(`\nTotal: ${approvedCount}/${results.length} challenges approved`); } catch (error) { console.error('Test suite error:', error); } console.log('\nšŸŽ‰ Browser Challenge Test Complete!'); } // Parse command line arguments const args = process.argv.slice(2); const challengeType = args[0]; if (challengeType === 'math') { testMathChallenge().catch(console.error); } else if (challengeType === 'word') { testWordChallenge().catch(console.error); } else if (challengeType === 'confirm') { testConfirmChallenge().catch(console.error); } else { // Run all tests by default runAllTests().catch(console.error); }