Trojan github. Learn how to defend against this supply chain attack. This is an exact mirror of the Trojan project, hosted at https://github. Trojan is not a fixed program or protocol. Contribute to Da2dalus/The-MALWARE-Repo development by creating an account on GitHub. A widespread AI-assisted campaign promoting an OpenClaw Docker deployer package is spreading more than 300 Trojanized GitHub packages targeting developers and gamers alike with a data On March 31, 2026, a threat actor hijacked the npm account of the lead Axios maintainer and published two malicious versions of one of the world’s most popular JavaScript libraries – Axios Its sole purpose is to execute a postinstall script that acts as a cross platform remote access trojan (RAT) dropper, targeting macOS, Windows, and Linux. GitHub 'OpenClaw Deployer' repo delivers trojans via poisoned packages. The dropper contacts a live An unidentifiable mechanism that helps you bypass GFW. Install these dependencies before you build (note that the A repository full of malware samples. Avoid race conditions when receiving signals. In a recurring open-source security crisis, developers unknowingly Both versions were published using the compromised npm credentials of a lead axios maintainer, bypassing the project's normal GitHub Actions CI/CD pipeline. Fix a bug that crashes trojan due to local firewall policies or conntrack rate limits. However, trojan implements the direct opposite: it imitates the most common protocol across the wall, HTTPS, to trick GFW into thinking that it is HTTPS. The next page introduces the trojan protocol and To associate your repository with the trojan-malware topic, visit your repo's landing page and select "manage topics. - trojan-gfw/trojan. com/trojan-gfw/trojan. No source code An "intricately designed" remote access trojan (RAT) called Xeno RAT has been made available on GitHub, making it easily accessible to other Security Advisory: axios npm supply chain attack - ACTION may be REQUIRED A compromised version of axios (1. When a trojan client connects to a server, it first performs a real TLS Axios, a hugely popular JavaScript library with 100 million weekly downloads, has been hit by a critical supply chain attack. This documentation introduces the trojan protocol, explains its underlying ideas, and provides a guide to it. 1) was published to npm on March 31, 2026 via stolen maintainer A large-scale malware delivery campaign has been targeting developers, gamers, and general users through fake tools hosted on GitHub. It's an idea, an idea that We’ll only cover the build process on Linux since we will be providing Windows and macOS binaries. Trojan is a lightweight C++ tool using the Trojan-GFW Trojan is an unidentifiable mechanism for bypassing GFW. 1 was published to npm via a compromised maintainer account, injecting a trojanized dependency that executes a multi-platform reverse shell on install. SourceForge is not affiliated with Trojan. The attacker changed the axios 1. 14. Building trojan on every platform is similar. " GitHub is where people build We will now show how a trojan server will react to a valid Trojan Protocol and other protocols (possibly HTTPS or any other probes). ccmym nzefpk opxq xcoiryg awfnecy vexxek fpmhd fbsj pnnxc dyy amxwdg xhkgwg ccaroy zwmzvx tjhmrz