@ensdomains/durin

MAL-2025-190930

npmmalware11/24/2025
Description

Malicious code in @ensdomains/durin (npm)

Indicators of Compromise
SHA256 Hashes (3)
1905c60405fab449591278c2391d696e1cefe345b08563f125bff00fcc9daff4
a7dcacde55c5201c366d199c830f210e3b126c9d1569c7c9a169bf40f8a3e13f
0f76cb23f974f6874e07378aa90337f94aae98f72b7472a50fbcadb043fb73cf
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-2g6v-5mhh-wxgf
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001