bettercap 1.1.3 → 1.1.4

data/test/firewalls/linux_firewall_test.rb

@@ -0,0 +1,72 @@
+require 'minitest/autorun'
+require 'test_helper'
+require 'firewalls/linux'
+require 'helpers/mock_shell'
+
+class OSXFirewallTest < MiniTest::Test
+  def test_enabling_forwarding
+    firewall = stubbed_firewall(LinuxFirewall).new
+    result = firewall.enable_forwarding true
+
+    assert_equal result, 'echo 1 > /proc/sys/net/ipv4/ip_forward'
+  end
+
+  def test_disabling_forwarding
+    firewall = stubbed_firewall(LinuxFirewall).new
+    result = firewall.enable_forwarding false
+
+    assert_equal result, 'echo 0 > /proc/sys/net/ipv4/ip_forward'
+  end
+
+  def test_enabling_icmp_broadcast
+    firewall = stubbed_firewall(LinuxFirewall).new
+    result = firewall.enable_icmp_bcast true
+
+    assert_equal result, 'echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_broadcasts'
+  end
+
+  def test_disabling_icmp_broadcast
+    firewall = stubbed_firewall(LinuxFirewall).new
+    result = firewall.enable_icmp_bcast false
+
+    assert_equal result, 'echo 0 > /proc/sys/net/ipv4/icmp_echo_ignore_broadcasts'
+  end
+
+  def test_whether_forwarding_is_enabled
+    expected_output = '1'
+    MockShell.stub :execute, expected_output do
+
+      firewall = stubbed_firewall(LinuxFirewall).new
+      result = firewall.forwarding_enabled?
+
+      assert result
+
+    end
+  end
+
+  def test_whether_forwarding_is_disabled
+    expected_output = '0'
+    MockShell.stub :execute, expected_output do
+
+      firewall = stubbed_firewall(LinuxFirewall).new
+      result = firewall.forwarding_enabled?
+
+      refute result
+
+    end
+  end
+
+  def test_enabling_the_firewall
+    firewall = stubbed_firewall(LinuxFirewall).new
+    result = firewall.enable true
+
+    assert_equal result, 'pfctl -e >/dev/null 2>&1'
+  end
+
+  def test_disabling_the_firewall
+    firewall = stubbed_firewall(LinuxFirewall).new
+    result = firewall.enable false
+
+    assert_equal result, 'pfctl -d >/dev/null 2>&1'
+  end
+end

data/test/firewalls/osx_firewall_test.rb

@@ -0,0 +1,72 @@
+require 'minitest/autorun'
+require 'test_helper'
+require 'firewalls/osx'
+require 'helpers/mock_shell'
+
+class OSXFirewallTest < MiniTest::Test
+  def test_enabling_forwarding
+    firewall = stubbed_firewall(OSXFirewall).new
+    result = firewall.enable_forwarding true
+
+    assert_equal result, 'sysctl -w net.inet.ip.forwarding=1'
+  end
+
+  def test_disabling_forwarding
+    firewall = stubbed_firewall(OSXFirewall).new
+    result = firewall.enable_forwarding false
+
+    assert_equal result, 'sysctl -w net.inet.ip.forwarding=0'
+  end
+
+  def test_enabling_icmp_broadcast
+    firewall = stubbed_firewall(OSXFirewall).new
+    result = firewall.enable_icmp_bcast true
+
+    assert_equal result, 'sysctl -w net.inet.icmp.bmcastecho=1'
+  end
+
+  def test_disabling_icmp_broadcast
+    firewall = stubbed_firewall(OSXFirewall).new
+    result = firewall.enable_icmp_bcast false
+
+    assert_equal result, 'sysctl -w net.inet.icmp.bmcastecho=0'
+  end
+
+  def test_whether_forwarding_is_enabled
+    expected_output = 'net.inet.ip.forwarding: 1'
+    MockShell.stub :execute, expected_output do
+
+      firewall = stubbed_firewall(OSXFirewall).new
+      result = firewall.forwarding_enabled?
+
+      assert result
+
+    end
+  end
+
+  def test_whether_forwarding_is_disabled
+    expected_output = 'net.inet.ip.forwarding: 0'
+    MockShell.stub :execute, expected_output do
+
+      firewall = stubbed_firewall(OSXFirewall).new
+      result = firewall.forwarding_enabled?
+
+      refute result
+
+    end
+  end
+
+  def test_enabling_the_firewall
+    firewall = stubbed_firewall(OSXFirewall).new
+    result = firewall.enable true
+
+    assert_equal result, 'pfctl -e >/dev/null 2>&1'
+  end
+
+  def test_disabling_the_firewall
+    firewall = stubbed_firewall(OSXFirewall).new
+    result = firewall.enable false
+
+    assert_equal result, 'pfctl -d >/dev/null 2>&1'
+  end
+end

data/test/helpers/mock_shell.rb

@@ -0,0 +1,17 @@
+module MockShell
+  class << self
+    # For easy testing, this method just returns back the command it is given.
+    # The real Shell class will return the output string.
+    def execute(command)
+      return command
+    end
+
+    def ifconfig(iface = '')
+      self.execute("LANG=en && ifconfig #{iface}")
+    end
+
+    def arp
+      self.execute('LANG=en && arp -a')
+    end
+  end
+end

data/test/logger_test.rb

@@ -0,0 +1,12 @@
+require 'minitest/autorun'
+require 'test_helper'
+require 'logger'
+
+class LoggerTest < MiniTest::Test
+  def test_writing_with_a_logfile
+    silence do |output|
+      Logger.write 'Test log message'
+      assert_equal output.read, "Test log message\n"
+    end
+  end
+end

data/test/network_test.rb

@@ -0,0 +1,14 @@
+require 'minitest/autorun'
+require 'network'
+
+class NetworkTest < MiniTest::Test
+  def test_valid_ip_address
+    valid = Network.is_ip? '127.0.0.1'
+    assert valid
+  end
+
+  def test_invalid_ip_address
+    addresses = ['bad-ip', '255.255.255.255.255', '255.255', '999.999.999.999', 123]
+    addresses.each { |address| refute Network.is_ip?(address) }
+  end
+end

data/test/proxy/response_test.rb

@@ -0,0 +1,56 @@
+require 'minitest/autorun'
+require 'proxy/response'
+
+class TestProxyResponse < MiniTest::Test
+  def test_response_status_parsing
+    response = response_with_line 'HTTP/1.1 200 OK'
+    assert_equal response.headers, ['HTTP/1.1 200 OK']
+    assert_equal response.code, '200 OK'
+  end
+
+  def test_content_type_parsing
+    response = response_with_line 'Content-Type: text/xml'
+    assert_equal response.headers, ['Content-Type: text/xml']
+    assert_equal response.content_type, 'text/xml'
+  end
+
+  def test_content_length_parsing
+    response = response_with_line 'Content-Length: 1024'
+    assert_equal response.headers, ['Content-Length: 1024']
+    assert_equal response.content_length, 1024
+  end
+
+  def test_reaching_end_of_headers
+    response = response_with_line 'HTTP/1.1 200 OK'
+    refute response.headers_done
+
+    response << ''
+    assert response.headers_done
+  end
+
+  def test_parsing_response_body
+    body = 'This line goes into the body'
+
+    response = response_with_line 'HTTP/1.1 200 OK'
+    response << ''
+    response << body
+
+    assert_equal response.body, body
+  end
+
+  def test_textual
+    text_response = response_with_line 'Content-Type: text/xml'
+    image_response = response_with_line 'Content-Type: image/png'
+
+    assert text_response.textual?
+    refute image_response.textual?
+  end
+
+  private
+
+  def response_with_line(line)
+    response = Proxy::Response.new
+    response << line
+    response
+  end
+end

data/test/shell_test.rb

@@ -0,0 +1,15 @@
+require 'minitest/autorun'
+require 'shell'
+
+class ShellTest < MiniTest::Test
+  def test_successful_command_execution
+    result = Shell.execute "echo 'BetterCap is awesome!'"
+    assert_equal result, "BetterCap is awesome!\n"
+  end
+
+  def test_failed_command_execution
+    assert_raises BetterCap::Error do
+      Shell.execute 'false'
+    end
+  end
+end

data/test/sniffer/parsers/base_parser_test.rb

@@ -0,0 +1,20 @@
+require 'minitest/autorun'
+require 'test_helper'
+require 'sniffer/parsers/ftp'
+require 'packetfu'
+
+class BaseParserTest < MiniTest::Test
+  def setup
+    @packets = parsed_packets
+    @parser = BaseParser.new
+  end
+
+  # The base parser has no parsers by default, so it shouldn't be writing
+  # anything to STDOUT.
+  def test_parsing_packets
+    silence do |output|
+      @parser.on_packet @packets.first
+      assert output.length == 0
+    end
+  end
+end

data/test/sniffer/parsers/ftp_parser_test.rb

@@ -0,0 +1,27 @@
+require 'minitest/autorun'
+require 'test_helper'
+require 'packetfu'
+require 'sniffer/parsers/ftp'
+
+class FtpParserTest < MiniTest::Test
+  def setup
+    # The pcap file for the FTP tests was taken from the Practical Packet
+    # Analysis GitHub repo: https://github.com/markofu/pcaps
+    @packets = ftp_packets
+    @parser = FtpParser.new
+  end
+
+  def test_parsing_ftp_packets_with_no_user_data
+    silence do |output|
+      @parser.on_packet @packets[0]
+      assert output.length == 0
+    end
+  end
+
+  def test_parsing_ftp_packets_with_user_data
+    silence do |output|
+      @parser.on_packet @packets[4]
+      refute output.length == 0
+    end
+  end
+end

data/test/sniffer/parsers/url_parser_test.rb

@@ -0,0 +1,25 @@
+require 'minitest/autorun'
+require 'test_helper'
+require 'packetfu'
+require 'sniffer/parsers/url'
+
+class UrlParserTest < MiniTest::Test
+  def setup
+    @packets = http_packets
+    @parser = UrlParser.new
+  end
+
+  def test_parsing_http_packets
+    silence do |output|
+      @parser.on_packet @packets[3]
+      refute output.length == 0
+    end
+  end
+
+  def test_parsing_http_packets_without_any_urls
+    silence do |output|
+      @parser.on_packet @packets[0]
+      assert output.length == 0
+    end
+  end
+end

data/test/target_test.rb

@@ -0,0 +1,24 @@
+require 'minitest/autorun'
+require 'target'
+
+class TestTarget < MiniTest::Test
+  def setup
+    @target = Target.new('127.0.0.1', '08:00:20')
+  end
+
+  def test_initialization
+    assert_equal @target.ip, '127.0.0.1'
+    assert_equal @target.mac, '08:00:20'
+    assert_equal @target.vendor, 'Oracle'
+  end
+
+  def test_setting_mac
+    @target.mac = '7F:D0:BD:8B:60:DA'
+    assert_equal @target.mac, '7F:D0:BD:8B:60:DA'
+  end
+
+  def test_string_coercion
+    @target.mac = '08:00:20'
+    assert_equal @target.to_s, '127.0.0.1 : 08:00:20 ( Oracle )'
+  end
+end

data/test/test_helper.rb

@@ -0,0 +1,47 @@
+require 'helpers/mock_shell'
+require 'securerandom'
+
+# Override the `shell` private method of the firewall to return the mock
+# shell. The mock shell's purpose is to capture any system calls made and
+# verify that they were received.
+def stubbed_firewall(target)
+  Class.new(target) do
+    define_method(:shell) do
+      MockShell
+    end
+  end
+end
+
+# Allow for a way to silence calls during test runs.
+#
+# This redirects STDOUT to /dev/null for any methods
+# called inside the block of this method.
+def silence(output_file_name = SecureRandom.hex)
+  captured_output = Tempfile.new output_file_name
+  Logger.logfile = captured_output
+
+  $stdout = File.new('/dev/null', 'w')
+  yield captured_output
+ensure
+  $stdout = STDOUT
+end
+
+# Methods for getting PacketFu::Packet objects out of pcap files.
+
+def parsed_packets
+  packets_with_filename 'packets'
+end
+
+def ftp_packets
+  packets_with_filename 'ftp'
+end
+
+def http_packets
+  packets_with_filename 'http'
+end
+
+private
+
+def packets_with_filename(filename)
+  PacketFu::PcapFile.read_packets(File.join(File.dirname(__FILE__),"pcap/#{filename}.pcap"))
+end

data/test_https_proxy.rb

@@ -0,0 +1,29 @@
+require 'openssl'
+require 'socket'
+
+sock = TCPSocket.new( '172.20.10.2', 8083 )
+
+ctx = OpenSSL::SSL::SSLContext.new
+
+# we need this? :P ctx.set_params(verify_mode: OpenSSL::SSL::VERIFY_PEER)
+
+socket = OpenSSL::SSL::SSLSocket.new(sock, ctx).tap do |socket|
+  socket.sync_close = true
+  socket.connect
+
+  socket.write "GET / HTTP/1.1\n" +
+               "Host: www.facebook.com\n" +
+               "Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8\n" +
+               "Accept-encoding: gzip, deflate, sdch\n" +
+               "Accept-language: it-IT,it;q=0.8,en-US;q=0.6,en;q=0.4,la;q=0.2\n" +
+               "Cache-control: max-age=0\n" +
+               "User-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/44.0.2403.125 Safari/537.36\n" +
+               "\n\n"
+
+  while line = socket.gets # Read lines from socket
+    puts line         # and print them
+  end
+
+  socket.close
+end
+

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: bettercap
 version: !ruby/object:Gem::Version
-  version: 1.1.3
+  version: 1.1.4
 platform: ruby
 authors:
 - Simone Margaritelli
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2015-07-27 00:00:00.000000000 Z
+date: 2015-08-08 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: colorize
@@ -52,6 +52,20 @@ dependencies:
     - - ~>
       - !ruby/object:Gem::Version
         version: 0.12.0
+- !ruby/object:Gem::Dependency
+  name: minitest
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
 description: A complete, modular, portable and easily extensible MITM framework.
 email: evilsocket@gmail.com
 executables:
@@ -60,8 +74,12 @@ extensions: []
 extra_rdoc_files: []
 files:
 - .gitignore
+- CONTRIBUTING.md
+- Gemfile
+- Gemfile.lock
 - LICENSE.md
 - README.md
+- Rakefile
 - TODO.md
 - bettercap.gemspec
 - bin/bettercap
@@ -86,6 +104,7 @@ files:
 - lib/bettercap/logger.rb
 - lib/bettercap/monkey/packetfu/utils.rb
 - lib/bettercap/network.rb
+- lib/bettercap/proxy/certstore.rb
 - lib/bettercap/proxy/module.rb
 - lib/bettercap/proxy/proxy.rb
 - lib/bettercap/proxy/request.rb
@@ -105,6 +124,25 @@ files:
 - lib/bettercap/spoofers/none.rb
 - lib/bettercap/target.rb
 - lib/bettercap/version.rb
+- test/factories/firewall_factory_test.rb
+- test/factories/parser_factory_test.rb
+- test/factories/spoofer_factory_test.rb
+- test/firewalls/linux_firewall_test.rb
+- test/firewalls/osx_firewall_test.rb
+- test/helpers/mock_shell.rb
+- test/logger_test.rb
+- test/network_test.rb
+- test/pcap/ftp.pcap
+- test/pcap/http.pcap
+- test/pcap/packets.pcap
+- test/proxy/response_test.rb
+- test/shell_test.rb
+- test/sniffer/parsers/base_parser_test.rb
+- test/sniffer/parsers/ftp_parser_test.rb
+- test/sniffer/parsers/url_parser_test.rb
+- test/target_test.rb
+- test/test_helper.rb
+- test_https_proxy.rb
 homepage: http://github.com/evilsocket/bettercap
 licenses:
 - GPL3