c7decrypt 0.3.1 → 0.3.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: f9b11d4c6617708dd781e31039ea82b65bb34e53
-  data.tar.gz: 5aecaa33cbaad57c2f429975d4b5d0d4023f67e6
+  metadata.gz: e0d2e026d0d8dbb9c18117d95a5d6e502d049115
+  data.tar.gz: 756739dad11c52d14cc47ecb37f45583854371c8
 SHA512:
-  metadata.gz: 0724d39e013f76b882e6bf822913b81231ddb45d3b8a9a59127fa87050ce3630f4c9decb959b3dfec63c3bd123265ec31faa278495d85503358727ddfc665a81
-  data.tar.gz: 90a3fd6438c7c331ad0d0e3785d528c368b3907b54d1ea638802a9dec1961ba4ea63b2245ee25c6befce0fe5fb178a055413d5e7279c49bd72e4d36a6252d9e3
+  metadata.gz: 64626b838586f3c7906aa0675b2c8d983a3b036852ac08b60bd9bd1dd6cf967de8bcc79c927ad5dadb84b1ed6b1fcec1ddf6d37f78c1d0243edf4c81386157b5
+  data.tar.gz: ddb9052c8ad3584ce7261d0dbd26f6cdfd68560ccce755159b43aa2137f200fe51e7f7dd4d53d93b2521bd3b5d9800815a900e87d1d08cdd166abd1e0642542e

data/README.md

@@ -44,20 +44,20 @@ To use, just require
 require 'c7decrypt'
 ```
 
-Decrypt A Cisco Type-7 Password
+Decrypt Cisco Type-7 Password
 
 ```ruby
 >> C7Decrypt::Type7.decrypt("060506324F41")
 => "cisco"
 ```
-Encrypt A Cisco Type-7 Password
+Encrypt Cisco Type-7 Password
 
 ```ruby
 >> C7Decrypt::Type7.encrypt("cisco")
 => "02050D480809"
 ```
 
-Encrypt A Cisco Type-5 Password
+Encrypt Cisco Type-5 Password
 
 ```ruby
 >> C7Decrypt::Type5.encrypt("cisco")
@@ -88,6 +88,7 @@ If you are interested in contributing to this project, please see [CONTRIBUTING.
 
 - [**Daren Matthew**](http://mccltd.net/blog/?p=1034) - For his blog post on the subject aggregating tools and sources that perform the decryption/decoding logic.
 - [**m00nie**](http://www.m00nie.com/2011/09/cisco-type-7-password-decryption-and-encryption-with-perl/) - For the blog post on the subject, the source code of type7tool.pl and it's encryption techniques.
+- [**Roger Nesbitt (mogest)**](https://github.com/mogest/unix-crypt) - For the unix-crypt Ruby library that demonstrates Unix MD5 hashing schemes.
 
 **Application(s) that use C7Decrypt**
 

data/c7decrypt.gemspec

@@ -9,7 +9,6 @@ Gem::Specification.new do |s|
   s.email = 'claudijd@yahoo.com'
   s.platform = Gem::Platform::RUBY
   s.files = Dir.glob("lib/**/*") + 
-            Dir.glob("spec/**/*") + 
             Dir.glob("bin/**/*") +
             [".gitignore", 
              ".rspec",
@@ -22,9 +21,11 @@ Gem::Specification.new do |s|
              "c7decrypt.gemspec"]
   s.require_paths = ["lib"]
   s.executables   = s.files.grep(%r{^bin/[^\/]+$}) { |f| File.basename(f) }
-  s.summary = 'Ruby based Cisco Type 7 Password Decryptor'
-  s.description = 'A library for decoding Cisco Type 7 passwords'  
+  s.summary = 'Ruby based Cisco Password Encryptor/Decryptor'
+  s.description = 'A library for encrypting/decrypting Cisco passwords'  
   s.homepage = 'http://rubygems.org/gems/c7decrypt'
+  s.cert_chain  = ['certs/claudijd.pem']
+  s.signing_key = File.expand_path("~/.ssh/gem-private_key.pem") if $0 =~ /gem\z/
 
   s.add_development_dependency('fuzzbert')
   s.add_development_dependency('rspec', '~> 3.0.0')

data/lib/c7decrypt/version.rb

@@ -1,3 +1,3 @@
 module C7Decrypt
-  VERSION = '0.3.1'
+  VERSION = '0.3.2'
 end

data.tar.gz.sig

@@ -0,0 +1 @@
+1����33���8���Vg�o;�\�2t��'�EC9�,!�ot�H������F��I,�q5��(�[�<<>d\P�\���0I,������s�bu�I���k������V4\��9���!arF���f��SF�BBD��\�s�fu`0&�v)�L�RL�3�A�

metadata

@@ -1,14 +1,36 @@
 --- !ruby/object:Gem::Specification
 name: c7decrypt
 version: !ruby/object:Gem::Version
-  version: 0.3.1
+  version: 0.3.2
 platform: ruby
 authors:
 - Jonathan Claudius
 autorequire: 
 bindir: bin
-cert_chain: []
-date: 2014-11-22 00:00:00.000000000 Z
+cert_chain:
+- |
+  -----BEGIN CERTIFICATE-----
+  MIIDcDCCAligAwIBAgIBATANBgkqhkiG9w0BAQUFADA/MREwDwYDVQQDDAhjbGF1
+  ZGlqZDEVMBMGCgmSJomT8ixkARkWBXlhaG9vMRMwEQYKCZImiZPyLGQBGRYDY29t
+  MB4XDTE0MTIxOTE4MzkxOVoXDTE1MTIxOTE4MzkxOVowPzERMA8GA1UEAwwIY2xh
+  dWRpamQxFTATBgoJkiaJk/IsZAEZFgV5YWhvbzETMBEGCgmSJomT8ixkARkWA2Nv
+  bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPJYhex3xS5rsgKZnXNK
+  Bo3/++yub5QJ6e7cNrEpypqL/kh4aKX99779Uiw2vJAQ6E9LH+t53Cip+t6nDWkg
+  47FzbH4M7k1ZLKSSKxpWC2qk5mWMAVvyVGvWojM9QGPCIk86pfUGfO2nsOq3whXD
+  q0FhBF40ZZnYTuIUbiXTkdQnsOor1WMcagLXS8PFVtOrZ/tCghvSy2dIQFiyTBnb
+  3cz/hEf/Xq6Cx4IBGPWyqGnvD+3RGvmTK1V4ze4MCLBfyc4gWu6mJVAEN0lleJck
+  BuiLNW8hs72474B6VKtJaaDA8B/9kTQnoZ7Fa5YJo/GbaYUqItcy6jHSCT0rWJXA
+  LP8CAwEAAaN3MHUwCQYDVR0TBAIwADALBgNVHQ8EBAMCBLAwHQYDVR0OBBYEFFZi
+  drho+yUOaenpeDftNILNdfGJMB0GA1UdEQQWMBSBEmNsYXVkaWpkQHlhaG9vLmNv
+  bTAdBgNVHRIEFjAUgRJjbGF1ZGlqZEB5YWhvby5jb20wDQYJKoZIhvcNAQEFBQAD
+  ggEBAGPQew4aW3rpPNzen7yJCng88CXjrBHcCZ6NgwV4sFKqGzKMwuP+RiDeSdx7
+  wdjM9wRtYcgKusVifjUhzmSWNd2O1s/osZY9UWXFKRwhMuk7jtepzx3G+6ptGoFF
+  9deFhOXTJ1y6/JEDQDt7ndqcqoEkE4iPVEUlMxuNx5XxnXtaOMMiQDm21l72K+ZQ
+  jQuNssCu6elWT8ctrme4nmVn2CK74aTVxCsNgtfDMd/1gwHGfnkdWY5Fq+U81uWt
+  2Gsrg58uhzB8auXnyQj1csrXR4q84eYMXQFdhGUr/grHSy2kBkyWkzS0iYqwsTzv
+  ho7/RMjGipku8I9m88xT0YfDq5E=
+  -----END CERTIFICATE-----
+date: 2014-12-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: fuzzbert
@@ -66,7 +88,7 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
-description: A library for decoding Cisco Type 7 passwords
+description: A library for encrypting/decrypting Cisco passwords
 email: claudijd@yahoo.com
 executables:
 - c7decrypt
@@ -87,11 +109,6 @@ files:
 - lib/c7decrypt/type5.rb
 - lib/c7decrypt/type7.rb
 - lib/c7decrypt/version.rb
-- spec/example_configs/bad_canned_example.txt
-- spec/example_configs/empty_example.txt
-- spec/example_configs/simple_canned_example.txt
-- spec/type5_spec.rb
-- spec/type7_spec.rb
 homepage: http://rubygems.org/gems/c7decrypt
 licenses: []
 metadata: {}
@@ -114,5 +131,5 @@ rubyforge_project:
 rubygems_version: 2.2.2
 signing_key: 
 specification_version: 4
-summary: Ruby based Cisco Type 7 Password Decryptor
+summary: Ruby based Cisco Password Encryptor/Decryptor
 test_files: []

data/spec/example_configs/bad_canned_example.txt

@@ -1,13 +0,0 @@
-# Removed "7"
-username password 0822455D0A16
-# Removed password
-    username password 7
-# changed password to pword         
-enable pword 7 060506324F41
-# changed hash to something weird, but still expect this to "hit"
-        enable password 7 abc123
-R3(config)#do show run | sec vty
-line vty 0 4
-# again changed hash to something weird, expect this to "hit" but it doesn't ... 
-password 7 /etc/passwd
-login

data/spec/example_configs/simple_canned_example.txt

@@ -1,8 +0,0 @@
-username test password 7 0822455D0A16
-    username test password 7 0822455D0A16        
-enable password 7 060506324F41
-        enable password 7 060506324F41
-R3(config)#do show run | sec vty
-line vty 0 4
-password 7 02050D480809
-login

data/spec/type5_spec.rb

@@ -1,31 +0,0 @@
-require 'c7decrypt'
-require 'rspec/its'
-
-describe C7Decrypt::Type5 do
-
-  context "when encrypting single Cisco Type-5 hash" do 
-    before(:each) do
-      @password = "SECRETPASSWORD"
-      @salt = "TMnL"
-      @hash = C7Decrypt::Type5.encrypt(@password, @salt)
-    end
-  
-    subject{@hash}
-    its(:class) {should == ::String}
-    it {should == "$1$#{@salt}$iAFs16ZXx7x18vR1DeIp6/"}
-  end
-
-  context "when encrypting single Cisco Type-5 hash" do 
-    before(:each) do
-      @password = "Password123"
-      @salt = "VkQd"
-      @hash = C7Decrypt::Type5.encrypt(@password, @salt)
-    end
-  
-    subject{@hash}
-    its(:class) {should == ::String}
-    it {should == "$1$#{@salt}$Vma3sR7B1LL.v5lgy1NYc/"}
-  end
-
-
-end

data/spec/type7_spec.rb

@@ -1,243 +0,0 @@
-require 'c7decrypt'
-require 'rspec/its'
-
-describe C7Decrypt::Type7 do
-
-  before(:each) do
-    @known_values = [
-      {:pt => "cisco", :seed => 2, :ph => "02050D480809"},
-      {:pt => "cisco", :seed => 3, :ph => "030752180500"},
-      {:pt => "cisco", :seed => 4, :ph => "045802150C2E"},
-      {:pt => "cisco", :seed => 5, :ph => "05080F1C2243"}, 
-      {:pt => "cisco", :seed => 6, :ph => "060506324F41"},
-      {:pt => "cisco", :seed => 7, :ph => "070C285F4D06"},
-      {:pt => "cisco", :seed => 8, :ph => "0822455D0A16"},         
-      {:pt => "cisco", :seed => 9, :ph => "094F471A1A0A"},
-      {:pt => "password", :seed => 9, :ph => "095C4F1A0A1218000F"},
-      {:pt => "password", :seed => 4, :ph => "044B0A151C36435C0D"}
-    ]
-  end
-
-  context "when decrypting single Cisco Type-7 hash using longhand" do 
-    before(:each) do
-      @encrypted_hash = "060506324F41"
-      @decrypted_hash = C7Decrypt::Type7.decrypt(@encrypted_hash)
-    end
-  
-    subject{@decrypted_hash}
-    its(:class) {should == ::String}
-    it {should == "cisco"}
-  end
-
-  context "when decrypting an array of Cisco Type-7 hashes" do 
-    before(:each) do
-      @encrypted_hashes = [
-        "060506324F41",
-        "0822455D0A16"
-      ]
-      @decrypted_hashes = C7Decrypt::Type7.decrypt_array(@encrypted_hashes)
-    end
-  
-    subject{@decrypted_hashes}
-    its(:class) {should == ::Array}
-    its(:first) {should == "cisco"}
-    its(:last) {should == "cisco"}
-    its(:size) {should == 2}
-  end
-
-  context "when decrypting Cisco Type-7 hashes from a config" do 
-    before(:each) do
-      @config_file = "./spec/example_configs/simple_canned_example.txt"
-      @decrypted_hashes = C7Decrypt::Type7.decrypt_config(@config_file)
-    end
-  
-    subject{@decrypted_hashes}
-    its(:class) {should == ::Array}
-    its(:size) {should == 5}
-    it {should == [
-      "cisco",
-      "cisco",
-      "cisco",
-      "cisco",
-      "cisco"
-    ]}
-  end
-
-  context "when decrypting known Cisco Type-7 known value matches" do 
-    before(:each) do
-      @decrypted_hashes = C7Decrypt::Type7.decrypt_array(
-                            @known_values.map {|known_value| known_value[:ph]}
-                          )
-    end
-
-    subject{@decrypted_hashes}
-    its(:class) {should == ::Array}
-    its(:size) {should == @known_values.size}
-    it {should == @known_values.map {|known_value| known_value[:pt]}}
-  end
-
-  context "when decrypting Cisco Type-7 with a seed greater than 9" do 
-    before(:each) do
-      @decrypt_hash = C7Decrypt::Type7.decrypt("15000E010723382727")
-    end
-
-    subject{@decrypt_hash}
-    its(:class) {should == ::String}
-    it {should == "remcisco"}
-  end
-
-  context "when matchings known Cisco Type-7 known config line matches" do 
-    before(:each) do
-      @encrypted_hashes = []
-      @known_config_lines = {
-        "username test password 7 0822455D0A16" => "0822455D0A16",
-        "enable password 7 060506324F41" => "060506324F41",
-        "password 7 02050D480809" => "02050D480809"
-      }
-
-      @known_config_lines.keys.each do |k,v|
-        @encrypted_hashes << C7Decrypt::Type7.type_7_matches(k)
-      end
-      @encrypted_hashes.flatten!
-    end
-
-    subject{@encrypted_hashes}
-    its(:class) {should == ::Array}
-    its(:size) {should == @known_config_lines.size}
-    it {should == @known_config_lines.values}
-  end
-
-  context "when encrypting single Cisco Type-7 hash" do 
-    before(:each) do
-      @plaintext_hash = "cisco"
-      @encrypted_hash = C7Decrypt::Type7.encrypt(@plaintext_hash)
-    end
-
-    subject{@encrypted_hash}
-    its(:class) {should == ::String}
-    it {should == "02050D480809"}
-  end
-
-  context "when encrypting single Cisco Type-7 hash with an alternate seed value" do 
-    before(:each) do
-      @plaintext_hash = "cisco"
-      @seed = 3
-      @encrypted_hash = C7Decrypt::Type7.encrypt(@plaintext_hash, @seed)
-    end
-
-    subject{@encrypted_hash}
-    its(:class) {should == ::String}
-    it {should == "030752180500"}
-
-    it "should decrypt back to the original plaintext hash" do
-      C7Decrypt::Type7.decrypt(@encrypted_hash).should == @plaintext_hash
-    end
-  end
-
-  context "when encrypting multiple plaintext passwords with alternate seed values" do 
-    before(:each) do
-      @plaintext_hash = "cisco"
-      @seeds = 0..15
-      @encrypted_hashes = @seeds.map {|seed| C7Decrypt::Type7.encrypt(@plaintext_hash, seed)}
-    end
-
-    subject{@encrypted_hashes}
-    its(:class) {should == ::Array}
-
-    it "should decrypt back to the original plaintext hashes" do
-      @encrypted_hashes.each do |encrypted_hash|
-        C7Decrypt::Type7.decrypt(encrypted_hash).should == @plaintext_hash
-      end
-    end
-  end
-
-  context "when encrypting known value matches individually" do 
-    before(:each) do
-      @encrypted_hashes = []
-      @known_values.each do |known_value|
-        @encrypted_hashes << C7Decrypt::Type7.encrypt(known_value[:pt], known_value[:seed])
-      end
-    end
-
-    subject{@encrypted_hashes}
-    its(:class) {should == ::Array}
-    its(:size) {should == @known_values.size}
-    it {should == @known_values.map {|known_value| known_value[:ph]}}
-  end
-
-  context "when encrypting known value matches individually as an array" do 
-    before(:each) do
-      @plaintext_passwords = @known_values.map {|known_value| known_value[:pt]}.uniq
-      @encrypted_passwords = C7Decrypt::Type7.encrypt_array(@plaintext_passwords)
-    end
-
-    subject{@encrypted_passwords}
-    its(:class) {should == ::Array}
-    its(:size) {should == @plaintext_passwords.size}
-    it {should == @plaintext_passwords.map {|plaintext_password| C7Decrypt::Type7.encrypt(plaintext_password)}}
-  end
-
-  context "when encrypting Cisco Type-7" do 
-    before(:each) do
-      @plaintext_hash = "remcisco"
-      @encrypted_hash = C7Decrypt::Type7.encrypt(@plaintext_hash)
-    end
-
-    subject{@encrypted_hash}
-    its(:class) {should == ::String}
-    it {should == "02140156080F1C2243"}
-  end
-
-  context "when encrypting Cisco Type-7 with a seed of 15" do 
-    before(:each) do
-      @plaintext_hash = "remcisco"
-      @seed = 15
-      @encrypted_hash = C7Decrypt::Type7.encrypt(@plaintext_hash, @seed)
-    end
-
-    subject{@encrypted_hash}
-    its(:class) {should == ::String}
-    it {should == "15000E010723382727"}
-  end
-
-  context "when trying to decrypt a hash with an invalid first character" do
-    it "should raise an InvalidFirstCharacter Exception" do
-      expect {
-        C7Decrypt::Type7.decrypt("AA000E010723382727")
-      }.to raise_error(C7Decrypt::Type7::InvalidFirstCharacter)
-    end
-  end
-
-  context "when trying to decrypt a hash with an invalid character" do
-    it "should raise an InvalidFirstCharacter Exception" do
-      expect { 
-        C7Decrypt::Type7.decrypt("06000**E010723382727")
-      }.to raise_error(C7Decrypt::Type7::InvalidCharacter)
-    end
-  end
-  
-  context "when trying to decrypt a hash with an odd number of characters" do
-    it "should raise an InvalidFirstCharacter Exception" do
-      expect {
-        C7Decrypt::Type7.decrypt("06000E01723382727")
-      }.to raise_error(C7Decrypt::Type7::OddNumberOfCharacters)
-    end
-  end
-
-  context "when trying to encrypt a hash with an invalid high encryption seed" do
-    it "should raise an InvalidFirstCharacter Exception" do
-      expect {
-        C7Decrypt::Type7.encrypt("bananas", 16)
-      }.to raise_error(C7Decrypt::Type7::InvalidEncryptionSeed)
-    end
-  end
-
-  context "when trying to encrypt a hash with an invalid low encryption seed" do
-    it "should raise an InvalidFirstCharacter Exception" do
-      expect {
-        C7Decrypt::Type7.encrypt("bananas", -1)
-      }.to raise_error(C7Decrypt::Type7::InvalidEncryptionSeed)
-    end
-  end
-
-end