codesake-gengiscan 0.0.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +7 -0
- data/.gitignore +18 -0
- data/Gemfile +4 -0
- data/LICENSE.txt +22 -0
- data/README.md +29 -0
- data/Rakefile +1 -0
- data/bin/gengiscan +17 -0
- data/codesake-gengiscan.gemspec +28 -0
- data/lib/codesake/gengiscan.rb +24 -0
- data/lib/codesake/gengiscan/general.rb +33 -0
- data/lib/codesake/gengiscan/phpbb.rb +198 -0
- data/lib/codesake/gengiscan/version.rb +5 -0
- metadata +142 -0
checksums.yaml
ADDED
|
@@ -0,0 +1,7 @@
|
|
|
1
|
+
---
|
|
2
|
+
SHA1:
|
|
3
|
+
metadata.gz: 21aafe75fa1a8c65209ec9e1f195902be7c21846
|
|
4
|
+
data.tar.gz: 6c35c959059af8836260f59c78a10d5c500e7b2c
|
|
5
|
+
SHA512:
|
|
6
|
+
metadata.gz: b6f9c98d5b607d84faebf11726d69bacb0a309160bc38f66e43f9875128402e6d07f10ebf2db2ffd73018d42a5c396321bf64a4a790b32c20f2ab57be28b29a5
|
|
7
|
+
data.tar.gz: 82f4bc43b21bc2a5f257884c25b80ff676e25a9886b8dc2e06e59641c7ad053d335c63e793f8768577dd30a8f1678fcd6764f19e2448155eae7df9cee030a908
|
data/.gitignore
ADDED
data/Gemfile
ADDED
data/LICENSE.txt
ADDED
|
@@ -0,0 +1,22 @@
|
|
|
1
|
+
Copyright (c) 2013 Paolo Perego
|
|
2
|
+
|
|
3
|
+
MIT License
|
|
4
|
+
|
|
5
|
+
Permission is hereby granted, free of charge, to any person obtaining
|
|
6
|
+
a copy of this software and associated documentation files (the
|
|
7
|
+
"Software"), to deal in the Software without restriction, including
|
|
8
|
+
without limitation the rights to use, copy, modify, merge, publish,
|
|
9
|
+
distribute, sublicense, and/or sell copies of the Software, and to
|
|
10
|
+
permit persons to whom the Software is furnished to do so, subject to
|
|
11
|
+
the following conditions:
|
|
12
|
+
|
|
13
|
+
The above copyright notice and this permission notice shall be
|
|
14
|
+
included in all copies or substantial portions of the Software.
|
|
15
|
+
|
|
16
|
+
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
|
|
17
|
+
EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
|
|
18
|
+
MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
|
|
19
|
+
NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
|
|
20
|
+
LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
|
|
21
|
+
OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
|
|
22
|
+
WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
|
data/README.md
ADDED
|
@@ -0,0 +1,29 @@
|
|
|
1
|
+
# Codesake::Gengiscan
|
|
2
|
+
|
|
3
|
+
TODO: Write a gem description
|
|
4
|
+
|
|
5
|
+
## Installation
|
|
6
|
+
|
|
7
|
+
Add this line to your application's Gemfile:
|
|
8
|
+
|
|
9
|
+
gem 'codesake-gengiscan'
|
|
10
|
+
|
|
11
|
+
And then execute:
|
|
12
|
+
|
|
13
|
+
$ bundle
|
|
14
|
+
|
|
15
|
+
Or install it yourself as:
|
|
16
|
+
|
|
17
|
+
$ gem install codesake-gengiscan
|
|
18
|
+
|
|
19
|
+
## Usage
|
|
20
|
+
|
|
21
|
+
TODO: Write usage instructions here
|
|
22
|
+
|
|
23
|
+
## Contributing
|
|
24
|
+
|
|
25
|
+
1. Fork it
|
|
26
|
+
2. Create your feature branch (`git checkout -b my-new-feature`)
|
|
27
|
+
3. Commit your changes (`git commit -am 'Add some feature'`)
|
|
28
|
+
4. Push to the branch (`git push origin my-new-feature`)
|
|
29
|
+
5. Create new Pull Request
|
data/Rakefile
ADDED
|
@@ -0,0 +1 @@
|
|
|
1
|
+
require "bundler/gem_tasks"
|
data/bin/gengiscan
ADDED
|
@@ -0,0 +1,17 @@
|
|
|
1
|
+
#!/usr/bin/env ruby
|
|
2
|
+
require 'codesake-commons'
|
|
3
|
+
require 'codesake/gengiscan'
|
|
4
|
+
|
|
5
|
+
$logger = Codesake::Commons::Logging.instance
|
|
6
|
+
$logger.toggle_syslog
|
|
7
|
+
|
|
8
|
+
$logger.helo "gengiscan", Codesake::Gengiscan::VERSION
|
|
9
|
+
$logger.die "missing url" if ARGV[0].nil?
|
|
10
|
+
|
|
11
|
+
|
|
12
|
+
target = Codesake::Core::Target.new({:url=>ARGV[0]})
|
|
13
|
+
|
|
14
|
+
$logger.log "fingerprinting #{target.url}"
|
|
15
|
+
target.fingerprint
|
|
16
|
+
$logger.log target.cms
|
|
17
|
+
|
|
@@ -0,0 +1,28 @@
|
|
|
1
|
+
# coding: utf-8
|
|
2
|
+
lib = File.expand_path('../lib', __FILE__)
|
|
3
|
+
$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
|
|
4
|
+
require 'codesake/gengiscan/version'
|
|
5
|
+
|
|
6
|
+
Gem::Specification.new do |spec|
|
|
7
|
+
spec.name = "codesake-gengiscan"
|
|
8
|
+
spec.version = Codesake::Gengiscan::VERSION
|
|
9
|
+
spec.authors = ["Paolo Perego"]
|
|
10
|
+
spec.email = ["paolo@armoredcode.com"]
|
|
11
|
+
spec.description = %q{codesake-gengiscan is part of the codesake.com project. It leverages the information gathering steps for a web application penetration test by fingerprinting the target.}
|
|
12
|
+
spec.summary = %q{codesake-gengiscan is a tool to fingerprint technology used in a web application}
|
|
13
|
+
spec.homepage = ""
|
|
14
|
+
spec.license = "MIT"
|
|
15
|
+
|
|
16
|
+
spec.files = `git ls-files`.split($/)
|
|
17
|
+
spec.executables = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
|
|
18
|
+
spec.test_files = spec.files.grep(%r{^(test|spec|features)/})
|
|
19
|
+
spec.require_paths = ["lib"]
|
|
20
|
+
|
|
21
|
+
spec.add_development_dependency "bundler", "~> 1.3"
|
|
22
|
+
spec.add_development_dependency "rake"
|
|
23
|
+
|
|
24
|
+
spec.add_dependency('nokogiri')
|
|
25
|
+
spec.add_dependency('mechanize')
|
|
26
|
+
spec.add_dependency('codesake-commons')
|
|
27
|
+
spec.add_development_dependency('webmock')
|
|
28
|
+
end
|
|
@@ -0,0 +1,24 @@
|
|
|
1
|
+
require "codesake/gengiscan/version"
|
|
2
|
+
require 'codesake/gengiscan/phpbb'
|
|
3
|
+
require 'codesake/gengiscan/general'
|
|
4
|
+
|
|
5
|
+
module Codesake
|
|
6
|
+
module Core
|
|
7
|
+
class Target
|
|
8
|
+
|
|
9
|
+
def fingerprint
|
|
10
|
+
get_page unless has_page?
|
|
11
|
+
|
|
12
|
+
phpbb = Codesake::Gengiscan::Phpbb.new({:cookies=>@cookies, :page=>@page, :url=>@url, :agent=>@agent})
|
|
13
|
+
phpbb.detect
|
|
14
|
+
general = Codesake::Gengiscan::General.new({:page=>@page})
|
|
15
|
+
general.detect
|
|
16
|
+
$logger.log phpbb.phpbb_result
|
|
17
|
+
$logger.log general.general_result
|
|
18
|
+
|
|
19
|
+
end
|
|
20
|
+
|
|
21
|
+
end
|
|
22
|
+
end
|
|
23
|
+
end
|
|
24
|
+
|
|
@@ -0,0 +1,33 @@
|
|
|
1
|
+
module Codesake
|
|
2
|
+
module Gengiscan
|
|
3
|
+
class General
|
|
4
|
+
|
|
5
|
+
attr_reader :general_result
|
|
6
|
+
|
|
7
|
+
def initialize(options={})
|
|
8
|
+
@cookies = options[:cookies]
|
|
9
|
+
@page = options[:page]
|
|
10
|
+
@url = options[:url]
|
|
11
|
+
@general_result = {}
|
|
12
|
+
end
|
|
13
|
+
|
|
14
|
+
def detect
|
|
15
|
+
|
|
16
|
+
@general_result = {:code=>@page.code, :server=>@page.header['server'], :powered=>@page.header['X-Powered-By'], :generator=>get_generator_signature(@page.body)}
|
|
17
|
+
|
|
18
|
+
end
|
|
19
|
+
|
|
20
|
+
private
|
|
21
|
+
def get_generator_signature(body)
|
|
22
|
+
generator = ""
|
|
23
|
+
doc=Nokogiri::HTML(body)
|
|
24
|
+
doc.xpath("//meta[@name='generator']/@content").each do |value|
|
|
25
|
+
generator = value.value
|
|
26
|
+
end
|
|
27
|
+
|
|
28
|
+
generator
|
|
29
|
+
end
|
|
30
|
+
|
|
31
|
+
end
|
|
32
|
+
end
|
|
33
|
+
end
|
|
@@ -0,0 +1,198 @@
|
|
|
1
|
+
require 'mechanize'
|
|
2
|
+
require 'nokogiri'
|
|
3
|
+
require 'digest/md5'
|
|
4
|
+
|
|
5
|
+
module Codesake
|
|
6
|
+
module Gengiscan
|
|
7
|
+
class Phpbb
|
|
8
|
+
|
|
9
|
+
attr_reader :phpbb_result
|
|
10
|
+
|
|
11
|
+
def initialize(options={})
|
|
12
|
+
@cookies = options[:cookies]
|
|
13
|
+
@page = options[:page]
|
|
14
|
+
@url = options[:url]
|
|
15
|
+
@agent = options[:agent]
|
|
16
|
+
@phpbb_result = {}
|
|
17
|
+
end
|
|
18
|
+
|
|
19
|
+
def detect
|
|
20
|
+
begin
|
|
21
|
+
@phpbb_result[:cookies] = phpbb_cookie_detect
|
|
22
|
+
@phpbb_result[:body] = phpbb_body_detect
|
|
23
|
+
@phpbb_result[:changelog] = nil
|
|
24
|
+
@phpbb_result[:style] = phpbb_theme_cfg_detect
|
|
25
|
+
|
|
26
|
+
changelog_html = changelog_body
|
|
27
|
+
@phpbb_result[:changelog] = phpbb_changelog_checksum(changelog_html.body) unless changelog_html.nil?
|
|
28
|
+
@phpbb_result[:changelog] = {} if changelog_html.nil?
|
|
29
|
+
|
|
30
|
+
return @phpbb_result if is_phpbb?
|
|
31
|
+
|
|
32
|
+
rescue => e
|
|
33
|
+
$logger.err("Codesake::Gengiscan::Phpbb.detect(): #{e.message}")
|
|
34
|
+
end
|
|
35
|
+
return {}
|
|
36
|
+
end
|
|
37
|
+
|
|
38
|
+
def changelog_body
|
|
39
|
+
begin
|
|
40
|
+
changelog_html = @agent.get(@url+'/docs/CHANGELOG.html')
|
|
41
|
+
rescue => e
|
|
42
|
+
$logger.warn("error retrieving #{@url}/docs/CHANGELOG.html: #{e.message}")
|
|
43
|
+
return nil
|
|
44
|
+
end
|
|
45
|
+
changelog_html
|
|
46
|
+
end
|
|
47
|
+
def is_phpbb?
|
|
48
|
+
return false if @phpbb_result.empty?
|
|
49
|
+
return true if @phpbb_result[:style][:detected] || @phpbb_result[:changelog][:detected] || @phpbb_result[:cookies][:detected] || @phpbb_result[:body][:detected]
|
|
50
|
+
false
|
|
51
|
+
end
|
|
52
|
+
|
|
53
|
+
private
|
|
54
|
+
def get_phpbb_version(p)
|
|
55
|
+
return p[:style][:version] if p[:style][:detected]
|
|
56
|
+
return p[:changelog][:version] if p[:changelog][:detected]
|
|
57
|
+
return p[:cookies][:version] if p[:cookies][:detected]
|
|
58
|
+
|
|
59
|
+
"unknown"
|
|
60
|
+
|
|
61
|
+
end
|
|
62
|
+
|
|
63
|
+
def phpbb_changelog_checksum(content="")
|
|
64
|
+
changelog_hashes = [
|
|
65
|
+
{ :md5=>'3a3a98deb01ca9a41d60d0cd30f61e22', :version=>'2.0.4' },
|
|
66
|
+
{ :md5=>'d469f1cee34e4fb55f265bec0f0c14a8', :version=>'2.0.5' },
|
|
67
|
+
{ :md5=>'5905fc107b1a68762ac0d06c0fecc7b9', :version=>'2.0.6' },
|
|
68
|
+
{ :md5=>'7e9a7f6fb9aa3fc3debbdc09ca1941de', :version=>'2.0.7' },
|
|
69
|
+
{ :md5=>'d0406ed8e5cf4bd82192f3c88bb7fcd2', :version=>'2.0.8' },
|
|
70
|
+
{ :md5=>'734f0ecaeb1dc40ce64c1af60d082dcc', :version=>'2.0.8a' },
|
|
71
|
+
{ :md5=>'603328ab56f740a8eba90d435132da9f', :version=>'2.0.9' },
|
|
72
|
+
{ :md5=>'6dca72f720e5fd098e33e06ff7617bc2', :version=>'2.0.10' },
|
|
73
|
+
{ :md5=>'1e11b01aac9fe84682596d2fa38c9265', :version=>'2.0.11' },
|
|
74
|
+
{ :md5=>'7262663177c2cb9440a3250989de1847', :version=>'2.0.12' },
|
|
75
|
+
{ :md5=>'11771948789983e496646c12eb2709e6', :version=>'2.0.13' },
|
|
76
|
+
{ :md5=>'bd9d2285839fb7e15a556f0ba2f7ae2c', :version=>'2.0.14' },
|
|
77
|
+
{ :md5=>'d636b63d299cbfb2948450e80d5be7d6', :version=>'2.0.15' },
|
|
78
|
+
{ :md5=>'d4d2f1e38096a4b32e22dff57773c62d', :version=>'2.0.16' },
|
|
79
|
+
{ :md5=>'bb29b25a9734d10328f970001f0295b3', :version=>'2.0.17' },
|
|
80
|
+
{ :md5=>'3058647f25b2d3d4804cd8e3e69a938f', :version=>'2.0.18' },
|
|
81
|
+
{ :md5=>'4880b1bc3a16771e934b7f69b4d87f2e', :version=>'2.0.19' },
|
|
82
|
+
{ :md5=>'b90c8f20ebfb920cc9ac332b60960cef', :version=>'2.0.20' },
|
|
83
|
+
{ :md5=>'90520361b651f583853fc7058fe10256', :version=>'2.0.21' },
|
|
84
|
+
{ :md5=>'4f1e462f7da7df826a07d1cf0faae4ae', :version=>'2.0.22' },
|
|
85
|
+
{ :md5=>'3eba9db5133b98df8a54abc55be34307', :version=>'2.0.23' },
|
|
86
|
+
{ :md5=>'e60f14eba6d00d56956c16f8a94ca140', :version=>'3.0-B5' },
|
|
87
|
+
{ :md5=>'e60f14eba6d00d56956c16f8a94ca140', :version=>'3.0-RC1' },
|
|
88
|
+
{ :md5=>'565c3b1933cda61295e54c1f141ef8b7', :version=>'3.0-RC2' },
|
|
89
|
+
{ :md5=>'f3f30e22403564e99e64d09f7f731dea', :version=>'3.0-RC3' },
|
|
90
|
+
{ :md5=>'63b9c4065b2aabda328a1c9b0677f986', :version=>'3.0-RC4' },
|
|
91
|
+
{ :md5=>'3d7aed030411838411a91ae4fcd213e4', :version=>'3.0-RC5' },
|
|
92
|
+
{ :md5=>'074417fdfca31a8d7349c88e8081d8cd', :version=>'3.0-RC6' },
|
|
93
|
+
{ :md5=>'2e139da54418cd096405d58e049bffd9', :version=>'3.0-RC7' },
|
|
94
|
+
{ :md5=>'e7de4c40a4fbf920aa0ef8d935564ed2', :version=>'3.0-RC8' },
|
|
95
|
+
{ :md5=>'dc1866d542cfcfface533b024ac3da77', :version=>'3.0.0' },
|
|
96
|
+
{ :md5=>'cfa612fc182916fd76467cce11c2e708', :version=>'3.0.1' },
|
|
97
|
+
{ :md5=>'fe1e7b8f3fc448ebfb7b2c1c5ec1e2d7', :version=>'3.0.1-RC1' },
|
|
98
|
+
{ :md5=>'59d04c38f084936b68551a0acccd3ea2', :version=>'3.0.2' },
|
|
99
|
+
{ :md5=>'f8b7389f4d5e61d0041430b5986378e2', :version=>'3.0.2-RC1' },
|
|
100
|
+
{ :md5=>'59d04c38f084936b68551a0acccd3ea2', :version=>'3.0.2-RC2' },
|
|
101
|
+
{ :md5=>'f4a6893faa9918962db5858f8b96c600', :version=>'3.0.3' },
|
|
102
|
+
{ :md5=>'f4a6893faa9918962db5858f8b96c600', :version=>'3.0.3-RC1' },
|
|
103
|
+
{ :md5=>'d638931f610f6a7073cf7bb43bf6370f', :version=>'3.0.4' },
|
|
104
|
+
{ :md5=>'d638931f610f6a7073cf7bb43bf6370f', :version=>'3.0.4-RC1' },
|
|
105
|
+
{ :md5=>'931e4dd982451b9baf4dbfa3a6d6da4e', :version=>'3.0.5' },
|
|
106
|
+
{ :md5=>'0fdcbb67c9773f490d3f0691a6dd4db9', :version=>'3.0.5-RC1' },
|
|
107
|
+
{ :md5=>'aedf28d7599038cf0b07e9404c69ffca', :version=>'3.0.6' },
|
|
108
|
+
{ :md5=>'5c40c50b6ca823ced16edac6aa8b2a1e', :version=>'3.0.6-RC1' },
|
|
109
|
+
{ :md5=>'38e7d25631ab2238a149c4880b69e42f', :version=>'3.0.6-RC2' },
|
|
110
|
+
{ :md5=>'4ac3967261c38fe4e934fe89f55f4a7a', :version=>'3.0.6-RC3' },
|
|
111
|
+
{ :md5=>'e1854e1d6c7058eb10aee1d0a2acd01b', :version=>'3.0.6-RC4' },
|
|
112
|
+
{ :md5=>'fc9c79e09cd265c44b025f08bd6bce30', :version=>'3.0.7' },
|
|
113
|
+
{ :md5=>'9354df71b5f83de36b0e51b833b2917b', :version=>'3.0.7-RC1' },
|
|
114
|
+
{ :md5=>'a2a05cfceecb678f843060ca9980dd5a', :version=>'3.0.7-RC2' },
|
|
115
|
+
{ :md5=>'ff4e8980be0af81ed2702dc9ef4c5e6c', :version=>'3.0.7-PL1' },
|
|
116
|
+
{ :md5=>'30f539c93140b2933765800b81e05707', :version=>'3.0.8' },
|
|
117
|
+
{ :md5=>'a544ff00e1242e21210ccc1466c02bac', :version=>'3.0.8-RC1' },
|
|
118
|
+
{ :md5=>'3f5c6ba11ff90cff9ced65833bdcfe8a', :version=>'3.0.9' },
|
|
119
|
+
{ :md5=>'eca607ffc079c0236bdc281d92c3db86', :version=>'3.0.9-RC1' },
|
|
120
|
+
{ :md5=>'94f5af08e7962466d50fcda1c1dc25a0', :version=>'3.0.9-RC2' },
|
|
121
|
+
{ :md5=>'ed7033cfc20fdf2b58bdebfb078cf8ae', :version=>'3.0.9-RC3' },
|
|
122
|
+
{ :md5=>'3f5c6ba11ff90cff9ced65833bdcfe8a', :version=>'3.0.9-RC4' },
|
|
123
|
+
{ :md5=>'4a57a4ad14dc5726fa76aea354c4a7b9', :version=>'3.0.10' },
|
|
124
|
+
{ :md5=>'ea02497f03a5a713c89a3a08da7e9818', :version=>'3.0.10-RC1' },
|
|
125
|
+
{ :md5=>'a69edd44fff3366c037d543a22d07ac3', :version=>'3.0.10-RC2' },
|
|
126
|
+
{ :md5=>'4a57a4ad14dc5726fa76aea354c4a7b9', :version=>'3.0.10-RC3' },
|
|
127
|
+
{ :md5=>'38c91a4e7015bd99ea0189be77d131a8', :version=>'3.0.11' } ,
|
|
128
|
+
{ :md5=>'69f1aad5d8eb2402f3290828232baced', :version=>'3.0.11-RC1' },
|
|
129
|
+
{ :md5=>'38c91a4e7015bd99ea0189be77d131a8', :version=>'3.0.11-RC2' },
|
|
130
|
+
{ :md5=>'fbe3fde19e59d20a1c400164e56fe972', :version=>'3.0.12-RC1' },
|
|
131
|
+
{ :md5=>'14fefb5e6fc8948aa3ef0aa50ee75571', :version=>'3.0.12-RC2' },
|
|
132
|
+
{ :md5=>'a52d4327967adf6b86cd5d18ebd49996', :version=>'3.0.12-RC3' },
|
|
133
|
+
{ :md5=>'6037b58ce1923581fa61941a6aaf815b', :version=>'3.0.12' }
|
|
134
|
+
]
|
|
135
|
+
|
|
136
|
+
chksum = Digest::MD5.hexdigest(content)
|
|
137
|
+
changelog_hashes.each do |hash|
|
|
138
|
+
return {:version=>hash[:version], :detected=>true} if hash[:md5] == chksum
|
|
139
|
+
end
|
|
140
|
+
|
|
141
|
+
{:version=>"", :detected=>false}
|
|
142
|
+
end
|
|
143
|
+
|
|
144
|
+
def phpbb_body_detect
|
|
145
|
+
# 1. detect if we have phpbb_logo.gif
|
|
146
|
+
@page.images.each do |img|
|
|
147
|
+
return {:version=>"unknown", :detected=>true} if ! (img.src =~ /logo_phpBB.gif/).nil?
|
|
148
|
+
end
|
|
149
|
+
|
|
150
|
+
# 2. check for copyright notice
|
|
151
|
+
return {:version=>"unknown", :detected=>true} if !(@page.body =~ /We request you retain the full copyright notice below including the link to www.phpbb.com./).nil?
|
|
152
|
+
|
|
153
|
+
# 3. check for "Powered by" link
|
|
154
|
+
@page.links.each do |link|
|
|
155
|
+
return {:version=>"unknown", :detected=>true} if link.href == "http://www.phpbb.com" && link.text.downcase.match("powered by")
|
|
156
|
+
end
|
|
157
|
+
{:version=>"", :detected=>false}
|
|
158
|
+
end
|
|
159
|
+
|
|
160
|
+
def phpbb_theme_cfg_detect
|
|
161
|
+
|
|
162
|
+
@page.links.each do |link|
|
|
163
|
+
theme_name = link.href.match(/styles\/(\w*)\//) unless link.href.nil?
|
|
164
|
+
unless theme_name.nil?
|
|
165
|
+
|
|
166
|
+
link = @url + "/styles/#{theme_name}/style.cfg"
|
|
167
|
+
|
|
168
|
+
$logger.log("trying to fetch #{link}")
|
|
169
|
+
cfg = @agent.get(link)
|
|
170
|
+
if cfg.code == "200"
|
|
171
|
+
$logger.ok("style.cfg found!")
|
|
172
|
+
version = cfg.body.match(/version(\s+)=(\s+)(\w.*)/)
|
|
173
|
+
return {:version=>version, :detected=>true}
|
|
174
|
+
end
|
|
175
|
+
end
|
|
176
|
+
end
|
|
177
|
+
{:version=>"", :detected=>false}
|
|
178
|
+
end
|
|
179
|
+
|
|
180
|
+
def phpbb_cookie_detect
|
|
181
|
+
|
|
182
|
+
first = nil
|
|
183
|
+
second = false
|
|
184
|
+
third = false
|
|
185
|
+
|
|
186
|
+
@cookies.each do |c|
|
|
187
|
+
return {:version=>"2", :detected=>true} if c.name =~ /phpbb([\d])mysql_data/
|
|
188
|
+
first = c.name.scan(/([^ ]+)_u/).flatten.first if first.nil?
|
|
189
|
+
second = (c.name == "#{first}_k") if ! second
|
|
190
|
+
third = (c.name == "#{first}_sid") if ! third
|
|
191
|
+
end
|
|
192
|
+
return {:version=>"3", :detected=>true} if ! first.nil? && second && third
|
|
193
|
+
{:version=>"", :detected=>false}
|
|
194
|
+
end
|
|
195
|
+
|
|
196
|
+
end
|
|
197
|
+
end
|
|
198
|
+
end
|
metadata
ADDED
|
@@ -0,0 +1,142 @@
|
|
|
1
|
+
--- !ruby/object:Gem::Specification
|
|
2
|
+
name: codesake-gengiscan
|
|
3
|
+
version: !ruby/object:Gem::Version
|
|
4
|
+
version: 0.0.1
|
|
5
|
+
platform: ruby
|
|
6
|
+
authors:
|
|
7
|
+
- Paolo Perego
|
|
8
|
+
autorequire:
|
|
9
|
+
bindir: bin
|
|
10
|
+
cert_chain: []
|
|
11
|
+
date: 2013-11-12 00:00:00.000000000 Z
|
|
12
|
+
dependencies:
|
|
13
|
+
- !ruby/object:Gem::Dependency
|
|
14
|
+
name: bundler
|
|
15
|
+
requirement: !ruby/object:Gem::Requirement
|
|
16
|
+
requirements:
|
|
17
|
+
- - ~>
|
|
18
|
+
- !ruby/object:Gem::Version
|
|
19
|
+
version: '1.3'
|
|
20
|
+
type: :development
|
|
21
|
+
prerelease: false
|
|
22
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
23
|
+
requirements:
|
|
24
|
+
- - ~>
|
|
25
|
+
- !ruby/object:Gem::Version
|
|
26
|
+
version: '1.3'
|
|
27
|
+
- !ruby/object:Gem::Dependency
|
|
28
|
+
name: rake
|
|
29
|
+
requirement: !ruby/object:Gem::Requirement
|
|
30
|
+
requirements:
|
|
31
|
+
- - '>='
|
|
32
|
+
- !ruby/object:Gem::Version
|
|
33
|
+
version: '0'
|
|
34
|
+
type: :development
|
|
35
|
+
prerelease: false
|
|
36
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
37
|
+
requirements:
|
|
38
|
+
- - '>='
|
|
39
|
+
- !ruby/object:Gem::Version
|
|
40
|
+
version: '0'
|
|
41
|
+
- !ruby/object:Gem::Dependency
|
|
42
|
+
name: nokogiri
|
|
43
|
+
requirement: !ruby/object:Gem::Requirement
|
|
44
|
+
requirements:
|
|
45
|
+
- - '>='
|
|
46
|
+
- !ruby/object:Gem::Version
|
|
47
|
+
version: '0'
|
|
48
|
+
type: :runtime
|
|
49
|
+
prerelease: false
|
|
50
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
51
|
+
requirements:
|
|
52
|
+
- - '>='
|
|
53
|
+
- !ruby/object:Gem::Version
|
|
54
|
+
version: '0'
|
|
55
|
+
- !ruby/object:Gem::Dependency
|
|
56
|
+
name: mechanize
|
|
57
|
+
requirement: !ruby/object:Gem::Requirement
|
|
58
|
+
requirements:
|
|
59
|
+
- - '>='
|
|
60
|
+
- !ruby/object:Gem::Version
|
|
61
|
+
version: '0'
|
|
62
|
+
type: :runtime
|
|
63
|
+
prerelease: false
|
|
64
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
65
|
+
requirements:
|
|
66
|
+
- - '>='
|
|
67
|
+
- !ruby/object:Gem::Version
|
|
68
|
+
version: '0'
|
|
69
|
+
- !ruby/object:Gem::Dependency
|
|
70
|
+
name: codesake-commons
|
|
71
|
+
requirement: !ruby/object:Gem::Requirement
|
|
72
|
+
requirements:
|
|
73
|
+
- - '>='
|
|
74
|
+
- !ruby/object:Gem::Version
|
|
75
|
+
version: '0'
|
|
76
|
+
type: :runtime
|
|
77
|
+
prerelease: false
|
|
78
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
79
|
+
requirements:
|
|
80
|
+
- - '>='
|
|
81
|
+
- !ruby/object:Gem::Version
|
|
82
|
+
version: '0'
|
|
83
|
+
- !ruby/object:Gem::Dependency
|
|
84
|
+
name: webmock
|
|
85
|
+
requirement: !ruby/object:Gem::Requirement
|
|
86
|
+
requirements:
|
|
87
|
+
- - '>='
|
|
88
|
+
- !ruby/object:Gem::Version
|
|
89
|
+
version: '0'
|
|
90
|
+
type: :development
|
|
91
|
+
prerelease: false
|
|
92
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
93
|
+
requirements:
|
|
94
|
+
- - '>='
|
|
95
|
+
- !ruby/object:Gem::Version
|
|
96
|
+
version: '0'
|
|
97
|
+
description: codesake-gengiscan is part of the codesake.com project. It leverages
|
|
98
|
+
the information gathering steps for a web application penetration test by fingerprinting
|
|
99
|
+
the target.
|
|
100
|
+
email:
|
|
101
|
+
- paolo@armoredcode.com
|
|
102
|
+
executables:
|
|
103
|
+
- gengiscan
|
|
104
|
+
extensions: []
|
|
105
|
+
extra_rdoc_files: []
|
|
106
|
+
files:
|
|
107
|
+
- .gitignore
|
|
108
|
+
- Gemfile
|
|
109
|
+
- LICENSE.txt
|
|
110
|
+
- README.md
|
|
111
|
+
- Rakefile
|
|
112
|
+
- bin/gengiscan
|
|
113
|
+
- codesake-gengiscan.gemspec
|
|
114
|
+
- lib/codesake/gengiscan.rb
|
|
115
|
+
- lib/codesake/gengiscan/general.rb
|
|
116
|
+
- lib/codesake/gengiscan/phpbb.rb
|
|
117
|
+
- lib/codesake/gengiscan/version.rb
|
|
118
|
+
homepage: ''
|
|
119
|
+
licenses:
|
|
120
|
+
- MIT
|
|
121
|
+
metadata: {}
|
|
122
|
+
post_install_message:
|
|
123
|
+
rdoc_options: []
|
|
124
|
+
require_paths:
|
|
125
|
+
- lib
|
|
126
|
+
required_ruby_version: !ruby/object:Gem::Requirement
|
|
127
|
+
requirements:
|
|
128
|
+
- - '>='
|
|
129
|
+
- !ruby/object:Gem::Version
|
|
130
|
+
version: '0'
|
|
131
|
+
required_rubygems_version: !ruby/object:Gem::Requirement
|
|
132
|
+
requirements:
|
|
133
|
+
- - '>='
|
|
134
|
+
- !ruby/object:Gem::Version
|
|
135
|
+
version: '0'
|
|
136
|
+
requirements: []
|
|
137
|
+
rubyforge_project:
|
|
138
|
+
rubygems_version: 2.0.4
|
|
139
|
+
signing_key:
|
|
140
|
+
specification_version: 4
|
|
141
|
+
summary: codesake-gengiscan is a tool to fingerprint technology used in a web application
|
|
142
|
+
test_files: []
|