emonti-buby 1.1.4 → 1.1.4.1

data/History.txt

@@ -1,3 +1,8 @@
+== 1.1.4.1 / 2009-09-22
+* fix
+  * Buby.harvest_cookies_from_history() was broken. 
+    It now implements select() block semantics and always returns an array.
+    
 == 1.1.4 / 2009-09-14
 * enhancements
   * buby got implants! (har har)

data/buby.gemspec

@@ -2,7 +2,7 @@
 
 Gem::Specification.new do |s|
   s.name = %q{buby}
-  s.version = "1.1.4"
+  s.version = "1.1.4.1"
 
   s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
   s.authors = ["Eric Monti - Matasano Security"]

data/lib/buby.rb

@@ -644,12 +644,18 @@ class Buby
   #   urlrx     = optional: regular expression to match urls against
   #   statefile = optional: filename for a burp session file to temporarily load
   #               and harvest from.
+  #
+  # Takes an optional block as additional 'select' criteria for cookies.
+  # The block return value of true/false will determine whether a cookie is
+  # string is selected.
   def harvest_cookies_from_history(cookie=nil, urlrx=nil, statefile=nil)
     ret = []
     search_proxy_history(statefile, urlrx) do |hrr|
-      ret += hrr.rsp_headers.select do |h| 
-        h[0].downcase == 'set-cookie'
-      end.map{|h| h[1]}
+      if heads=hrr.rsp_headers
+        ret += heads.select do |h| 
+          h[0].downcase == 'set-cookie' and (not block_given? or yield(h[1]))
+        end.map{|h| h[1]}
+      end
     end
     return ret
   end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification 
 name: emonti-buby
 version: !ruby/object:Gem::Version 
-  version: 1.1.4
+  version: 1.1.4.1
 platform: ruby
 authors: 
 - Eric Monti - Matasano Security