RubyGems - evil-winrm - Versions diffs - 3.4 → 3.5 - Mend

evil-winrm 3.4 → 3.5

Files changed (12) hide show

checksums.yaml +4 -4
data/LICENSE +0 -0
data/evil-winrm.rb +891 -836
metadata +28 -33
data/.editorconfig +0 -21
data/CHANGELOG.md +0 -94
data/CODE_OF_CONDUCT.md +0 -76
data/CONTRIBUTING.md +0 -22
data/Dockerfile +0 -64
data/Gemfile +0 -3
data/README.md +0 -530
data/resources/evil-winrm_logo.png +0 -0

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: evil-winrm
 version: !ruby/object:Gem::Version
-  version: '3.4'
+  version: '3.5'
 platform: ruby
 authors:
 - CyberVaca
@@ -11,48 +11,42 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-06-11 00:00:00.000000000 Z
+date: 2023-04-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: winrm
+  name: fileutils
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.3'
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 2.3.2
+        version: '1.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.3'
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 2.3.2
+        version: '1.0'
 - !ruby/object:Gem::Dependency
-  name: winrm-fs
+  name: logger
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.3'
+        version: '1.4'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 1.3.2
+        version: 1.4.3
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.3'
+        version: '1.4'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 1.3.2
+        version: 1.4.3
 - !ruby/object:Gem::Dependency
   name: stringio
   requirement: !ruby/object:Gem::Requirement
@@ -68,39 +62,45 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '3.0'
 - !ruby/object:Gem::Dependency
-  name: logger
+  name: winrm
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.4'
+        version: '2.3'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 1.4.3
+        version: 2.3.2
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.4'
+        version: '2.3'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 1.4.3
+        version: 2.3.2
 - !ruby/object:Gem::Dependency
-  name: fileutils
+  name: winrm-fs
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.0'
+        version: '1.3'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.3.2
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.0'
+        version: '1.3'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.3.2
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
@@ -123,24 +123,19 @@ executables:
 extensions: []
 extra_rdoc_files: []
 files:
-- ".editorconfig"
-- CHANGELOG.md
-- CODE_OF_CONDUCT.md
-- CONTRIBUTING.md
-- Dockerfile
-- Gemfile
 - LICENSE
-- README.md
 - bin/evil-winrm
 - evil-winrm.rb
-- resources/evil-winrm_logo.png
 homepage: https://github.com/Hackplayers/evil-winrm#readme
 licenses:
 - LGPL-3.0
 metadata:
+  yard.run: yard
+  changelog_uri: https://github.com/Hackplayers/evil-winrm/blob/master/CHANGELOG.md
+  documentation_uri: https://rubydoc.info/gems/evil-winrm
   homepage_uri: https://github.com/Hackplayers/evil-winrm#readme
   source_code_uri: https://github.com/Hackplayers/evil-winrm
-  changelog_uri: https://github.com/Hackplayers/evil-winrm/blob/master/CHANGELOG.md
+  rubygems_mfa_required: 'true'
 post_install_message: Happy hacking! :)
 rdoc_options: []
 require_paths:

data/.editorconfig DELETED Viewed

@@ -1,21 +0,0 @@
-#EditorConfig: http://editorconfig.org
-root = true
-[*]
-charset = utf-8
-end_of_line = lf
-insert_final_newline = true
-[*.{rb,md}]
-indent_style = space
-indent_size = 4
-trim_trailing_whitespace = true
-[Gemfile]
-indent_style = space
-indent_size = 4
-[Dockerfile]
-indent_style = space
-indent_size = 4

data/CHANGELOG.md DELETED Viewed

@@ -1,94 +0,0 @@
-### 3.4
- - Added CI files to be used in Github actions for Docker automated building
- - Improvements on dynamic AMSI bypass
- - Added gemspec file to repo for gem building
-### 3.3
- - Fixed missing output messages for Invoke-Binary
- - Extracted AMSI bypass from menu to avoid menu problems due to M$ AV signatures
- - Dynamic AMSI bypass implemented to avoid AV signatures
-### 3.2
- - Fixed minor duplicated code problem
- - Dockerfile improvements
- - AMSI bypass update
-### 3.1
- - Version released just to quick fix ruby dependencies on gem
-### 3.0
- - Remote files/directories autocomplete feature
- - Added option to log commands and outputs to a log file (Thanks to Borch Cañavate)
-### 2.4
- - File permission access error now handled in exception to avoid losing connection
- - Improvements on bundler installation method
- - Added spn (Service Principal Names) option param for kerberos auth to set some different than default HTTP
- - Fixed prompt colors (ANSI)
-### 2.3
- - Fixed Invoke-Binary arguments
- - Service function improved, now show privileges over the services
-### 2.2
- - Added progress bar for file uploads/downloads
- - New ascii art on menu
- - Name of Dll loader refactored
- - Help added to Invoke-Binary
- - Fixed Invoke-Binary to accept any number of arguments separated by commas
-### 2.1
- - Fixed required params for certificates auth
- - Removed trailing spaces for better visualization
- - Added command line option to disable colors
- - Improved Windows compatibility
- - Trap capturing to avoid accidental shell exit on Ctrl+C
-### 2.0
- - Fix GSSAPI error
- - Docker support added
-### 1.9
- - Added AMSI bypass
- - Fix the ps1 load with large size
- - Kerberos auth support
- - Improve upload/download functionality
-### 1.8
- - Added pass-the-hash feature
- - Added bundler installation method
-### 1.7
- - Added x64 compatibility to use Donut payloads
-### 1.6
- - Added SSL and certificates support
- - Upload/download messages improved
- - Updated documentation
- - Removed scripts and executables dir as mandatory arguments
- - Added logo
-### 1.5
- - Refactor to class
- - Fixed upload/download error
- - Added help arguments for connection
-### 1.4
- - Small fixes
-### 1.3
- - Added colors to shell prompt
- - Added images to documentation
-### 1.2
- - Added some validations
- - Added badges to documentation
-### 1.1
- - Translation to english
- - Added first documentation
- - Added colors for messages
- - First ruby gem created
-### 1.0
- - Initial commit

data/CODE_OF_CONDUCT.md DELETED Viewed

@@ -1,76 +0,0 @@
-# Contributor Covenant Code of Conduct
-## Our Pledge
-In the interest of fostering an open and welcoming environment, we as
-contributors and maintainers pledge to making participation in our project and
-our community a harassment-free experience for everyone, regardless of age, body
-size, disability, ethnicity, sex characteristics, gender identity and expression,
-level of experience, education, socio-economic status, nationality, personal
-appearance, race, religion, or sexual identity and orientation.
-## Our Standards
-Examples of behavior that contributes to creating a positive environment
-include:
-* Using welcoming and inclusive language
-* Being respectful of differing viewpoints and experiences
-* Gracefully accepting constructive criticism
-* Focusing on what is best for the community
-* Showing empathy towards other community members
-Examples of unacceptable behavior by participants include:
-* The use of sexualized language or imagery and unwelcome sexual attention or
- advances
-* Trolling, insulting/derogatory comments, and personal or political attacks
-* Public or private harassment
-* Publishing others' private information, such as a physical or electronic
- address, without explicit permission
-* Other conduct which could reasonably be considered inappropriate in a
- professional setting
-## Our Responsibilities
-Project maintainers are responsible for clarifying the standards of acceptable
-behavior and are expected to take appropriate and fair corrective action in
-response to any instances of unacceptable behavior.
-Project maintainers have the right and responsibility to remove, edit, or
-reject comments, commits, code, wiki edits, issues, and other contributions
-that are not aligned to this Code of Conduct, or to ban temporarily or
-permanently any contributor for other behaviors that they deem inappropriate,
-threatening, offensive, or harmful.
-## Scope
-This Code of Conduct applies both within project spaces and in public spaces
-when an individual is representing the project or its community. Examples of
-representing a project or community include using an official project e-mail
-address, posting via an official social media account, or acting as an appointed
-representative at an online or offline event. Representation of a project may be
-further defined and clarified by project maintainers.
-## Enforcement
-Instances of abusive, harassing, or otherwise unacceptable behavior may be
-reported by contacting the project team at oscar.alfonso.diaz@gmail.com. All
-complaints will be reviewed and investigated and will result in a response that
-is deemed necessary and appropriate to the circumstances. The project team is
-obligated to maintain confidentiality with regard to the reporter of an incident.
-Further details of specific enforcement policies may be posted separately.
-Project maintainers who do not follow or enforce the Code of Conduct in good
-faith may face temporary or permanent repercussions as determined by other
-members of the project's leadership.
-## Attribution
-This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4,
-available at https://www.contributor-covenant.org/version/1/4/code-of-conduct.html
-[homepage]: https://www.contributor-covenant.org
-For answers to common questions about this code of conduct, see
-https://www.contributor-covenant.org/faq

data/CONTRIBUTING.md DELETED Viewed

@@ -1,22 +0,0 @@
-# Contributing
-Hello, thank you for your interest into contributing to this project. Your help is really appreciated.
-Please note we have a [Code of Conduct], please follow it in all your interactions with the project.
----
-## Git Workflow Policy
-1. Direct push to [Master] is not allowed.
-2. Pull Requests to [Master] are not allowed.
-3. Usually, commits and pull requests should be done on [Dev] branch. If you have any doubt, don't hesitate to ask first.
-4. Temporary branches may be existing for specific features, be pretty sure that the branch you are going to commit on is the right one. Ask first if you have any doubt.
-5. Any branch will be finally merged to [Dev], there it will be reviewed and tested deeply before being merged to [Master].
-6. All merges from [Dev] to [Master] are a new `evil-winrm` release. This merges to [Master] will be performed and reviewed exclusively by the staff.
----
-[Code of Conduct]: CODE_OF_CONDUCT.md
-[Master]: https://github.com/Hackplayers/evil-winrm/tree/master
-[Dev]: https://github.com/Hackplayers/evil-winrm/tree/dev

data/Dockerfile DELETED Viewed

@@ -1,64 +0,0 @@
-# Evil-WinRM Dockerfile
-# Base image
-FROM ruby:latest
-# Credits & Data
-LABEL \
-    name="Evil-WinRM" \
-    author="CyberVaca <cybervaca@gmail.com>" \
-    maintainer="OscarAkaElvis <oscar.alfonso.diaz@gmail.com>" \
-    description="The ultimate WinRM shell for hacking/pentesting"
-#Env vars
-ENV EVILWINRM_URL="https://github.com/Hackplayers/evil-winrm.git"
-# Install dependencies
-RUN gem install \
-    winrm \
-    winrm-fs \
-    stringio \
-    logger \
-    fileutils
-# Create volume for powershell scripts
-RUN mkdir /ps1_scripts
-VOLUME /ps1_scripts
-# Create volume for executable files
-RUN mkdir /exe_files
-VOLUME /exe_files
-# Create volume for data (upload/download)
-RUN mkdir /data
-VOLUME /data
-# Set workdir
-WORKDIR /opt/
-#Evil-WinRM install method 1 (only one method can be used, other must be commented)
-#Install Evil-WinRM (Docker Hub automated build process)
-RUN mkdir evil-winrm
-COPY . /opt/evil-winrm
-#Evil-WinRM install method 2 (only one method can be used, other must be commented)
-#Install Evil-WinRM (manual image build)
-#Uncomment git clone line and one of the ENV vars to select branch (master->latest, dev->beta)
-#ENV BRANCH="master"
-#ENV BRANCH="dev"
-#RUN git clone -b ${BRANCH} ${EVILWINRM_URL}
-# Make script file executable
-RUN chmod +x evil-winrm/*.rb
-# Clean and remove useless files
-RUN rm -rf /opt/evil-winrm/resources > /dev/null 2>&1 && \
-    rm -rf /opt/evil-winrm/.github > /dev/null 2>&1 && \
-    rm -rf /opt/evil-winrm/CONTRIBUTING.md > /dev/null 2>&1 && \
-    rm -rf /opt/evil-winrm/CODE_OF_CONDUCT.md > /dev/null 2>&1 && \
-    rm -rf /opt/evil-winrm/Dockerfile > /dev/null 2>&1 && \
-    rm -rf /opt/evil-winrm/Gemfile* > /dev/null 2>&1 && \
-    rm -rf /tmp/* > /dev/null 2>&1
-# Start command (launching Evil-WinRM)
-ENTRYPOINT ["/opt/evil-winrm/evil-winrm.rb"]

data/Gemfile DELETED Viewed

@@ -1,3 +0,0 @@
-source 'https://rubygems.org'
-gemspec