gauntlt 0.0.7 → 0.0.8

data/spec/gauntlt_spec.rb

@@ -3,16 +3,9 @@ require 'spec_helper'
 describe Gauntlt do
   subject { Gauntlt }
 
-  describe :has_attack? do
-    it "returns true if an attack exists for the passed name" do
-      subject.stub(:attacks).and_return(['foo'])
-      subject.should have_attack('foo')
-    end
-  end
-
   describe :attacks do
     it "returns the names of all attack files in the attacks directory" do
-      subject.stub(:attack_files).and_return([
+      subject.stub(:attack_adapters).and_return([
         '/foo/bar/a.rb',
         '/foo/bar/b.rb'
       ])
@@ -21,21 +14,21 @@ describe Gauntlt do
     end
   end
 
-  describe :attack_files do
-    it "returns the full path to each attack file" do
-      stub_const "Gauntlt::ATTACK_GLOB_PATTERN",'foo'
+  describe :attack_adapters do
+    it "returns the full path to each attack adapter" do
+      stub_const "Gauntlt::ATTACK_ADAPTERS_GLOB_PATTERN",'foo'
       Dir.stub(:glob).with('foo').and_return(['bar', 'baz'])
-      subject.attack_files.should == ['bar', 'baz']
+      subject.attack_adapters.should == ['bar', 'baz']
     end
   end
 
   describe :attack do
     it "runs the specified test with the passed options" do
       mock_test = mock('test')
-      subject::Attack.should_receive(:new).with(:foo, :host => :bar).and_return(mock_test)
+      subject::Attack.should_receive(:new).with(:foo, []).and_return(mock_test)
       mock_test.should_receive(:run)
 
-      subject.attack(:foo, :host => :bar)
+      subject.attack(:foo)
     end
   end
 

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: gauntlt
 version: !ruby/object:Gem::Version
-  version: 0.0.7
+  version: 0.0.8
   prerelease: 
 platform: ruby
 authors:
@@ -10,7 +10,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2012-08-11 00:00:00.000000000 Z
+date: 2012-09-17 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: cucumber
@@ -108,22 +108,6 @@ dependencies:
     - - ! '>='
       - !ruby/object:Gem::Version
         version: '0'
-- !ruby/object:Gem::Dependency
-  name: curb
-  requirement: !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ! '>='
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :runtime
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ! '>='
-      - !ruby/object:Gem::Version
-        version: '0'
 - !ruby/object:Gem::Dependency
   name: nokogiri
   requirement: !ruby/object:Gem::Requirement
@@ -174,32 +158,34 @@ files:
 - README.md
 - Rakefile
 - bin/gauntlt
+- examples/curl/cookies.attack
+- examples/curl/simple.attack
+- examples/curl/verbs.attack
 - examples/nmap/nmap.attack
+- examples/nmap/os_detection.attack
+- examples/nmap/simple.attack
+- examples/nmap/tcp_ping_ports.attack
+- examples/nmap/xml_output.attack
+- examples/sslyze/sslyze.attack
 - features/attack.feature
-- features/attacks/cookies.feature
 - features/attacks/curl.feature
-- features/attacks/http_methods.feature
 - features/attacks/nmap.feature
 - features/attacks/sqlmap.feature
 - features/attacks/sslyze.feature
 - features/help.feature
 - features/report.feature
-- features/step_definitions/aruba_extension_steps.rb
 - features/step_definitions/config_steps.rb
 - features/step_definitions/support_steps.rb
 - features/support/aruba.rb
-- features/support/attack_steps.rb
 - features/support/env.rb
 - features/support/hooks.rb
-- features/support/profile/profile.xml
+- features/tags.feature
 - gauntlt.gemspec
 - gem_tasks/cucumber.rake
 - gem_tasks/rspec.rake
 - lib/gauntlt.rb
 - lib/gauntlt/attack.rb
-- lib/gauntlt/attack_adapters/cookies.rb
 - lib/gauntlt/attack_adapters/curl.rb
-- lib/gauntlt/attack_adapters/http_methods.rb
 - lib/gauntlt/attack_adapters/nmap.rb
 - lib/gauntlt/attack_adapters/sqlmap.rb
 - lib/gauntlt/attack_adapters/sslyze.rb
@@ -240,22 +226,18 @@ specification_version: 3
 summary: behaviour-driven security using cucumber
 test_files:
 - features/attack.feature
-- features/attacks/cookies.feature
 - features/attacks/curl.feature
-- features/attacks/http_methods.feature
 - features/attacks/nmap.feature
 - features/attacks/sqlmap.feature
 - features/attacks/sslyze.feature
 - features/help.feature
 - features/report.feature
-- features/step_definitions/aruba_extension_steps.rb
 - features/step_definitions/config_steps.rb
 - features/step_definitions/support_steps.rb
 - features/support/aruba.rb
-- features/support/attack_steps.rb
 - features/support/env.rb
 - features/support/hooks.rb
-- features/support/profile/profile.xml
+- features/tags.feature
 - spec/gauntlt/attack_spec.rb
 - spec/gauntlt_spec.rb
 - spec/spec_helper.rb

data/features/attacks/cookies.feature

@@ -1,25 +0,0 @@
-Feature: Cookies attack
-
-  Scenario: Launch cookies attack
-    Given an attack "cookies" exists
-    And a file named "cookies.attack" with:
-      """
-      Feature: Evaluate received cookies against expected.
-
-      Background:
-        Given "curl" is installed
-        And the target hostname is "google.com"
-
-      Scenario: Verify server is returning the cookies expected
-        When I launch a "cookies" attack
-        Then the following cookies should be received:
-          | name | secure | _rest              |
-          | PREF | false  | {}                 |
-          | NID  | false  | {'HttpOnly': None} |
-      """
-    When I run `gauntlt attack --name cookies --attack-file cookies.attack`
-    Then it should pass
-    And the output should contain:
-      """
-      4 steps (4 passed)
-      """

data/features/attacks/http_methods.feature

@@ -1,33 +0,0 @@
-Feature: http_methods attack
-  Background:
-    Given an attack "http_methods" exists
-
-  Scenario: http methods
-    Given a file named "http_methods.attack" with:
-      """
-      Feature: Evaluate responses to various HTTP methods.
-
-      Background:
-        Given "curl" is installed
-        And the target hostname is "google.com"
-
-      Scenario Outline: Verify server responds correctly to various HTTP methods
-        When I launch a "curl" attack with:
-          \"\"\"
-            curl -i -X <method> <hostname>
-          \"\"\"
-        Then the output should contain "<response>"
-        Examples:
-          | method | response                       |
-          | delete | Error 405 (Method Not Allowed) |
-          | patch  | Error 405 (Method Not Allowed) |
-          | trace  | Error 405 (Method Not Allowed) |
-          | track  | Error 405 (Method Not Allowed) |
-          | bogus  | Error 405 (Method Not Allowed) |
-      """
-    When I run `gauntlt attack --name http_methods --attack-file http_methods.attack`
-    Then it should pass
-    And the output should contain:
-      """
-      5 scenarios (5 passed)
-      """

data/features/step_definitions/aruba_extension_steps.rb

@@ -1,3 +0,0 @@
-Then /^it should pass$/ do
-  assert_success(true)
-end

data/features/support/attack_steps.rb

@@ -1 +0,0 @@
-require 'gauntlt'

data/features/support/profile/profile.xml

@@ -1,5 +0,0 @@
-<app>
-	<name>google</name>
-	<hostname>www.google.com</hostname>
-	<login>https://www.example.com/login.php</login>
-</app>	

data/lib/gauntlt/attack_adapters/cookies.rb

@@ -1,11 +0,0 @@
-When /^I launch a "cookies" attack$/ do
-  set_cookies( cookies_for(hostname) )
-end
-
-Then /^the following cookies should be received:$/ do |table|
-  names = table.hashes.map{|h| h['name'] }
-  names.each do |name|
-    cookies.any?{|s| s =~ /^#{name}/}.should be_true
-    # TODO: check other values in table
-  end
-end

data/lib/gauntlt/attack_adapters/http_methods.rb

@@ -1,12 +0,0 @@
-When /^"curl" is installed$/ do
-  ensure_cli_installed("curl")
-end
-
-When /^I launch a "curl" attack$/ do
-  @response = Curl::Easy.http_get(hostname)
-end
-
-When /^I launch a "curl" attack with:$/ do |command|
-  command.gsub!('<hostname>', hostname)
-  run command
-end