metasploit-credential 6.0.12 → 6.0.14

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: cc4941f29759bb11018e92fc18360210f2d3a4e34393124af15486fbac988d30
-  data.tar.gz: a4b88b7f91cee0d95d8458f4dbcc23ce7bffa72a3d1c1d491fa5ce978e14445a
+  metadata.gz: 6b08c247237833c0a93eee32f6d14a678a2f320d46827eec1553d999e2601447
+  data.tar.gz: 8c446fa6be10d1040cb8bbcdee59fc6be9cc167bcc569d4e608ac80aafbc4b01
 SHA512:
-  metadata.gz: 745c06259564027ab9019eb1f00db68f9f213bc26fcddc4a45294f97f7961f52a9cb5fe5973993f316d32ff60002b49bfca265b38ae2007fdda1d6a4d71ba437
-  data.tar.gz: eb2764eb6df22b3f5a6cc8f13fd5507f7114743111383275a8b131a2325c1cd03621739ca1c1fc06336778b7112e358e5f58de615531f599a4902592960a3b7b
+  metadata.gz: 5922d220d8a3614d21b3a6a4639527b0d0486dac4edf6d7832f9e0354274b5b3903d6ab6049722ff3ec66f5ec7bd2aedb09155980f49582307c54f08f9efe5d0
+  data.tar.gz: 40dbe1b8f9ebf70be13840c791ffc05149759e44347a08946291b4c0e76b3450a4fc718910b20d7585509731d8d4432a52dbaa5067726fefd68cd475dc118bcf

data/README.md

@@ -1,4 +1,4 @@
-# Metasploit::Credential [![Build Status](https://github.com/rapid7/metasploit-credential/actions/workflows/verify.yml/badge.svg)](https://github.com/rapid7/metasploit-credential/actions/workflows/verify.yml)[![Code Climate](https://codeclimate.com/github/rapid7/metasploit-credential.png)](https://codeclimate.com/github/rapid7/metasploit-credential)[![Dependency Status](https://gemnasium.com/rapid7/metasploit-credential.svg)](https://gemnasium.com/rapid7/metasploit-credential)[![Gem Version](https://badge.fury.io/rb/metasploit-credential.svg)](http://badge.fury.io/rb/metasploit-credential)[![Inline docs](http://inch-ci.org/github/rapid7/metasploit-credential.svg)](http://inch-ci.org/github/rapid7/metasploit-credential)[![PullReview stats](https://www.pullreview.com/github/rapid7/metasploit-credential/badges/master.svg)](https://www.pullreview.com/github/rapid7/metasploit-credential/reviews/master)
+# Metasploit::Credential [![Build Status](https://github.com/rapid7/metasploit-credential/actions/workflows/verify.yml/badge.svg)](https://github.com/rapid7/metasploit-credential/actions/workflows/verify.yml)[![Dependency Status](https://gemnasium.com/rapid7/metasploit-credential.svg)](https://gemnasium.com/rapid7/metasploit-credential)[![Gem Version](https://badge.fury.io/rb/metasploit-credential.svg)](http://badge.fury.io/rb/metasploit-credential)[![Inline docs](http://inch-ci.org/github/rapid7/metasploit-credential.svg)](http://inch-ci.org/github/rapid7/metasploit-credential)
 
 ## Versioning
 

data/app/models/metasploit/credential/pkcs12.rb

@@ -3,6 +3,7 @@ require 'base64'
 
 # A private Pkcs12 file.
 class Metasploit::Credential::Pkcs12 < Metasploit::Credential::Private
+
   #
   # Attributes
   #
@@ -12,6 +13,14 @@ class Metasploit::Credential::Pkcs12 < Metasploit::Credential::Private
   #
   #   @return [String]
 
+  # @!attribute metadata
+  #   Metadata for this Pkcs12:
+  #     adcs_ca: The Certificate Authority that issued the certificate
+  #     adcs_template: The certificate template used to issue the certificate
+  #     pkcs12_password: The password to decrypt the Pkcs12
+  #
+  #   @return [JSONB]
+
   #
   #
   # Validations
@@ -24,15 +33,49 @@ class Metasploit::Credential::Pkcs12 < Metasploit::Credential::Private
 
   validates :data,
             presence: true
+
   #
   # Method Validations
   #
 
   validate :readable
 
+  #
+  # Class methods
+  #
+
   #
   # Instance Methods
   #
+  #
+
+  # The CA that issued the certificate
+  #
+  # @return [String]
+  def adcs_ca
+    metadata['adcs_ca']
+  end
+
+  # The certificate template used to issue the certificate
+  #
+  # @return [String]
+  def adcs_template
+    metadata['adcs_template']
+  end
+
+  # The password to decrypt the Pkcs12
+  #
+  # @return [String]
+  def pkcs12_password
+    metadata['pkcs12_password']
+  end
+
+  # The status if the certificate (active or inactive)
+  #
+  # @return [String]
+  def status
+    metadata['status']
+  end
 
   # Converts the private pkcs12 data in {#data} to an `OpenSSL::PKCS12` instance.
   #
@@ -41,7 +84,7 @@ class Metasploit::Credential::Pkcs12 < Metasploit::Credential::Private
   def openssl_pkcs12
     if data
       begin
-        password = ''
+        password = metadata.fetch('pkcs12_password', '')
         OpenSSL::PKCS12.new(Base64.strict_decode64(data), password)
       rescue OpenSSL::PKCS12::PKCS12Error => error
         raise ArgumentError.new(error)
@@ -50,7 +93,7 @@ class Metasploit::Credential::Pkcs12 < Metasploit::Credential::Private
   end
 
   # The {#data key data}'s fingerprint, suitable for displaying to the
-  # user.
+  # user. The Pkcs12 password is voluntarily not included.
   #
   # @return [String]
   def to_s
@@ -60,9 +103,12 @@ class Metasploit::Credential::Pkcs12 < Metasploit::Credential::Private
     result = []
     result << "subject:#{cert.subject.to_s}"
     result << "issuer:#{cert.issuer.to_s}"
+    result << "ADCS CA:#{metadata['adcs_ca']}" if metadata['adcs_ca']
+    result << "ADCS template:#{metadata['adcs_template']}" if metadata['adcs_template']
     result.join(',')
   end
 
+
   private
 
   #
@@ -80,5 +126,8 @@ class Metasploit::Credential::Pkcs12 < Metasploit::Credential::Private
     end
   end
 
+
+  public
+
   Metasploit::Concern.run(self)
 end

data/app/models/metasploit/credential/private.rb

@@ -50,6 +50,11 @@ class Metasploit::Credential::Private < ApplicationRecord
   #
   #   @return [DateTime]
 
+  # @!attribute metadata
+  #   Metadata related to the private data. The data contained in this JSONB structure varies based on the subclass.
+  #
+  #   @return [JSONB]
+
   #
   #
   # Search
@@ -63,6 +68,9 @@ class Metasploit::Credential::Private < ApplicationRecord
   search_attribute :data,
                    type: :string
 
+  search_attribute :metadata,
+                   type: :jsonb
+
   #
   # Search Withs
   #

data/config/locales/en.yml

@@ -87,7 +87,7 @@ en:
         metasploit/credential/pkcs12:
           attributes:
             data:
-              format: "is not a Base64 encoded pkcs12 file without a password"
+              format: "is not a serialized data containing Base64 encoded pkcs12 file without a password and metadata"
         metasploit/credential/ssh_key:
           attributes:
             data:

data/db/migrate/20250204172657_add_metadata_to_metasploit_credential_privates.rb

@@ -0,0 +1,5 @@
+class AddMetadataToMetasploitCredentialPrivates < ActiveRecord::Migration[7.0]
+  def change
+    add_column :metasploit_credential_privates, :metadata, :jsonb, null: false, default: {}
+  end
+end

data/lib/metasploit/credential/creation.rb

@@ -480,7 +480,7 @@ module Metasploit::Credential::Creation
         when :ssh_key
           private_object = Metasploit::Credential::SSHKey.where(data: private_data).first_or_create
         when :pkcs12
-          private_object = Metasploit::Credential::Pkcs12.where(data: private_data).first_or_create
+          private_object = Metasploit::Credential::Pkcs12.where(data: private_data, metadata: opts.fetch(:private_metadata, {})).first_or_create
         when :krb_enc_key
           private_object = Metasploit::Credential::KrbEncKey.where(data: private_data).first_or_create
         when :ntlm_hash

data/lib/metasploit/credential/version.rb

@@ -3,7 +3,7 @@
 module Metasploit
   module Credential
     # VERSION is managed by GemRelease
-    VERSION = '6.0.12'
+    VERSION = '6.0.14'
 
     # @return [String]
     #

data/spec/dummy/config/database.yml

@@ -1,6 +1,6 @@
 development: &pgsql
   adapter: postgresql
-  database: metasploit-credential_development3
+  database: metasploit-credential_development_0
   username: msf
   password: pass123
   host: localhost
@@ -8,6 +8,8 @@ development: &pgsql
   pool: 5
   timeout: 5
   min_messages: warning
+production:
+  <<: *pgsql
 test:
   <<: *pgsql
-  database: metasploit-credential_test3
+  database: metasploit-credential_test0

data/spec/dummy/db/structure.sql

@@ -1,6 +1,7 @@
 SET statement_timeout = 0;
 SET lock_timeout = 0;
 SET idle_in_transaction_session_timeout = 0;
+SET transaction_timeout = 0;
 SET client_encoding = 'UTF8';
 SET standard_conforming_strings = on;
 SELECT pg_catalog.set_config('search_path', '', false);
@@ -11,6 +12,8 @@ SET row_security = off;
 
 SET default_tablespace = '';
 
+SET default_table_access_method = heap;
+
 --
 -- Name: api_keys; Type: TABLE; Schema: public; Owner: -
 --
@@ -28,6 +31,7 @@ CREATE TABLE public.api_keys (
 --
 
 CREATE SEQUENCE public.api_keys_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -75,6 +79,7 @@ CREATE TABLE public.async_callbacks (
 --
 
 CREATE SEQUENCE public.async_callbacks_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -108,6 +113,7 @@ CREATE TABLE public.automatic_exploitation_match_results (
 --
 
 CREATE SEQUENCE public.automatic_exploitation_match_results_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -140,6 +146,7 @@ CREATE TABLE public.automatic_exploitation_match_sets (
 --
 
 CREATE SEQUENCE public.automatic_exploitation_match_sets_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -177,6 +184,7 @@ CREATE TABLE public.automatic_exploitation_matches (
 --
 
 CREATE SEQUENCE public.automatic_exploitation_matches_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -210,6 +218,7 @@ CREATE TABLE public.automatic_exploitation_runs (
 --
 
 CREATE SEQUENCE public.automatic_exploitation_runs_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -244,6 +253,7 @@ CREATE TABLE public.clients (
 --
 
 CREATE SEQUENCE public.clients_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -302,6 +312,7 @@ CREATE TABLE public.creds (
 --
 
 CREATE SEQUENCE public.creds_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -339,6 +350,7 @@ CREATE TABLE public.events (
 --
 
 CREATE SEQUENCE public.events_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -380,6 +392,7 @@ CREATE TABLE public.exploit_attempts (
 --
 
 CREATE SEQUENCE public.exploit_attempts_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -415,6 +428,7 @@ CREATE TABLE public.exploited_hosts (
 --
 
 CREATE SEQUENCE public.exploited_hosts_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -451,6 +465,7 @@ CREATE TABLE public.host_details (
 --
 
 CREATE SEQUENCE public.host_details_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -505,6 +520,7 @@ CREATE TABLE public.hosts (
 --
 
 CREATE SEQUENCE public.hosts_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -535,6 +551,7 @@ CREATE TABLE public.hosts_tags (
 --
 
 CREATE SEQUENCE public.hosts_tags_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -574,6 +591,7 @@ CREATE TABLE public.listeners (
 --
 
 CREATE SEQUENCE public.listeners_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -614,6 +632,7 @@ CREATE TABLE public.loots (
 --
 
 CREATE SEQUENCE public.loots_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -649,6 +668,7 @@ CREATE TABLE public.macros (
 --
 
 CREATE SEQUENCE public.macros_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -686,6 +706,7 @@ CREATE TABLE public.metasploit_credential_cores (
 --
 
 CREATE SEQUENCE public.metasploit_credential_cores_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -721,6 +742,7 @@ CREATE TABLE public.metasploit_credential_logins (
 --
 
 CREATE SEQUENCE public.metasploit_credential_logins_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -752,6 +774,7 @@ CREATE TABLE public.metasploit_credential_origin_cracked_passwords (
 --
 
 CREATE SEQUENCE public.metasploit_credential_origin_cracked_passwords_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -784,6 +807,7 @@ CREATE TABLE public.metasploit_credential_origin_imports (
 --
 
 CREATE SEQUENCE public.metasploit_credential_origin_imports_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -815,6 +839,7 @@ CREATE TABLE public.metasploit_credential_origin_manuals (
 --
 
 CREATE SEQUENCE public.metasploit_credential_origin_manuals_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -847,6 +872,7 @@ CREATE TABLE public.metasploit_credential_origin_services (
 --
 
 CREATE SEQUENCE public.metasploit_credential_origin_services_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -879,6 +905,7 @@ CREATE TABLE public.metasploit_credential_origin_sessions (
 --
 
 CREATE SEQUENCE public.metasploit_credential_origin_sessions_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -903,7 +930,8 @@ CREATE TABLE public.metasploit_credential_privates (
     data text NOT NULL,
     created_at timestamp without time zone NOT NULL,
     updated_at timestamp without time zone NOT NULL,
-    jtr_format character varying
+    jtr_format character varying,
+    metadata jsonb DEFAULT '{}'::jsonb NOT NULL
 );
 
 
@@ -912,6 +940,7 @@ CREATE TABLE public.metasploit_credential_privates (
 --
 
 CREATE SEQUENCE public.metasploit_credential_privates_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -944,6 +973,7 @@ CREATE TABLE public.metasploit_credential_publics (
 --
 
 CREATE SEQUENCE public.metasploit_credential_publics_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -976,6 +1006,7 @@ CREATE TABLE public.metasploit_credential_realms (
 --
 
 CREATE SEQUENCE public.metasploit_credential_realms_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1007,6 +1038,7 @@ CREATE TABLE public.mod_refs (
 --
 
 CREATE SEQUENCE public.mod_refs_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1037,6 +1069,7 @@ CREATE TABLE public.module_actions (
 --
 
 CREATE SEQUENCE public.module_actions_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1067,6 +1100,7 @@ CREATE TABLE public.module_archs (
 --
 
 CREATE SEQUENCE public.module_archs_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1098,6 +1132,7 @@ CREATE TABLE public.module_authors (
 --
 
 CREATE SEQUENCE public.module_authors_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1141,6 +1176,7 @@ CREATE TABLE public.module_details (
 --
 
 CREATE SEQUENCE public.module_details_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1171,6 +1207,7 @@ CREATE TABLE public.module_mixins (
 --
 
 CREATE SEQUENCE public.module_mixins_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1201,6 +1238,7 @@ CREATE TABLE public.module_platforms (
 --
 
 CREATE SEQUENCE public.module_platforms_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1231,6 +1269,7 @@ CREATE TABLE public.module_refs (
 --
 
 CREATE SEQUENCE public.module_refs_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1273,6 +1312,7 @@ CREATE TABLE public.module_runs (
 --
 
 CREATE SEQUENCE public.module_runs_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1304,6 +1344,7 @@ CREATE TABLE public.module_targets (
 --
 
 CREATE SEQUENCE public.module_targets_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1345,6 +1386,7 @@ CREATE TABLE public.nexpose_consoles (
 --
 
 CREATE SEQUENCE public.nexpose_consoles_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1383,6 +1425,7 @@ CREATE TABLE public.notes (
 --
 
 CREATE SEQUENCE public.notes_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1425,6 +1468,7 @@ CREATE TABLE public.payloads (
 --
 
 CREATE SEQUENCE public.payloads_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1459,6 +1503,7 @@ CREATE TABLE public.profiles (
 --
 
 CREATE SEQUENCE public.profiles_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1491,6 +1536,7 @@ CREATE TABLE public.refs (
 --
 
 CREATE SEQUENCE public.refs_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1525,6 +1571,7 @@ CREATE TABLE public.report_templates (
 --
 
 CREATE SEQUENCE public.report_templates_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1563,6 +1610,7 @@ CREATE TABLE public.reports (
 --
 
 CREATE SEQUENCE public.reports_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1594,6 +1642,7 @@ CREATE TABLE public.routes (
 --
 
 CREATE SEQUENCE public.routes_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1639,6 +1688,7 @@ CREATE TABLE public.services (
 --
 
 CREATE SEQUENCE public.services_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1674,6 +1724,7 @@ CREATE TABLE public.session_events (
 --
 
 CREATE SEQUENCE public.session_events_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1716,6 +1767,7 @@ CREATE TABLE public.sessions (
 --
 
 CREATE SEQUENCE public.sessions_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1752,6 +1804,7 @@ CREATE TABLE public.tags (
 --
 
 CREATE SEQUENCE public.tags_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1784,6 +1837,7 @@ CREATE TABLE public.task_creds (
 --
 
 CREATE SEQUENCE public.task_creds_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1816,6 +1870,7 @@ CREATE TABLE public.task_hosts (
 --
 
 CREATE SEQUENCE public.task_hosts_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1848,6 +1903,7 @@ CREATE TABLE public.task_services (
 --
 
 CREATE SEQUENCE public.task_services_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1880,6 +1936,7 @@ CREATE TABLE public.task_sessions (
 --
 
 CREATE SEQUENCE public.task_sessions_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1923,6 +1980,7 @@ CREATE TABLE public.tasks (
 --
 
 CREATE SEQUENCE public.tasks_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -1963,6 +2021,7 @@ CREATE TABLE public.users (
 --
 
 CREATE SEQUENCE public.users_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -2000,6 +2059,7 @@ CREATE TABLE public.vuln_attempts (
 --
 
 CREATE SEQUENCE public.vuln_attempts_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -2050,6 +2110,7 @@ CREATE TABLE public.vuln_details (
 --
 
 CREATE SEQUENCE public.vuln_details_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -2089,6 +2150,7 @@ CREATE TABLE public.vulns (
 --
 
 CREATE SEQUENCE public.vulns_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -2119,6 +2181,7 @@ CREATE TABLE public.vulns_refs (
 --
 
 CREATE SEQUENCE public.vulns_refs_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -2154,6 +2217,7 @@ CREATE TABLE public.web_forms (
 --
 
 CREATE SEQUENCE public.web_forms_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -2196,6 +2260,7 @@ CREATE TABLE public.web_pages (
 --
 
 CREATE SEQUENCE public.web_pages_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -2230,6 +2295,7 @@ CREATE TABLE public.web_sites (
 --
 
 CREATE SEQUENCE public.web_sites_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -2276,6 +2342,7 @@ CREATE TABLE public.web_vulns (
 --
 
 CREATE SEQUENCE public.web_vulns_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -2318,6 +2385,7 @@ CREATE TABLE public.wmap_requests (
 --
 
 CREATE SEQUENCE public.wmap_requests_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -2353,6 +2421,7 @@ CREATE TABLE public.wmap_targets (
 --
 
 CREATE SEQUENCE public.wmap_targets_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -2399,6 +2468,7 @@ CREATE TABLE public.workspaces (
 --
 
 CREATE SEQUENCE public.workspaces_id_seq
+    AS integer
     START WITH 1
     INCREMENT BY 1
     NO MINVALUE
@@ -3598,7 +3668,14 @@ CREATE INDEX index_metasploit_credential_origin_manuals_on_user_id ON public.met
 -- Name: index_metasploit_credential_privates_on_type_and_data; Type: INDEX; Schema: public; Owner: -
 --
 
-CREATE UNIQUE INDEX index_metasploit_credential_privates_on_type_and_data ON public.metasploit_credential_privates USING btree (type, data) WHERE (NOT ((type)::text = 'Metasploit::Credential::SSHKey'::text));
+CREATE UNIQUE INDEX index_metasploit_credential_privates_on_type_and_data ON public.metasploit_credential_privates USING btree (type, data) WHERE (NOT (((type)::text = 'Metasploit::Credential::SSHKey'::text) OR ((type)::text = 'Metasploit::Credential::Pkcs12'::text)));
+
+
+--
+-- Name: index_metasploit_credential_privates_on_type_and_data_pkcs12; Type: INDEX; Schema: public; Owner: -
+--
+
+CREATE UNIQUE INDEX index_metasploit_credential_privates_on_type_and_data_pkcs12 ON public.metasploit_credential_privates USING btree (type, decode(md5(data), 'hex'::text)) WHERE ((type)::text = 'Metasploit::Credential::Pkcs12'::text);
 
 
 --
@@ -4071,6 +4148,8 @@ INSERT INTO "schema_migrations" (version) VALUES
 ('20180904120211'),
 ('20190308134512'),
 ('20190507120211'),
+('20221209005658'),
+('20250204172657'),
 ('21'),
 ('22'),
 ('23'),

data/spec/factories/metasploit/credential/pkcs12.rb

@@ -10,10 +10,15 @@ FactoryBot.define do
       subject { '/C=BE/O=Test/OU=Test/CN=Test' }
       # the cert issuer
       issuer { '/C=BE/O=Test/OU=Test/CN=Test' }
+      # the pkcs12 password
+      pkcs12_password { '' }
+      # the cert not_before date
+      not_before { Time.now }
+      # the cert not_after date
+      not_after { Time.now + 365 * 24 * 60 * 60 }
     end
 
     data {
-      password = ''
       pkcs12_name = ''
 
       private_key = OpenSSL::PKey::RSA.new(key_size)
@@ -22,16 +27,71 @@ FactoryBot.define do
       cert = OpenSSL::X509::Certificate.new
       cert.subject = OpenSSL::X509::Name.parse(subject)
       cert.issuer = OpenSSL::X509::Name.parse(issuer)
-      cert.not_before = Time.now
-      cert.not_after = Time.now + 365 * 24 * 60 * 60
+      cert.not_before = not_before
+      cert.not_after = not_after
       cert.public_key = public_key
       cert.serial = 0x0
       cert.version = 2
       cert.sign(private_key, OpenSSL::Digest.new(signing_algorithm))
 
-      pkcs12 = OpenSSL::PKCS12.create(password, pkcs12_name, private_key, cert)
-      pkcs12_base64 = Base64.strict_encode64(pkcs12.to_der)
-      pkcs12_base64
+      pkcs12 = OpenSSL::PKCS12.create(pkcs12_password, pkcs12_name, private_key, cert)
+      Base64.strict_encode64(pkcs12.to_der)
     }
   end
+
+  factory :metasploit_credential_pkcs12_with_ca, parent: :metasploit_credential_pkcs12 do
+    transient do
+      # The CA that issued the certificate
+      adcs_ca { 'test-ca' }
+    end
+
+    metadata { { adcs_ca: adcs_ca } }
+  end
+
+  factory :metasploit_credential_pkcs12_with_adcs_template, parent: :metasploit_credential_pkcs12 do
+    transient do
+      # The certificate template used to issue the certificate
+      adcs_template { 'User' }
+    end
+
+    metadata { { adcs_template: adcs_template} }
+  end
+
+  factory :metasploit_credential_pkcs12_with_pkcs12_password, parent: :metasploit_credential_pkcs12 do
+    transient do
+      # The password to decrypt the pkcs12
+      pkcs12_password { 'Password!' }
+    end
+
+    metadata { { pkcs12_password: pkcs12_password } }
+  end
+
+  factory :metasploit_credential_pkcs12_with_status, parent: :metasploit_credential_pkcs12 do
+    transient do
+      # The CA that issued the certificate
+      status { 'active' }
+    end
+
+    metadata { { status: status } }
+  end
+
+  factory :metasploit_credential_pkcs12_with_ca_and_adcs_template, parent: :metasploit_credential_pkcs12 do
+    transient do
+      adcs_ca { 'test-ca' }
+      adcs_template { 'User' }
+    end
+
+    metadata { { adcs_ca: adcs_ca, adcs_template: adcs_template } }
+  end
+
+  factory :metasploit_credential_pkcs12_with_ca_and_adcs_template_and_pkcs12_password, parent: :metasploit_credential_pkcs12 do
+    transient do
+      adcs_ca { 'test-ca' }
+      adcs_template { 'User' }
+      pkcs12_password { 'Password!' }
+    end
+
+    metadata { { adcs_ca: adcs_ca, adcs_template: adcs_template, pkcs12_password: pkcs12_password } }
+  end
+
 end

data/spec/lib/metasploit/credential/creation_spec.rb

@@ -864,13 +864,36 @@ RSpec.describe Metasploit::Credential::Creation do
     end
 
     context 'when :private_type is pkcs12' do
-      it 'creates a Metasploit::Credential::Pkcs12' do
-        opts = {
+      let(:opts) {
+        {
           private_data: FactoryBot.build(:metasploit_credential_pkcs12).data,
           private_type: :pkcs12
         }
+      }
+      it 'creates a Metasploit::Credential::Pkcs12' do
         expect{ test_object.create_credential_private(opts) }.to change{ Metasploit::Credential::Pkcs12.count }.by(1)
       end
+
+      context 'with metadata' do
+        it 'creates a Metasploit::Credential::Pkcs12 with the expected metadata' do
+          adcs_ca = 'test_ca'
+          adcs_template = 'test_template'
+          opts[:private_metadata] = { adcs_ca: adcs_ca, adcs_template: adcs_template }
+          pkcs12 = test_object.create_credential_private(opts)
+          expect(pkcs12.adcs_ca).to eq(adcs_ca)
+          expect(pkcs12.adcs_template).to eq(adcs_template)
+        end
+      end
+
+      context 'and the Pkcs12 has a password' do
+        it 'creates a valid Metasploit::Credential::Pkcs12' do
+          pkcs12_password = 'test_password'
+          opts[:private_data] = FactoryBot.build(:metasploit_credential_pkcs12, pkcs12_password: pkcs12_password ).data
+          opts[:private_metadata] = { pkcs12_password: pkcs12_password }
+          pkcs12 = test_object.create_credential_private(opts)
+          expect(pkcs12).to be_valid
+        end
+      end
     end
   end
 

data/spec/models/metasploit/credential/pkcs12_spec.rb

@@ -1,6 +1,8 @@
 RSpec.describe Metasploit::Credential::Pkcs12, type: :model do
   it_should_behave_like 'Metasploit::Concern.run'
 
+  it { is_expected.to be_a Metasploit::Credential::Private }
+
   context 'factories' do
     context 'metasploit_credential_pkcs12' do
       subject(:metasploit_credential_pkcs12) do
@@ -9,6 +11,54 @@ RSpec.describe Metasploit::Credential::Pkcs12, type: :model do
 
       it { is_expected.to be_valid }
     end
+
+    context 'metasploit_credential_pkcs12_with_ca' do
+      subject(:metasploit_credential_pkcs12_with_ca) do
+        FactoryBot.build(:metasploit_credential_pkcs12_with_ca)
+      end
+
+      it { is_expected.to be_valid }
+    end
+
+    context 'metasploit_credential_pkcs12_with_adcs_template' do
+      subject(:metasploit_credential_pkcs12_with_adcs_template) do
+        FactoryBot.build(:metasploit_credential_pkcs12_with_adcs_template)
+      end
+
+      it { is_expected.to be_valid }
+    end
+
+    context 'metasploit_credential_pkcs12_with_pkcs12_password' do
+      subject(:metasploit_credential_pkcs12_with_pkcs12_password) do
+        FactoryBot.build(:metasploit_credential_pkcs12_with_pkcs12_password)
+      end
+
+      it { is_expected.to be_valid }
+    end
+
+    context 'metasploit_credential_pkcs12_with_status' do
+      subject(:metasploit_credential_pkcs12_with_status) do
+        FactoryBot.build(:metasploit_credential_pkcs12_with_status)
+      end
+
+      it { is_expected.to be_valid }
+    end
+
+    context 'metasploit_credential_pkcs12_with_ca_and_adcs_template' do
+      subject(:metasploit_credential_pkcs12_with_ca_and_adcs_template) do
+        FactoryBot.build(:metasploit_credential_pkcs12_with_ca_and_adcs_template)
+      end
+
+      it { is_expected.to be_valid }
+    end
+
+    context 'metasploit_credential_pkcs12_with_ca_and_adcs_template_and_pkcs12_password' do
+      subject(:metasploit_credential_pkcs12_with_ca_and_adcs_template_and_pkcs12_password) do
+        FactoryBot.build(:metasploit_credential_pkcs12_with_ca_and_adcs_template_and_pkcs12_password)
+      end
+
+      it { is_expected.to be_valid }
+    end
   end
 
   context 'validations' do
@@ -105,6 +155,194 @@ RSpec.describe Metasploit::Credential::Pkcs12, type: :model do
           it { is_expected.to include(error) }
         end
       end
+
+    end
+  end
+
+  context '#data' do
+    it 'returns the base64 encoded pkcs12' do
+      cert = 'mycert'
+      data = Base64.strict_encode64(cert)
+      pkcs12 = FactoryBot.build(:metasploit_credential_pkcs12, data: data)
+      expect(pkcs12.data).to eq(data)
+    end
+  end
+
+  context '#metadata' do
+    let(:cert) { 'mycert' }
+    let(:data) { Base64.strict_encode64(cert) }
+
+    context 'with the CA' do
+      it 'returns the CA in the metadata' do
+        adcs_ca = 'myca'
+        pkcs12 = FactoryBot.build(:metasploit_credential_pkcs12, data: data, metadata: { adcs_ca: adcs_ca })
+        expect(pkcs12.metadata).to eq( { 'adcs_ca' => adcs_ca } )
+      end
+    end
+
+    context 'with the Certififate Template' do
+      it 'returns the certificate template in the metadata' do
+        adcs_template = 'mytemplate'
+        pkcs12 = FactoryBot.build(:metasploit_credential_pkcs12, data: data, metadata: { adcs_template: adcs_template })
+        expect(pkcs12.metadata).to eq( { 'adcs_template' => adcs_template } )
+      end
+    end
+
+    context 'with both the CA and the Certififate Template' do
+      it 'returns the CA and the certificate template in the metadata' do
+        adcs_ca = 'myca'
+        adcs_template = 'mytemplate'
+        pkcs12 = FactoryBot.build(:metasploit_credential_pkcs12, data: data, metadata: { adcs_ca: adcs_ca, adcs_template: adcs_template })
+        expect(pkcs12.metadata).to eq( { 'adcs_ca' => adcs_ca, 'adcs_template' => adcs_template } )
+      end
+    end
+
+    context 'with both the CA, the Certififate Template and the cert password' do
+      it 'returns the CA and the certificate template in the metadata' do
+        adcs_ca = 'myca'
+        adcs_template = 'mytemplate'
+        pkcs12_password = 'mypassword'
+        pkcs12 = FactoryBot.build(:metasploit_credential_pkcs12, data: data, metadata: { adcs_ca: adcs_ca, adcs_template: adcs_template, pkcs12_password: pkcs12_password })
+        expect(pkcs12.metadata).to eq( { 'adcs_ca' => adcs_ca, 'adcs_template' => adcs_template, 'pkcs12_password' => pkcs12_password } )
+      end
+    end
+  end
+
+  context '#adcs_ca' do
+    it 'returns the CA' do
+      cert = 'mycert'
+      data = Base64.strict_encode64(cert)
+      adcs_ca = 'myca'
+      pkcs12 = FactoryBot.build(:metasploit_credential_pkcs12, data: data, metadata: { adcs_ca: adcs_ca })
+      expect(pkcs12.adcs_ca).to eq(adcs_ca)
+    end
+  end
+
+  context '#adcs_template' do
+    it 'returns the certificate template' do
+      cert = 'mycert'
+      data = Base64.strict_encode64(cert)
+      adcs_template = 'mytemplate'
+      pkcs12 = FactoryBot.build(:metasploit_credential_pkcs12, data: data, metadata: { adcs_template: adcs_template })
+      expect(pkcs12.adcs_template).to eq(adcs_template)
+    end
+  end
+
+  context '#pkcs12_password' do
+    it 'returns the Pkcs12 password' do
+      cert = 'mycert'
+      data = Base64.strict_encode64(cert)
+      pkcs12_password = 'mypassword'
+      pkcs12 = FactoryBot.build(:metasploit_credential_pkcs12, data: data, metadata: { pkcs12_password: pkcs12_password })
+      expect(pkcs12.pkcs12_password).to eq(pkcs12_password)
+    end
+  end
+
+  context '#openssl_pkcs12' do
+    subject { FactoryBot.build(:metasploit_credential_pkcs12).openssl_pkcs12 }
+
+    it { is_expected.to be_a OpenSSL::PKCS12 }
+
+    it 'raises an exception if data is not a base64-encoded certificate' do
+      expect {
+        FactoryBot.build(:metasploit_credential_pkcs12, data: 'wrong_cert').openssl_pkcs12
+      }.to raise_error(ArgumentError)
+    end
+
+    it 'returns the expected OpenSSL::PKCS12' do
+      subject = '/C=FR/O=Yeah/OU=Yeah/CN=Yeah'
+      issuer = '/C=FR/O=Issuer1/OU=Issuer1/CN=Issuer1'
+      pkcs12 = FactoryBot.build(
+        :metasploit_credential_pkcs12,
+        signing_algorithm: 'SHA512',
+        subject: subject,
+        issuer: issuer
+      )
+      openssl_pkcs12 = pkcs12.openssl_pkcs12
+      expect(openssl_pkcs12.certificate.signature_algorithm).to eq("sha512WithRSAEncryption")
+      expect(openssl_pkcs12.certificate.subject.to_s).to eq(subject)
+      expect(openssl_pkcs12.certificate.issuer.to_s).to eq(issuer)
+    end
+  end
+
+  context '#to_s' do
+    let(:subject) { '/C=FR/O=Yeah/OU=Yeah/CN=Yeah' }
+    let(:issuer) { '/C=FR/O=Issuer1/OU=Issuer1/CN=Issuer1' }
+    let(:adcs_ca) { 'myca' }
+    let(:adcs_template) { 'mytemplate' }
+    let(:pkcs12_password) { 'mypassword' }
+
+    context 'with the pkcs21 only' do
+      it 'returns the expected string' do
+        pkcs12 = FactoryBot.build(
+          :metasploit_credential_pkcs12,
+          subject: subject,
+          issuer: issuer
+        )
+        expect(pkcs12.to_s).to eq("subject:#{subject},issuer:#{issuer}")
+      end
+    end
+
+    context 'with the pkcs21 and the CA' do
+      it 'returns the expected string' do
+        pkcs12 = FactoryBot.build(
+          :metasploit_credential_pkcs12_with_ca,
+          subject: subject,
+          issuer: issuer,
+          metadata: { adcs_ca: adcs_ca }
+        )
+        expect(pkcs12.to_s).to eq("subject:#{subject},issuer:#{issuer},ADCS CA:#{adcs_ca}")
+      end
+    end
+
+    context 'with the pkcs21 and the ADCS template' do
+      it 'returns the expected string' do
+        pkcs12 = FactoryBot.build(
+          :metasploit_credential_pkcs12_with_adcs_template,
+          subject: subject,
+          issuer: issuer,
+          metadata: { adcs_template: adcs_template }
+        )
+        expect(pkcs12.to_s).to eq("subject:#{subject},issuer:#{issuer},ADCS template:#{adcs_template}")
+      end
+    end
+
+    context 'with the pkcs21, the CA and the ADCS template' do
+      it 'returns the expected string' do
+        subject = '/C=FR/O=Yeah/OU=Yeah/CN=Yeah'
+        issuer = '/C=FR/O=Issuer1/OU=Issuer1/CN=Issuer1'
+        pkcs12 = FactoryBot.build(
+          :metasploit_credential_pkcs12_with_ca_and_adcs_template,
+          subject: subject,
+          issuer: issuer,
+          metadata: { adcs_ca: adcs_ca, adcs_template: adcs_template }
+        )
+        expect(pkcs12.to_s).to eq("subject:#{subject},issuer:#{issuer},ADCS CA:#{adcs_ca},ADCS template:#{adcs_template}")
+      end
+    end
+
+    context 'with the pkcs21, the CA, the ADCS template and the pkcs12 password' do
+      it 'returns the expected string' do
+        subject = '/C=FR/O=Yeah/OU=Yeah/CN=Yeah'
+        issuer = '/C=FR/O=Issuer1/OU=Issuer1/CN=Issuer1'
+        pkcs12_password = 'mypassword'
+        pkcs12 = FactoryBot.build(
+          :metasploit_credential_pkcs12_with_ca_and_adcs_template_and_pkcs12_password,
+          subject: subject,
+          issuer: issuer,
+          pkcs12_password: pkcs12_password,
+          metadata: { adcs_ca: adcs_ca, adcs_template: adcs_template, pkcs12_password: pkcs12_password }
+        )
+        # The Pkcs12 password is voluntarily not included
+        expect(pkcs12.to_s).to eq("subject:#{subject},issuer:#{issuer},ADCS CA:#{adcs_ca},ADCS template:#{adcs_template}")
+      end
+    end
+
+    context 'with no data' do
+      it 'returns an empty string' do
+        pkcs12 = FactoryBot.build(:metasploit_credential_pkcs12, data: nil)
+        expect(pkcs12.to_s).to eq('')
+      end
     end
   end
 

data/spec/models/metasploit/credential/private_spec.rb

@@ -126,6 +126,15 @@ RSpec.describe Metasploit::Credential::Private, type: :model do
                             :type,
                             type: :string
 
+      it_should_behave_like 'search_attribute',
+                            :data,
+                            type: :string
+
+      it_should_behave_like 'search_attribute',
+                            :metadata,
+                            type: :jsonb
+
+
       it_should_behave_like 'search_with',
                             Metasploit::Credential::Search::Operator::Type,
                             name: :type,

metadata

@@ -1,40 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: metasploit-credential
 version: !ruby/object:Gem::Version
-  version: 6.0.12
+  version: 6.0.14
 platform: ruby
 authors:
 - Metasploit Hackers
-autorequire: 
+autorequire:
 bindir: bin
-cert_chain:
-- |
-  -----BEGIN CERTIFICATE-----
-  MIIERDCCAqygAwIBAgIBATANBgkqhkiG9w0BAQsFADAmMSQwIgYDVQQDDBttc2Zk
-  ZXYvREM9bWV0YXNwbG9pdC9EQz1jb20wHhcNMjMxMDMwMTYwNDI1WhcNMjUxMDI5
-  MTYwNDI1WjAmMSQwIgYDVQQDDBttc2ZkZXYvREM9bWV0YXNwbG9pdC9EQz1jb20w
-  ggGiMA0GCSqGSIb3DQEBAQUAA4IBjwAwggGKAoIBgQDZN/EKv+yVjwiKWvjAVhjF
-  aWNYI0E9bJ5d1qKd29omRYX9a+OOKBCu5+394fyF5RjwU4mYGr2iopX9ixRJrWXH
-  ojs70tEvV1CmvP9rhz7JKzQQoJOkinrz4d+StIylxVxVdgm7DeiB3ruTwvl7qKUv
-  piWzhrBFiVU6XIEAwq6wNEmnv2D+Omyf4h0Tf99hc6G0QmBnU3XydqvnZ+AzUbBV
-  24RH3+NQoigLbvK4M5aOeYhk19di58hznebOw6twHzNczshrBeMFQp985ScNgsvF
-  rL+7HNNwpcpngERwZfzDNn7iYN5X3cyvTcykShtsuPMa5zXsYo42LZrsTF87DW38
-  D8sxL6Dgdqu25Mltdw9m+iD4rHSfb1KJYEoNO+WwBJLO2Y4d6G1CR66tVeWsZspb
-  zneOVC+sDuil7hOm+6a7Y2yrrRyT6IfL/07DywjPAIRUp5+Jn8ZrkWRNo2AOwWBG
-  k5gz7SfJPHuyVnPlxoMA0MTFCUnnnbyHu882TGoJGgMCAwEAAaN9MHswCQYDVR0T
-  BAIwADALBgNVHQ8EBAMCBLAwHQYDVR0OBBYEFIQfNa4E889ZE334cwU7eNu2hScH
-  MCAGA1UdEQQZMBeBFW1zZmRldkBtZXRhc3Bsb2l0LmNvbTAgBgNVHRIEGTAXgRVt
-  c2ZkZXZAbWV0YXNwbG9pdC5jb20wDQYJKoZIhvcNAQELBQADggGBAMfzvKcV27p7
-  pctmpW2JmIXLMrjNLyGJAxELH/t9pJueXdga7uj2fJkYQDbwGw5x4MGyFqhqJLH4
-  l/qsUF3PyAXDTSWLVaqXQVWO+IIHxecG0XjPXTNudzMU0hzqbqiBKvsW7/a3V5BP
-  SWlFzrFkoXWlPouFpoakyYMJjpW4SGdPzRv7pM4OhXtkXpHiRvx5985FrHgHlI89
-  NSIuIUbp8zqk4hP1i9MV0Lc/vTf2gOmo+RHnjqG1NiYfMCYyY/Mcd4W36kGOl468
-  I8VDTwgCufkAzFu7BJ5yCOueqtDcuq+d3YhAyU7NI4+Ja8EwazOnB+07sWhKpg7z
-  yuQ1mWYPmZfVQpoSVv1CvXsoqJYXVPBBLOacKKSj8ArVG6pPn9Bej7IOQdblaFjl
-  DgscAao7wB3xW2BWEp1KnaDWkf1x9ttgoBEYyuYwU7uatB67kBQG1PKvLt79wHvz
-  Dxs+KOjGbBRfMnPgVGYkORKVrZIwlaboHbDKxcVW5xv+oZc7KYXWGg==
-  -----END CERTIFICATE-----
-date: 2025-02-06 00:00:00.000000000 Z
+cert_chain: []
+date: 2025-04-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: metasploit-concern
@@ -231,6 +205,7 @@ files:
 - db/migrate/20161107153145_recreate_index_on_private_data_and_type.rb
 - db/migrate/20161107203710_create_index_on_private_data_and_type_for_ssh_key.rb
 - db/migrate/20221209005658_create_index_on_private_data_and_type_for_pkcs12.rb
+- db/migrate/20250204172657_add_metadata_to_metasploit_credential_privates.rb
 - lib/metasploit/credential.rb
 - lib/metasploit/credential/case_insensitive_serializer.rb
 - lib/metasploit/credential/core_validations.rb
@@ -367,7 +342,7 @@ homepage: https://github.com/rapid7/metasploit-credential
 licenses:
 - BSD-3-clause
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - app/models
@@ -384,8 +359,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.4.12
-signing_key: 
+rubygems_version: 3.4.19
+signing_key:
 specification_version: 4
 summary: Credential models for metasploit-framework and Metasploit Pro
 test_files: