pass-station 1.0.0 → 1.2.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 1b9ea9f62eaff1a5166ac66df8b994d5928173eb1d23fb997f02ca3cbdc5f712
-  data.tar.gz: 1cb19d830a7b18b49e6317911c5a6ca8411e0641921d2471749bc2f81c64cb12
+  metadata.gz: 7ec0b0404526c7b3184c441897083e2024404e7f22b4ac2851292d81f69cda25
+  data.tar.gz: b27776bfc51827851cc6ef60ce4c378f0fa9ec923f104109abb66733df5ba5d3
 SHA512:
-  metadata.gz: 89a6526c063b14e47d3316b6bb544396a03fd95e98fe488d366061e4837bb0e3b3994e2d402381d11fb5a2831479d2efa3ce252f168b85a5bb200939ff1ddb98
-  data.tar.gz: bec11f0af9253d0d54c05192aa6544e335d502b0d8cf00296c6a3a7b4473bb3e9352ac942a102e5c6d2d3b4380132fb50fb6fe1340b2a9129df5d93cc7ee47f9
+  metadata.gz: 26891a1b483d324034656b3921dc2684938972ce18f6f39d7746f6aaa3f387bcff6fb4964a45160c87c98f6bdaaf26eb93f0ccc935f8573867cc4fa63f345bad
+  data.tar.gz: 6728d55a675019cd612162b1f5c10f142a0f14008429984681fa3c939422c8ebf0ebdab0afb08d85cb5e3678a2e2e4a743771b24a2645be24c591bf94b0f89f5

data/bin/pass-station

@@ -28,7 +28,7 @@ doc = <<~DOCOPT
 
   Search options:
     --field <col>   Search in column: productvendor | username | password | all [default: productvendor]
-    --sensitive     Sarch is case sensitive (case insensitive by default)
+    --sensitive     Search is case sensitive (case insensitive by default)
 
   Update options: update the password database (replace Pass Station DB with upstream DB, use with care)
     -f, --force   Bypass hash checking
@@ -72,6 +72,7 @@ begin
     ps.parse(args['--sort'].to_sym)
     ps.search(args['<term>'], args['--field'].to_sym, sensitive: args['--sensitive'])
     output = ps.output_search(args['--output'])
+    puts '[-] No result' if output.empty?
     puts ps.highlight_found(args['<term>'], output, args['--sensitive'])
   end
 rescue Docopt::Exit => e

data/bin/pass-station_console

@@ -4,4 +4,4 @@
 require 'pass_station'
 require 'irb'
 
-IRB.start(__FILE__)
+IRB.start(__FILE__)

data/data/DefaultCreds-Cheat-Sheet.csv

@@ -68,6 +68,9 @@ Addon,admin,admin
 AddPac Technology,root,router
 ADIC,admin,password
 ADIC,admin,secure
+ADIP,adip,admin
+ADIP,adip,consul
+ADIP,adip,insta
 Adobe,admin,admin
 Adobe,anonymous,anonymous
 Adobe,aparker@geometrixx.info,aparker
@@ -533,6 +536,7 @@ CA APM Team Center (web),Guest,Guest
 Cable And Wireless,admin,1234
 Cabletron,<blank>,<blank>
 Cabletron,netman,<blank>
+caldera,admin,admin
 CA NetQoS (web),nqadmin,nq
 CA NetQoS (web),nquser,nq
 Canon,<blank>,0
@@ -552,6 +556,7 @@ CCH (mssql),sa,PracticeUser1
 Celerity,mediator,mediator
 Celerity,root,Mua'dib
 Cellit,cellit,cellit
+Centreon WebUI,admin,centreon
 Ceragon Networks,root,tooridu
 CGI World,<blank>,protection
 Chase Research,<blank>,iolan
@@ -694,6 +699,8 @@ cuproplus,<blank>,<blank>
 cyberguard,cgadmin,cgadmin
 Cyberguard,cgadmin,cgadmin
 CyberMax,<blank>,Congress
+CyberPower,cyber,cyber
+CyberPower,device,cyber
 Cyclades,root,<blank>
 Cyclades,root,tslinux
 Cyclades,super,surt
@@ -1022,6 +1029,7 @@ Gericom,Administrator,<blank>
 "GE Security,Inc.",install,install
 giga,Administrator,admin
 Gigabyte,admin,admin
+GigaFiber,admin,jiocentrum
 glftpd,glftpd,glftpd
 glFtpD,glftpd,glftpd
 Globespan Virata,DSL,DSL
@@ -1421,6 +1429,7 @@ Jenkins (web),<blank>,<blank>
 Jetform,Jetform,<blank>
 JetWay,<blank>,spooml
 JioFi,administrator,administrator
+JioFiber,admin,jiocentrum
 Johnson Controls,johnson,control
 Joss Technology,<blank>,57gbzb
 Joss Technology,<blank>,technolgi
@@ -1749,6 +1758,7 @@ Netgear,Gearguy,Geardog
 Netgear,super,5777364
 Netgear,superman,21241036
 NetGenesis,naadmin,naadmin
+NETIO 4All PowerPDU,admin,admin
 Netopia,admin,<blank>
 Netopia,admin,noway
 Netopia,<blank>,<blank>
@@ -1958,6 +1968,7 @@ OpenMarket,user_expert,demo
 OpenMarket,user_marketer,demo
 OpenMarket,user_pricer,demo
 OpenMarket,user_publisher,demo
+OpenNetAdmin,admin,admin
 OPEN Networks,root,0P3N
 Openwave,cac_admin,cacadmin
 Openwave,sys,uplink
@@ -3114,6 +3125,7 @@ vacron (web),admin,admin
 Various,root,admin
 VASCO,admin,<blank>
 VBrick Systems,admin,admin
+vectr,admin,11_ThisIsTheFirstPassword_11
 Veramark,admin,password
 Verifone,<blank>,166816
 Verilink,<blank>,<blank>

data/lib/pass_station.rb

@@ -1,5 +1,7 @@
 # frozen_string_literal: true
 
+# Ruby internal
+require 'pathname'
 # Project internal
 require 'pass_station/source'
 require 'pass_station/parse'
@@ -15,8 +17,6 @@ module PassStation
   class DB
     # Get / set storage location, where will be stored the password database.
     # @return [String] database storage location. Default to +data/+.
-    # @example
-    #   PassStation.storage_location = '/srv/downloads/'
     attr_accessor :storage_location
 
     # Get / set the password database name
@@ -24,15 +24,15 @@ module PassStation
     #   +DefaultCreds-Cheat-Sheet.csv+.
     attr_accessor :database_name
 
-    # Get the password database in +CSV::Table+ format
-    # @return [CSV::Table] pasword database
+    # Get the password database in +Array<CSV::Row>+ format
+    # @return [Array<CSV::Row>] pasword database
     attr_reader :data
 
     # A new instance of Pass Station
     def initialize
       @storage_location = 'data/'
       @database_name = 'DefaultCreds-Cheat-Sheet.csv'
-      @database_path = @storage_location + @database_name
+      @database_path = absolute_db_path
       database_exists?
       @config = {}
       csv_config
@@ -40,6 +40,14 @@ module PassStation
       @search_result = []
     end
 
+    # Find the absolute path of the DB from its relative location
+    # @return [String] absolute filename of the DB
+    def absolute_db_path
+      pn = Pathname.new(__FILE__)
+      install_dir = pn.dirname.parent.to_s + Pathname::SEPARATOR_LIST
+      install_dir + @storage_location + @database_name
+    end
+
     # Check if the password database exists
     # @return [Boolean] +true+ if the file exists
     def database_exists?
@@ -49,6 +57,6 @@ module PassStation
       exists
     end
 
-    protected :database_exists?
+    protected :database_exists?, :absolute_db_path
   end
 end

data/lib/pass_station/output.rb

@@ -13,7 +13,7 @@ module PassStation
   class DB
     # Output the data in the chosen format
     # @param formatter [String] Engine to use to format the data: +table+, +'pretty-table'+, +JSON+, +CSV+, +YAML+
-    # @param data [CSV::Table]
+    # @param data [Array<CSV::Row>]
     # @return [Array<String>] formatted output
     def output(formatter, data)
       # Convert string to class
@@ -32,7 +32,7 @@ module PassStation
     # @param formatter [String] Engine to use to format the data: +table+, +'pretty-table'+, +JSON+, +CSV+, +YAML+
     # @return [Array<String>] formatted output
     def output_search(formatter)
-      return '[-] No result' if @search_result.empty?
+      return [] if @search_result.empty?
 
       output(formatter, @search_result)
     end
@@ -68,8 +68,8 @@ module PassStation
     # Simple table formatter
     class Table
       class << self
-        # Format the +CSV::Table+ into a simple table with justified columns
-        # @param table [CSV::Table] a +CSV::Table+
+        # Format the +Array<CSV::Row>+ into a simple table with justified columns
+        # @param table [Array<CSV::Row>] an +Array<CSV::Row>+
         # @return [Array<String>] the formatted table ready to be printed
         def format(table)
           out = []
@@ -82,7 +82,7 @@ module PassStation
         end
 
         # Calculate column size (max item size)
-        # @param table [CSV::Table]
+        # @param table [Array<CSV::Row>]
         # @param column [Symbol] the symbol of the column
         # @return [Integer] the column size
         def colsize_count(table, column)
@@ -90,7 +90,7 @@ module PassStation
         end
 
         # Calculate the size of all columns (max item size)
-        # @param table [CSV::Table]
+        # @param table [Array<CSV::Row>]
         # @return [Hash] keys are columns name, values are columns size
         def colsizes_count(table)
           colsizes = table.first.to_h.keys.each_with_object({}) do |c, h|
@@ -147,8 +147,8 @@ module PassStation
     # Pretty table with ASCII borders formatter
     class PrettyTable < Table
       class << self
-        # Format the +CSV::Table+ into a simple table with justified columns
-        # @param table [CSV::Table] a +CSV::Table+
+        # Format the +Array<CSV::Row>+ into a simple table with justified columns
+        # @param table [Array<CSV::Row>] an +Array<CSV::Row>+
         # @return [Array<String>] the formatted table ready to be printed
         def format(table)
           out = []
@@ -200,5 +200,45 @@ module PassStation
         protected :dividers, :headers, :justify_row, :justify
       end
     end
+
+    # CSV formatter
+    class Csv
+      class << self
+        # Format the +Array<CSV::Row>+ into a CSV
+        # @param table [Array<CSV::Row>] an +Array<CSV::Row>+
+        # @return [Array<String>] the formatted CSV ready to be printed
+        def format(table)
+          CSV::Table.new(table).to_csv.split("\n")
+        end
+      end
+    end
+
+    # JSON formatter
+    class Json
+      class << self
+        # Format the +Array<CSV::Row>+ into JSON
+        # @param table [Array<CSV::Row>] an +Array<CSV::Row>+
+        # @return [Array<String>] the formatted JSON ready to be printed (only
+        #   one element on the array, keep an array for compatibility with
+        #   {highlight_found} and homogeneity with other formatters)
+        def format(table)
+          [table.map(&:to_h).to_json]
+        end
+      end
+    end
+
+    # YAML formatter
+    class Yaml
+      class << self
+        # Format the +Array<CSV::Row>+ into YAML
+        # @param table [Array<CSV::Row>] an +Array<CSV::Row>+
+        # @return [Array<String>] the formatted YAML ready to be printed (only
+        #   one element on the array, keep an array for compatibility with
+        #   {highlight_found} and homogeneity with other formatters)
+        def format(table)
+          [table.map(&:to_h).to_yaml]
+        end
+      end
+    end
   end
 end

data/lib/pass_station/parse.rb

@@ -23,10 +23,10 @@ module PassStation
 
     # Parse, sort and sanitize the password database
     # @param sort [Symbol] column name to sort by: +:productvendor+, +:username+, +:password+
-    # @return [CSV::Table] table of +CSV::Row+, each row contains three
+    # @return [Array<CSV::Row>] table of +CSV::Row+, each row contains three
     #   attributes: :productvendor, :username, :password
     def parse(sort = :productvendor)
-      @data = CSV.table(@database_path, @config).sort_by do |s|
+      @data = CSV.table(@database_path, **@config).sort_by do |s|
         s[sort].downcase
       end
     end

data/lib/pass_station/search.rb

@@ -8,7 +8,7 @@ module PassStation
     # @param term [String] the searched term
     # @param col [Symbol] the column to search in: :productvendor | :username | :password | :all (all columns)
     # @see build_regexp for +opts+ param description
-    # @return [CSV::Table] table of +CSV::Row+, each row contains three
+    # @return [Array<CSV::Row>] table of +CSV::Row+, each row contains three
     #   attributes: :productvendor, :username, :password
     def search(term, col, opts = {})
       r1 = prepare_search(term, opts)

data/lib/pass_station/source.rb

@@ -10,7 +10,7 @@ module PassStation
   class DB
     UPSTREAM_DATABASE = {
       URL: 'https://raw.githubusercontent.com/ihebski/DefaultCreds-cheat-sheet/main/DefaultCreds-Cheat-Sheet.csv',
-      HASH: 'de6a9f7e7ac94fbcd142ec5817efb71d3a0027076266c87ead5158a4960ec708'
+      HASH: '2107f3105bcc1a218a646beac6f92e2e8c639fac1f3f3e4a3da76b3d14a40dc8'
     }.freeze
 
     class << self

data/lib/pass_station/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Version
-  VERSION = '1.0.0'
-end
+  VERSION = '1.2.2'
+end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pass-station
 version: !ruby/object:Gem::Version
-  version: 1.0.0
+  version: 1.2.2
 platform: ruby
 authors:
 - Alexandre ZANNI
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-03-09 00:00:00.000000000 Z
+date: 2021-07-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: docopt
@@ -193,17 +193,17 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 2.4.0
+      version: 2.6.0
   - - "<"
     - !ruby/object:Gem::Version
-      version: '3.0'
+      version: '3.1'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.1.4
+rubygems_version: 3.2.15
 signing_key:
 specification_version: 4
 summary: CLI & library to search for default credentials among thousands of Products