pass-station 1.1.0 → 1.2.3
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/LICENSE +2 -1
- data/bin/pass-station +31 -23
- data/data/DefaultCreds-Cheat-Sheet.csv +17 -8
- data/data/many-passwords.csv +2561 -0
- data/lib/pass_station/output.rb +7 -8
- data/lib/pass_station/parse.rb +5 -4
- data/lib/pass_station/search.rb +9 -7
- data/lib/pass_station/source.rb +48 -11
- data/lib/pass_station/version.rb +1 -1
- data/lib/pass_station.rb +18 -5
- metadata +27 -12
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: ae09b43b764e460c230fd29723ef4293c7624808a7d4cd7511789b3a0a087a0c
|
|
4
|
+
data.tar.gz: 02b004b539741d6d678579b480cfedf314c7ede04886bf956c111ba1ab69a21c
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: ef336e447a6dbf9267f1aa3f249e6928b533b414833f925ca834fee7407369284e9ef94ad6c32347241af0e6dac31cae6ed6724a4dcdb3b83577574f99266a9b
|
|
7
|
+
data.tar.gz: a4d82db3a4db21bdbb29661a1ae4bbf44ad9586dd744548875d17ad528ff3ba4d4e7eb38cf1c9f294ae05af27ef1252c84f34d76d59c503619490642a35db704
|
data/LICENSE
CHANGED
|
@@ -1,5 +1,6 @@
|
|
|
1
1
|
MIT License
|
|
2
2
|
|
|
3
|
+
Copyright (c) 2021 Alexandre ZANNI
|
|
3
4
|
Copyright (c) 2021 Alexandre ZANNI at SEC-IT
|
|
4
5
|
|
|
5
6
|
Permission is hereby granted, free of charge, to any person obtaining a copy
|
|
@@ -18,4 +19,4 @@ FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
|
|
|
18
19
|
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
|
|
19
20
|
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
|
|
20
21
|
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
|
|
21
|
-
SOFTWARE.
|
|
22
|
+
SOFTWARE.
|
data/bin/pass-station
CHANGED
|
@@ -11,11 +11,11 @@ require 'docopt'
|
|
|
11
11
|
require 'paint'
|
|
12
12
|
|
|
13
13
|
doc = <<~DOCOPT
|
|
14
|
-
Pass Station
|
|
14
|
+
Pass Station v#{PassStation::VERSION}
|
|
15
15
|
|
|
16
16
|
Usage:
|
|
17
|
-
pass-station list [--sort <col> --output <format>] [--debug]
|
|
18
|
-
pass-station search <term> [--field <col> --sort <col> --sensitive --output <format>] [--no-color --debug]
|
|
17
|
+
pass-station list [--sort <col> --output <format>] [--source <id> --debug]
|
|
18
|
+
pass-station search <term> [--field <col> --sort <col> --sensitive --output <format>] [--source <id> --no-color --debug]
|
|
19
19
|
pass-station update ([--force] <path> | --check) [--debug]
|
|
20
20
|
pass-station -h | --help
|
|
21
21
|
pass-station --version
|
|
@@ -24,21 +24,22 @@ doc = <<~DOCOPT
|
|
|
24
24
|
|
|
25
25
|
Output options: can be used with list and search commands
|
|
26
26
|
-o <format>, --output <format> Output format: JSON, CSV, YAML, table, pretty-table [default: pretty-table]
|
|
27
|
-
-s <col>, --sort <col> Sort by column
|
|
27
|
+
-s <col>, --sort <col> Sort by column (see documentation, columns depends on the database source)
|
|
28
28
|
|
|
29
29
|
Search options:
|
|
30
|
-
--field <col> Search in column:
|
|
31
|
-
--sensitive
|
|
30
|
+
--field <col> Search in column: column name (see documentation, columns depends on the database source) or all
|
|
31
|
+
--sensitive Search is case sensitive (case insensitive by default)
|
|
32
32
|
|
|
33
33
|
Update options: update the password database (replace Pass Station DB with upstream DB, use with care)
|
|
34
34
|
-f, --force Bypass hash checking
|
|
35
35
|
-c, --check Check for possible update
|
|
36
36
|
|
|
37
37
|
Other options:
|
|
38
|
-
--
|
|
39
|
-
--
|
|
40
|
-
|
|
41
|
-
--
|
|
38
|
+
--source <id> Credentials source database: 1 (Default Credentials Cheat Sheet), 2 (Many passwords) [default: 1]
|
|
39
|
+
--no-color Disable colorized output
|
|
40
|
+
--debug Display arguments
|
|
41
|
+
-h, --help Show this screen
|
|
42
|
+
--version Show version
|
|
42
43
|
DOCOPT
|
|
43
44
|
|
|
44
45
|
begin
|
|
@@ -47,14 +48,17 @@ begin
|
|
|
47
48
|
pp args if args['--debug']
|
|
48
49
|
if args['update']
|
|
49
50
|
if args['<path>']
|
|
50
|
-
|
|
51
|
-
|
|
52
|
-
|
|
53
|
-
|
|
54
|
-
|
|
55
|
-
|
|
56
|
-
|
|
57
|
-
|
|
51
|
+
PassStation::DB::UPSTREAM_DATABASE[:MAPPING].each do |k, v|
|
|
52
|
+
opts = {}
|
|
53
|
+
opts[:sha256] = args['--force'] ? nil : PassStation::DB::UPSTREAM_DATABASE[v][:HASH]
|
|
54
|
+
puts "[+] Updating database: #{v}"
|
|
55
|
+
opts[:source_db] = k
|
|
56
|
+
path = PassStation::DB.download_upstream(args['<path>'], opts)
|
|
57
|
+
if path
|
|
58
|
+
puts "[+] Database updated: #{v} (#{path})"
|
|
59
|
+
else
|
|
60
|
+
puts "[+] Database #{v} already up to date"
|
|
61
|
+
end
|
|
58
62
|
end
|
|
59
63
|
elsif args['--check']
|
|
60
64
|
if PassStation::DB.check_for_update
|
|
@@ -64,14 +68,18 @@ begin
|
|
|
64
68
|
end
|
|
65
69
|
end
|
|
66
70
|
elsif args['list']
|
|
67
|
-
|
|
68
|
-
ps.
|
|
71
|
+
db = args['--source'].nil? ? nil : args['--source'].to_i
|
|
72
|
+
ps = PassStation::DB.new(db)
|
|
73
|
+
args['--sort'].nil? ? ps.parse : ps.parse(args['--sort'].to_sym)
|
|
69
74
|
puts ps.output_list(args['--output'])
|
|
70
75
|
elsif args['search']
|
|
71
|
-
|
|
72
|
-
ps.
|
|
73
|
-
|
|
76
|
+
db = args['--source'].nil? ? nil : args['--source'].to_i
|
|
77
|
+
ps = PassStation::DB.new(db)
|
|
78
|
+
args['--sort'].nil? ? ps.parse : ps.parse(args['--sort'].to_sym)
|
|
79
|
+
field = args['--field'].nil? ? nil : args['--field'].to_sym
|
|
80
|
+
ps.search(args['<term>'], field, sensitive: args['--sensitive'])
|
|
74
81
|
output = ps.output_search(args['--output'])
|
|
82
|
+
puts '[-] No result' if output.empty?
|
|
75
83
|
puts ps.highlight_found(args['<term>'], output, args['--sensitive'])
|
|
76
84
|
end
|
|
77
85
|
rescue Docopt::Exit => e
|
|
@@ -68,6 +68,9 @@ Addon,admin,admin
|
|
|
68
68
|
AddPac Technology,root,router
|
|
69
69
|
ADIC,admin,password
|
|
70
70
|
ADIC,admin,secure
|
|
71
|
+
ADIP,adip,admin
|
|
72
|
+
ADIP,adip,consul
|
|
73
|
+
ADIP,adip,insta
|
|
71
74
|
Adobe,admin,admin
|
|
72
75
|
Adobe,anonymous,anonymous
|
|
73
76
|
Adobe,aparker@geometrixx.info,aparker
|
|
@@ -533,6 +536,7 @@ CA APM Team Center (web),Guest,Guest
|
|
|
533
536
|
Cable And Wireless,admin,1234
|
|
534
537
|
Cabletron,<blank>,<blank>
|
|
535
538
|
Cabletron,netman,<blank>
|
|
539
|
+
caldera,admin,admin
|
|
536
540
|
CA NetQoS (web),nqadmin,nq
|
|
537
541
|
CA NetQoS (web),nquser,nq
|
|
538
542
|
Canon,<blank>,0
|
|
@@ -552,6 +556,7 @@ CCH (mssql),sa,PracticeUser1
|
|
|
552
556
|
Celerity,mediator,mediator
|
|
553
557
|
Celerity,root,Mua'dib
|
|
554
558
|
Cellit,cellit,cellit
|
|
559
|
+
Centreon WebUI,admin,centreon
|
|
555
560
|
Ceragon Networks,root,tooridu
|
|
556
561
|
CGI World,<blank>,protection
|
|
557
562
|
Chase Research,<blank>,iolan
|
|
@@ -694,6 +699,8 @@ cuproplus,<blank>,<blank>
|
|
|
694
699
|
cyberguard,cgadmin,cgadmin
|
|
695
700
|
Cyberguard,cgadmin,cgadmin
|
|
696
701
|
CyberMax,<blank>,Congress
|
|
702
|
+
CyberPower,cyber,cyber
|
|
703
|
+
CyberPower,device,cyber
|
|
697
704
|
Cyclades,root,<blank>
|
|
698
705
|
Cyclades,root,tslinux
|
|
699
706
|
Cyclades,super,surt
|
|
@@ -1022,6 +1029,7 @@ Gericom,Administrator,<blank>
|
|
|
1022
1029
|
"GE Security,Inc.",install,install
|
|
1023
1030
|
giga,Administrator,admin
|
|
1024
1031
|
Gigabyte,admin,admin
|
|
1032
|
+
GigaFiber,admin,jiocentrum
|
|
1025
1033
|
glftpd,glftpd,glftpd
|
|
1026
1034
|
glFtpD,glftpd,glftpd
|
|
1027
1035
|
Globespan Virata,DSL,DSL
|
|
@@ -1421,6 +1429,7 @@ Jenkins (web),<blank>,<blank>
|
|
|
1421
1429
|
Jetform,Jetform,<blank>
|
|
1422
1430
|
JetWay,<blank>,spooml
|
|
1423
1431
|
JioFi,administrator,administrator
|
|
1432
|
+
JioFiber,admin,jiocentrum
|
|
1424
1433
|
Johnson Controls,johnson,control
|
|
1425
1434
|
Joss Technology,<blank>,57gbzb
|
|
1426
1435
|
Joss Technology,<blank>,technolgi
|
|
@@ -1494,8 +1503,6 @@ Lanier,supervisor,<blank>
|
|
|
1494
1503
|
LANSA,admin,admin
|
|
1495
1504
|
LANSA,dev,dev
|
|
1496
1505
|
LANSA,WEBADM,password
|
|
1497
|
-
Lantronics,<blank>,access
|
|
1498
|
-
Lantronics,<blank>,system
|
|
1499
1506
|
Lantronix,<blank>,access
|
|
1500
1507
|
Lantronix,<blank>,admin
|
|
1501
1508
|
Lantronix,<blank>,<blank>
|
|
@@ -1507,6 +1514,7 @@ Lasa AIMS (mssql),ADMIN,AIMS
|
|
|
1507
1514
|
Lasa AIMS (mssql),FB,AIMS
|
|
1508
1515
|
latis network,<blank>,<blank>
|
|
1509
1516
|
LAXO,admin,admin
|
|
1517
|
+
ldap account manager(lam),lam,lam
|
|
1510
1518
|
Leading Edge,<blank>,MASTER
|
|
1511
1519
|
Lenel,admin,admin
|
|
1512
1520
|
Lenel OnGuard (mssql),LENEL,MULTIMEDIA
|
|
@@ -1725,9 +1733,6 @@ Netcomm,user,password
|
|
|
1725
1733
|
Netcordia,admin,admin
|
|
1726
1734
|
netcore (ssh),admin,admin
|
|
1727
1735
|
netcore (ssh),guest,guest
|
|
1728
|
-
netgar (ssh),admin,1234
|
|
1729
|
-
netgar (ssh),admin,admin
|
|
1730
|
-
netgar (ssh),admin,<blank>
|
|
1731
1736
|
Netgear,admin,1234
|
|
1732
1737
|
Netgear,admin,admin
|
|
1733
1738
|
Netgear,admin,<blank>
|
|
@@ -1749,6 +1754,7 @@ Netgear,Gearguy,Geardog
|
|
|
1749
1754
|
Netgear,super,5777364
|
|
1750
1755
|
Netgear,superman,21241036
|
|
1751
1756
|
NetGenesis,naadmin,naadmin
|
|
1757
|
+
NETIO 4All PowerPDU,admin,admin
|
|
1752
1758
|
Netopia,admin,<blank>
|
|
1753
1759
|
Netopia,admin,noway
|
|
1754
1760
|
Netopia,<blank>,<blank>
|
|
@@ -1921,6 +1927,7 @@ Nullsoft,admin,changeme
|
|
|
1921
1927
|
Nurit,$system,<blank>
|
|
1922
1928
|
Nuxeo Server (general),Administrator,Administrator
|
|
1923
1929
|
OCE,<blank>,0 and the number of OCE printer
|
|
1930
|
+
OCS Inventory,admin,admin
|
|
1924
1931
|
Odoo (general),admin,admin
|
|
1925
1932
|
Odoo (general),demo,demo
|
|
1926
1933
|
ODS,ods,ods
|
|
@@ -1958,6 +1965,7 @@ OpenMarket,user_expert,demo
|
|
|
1958
1965
|
OpenMarket,user_marketer,demo
|
|
1959
1966
|
OpenMarket,user_pricer,demo
|
|
1960
1967
|
OpenMarket,user_publisher,demo
|
|
1968
|
+
OpenNetAdmin,admin,admin
|
|
1961
1969
|
OPEN Networks,root,0P3N
|
|
1962
1970
|
Openwave,cac_admin,cacadmin
|
|
1963
1971
|
Openwave,sys,uplink
|
|
@@ -2201,7 +2209,6 @@ Oracle,WWWUSER,WWWUSER
|
|
|
2201
2209
|
Oracle,WWW,WWW
|
|
2202
2210
|
Oracle,XPRT,XPRT
|
|
2203
2211
|
Orange,admin,admin
|
|
2204
|
-
orange livebox4 (web),admin,(blank)
|
|
2205
2212
|
orange livebox4 (web),admin,<blank>
|
|
2206
2213
|
Orange,root,1234
|
|
2207
2214
|
Osicom,debug,d.e.b.u.g
|
|
@@ -2225,6 +2232,7 @@ ovislink,root,<blank>
|
|
|
2225
2232
|
Pacific Micro Data,pmd,<blank>
|
|
2226
2233
|
Packard Bell,<blank>,bell9
|
|
2227
2234
|
Packeteer,<blank>,touchpwd=
|
|
2235
|
+
Palo Alto GlobalProtect Gateway,admin,admin
|
|
2228
2236
|
Panasonic,admin,1234
|
|
2229
2237
|
Panasonic,admin,12345
|
|
2230
2238
|
Panasonic,<blank>,1234
|
|
@@ -2330,6 +2338,7 @@ publicprivate (snmp),<blank>,private
|
|
|
2330
2338
|
publicprivate (snmp),<blank>,public
|
|
2331
2339
|
Pyramid Computer,admin,admin
|
|
2332
2340
|
Pyramid Computer,admin,gnumpf
|
|
2341
|
+
qBittorrent Web UI,admin,adminadmin
|
|
2333
2342
|
QDI,<blank>,lesarotl
|
|
2334
2343
|
QDI,<blank>,password
|
|
2335
2344
|
QDI,<blank>,QDI
|
|
@@ -2344,6 +2353,7 @@ Questra Corporation,guest,guest
|
|
|
2344
2353
|
Questra Corporation,questra,questra
|
|
2345
2354
|
Quest Software,TOAD,TOAD
|
|
2346
2355
|
Quintum Technologies Inc.,admin,admin
|
|
2356
|
+
RabbitMQ,guest,guest
|
|
2347
2357
|
Radio Shack,<blank>,744
|
|
2348
2358
|
Radio Shack,[MULTIPLE],744
|
|
2349
2359
|
Radvision,admin,<blank>
|
|
@@ -2386,7 +2396,6 @@ Research,<blank>,Col2ogro2
|
|
|
2386
2396
|
Research Machines,manager,changeme
|
|
2387
2397
|
Resumix,root,resumix
|
|
2388
2398
|
Ricoh,admin,<blank>
|
|
2389
|
-
Ricoh,admin,no password
|
|
2390
2399
|
Ricoh,admin,password
|
|
2391
2400
|
Ricoh,<blank>,password
|
|
2392
2401
|
Ricoh,<blank>,sysadm
|
|
@@ -2738,7 +2747,6 @@ SolarWinds,whd,whd
|
|
|
2738
2747
|
Solution 6,aaa,often blank
|
|
2739
2748
|
Solwise,root,same as webui pwd
|
|
2740
2749
|
SonarQube (web),admin,admin
|
|
2741
|
-
Sonicwall,admin,password
|
|
2742
2750
|
SonicWALL,admin,password
|
|
2743
2751
|
Sonic-X,root,admin
|
|
2744
2752
|
Sonus,admin,Sonus12345
|
|
@@ -3114,6 +3122,7 @@ vacron (web),admin,admin
|
|
|
3114
3122
|
Various,root,admin
|
|
3115
3123
|
VASCO,admin,<blank>
|
|
3116
3124
|
VBrick Systems,admin,admin
|
|
3125
|
+
vectr,admin,11_ThisIsTheFirstPassword_11
|
|
3117
3126
|
Veramark,admin,password
|
|
3118
3127
|
Verifone,<blank>,166816
|
|
3119
3128
|
Verilink,<blank>,<blank>
|