pass-station 1.2.0 → 1.3.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/LICENSE +2 -1
- data/bin/pass-station +31 -23
- data/data/DefaultCreds-Cheat-Sheet.csv +17 -8
- data/data/many-passwords.csv +2561 -0
- data/lib/pass_station/output.rb +24 -25
- data/lib/pass_station/parse.rb +5 -4
- data/lib/pass_station/search.rb +10 -8
- data/lib/pass_station/source.rb +52 -17
- data/lib/pass_station/version.rb +1 -1
- data/lib/pass_station.rb +10 -7
- metadata +12 -128
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: e5b31b81d976f3ffc9c63384b5bdcf829af5fca16bf28a955f5610c9b827125b
|
|
4
|
+
data.tar.gz: a498b1e9f6708cc4525135edadca428b5021c0832b38e6f8ae66ca873efb3157
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 46e3622f6afecdcf0125438a13ef399a11847aa08a3b45e1b4f1d98353926336b0bac82f5b76cd67a3f79265de927a569808f903e8ed68d19c4c9f202ab68d86
|
|
7
|
+
data.tar.gz: 6551999d9d796f61c9941fe8a120d53b0fcf4e6a59e5bb838c205f1fdc703871bcfaf53ccd9854072c408a7158322a2fed67fb8886d61d82d87d8028c9b970c8
|
data/LICENSE
CHANGED
|
@@ -1,5 +1,6 @@
|
|
|
1
1
|
MIT License
|
|
2
2
|
|
|
3
|
+
Copyright (c) 2021 Alexandre ZANNI
|
|
3
4
|
Copyright (c) 2021 Alexandre ZANNI at SEC-IT
|
|
4
5
|
|
|
5
6
|
Permission is hereby granted, free of charge, to any person obtaining a copy
|
|
@@ -18,4 +19,4 @@ FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
|
|
|
18
19
|
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
|
|
19
20
|
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
|
|
20
21
|
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
|
|
21
|
-
SOFTWARE.
|
|
22
|
+
SOFTWARE.
|
data/bin/pass-station
CHANGED
|
@@ -11,11 +11,11 @@ require 'docopt'
|
|
|
11
11
|
require 'paint'
|
|
12
12
|
|
|
13
13
|
doc = <<~DOCOPT
|
|
14
|
-
Pass Station
|
|
14
|
+
Pass Station v#{PassStation::VERSION}
|
|
15
15
|
|
|
16
16
|
Usage:
|
|
17
|
-
pass-station list [--sort <col> --output <format>] [--debug]
|
|
18
|
-
pass-station search <term> [--field <col> --sort <col> --sensitive --output <format>] [--no-color --debug]
|
|
17
|
+
pass-station list [--sort <col> --output <format>] [--source <id> --debug]
|
|
18
|
+
pass-station search <term> [--field <col> --sort <col> --sensitive --output <format>] [--source <id> --no-color --debug]
|
|
19
19
|
pass-station update ([--force] <path> | --check) [--debug]
|
|
20
20
|
pass-station -h | --help
|
|
21
21
|
pass-station --version
|
|
@@ -24,21 +24,22 @@ doc = <<~DOCOPT
|
|
|
24
24
|
|
|
25
25
|
Output options: can be used with list and search commands
|
|
26
26
|
-o <format>, --output <format> Output format: JSON, CSV, YAML, table, pretty-table [default: pretty-table]
|
|
27
|
-
-s <col>, --sort <col> Sort by column
|
|
27
|
+
-s <col>, --sort <col> Sort by column (see documentation, columns depends on the database source)
|
|
28
28
|
|
|
29
29
|
Search options:
|
|
30
|
-
--field <col> Search in column:
|
|
31
|
-
--sensitive
|
|
30
|
+
--field <col> Search in column: column name (see documentation, columns depends on the database source) or all
|
|
31
|
+
--sensitive Search is case sensitive (case insensitive by default)
|
|
32
32
|
|
|
33
33
|
Update options: update the password database (replace Pass Station DB with upstream DB, use with care)
|
|
34
34
|
-f, --force Bypass hash checking
|
|
35
35
|
-c, --check Check for possible update
|
|
36
36
|
|
|
37
37
|
Other options:
|
|
38
|
-
--
|
|
39
|
-
--
|
|
40
|
-
|
|
41
|
-
--
|
|
38
|
+
--source <id> Credentials source database: 1 (Default Credentials Cheat Sheet), 2 (Many passwords) [default: 1]
|
|
39
|
+
--no-color Disable colorized output
|
|
40
|
+
--debug Display arguments
|
|
41
|
+
-h, --help Show this screen
|
|
42
|
+
--version Show version
|
|
42
43
|
DOCOPT
|
|
43
44
|
|
|
44
45
|
begin
|
|
@@ -47,14 +48,17 @@ begin
|
|
|
47
48
|
pp args if args['--debug']
|
|
48
49
|
if args['update']
|
|
49
50
|
if args['<path>']
|
|
50
|
-
|
|
51
|
-
|
|
52
|
-
|
|
53
|
-
|
|
54
|
-
|
|
55
|
-
|
|
56
|
-
|
|
57
|
-
|
|
51
|
+
PassStation::DB::UPSTREAM_DATABASE[:MAPPING].each do |k, v|
|
|
52
|
+
opts = {}
|
|
53
|
+
opts[:sha256] = args['--force'] ? nil : PassStation::DB::UPSTREAM_DATABASE[v][:HASH]
|
|
54
|
+
puts "[+] Updating database: #{v}"
|
|
55
|
+
opts[:source_db] = k
|
|
56
|
+
path = PassStation::DB.download_upstream(args['<path>'], opts)
|
|
57
|
+
if path
|
|
58
|
+
puts "[+] Database updated: #{v} (#{path})"
|
|
59
|
+
else
|
|
60
|
+
puts "[+] Database #{v} already up to date"
|
|
61
|
+
end
|
|
58
62
|
end
|
|
59
63
|
elsif args['--check']
|
|
60
64
|
if PassStation::DB.check_for_update
|
|
@@ -64,14 +68,18 @@ begin
|
|
|
64
68
|
end
|
|
65
69
|
end
|
|
66
70
|
elsif args['list']
|
|
67
|
-
|
|
68
|
-
ps.
|
|
71
|
+
db = args['--source'].nil? ? nil : args['--source'].to_i
|
|
72
|
+
ps = PassStation::DB.new(db)
|
|
73
|
+
args['--sort'].nil? ? ps.parse : ps.parse(args['--sort'].to_sym)
|
|
69
74
|
puts ps.output_list(args['--output'])
|
|
70
75
|
elsif args['search']
|
|
71
|
-
|
|
72
|
-
ps.
|
|
73
|
-
|
|
76
|
+
db = args['--source'].nil? ? nil : args['--source'].to_i
|
|
77
|
+
ps = PassStation::DB.new(db)
|
|
78
|
+
args['--sort'].nil? ? ps.parse : ps.parse(args['--sort'].to_sym)
|
|
79
|
+
field = args['--field'].nil? ? nil : args['--field'].to_sym
|
|
80
|
+
ps.search(args['<term>'], field, sensitive: args['--sensitive'])
|
|
74
81
|
output = ps.output_search(args['--output'])
|
|
82
|
+
puts '[-] No result' if output.empty?
|
|
75
83
|
puts ps.highlight_found(args['<term>'], output, args['--sensitive'])
|
|
76
84
|
end
|
|
77
85
|
rescue Docopt::Exit => e
|
|
@@ -68,6 +68,9 @@ Addon,admin,admin
|
|
|
68
68
|
AddPac Technology,root,router
|
|
69
69
|
ADIC,admin,password
|
|
70
70
|
ADIC,admin,secure
|
|
71
|
+
ADIP,adip,admin
|
|
72
|
+
ADIP,adip,consul
|
|
73
|
+
ADIP,adip,insta
|
|
71
74
|
Adobe,admin,admin
|
|
72
75
|
Adobe,anonymous,anonymous
|
|
73
76
|
Adobe,aparker@geometrixx.info,aparker
|
|
@@ -533,6 +536,7 @@ CA APM Team Center (web),Guest,Guest
|
|
|
533
536
|
Cable And Wireless,admin,1234
|
|
534
537
|
Cabletron,<blank>,<blank>
|
|
535
538
|
Cabletron,netman,<blank>
|
|
539
|
+
caldera,admin,admin
|
|
536
540
|
CA NetQoS (web),nqadmin,nq
|
|
537
541
|
CA NetQoS (web),nquser,nq
|
|
538
542
|
Canon,<blank>,0
|
|
@@ -552,6 +556,7 @@ CCH (mssql),sa,PracticeUser1
|
|
|
552
556
|
Celerity,mediator,mediator
|
|
553
557
|
Celerity,root,Mua'dib
|
|
554
558
|
Cellit,cellit,cellit
|
|
559
|
+
Centreon WebUI,admin,centreon
|
|
555
560
|
Ceragon Networks,root,tooridu
|
|
556
561
|
CGI World,<blank>,protection
|
|
557
562
|
Chase Research,<blank>,iolan
|
|
@@ -694,6 +699,8 @@ cuproplus,<blank>,<blank>
|
|
|
694
699
|
cyberguard,cgadmin,cgadmin
|
|
695
700
|
Cyberguard,cgadmin,cgadmin
|
|
696
701
|
CyberMax,<blank>,Congress
|
|
702
|
+
CyberPower,cyber,cyber
|
|
703
|
+
CyberPower,device,cyber
|
|
697
704
|
Cyclades,root,<blank>
|
|
698
705
|
Cyclades,root,tslinux
|
|
699
706
|
Cyclades,super,surt
|
|
@@ -1022,6 +1029,7 @@ Gericom,Administrator,<blank>
|
|
|
1022
1029
|
"GE Security,Inc.",install,install
|
|
1023
1030
|
giga,Administrator,admin
|
|
1024
1031
|
Gigabyte,admin,admin
|
|
1032
|
+
GigaFiber,admin,jiocentrum
|
|
1025
1033
|
glftpd,glftpd,glftpd
|
|
1026
1034
|
glFtpD,glftpd,glftpd
|
|
1027
1035
|
Globespan Virata,DSL,DSL
|
|
@@ -1421,6 +1429,7 @@ Jenkins (web),<blank>,<blank>
|
|
|
1421
1429
|
Jetform,Jetform,<blank>
|
|
1422
1430
|
JetWay,<blank>,spooml
|
|
1423
1431
|
JioFi,administrator,administrator
|
|
1432
|
+
JioFiber,admin,jiocentrum
|
|
1424
1433
|
Johnson Controls,johnson,control
|
|
1425
1434
|
Joss Technology,<blank>,57gbzb
|
|
1426
1435
|
Joss Technology,<blank>,technolgi
|
|
@@ -1494,8 +1503,6 @@ Lanier,supervisor,<blank>
|
|
|
1494
1503
|
LANSA,admin,admin
|
|
1495
1504
|
LANSA,dev,dev
|
|
1496
1505
|
LANSA,WEBADM,password
|
|
1497
|
-
Lantronics,<blank>,access
|
|
1498
|
-
Lantronics,<blank>,system
|
|
1499
1506
|
Lantronix,<blank>,access
|
|
1500
1507
|
Lantronix,<blank>,admin
|
|
1501
1508
|
Lantronix,<blank>,<blank>
|
|
@@ -1507,6 +1514,7 @@ Lasa AIMS (mssql),ADMIN,AIMS
|
|
|
1507
1514
|
Lasa AIMS (mssql),FB,AIMS
|
|
1508
1515
|
latis network,<blank>,<blank>
|
|
1509
1516
|
LAXO,admin,admin
|
|
1517
|
+
ldap account manager(lam),lam,lam
|
|
1510
1518
|
Leading Edge,<blank>,MASTER
|
|
1511
1519
|
Lenel,admin,admin
|
|
1512
1520
|
Lenel OnGuard (mssql),LENEL,MULTIMEDIA
|
|
@@ -1725,9 +1733,6 @@ Netcomm,user,password
|
|
|
1725
1733
|
Netcordia,admin,admin
|
|
1726
1734
|
netcore (ssh),admin,admin
|
|
1727
1735
|
netcore (ssh),guest,guest
|
|
1728
|
-
netgar (ssh),admin,1234
|
|
1729
|
-
netgar (ssh),admin,admin
|
|
1730
|
-
netgar (ssh),admin,<blank>
|
|
1731
1736
|
Netgear,admin,1234
|
|
1732
1737
|
Netgear,admin,admin
|
|
1733
1738
|
Netgear,admin,<blank>
|
|
@@ -1749,6 +1754,7 @@ Netgear,Gearguy,Geardog
|
|
|
1749
1754
|
Netgear,super,5777364
|
|
1750
1755
|
Netgear,superman,21241036
|
|
1751
1756
|
NetGenesis,naadmin,naadmin
|
|
1757
|
+
NETIO 4All PowerPDU,admin,admin
|
|
1752
1758
|
Netopia,admin,<blank>
|
|
1753
1759
|
Netopia,admin,noway
|
|
1754
1760
|
Netopia,<blank>,<blank>
|
|
@@ -1921,6 +1927,7 @@ Nullsoft,admin,changeme
|
|
|
1921
1927
|
Nurit,$system,<blank>
|
|
1922
1928
|
Nuxeo Server (general),Administrator,Administrator
|
|
1923
1929
|
OCE,<blank>,0 and the number of OCE printer
|
|
1930
|
+
OCS Inventory,admin,admin
|
|
1924
1931
|
Odoo (general),admin,admin
|
|
1925
1932
|
Odoo (general),demo,demo
|
|
1926
1933
|
ODS,ods,ods
|
|
@@ -1958,6 +1965,7 @@ OpenMarket,user_expert,demo
|
|
|
1958
1965
|
OpenMarket,user_marketer,demo
|
|
1959
1966
|
OpenMarket,user_pricer,demo
|
|
1960
1967
|
OpenMarket,user_publisher,demo
|
|
1968
|
+
OpenNetAdmin,admin,admin
|
|
1961
1969
|
OPEN Networks,root,0P3N
|
|
1962
1970
|
Openwave,cac_admin,cacadmin
|
|
1963
1971
|
Openwave,sys,uplink
|
|
@@ -2201,7 +2209,6 @@ Oracle,WWWUSER,WWWUSER
|
|
|
2201
2209
|
Oracle,WWW,WWW
|
|
2202
2210
|
Oracle,XPRT,XPRT
|
|
2203
2211
|
Orange,admin,admin
|
|
2204
|
-
orange livebox4 (web),admin,(blank)
|
|
2205
2212
|
orange livebox4 (web),admin,<blank>
|
|
2206
2213
|
Orange,root,1234
|
|
2207
2214
|
Osicom,debug,d.e.b.u.g
|
|
@@ -2225,6 +2232,7 @@ ovislink,root,<blank>
|
|
|
2225
2232
|
Pacific Micro Data,pmd,<blank>
|
|
2226
2233
|
Packard Bell,<blank>,bell9
|
|
2227
2234
|
Packeteer,<blank>,touchpwd=
|
|
2235
|
+
Palo Alto GlobalProtect Gateway,admin,admin
|
|
2228
2236
|
Panasonic,admin,1234
|
|
2229
2237
|
Panasonic,admin,12345
|
|
2230
2238
|
Panasonic,<blank>,1234
|
|
@@ -2330,6 +2338,7 @@ publicprivate (snmp),<blank>,private
|
|
|
2330
2338
|
publicprivate (snmp),<blank>,public
|
|
2331
2339
|
Pyramid Computer,admin,admin
|
|
2332
2340
|
Pyramid Computer,admin,gnumpf
|
|
2341
|
+
qBittorrent Web UI,admin,adminadmin
|
|
2333
2342
|
QDI,<blank>,lesarotl
|
|
2334
2343
|
QDI,<blank>,password
|
|
2335
2344
|
QDI,<blank>,QDI
|
|
@@ -2344,6 +2353,7 @@ Questra Corporation,guest,guest
|
|
|
2344
2353
|
Questra Corporation,questra,questra
|
|
2345
2354
|
Quest Software,TOAD,TOAD
|
|
2346
2355
|
Quintum Technologies Inc.,admin,admin
|
|
2356
|
+
RabbitMQ,guest,guest
|
|
2347
2357
|
Radio Shack,<blank>,744
|
|
2348
2358
|
Radio Shack,[MULTIPLE],744
|
|
2349
2359
|
Radvision,admin,<blank>
|
|
@@ -2386,7 +2396,6 @@ Research,<blank>,Col2ogro2
|
|
|
2386
2396
|
Research Machines,manager,changeme
|
|
2387
2397
|
Resumix,root,resumix
|
|
2388
2398
|
Ricoh,admin,<blank>
|
|
2389
|
-
Ricoh,admin,no password
|
|
2390
2399
|
Ricoh,admin,password
|
|
2391
2400
|
Ricoh,<blank>,password
|
|
2392
2401
|
Ricoh,<blank>,sysadm
|
|
@@ -2738,7 +2747,6 @@ SolarWinds,whd,whd
|
|
|
2738
2747
|
Solution 6,aaa,often blank
|
|
2739
2748
|
Solwise,root,same as webui pwd
|
|
2740
2749
|
SonarQube (web),admin,admin
|
|
2741
|
-
Sonicwall,admin,password
|
|
2742
2750
|
SonicWALL,admin,password
|
|
2743
2751
|
Sonic-X,root,admin
|
|
2744
2752
|
Sonus,admin,Sonus12345
|
|
@@ -3114,6 +3122,7 @@ vacron (web),admin,admin
|
|
|
3114
3122
|
Various,root,admin
|
|
3115
3123
|
VASCO,admin,<blank>
|
|
3116
3124
|
VBrick Systems,admin,admin
|
|
3125
|
+
vectr,admin,11_ThisIsTheFirstPassword_11
|
|
3117
3126
|
Veramark,admin,password
|
|
3118
3127
|
Verifone,<blank>,166816
|
|
3119
3128
|
Verilink,<blank>,<blank>
|