pwn 0.4.333
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +7 -0
- data/.github/FUNDING.yml +1 -0
- data/.github/ISSUE_TEMPLATE/bug_report.md +38 -0
- data/.gitignore +62 -0
- data/.rubocop.yml +12 -0
- data/.rubocop_todo.yml +76 -0
- data/.ruby-gemset +1 -0
- data/.ruby-version +1 -0
- data/.travis.yml +24 -0
- data/CODE_OF_CONDUCT.md +46 -0
- data/CONTRIBUTING.md +10 -0
- data/Gemfile +75 -0
- data/LICENSE.txt +22 -0
- data/README.md +125 -0
- data/Rakefile +20 -0
- data/Vagrantfile +250 -0
- data/bin/pwn +74 -0
- data/bin/pwn_android_war_dialer +137 -0
- data/bin/pwn_arachni +132 -0
- data/bin/pwn_arachni_rest +174 -0
- data/bin/pwn_autoinc_version +50 -0
- data/bin/pwn_aws_describe_resources +728 -0
- data/bin/pwn_burp_suite_pro_active_scan +113 -0
- data/bin/pwn_char_base64_encoding +24 -0
- data/bin/pwn_char_dec_encoding +23 -0
- data/bin/pwn_char_hex_escaped_encoding +26 -0
- data/bin/pwn_char_html_entity_encoding +24 -0
- data/bin/pwn_char_unicode_escaped_encoding +23 -0
- data/bin/pwn_char_url_encoding +24 -0
- data/bin/pwn_defectdojo_engagement_create +158 -0
- data/bin/pwn_defectdojo_importscan +104 -0
- data/bin/pwn_defectdojo_reimportscan +104 -0
- data/bin/pwn_domain_reversewhois +89 -0
- data/bin/pwn_fuzz_net_app_proto +149 -0
- data/bin/pwn_ibm_appscan_enterprise +112 -0
- data/bin/pwn_jenkins_create_job +68 -0
- data/bin/pwn_jenkins_create_view +68 -0
- data/bin/pwn_jenkins_install_plugin +91 -0
- data/bin/pwn_jenkins_thinBackup_aws_s3 +123 -0
- data/bin/pwn_jenkins_update_plugins +87 -0
- data/bin/pwn_jenkins_useradd +86 -0
- data/bin/pwn_mail_agent +127 -0
- data/bin/pwn_msf_postgres_login +28 -0
- data/bin/pwn_nessus_cloud_vulnscan +103 -0
- data/bin/pwn_nexpose +52 -0
- data/bin/pwn_openvas_vulnscan +102 -0
- data/bin/pwn_owasp_zap_active_scan +134 -0
- data/bin/pwn_pastebin_sample_filter +61 -0
- data/bin/pwn_perimeter_recon +318 -0
- data/bin/pwn_sast +161 -0
- data/bin/pwn_serial_check_voicemail +66 -0
- data/bin/pwn_serial_qualcomm_commands +16 -0
- data/bin/pwn_simple_http_server +46 -0
- data/bin/pwn_web_cache_deception +233 -0
- data/bin/pwn_www_checkip +62 -0
- data/bin/pwn_xss_dom_vectors +169 -0
- data/build_pwn_gem.sh +33 -0
- data/documentation/CSI_Contributors_and_Users.png +0 -0
- data/documentation/CSI_Driver_Arch.png +0 -0
- data/documentation/fax-spectrogram.png +0 -0
- data/documentation/fax-waveform.png +0 -0
- data/documentation/pwn_android_war_dialer_session.png +0 -0
- data/documentation/pwn_wallpaper.jpg +0 -0
- data/documentation/ringing-spectrogram.png +0 -0
- data/documentation/ringing-waveform.png +0 -0
- data/etc/systemd/msfrpcd.service +12 -0
- data/etc/systemd/openvas.service +14 -0
- data/etc/userland/aws/apache2/jenkins_443.conf +90 -0
- data/etc/userland/aws/apache2/jenkins_80.conf +7 -0
- data/etc/userland/aws/apache2/openvas_443.conf +87 -0
- data/etc/userland/aws/apache2/openvas_80.conf +7 -0
- data/etc/userland/aws/apache2/sast_443.conf +87 -0
- data/etc/userland/aws/apache2/sast_80.conf +9 -0
- data/etc/userland/aws/apache2/vagrant.yaml.EXAMPLE +9 -0
- data/etc/userland/aws/arachni/navigation-REST.instruct.EXAMPLE +29 -0
- data/etc/userland/aws/arachni/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/aws/burpsuite/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/aws/burpsuite/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/aws/defectdojo/vagrant.yaml.EXAMPLE +3 -0
- data/etc/userland/aws/jenkins/inject_build_envs.sh +15 -0
- data/etc/userland/aws/jenkins/jenkins +81 -0
- data/etc/userland/aws/jenkins/jobs/pipeline-pwntemplate.xml +298 -0
- data/etc/userland/aws/jenkins/jobs/pipeline-selfupdate.xml +462 -0
- data/etc/userland/aws/jenkins/jobs/pwntemplate-DOMAIN-arachni.xml +35 -0
- data/etc/userland/aws/jenkins/jobs/pwntemplate-DOMAIN-burpsuite.xml +44 -0
- data/etc/userland/aws/jenkins/jobs/pwntemplate-DOMAIN-owasp_zap.xml +35 -0
- data/etc/userland/aws/jenkins/jobs/pwntemplate-DOMAIN-ssllabs-scan.xml +45 -0
- data/etc/userland/aws/jenkins/jobs/pwntemplate-GITREPO_BRANCH-sast.xml +71 -0
- data/etc/userland/aws/jenkins/jobs/pwntemplate-NETWORKRANGE-nmap_discovery_scan_tcp_udp_65k.xml +56 -0
- data/etc/userland/aws/jenkins/jobs/pwntemplate-NETWORKRANGE-nmap_xml_results_searchsploit.xml +59 -0
- data/etc/userland/aws/jenkins/jobs/pwntemplate-NETWORKRANGE-openvas.xml +45 -0
- data/etc/userland/aws/jenkins/jobs/selfupdate-exploit-db.xml +43 -0
- data/etc/userland/aws/jenkins/jobs/selfupdate-gem.xml +42 -0
- data/etc/userland/aws/jenkins/jobs/selfupdate-jenkins_plugins.xml +42 -0
- data/etc/userland/aws/jenkins/jobs/selfupdate-metasploit.xml +42 -0
- data/etc/userland/aws/jenkins/jobs/selfupdate-nmap_all_live_hosts.xml +42 -0
- data/etc/userland/aws/jenkins/jobs/selfupdate-openvas_sync.xml +42 -0
- data/etc/userland/aws/jenkins/jobs/selfupdate-openvas_wrappers.xml +42 -0
- data/etc/userland/aws/jenkins/jobs/selfupdate-os.xml +42 -0
- data/etc/userland/aws/jenkins/jobs/selfupdate-pwn.xml +42 -0
- data/etc/userland/aws/jenkins/jobs/selfupdate-rvm.xml +42 -0
- data/etc/userland/aws/jenkins/jobs/selfupdate-ssllabs-scan.xml +42 -0
- data/etc/userland/aws/jenkins/jobs/selfupdate-wpscan.xml +42 -0
- data/etc/userland/aws/jenkins/jobs_userland/.gitkeep +0 -0
- data/etc/userland/aws/jenkins/log_parser_rules/arachni.rules +5 -0
- data/etc/userland/aws/jenkins/log_parser_rules/sast.rules +2 -0
- data/etc/userland/aws/jenkins/log_parser_rules/self_update.rules +14 -0
- data/etc/userland/aws/jenkins/log_parser_rules/ssllabs-scan.rules +8 -0
- data/etc/userland/aws/jenkins/log_parser_rules/system_maintenance.rules +9 -0
- data/etc/userland/aws/jenkins/log_parser_rules/wpscan.rules +2 -0
- data/etc/userland/aws/jenkins/vagrant.yaml.EXAMPLE +8 -0
- data/etc/userland/aws/letsencrypt/vagrant.yaml.EXAMPLE +5 -0
- data/etc/userland/aws/metasploit/vagrant.yaml.EXAMPLE +4 -0
- data/etc/userland/aws/nessus/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/aws/openvas/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/aws/owasp_zap/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/aws/postgres/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/aws/recon-ng/vagrant.yaml.EXAMPLE +52 -0
- data/etc/userland/aws/vagrant.yaml.EXAMPLE +35 -0
- data/etc/userland/docker/apache2/jenkins_443.conf +90 -0
- data/etc/userland/docker/apache2/jenkins_80.conf +7 -0
- data/etc/userland/docker/apache2/openvas_443.conf +87 -0
- data/etc/userland/docker/apache2/openvas_80.conf +7 -0
- data/etc/userland/docker/apache2/sast_443.conf +87 -0
- data/etc/userland/docker/apache2/sast_80.conf +9 -0
- data/etc/userland/docker/apache2/vagrant.yaml.EXAMPLE +9 -0
- data/etc/userland/docker/arachni/navigation-REST.instruct.EXAMPLE +29 -0
- data/etc/userland/docker/arachni/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/docker/burpsuite/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/docker/burpsuite/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/docker/defectdojo/vagrant.yaml.EXAMPLE +3 -0
- data/etc/userland/docker/jenkins/inject_build_envs.sh +15 -0
- data/etc/userland/docker/jenkins/jenkins +81 -0
- data/etc/userland/docker/jenkins/jobs/pipeline-pwntemplate.xml +298 -0
- data/etc/userland/docker/jenkins/jobs/pipeline-selfupdate.xml +462 -0
- data/etc/userland/docker/jenkins/jobs/pwntemplate-DOMAIN-arachni.xml +35 -0
- data/etc/userland/docker/jenkins/jobs/pwntemplate-DOMAIN-burpsuite.xml +44 -0
- data/etc/userland/docker/jenkins/jobs/pwntemplate-DOMAIN-owasp_zap.xml +35 -0
- data/etc/userland/docker/jenkins/jobs/pwntemplate-DOMAIN-ssllabs-scan.xml +45 -0
- data/etc/userland/docker/jenkins/jobs/pwntemplate-GITREPO_BRANCH-sast.xml +71 -0
- data/etc/userland/docker/jenkins/jobs/pwntemplate-NETWORKRANGE-nmap_discovery_scan_tcp_udp_65k.xml +56 -0
- data/etc/userland/docker/jenkins/jobs/pwntemplate-NETWORKRANGE-nmap_xml_results_searchsploit.xml +59 -0
- data/etc/userland/docker/jenkins/jobs/pwntemplate-NETWORKRANGE-openvas.xml +45 -0
- data/etc/userland/docker/jenkins/jobs/selfupdate-exploit-db.xml +43 -0
- data/etc/userland/docker/jenkins/jobs/selfupdate-gem.xml +42 -0
- data/etc/userland/docker/jenkins/jobs/selfupdate-jenkins_plugins.xml +42 -0
- data/etc/userland/docker/jenkins/jobs/selfupdate-metasploit.xml +42 -0
- data/etc/userland/docker/jenkins/jobs/selfupdate-nmap_all_live_hosts.xml +42 -0
- data/etc/userland/docker/jenkins/jobs/selfupdate-openvas_sync.xml +42 -0
- data/etc/userland/docker/jenkins/jobs/selfupdate-openvas_wrappers.xml +42 -0
- data/etc/userland/docker/jenkins/jobs/selfupdate-os.xml +42 -0
- data/etc/userland/docker/jenkins/jobs/selfupdate-pwn.xml +42 -0
- data/etc/userland/docker/jenkins/jobs/selfupdate-rvm.xml +42 -0
- data/etc/userland/docker/jenkins/jobs/selfupdate-ssllabs-scan.xml +42 -0
- data/etc/userland/docker/jenkins/jobs/selfupdate-wpscan.xml +42 -0
- data/etc/userland/docker/jenkins/jobs_userland/.gitkeep +0 -0
- data/etc/userland/docker/jenkins/log_parser_rules/arachni.rules +5 -0
- data/etc/userland/docker/jenkins/log_parser_rules/sast.rules +2 -0
- data/etc/userland/docker/jenkins/log_parser_rules/self_update.rules +14 -0
- data/etc/userland/docker/jenkins/log_parser_rules/ssllabs-scan.rules +8 -0
- data/etc/userland/docker/jenkins/log_parser_rules/system_maintenance.rules +9 -0
- data/etc/userland/docker/jenkins/log_parser_rules/wpscan.rules +2 -0
- data/etc/userland/docker/jenkins/vagrant.yaml.EXAMPLE +8 -0
- data/etc/userland/docker/letsencrypt/vagrant.yaml.EXAMPLE +5 -0
- data/etc/userland/docker/metasploit/vagrant.yaml.EXAMPLE +4 -0
- data/etc/userland/docker/nessus/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/docker/openvas/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/docker/owasp_zap/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/docker/postgres/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/docker/recon-ng/vagrant.yaml.EXAMPLE +52 -0
- data/etc/userland/qemu/apache2/jenkins_443.conf +90 -0
- data/etc/userland/qemu/apache2/jenkins_80.conf +7 -0
- data/etc/userland/qemu/apache2/openvas_443.conf +87 -0
- data/etc/userland/qemu/apache2/openvas_80.conf +7 -0
- data/etc/userland/qemu/apache2/sast_443.conf +87 -0
- data/etc/userland/qemu/apache2/sast_80.conf +9 -0
- data/etc/userland/qemu/apache2/vagrant.yaml.EXAMPLE +9 -0
- data/etc/userland/qemu/arachni/navigation-REST.instruct.EXAMPLE +29 -0
- data/etc/userland/qemu/arachni/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/qemu/burpsuite/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/qemu/burpsuite/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/qemu/defectdojo/vagrant.yaml.EXAMPLE +3 -0
- data/etc/userland/qemu/jenkins/inject_build_envs.sh +15 -0
- data/etc/userland/qemu/jenkins/jenkins +81 -0
- data/etc/userland/qemu/jenkins/jobs/pipeline-pwntemplate.xml +298 -0
- data/etc/userland/qemu/jenkins/jobs/pipeline-selfupdate.xml +462 -0
- data/etc/userland/qemu/jenkins/jobs/pwntemplate-DOMAIN-arachni.xml +35 -0
- data/etc/userland/qemu/jenkins/jobs/pwntemplate-DOMAIN-burpsuite.xml +44 -0
- data/etc/userland/qemu/jenkins/jobs/pwntemplate-DOMAIN-owasp_zap.xml +35 -0
- data/etc/userland/qemu/jenkins/jobs/pwntemplate-DOMAIN-ssllabs-scan.xml +45 -0
- data/etc/userland/qemu/jenkins/jobs/pwntemplate-GITREPO_BRANCH-sast.xml +71 -0
- data/etc/userland/qemu/jenkins/jobs/pwntemplate-NETWORKRANGE-nmap_discovery_scan_tcp_udp_65k.xml +56 -0
- data/etc/userland/qemu/jenkins/jobs/pwntemplate-NETWORKRANGE-nmap_xml_results_searchsploit.xml +59 -0
- data/etc/userland/qemu/jenkins/jobs/pwntemplate-NETWORKRANGE-openvas.xml +45 -0
- data/etc/userland/qemu/jenkins/jobs/selfupdate-exploit-db.xml +43 -0
- data/etc/userland/qemu/jenkins/jobs/selfupdate-gem.xml +42 -0
- data/etc/userland/qemu/jenkins/jobs/selfupdate-jenkins_plugins.xml +42 -0
- data/etc/userland/qemu/jenkins/jobs/selfupdate-metasploit.xml +42 -0
- data/etc/userland/qemu/jenkins/jobs/selfupdate-nmap_all_live_hosts.xml +42 -0
- data/etc/userland/qemu/jenkins/jobs/selfupdate-openvas_sync.xml +42 -0
- data/etc/userland/qemu/jenkins/jobs/selfupdate-openvas_wrappers.xml +42 -0
- data/etc/userland/qemu/jenkins/jobs/selfupdate-os.xml +42 -0
- data/etc/userland/qemu/jenkins/jobs/selfupdate-pwn.xml +42 -0
- data/etc/userland/qemu/jenkins/jobs/selfupdate-rvm.xml +42 -0
- data/etc/userland/qemu/jenkins/jobs/selfupdate-ssllabs-scan.xml +42 -0
- data/etc/userland/qemu/jenkins/jobs/selfupdate-wpscan.xml +42 -0
- data/etc/userland/qemu/jenkins/jobs_userland/.gitkeep +0 -0
- data/etc/userland/qemu/jenkins/log_parser_rules/arachni.rules +5 -0
- data/etc/userland/qemu/jenkins/log_parser_rules/sast.rules +2 -0
- data/etc/userland/qemu/jenkins/log_parser_rules/self_update.rules +14 -0
- data/etc/userland/qemu/jenkins/log_parser_rules/ssllabs-scan.rules +8 -0
- data/etc/userland/qemu/jenkins/log_parser_rules/system_maintenance.rules +9 -0
- data/etc/userland/qemu/jenkins/log_parser_rules/wpscan.rules +2 -0
- data/etc/userland/qemu/jenkins/vagrant.yaml.EXAMPLE +8 -0
- data/etc/userland/qemu/letsencrypt/vagrant.yaml.EXAMPLE +5 -0
- data/etc/userland/qemu/metasploit/vagrant.yaml.EXAMPLE +4 -0
- data/etc/userland/qemu/nessus/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/qemu/openvas/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/qemu/owasp_zap/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/qemu/postgres/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/qemu/recon-ng/vagrant.yaml.EXAMPLE +52 -0
- data/etc/userland/ruby-gem/apache2/jenkins_443.conf +90 -0
- data/etc/userland/ruby-gem/apache2/jenkins_80.conf +7 -0
- data/etc/userland/ruby-gem/apache2/openvas_443.conf +87 -0
- data/etc/userland/ruby-gem/apache2/openvas_80.conf +7 -0
- data/etc/userland/ruby-gem/apache2/sast_443.conf +87 -0
- data/etc/userland/ruby-gem/apache2/sast_80.conf +9 -0
- data/etc/userland/ruby-gem/apache2/vagrant.yaml.EXAMPLE +9 -0
- data/etc/userland/ruby-gem/arachni/navigation-REST.instruct.EXAMPLE +29 -0
- data/etc/userland/ruby-gem/arachni/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/ruby-gem/burpsuite/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/ruby-gem/burpsuite/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/ruby-gem/defectdojo/vagrant.yaml.EXAMPLE +3 -0
- data/etc/userland/ruby-gem/jenkins/inject_build_envs.sh +15 -0
- data/etc/userland/ruby-gem/jenkins/jenkins +81 -0
- data/etc/userland/ruby-gem/jenkins/jobs/pipeline-pwntemplate.xml +298 -0
- data/etc/userland/ruby-gem/jenkins/jobs/pipeline-selfupdate.xml +462 -0
- data/etc/userland/ruby-gem/jenkins/jobs/pwntemplate-DOMAIN-arachni.xml +35 -0
- data/etc/userland/ruby-gem/jenkins/jobs/pwntemplate-DOMAIN-burpsuite.xml +44 -0
- data/etc/userland/ruby-gem/jenkins/jobs/pwntemplate-DOMAIN-owasp_zap.xml +35 -0
- data/etc/userland/ruby-gem/jenkins/jobs/pwntemplate-DOMAIN-ssllabs-scan.xml +45 -0
- data/etc/userland/ruby-gem/jenkins/jobs/pwntemplate-GITREPO_BRANCH-sast.xml +71 -0
- data/etc/userland/ruby-gem/jenkins/jobs/pwntemplate-NETWORKRANGE-nmap_discovery_scan_tcp_udp_65k.xml +56 -0
- data/etc/userland/ruby-gem/jenkins/jobs/pwntemplate-NETWORKRANGE-nmap_xml_results_searchsploit.xml +59 -0
- data/etc/userland/ruby-gem/jenkins/jobs/pwntemplate-NETWORKRANGE-openvas.xml +45 -0
- data/etc/userland/ruby-gem/jenkins/jobs/selfupdate-exploit-db.xml +43 -0
- data/etc/userland/ruby-gem/jenkins/jobs/selfupdate-gem.xml +42 -0
- data/etc/userland/ruby-gem/jenkins/jobs/selfupdate-jenkins_plugins.xml +42 -0
- data/etc/userland/ruby-gem/jenkins/jobs/selfupdate-metasploit.xml +42 -0
- data/etc/userland/ruby-gem/jenkins/jobs/selfupdate-nmap_all_live_hosts.xml +42 -0
- data/etc/userland/ruby-gem/jenkins/jobs/selfupdate-openvas_sync.xml +42 -0
- data/etc/userland/ruby-gem/jenkins/jobs/selfupdate-openvas_wrappers.xml +42 -0
- data/etc/userland/ruby-gem/jenkins/jobs/selfupdate-os.xml +42 -0
- data/etc/userland/ruby-gem/jenkins/jobs/selfupdate-pwn.xml +42 -0
- data/etc/userland/ruby-gem/jenkins/jobs/selfupdate-rvm.xml +42 -0
- data/etc/userland/ruby-gem/jenkins/jobs/selfupdate-ssllabs-scan.xml +42 -0
- data/etc/userland/ruby-gem/jenkins/jobs/selfupdate-wpscan.xml +42 -0
- data/etc/userland/ruby-gem/jenkins/jobs_userland/.gitkeep +0 -0
- data/etc/userland/ruby-gem/jenkins/log_parser_rules/arachni.rules +5 -0
- data/etc/userland/ruby-gem/jenkins/log_parser_rules/sast.rules +2 -0
- data/etc/userland/ruby-gem/jenkins/log_parser_rules/self_update.rules +14 -0
- data/etc/userland/ruby-gem/jenkins/log_parser_rules/ssllabs-scan.rules +8 -0
- data/etc/userland/ruby-gem/jenkins/log_parser_rules/system_maintenance.rules +9 -0
- data/etc/userland/ruby-gem/jenkins/log_parser_rules/wpscan.rules +2 -0
- data/etc/userland/ruby-gem/jenkins/vagrant.yaml.EXAMPLE +8 -0
- data/etc/userland/ruby-gem/letsencrypt/vagrant.yaml.EXAMPLE +5 -0
- data/etc/userland/ruby-gem/metasploit/vagrant.yaml.EXAMPLE +4 -0
- data/etc/userland/ruby-gem/nessus/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/ruby-gem/openvas/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/ruby-gem/owasp_zap/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/ruby-gem/postgres/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/ruby-gem/recon-ng/vagrant.yaml.EXAMPLE +52 -0
- data/etc/userland/virtualbox/apache2/jenkins_443.conf +90 -0
- data/etc/userland/virtualbox/apache2/jenkins_80.conf +7 -0
- data/etc/userland/virtualbox/apache2/openvas_443.conf +87 -0
- data/etc/userland/virtualbox/apache2/openvas_80.conf +7 -0
- data/etc/userland/virtualbox/apache2/sast_443.conf +87 -0
- data/etc/userland/virtualbox/apache2/sast_80.conf +9 -0
- data/etc/userland/virtualbox/apache2/vagrant.yaml.EXAMPLE +9 -0
- data/etc/userland/virtualbox/arachni/navigation-REST.instruct.EXAMPLE +29 -0
- data/etc/userland/virtualbox/arachni/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/virtualbox/burpsuite/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/virtualbox/burpsuite/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/virtualbox/defectdojo/vagrant.yaml.EXAMPLE +3 -0
- data/etc/userland/virtualbox/jenkins/inject_build_envs.sh +15 -0
- data/etc/userland/virtualbox/jenkins/jenkins +81 -0
- data/etc/userland/virtualbox/jenkins/jobs/pipeline-pwntemplate.xml +298 -0
- data/etc/userland/virtualbox/jenkins/jobs/pipeline-selfupdate.xml +462 -0
- data/etc/userland/virtualbox/jenkins/jobs/pwntemplate-DOMAIN-arachni.xml +35 -0
- data/etc/userland/virtualbox/jenkins/jobs/pwntemplate-DOMAIN-burpsuite.xml +44 -0
- data/etc/userland/virtualbox/jenkins/jobs/pwntemplate-DOMAIN-owasp_zap.xml +35 -0
- data/etc/userland/virtualbox/jenkins/jobs/pwntemplate-DOMAIN-ssllabs-scan.xml +45 -0
- data/etc/userland/virtualbox/jenkins/jobs/pwntemplate-GITREPO_BRANCH-sast.xml +71 -0
- data/etc/userland/virtualbox/jenkins/jobs/pwntemplate-NETWORKRANGE-nmap_discovery_scan_tcp_udp_65k.xml +56 -0
- data/etc/userland/virtualbox/jenkins/jobs/pwntemplate-NETWORKRANGE-nmap_xml_results_searchsploit.xml +59 -0
- data/etc/userland/virtualbox/jenkins/jobs/pwntemplate-NETWORKRANGE-openvas.xml +45 -0
- data/etc/userland/virtualbox/jenkins/jobs/selfupdate-exploit-db.xml +43 -0
- data/etc/userland/virtualbox/jenkins/jobs/selfupdate-gem.xml +42 -0
- data/etc/userland/virtualbox/jenkins/jobs/selfupdate-jenkins_plugins.xml +42 -0
- data/etc/userland/virtualbox/jenkins/jobs/selfupdate-metasploit.xml +42 -0
- data/etc/userland/virtualbox/jenkins/jobs/selfupdate-nmap_all_live_hosts.xml +42 -0
- data/etc/userland/virtualbox/jenkins/jobs/selfupdate-openvas_sync.xml +42 -0
- data/etc/userland/virtualbox/jenkins/jobs/selfupdate-openvas_wrappers.xml +42 -0
- data/etc/userland/virtualbox/jenkins/jobs/selfupdate-os.xml +42 -0
- data/etc/userland/virtualbox/jenkins/jobs/selfupdate-pwn.xml +42 -0
- data/etc/userland/virtualbox/jenkins/jobs/selfupdate-rvm.xml +42 -0
- data/etc/userland/virtualbox/jenkins/jobs/selfupdate-ssllabs-scan.xml +42 -0
- data/etc/userland/virtualbox/jenkins/jobs/selfupdate-wpscan.xml +42 -0
- data/etc/userland/virtualbox/jenkins/jobs_userland/.gitkeep +0 -0
- data/etc/userland/virtualbox/jenkins/log_parser_rules/arachni.rules +5 -0
- data/etc/userland/virtualbox/jenkins/log_parser_rules/sast.rules +2 -0
- data/etc/userland/virtualbox/jenkins/log_parser_rules/self_update.rules +14 -0
- data/etc/userland/virtualbox/jenkins/log_parser_rules/ssllabs-scan.rules +8 -0
- data/etc/userland/virtualbox/jenkins/log_parser_rules/system_maintenance.rules +9 -0
- data/etc/userland/virtualbox/jenkins/log_parser_rules/wpscan.rules +2 -0
- data/etc/userland/virtualbox/jenkins/vagrant.yaml.EXAMPLE +8 -0
- data/etc/userland/virtualbox/letsencrypt/vagrant.yaml.EXAMPLE +5 -0
- data/etc/userland/virtualbox/metasploit/vagrant.yaml.EXAMPLE +4 -0
- data/etc/userland/virtualbox/nessus/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/virtualbox/openvas/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/virtualbox/owasp_zap/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/virtualbox/postgres/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/virtualbox/recon-ng/vagrant.yaml.EXAMPLE +52 -0
- data/etc/userland/virtualbox/vagrant.yaml.EXAMPLE +4 -0
- data/etc/userland/vmware/apache2/jenkins_443.conf +90 -0
- data/etc/userland/vmware/apache2/jenkins_80.conf +7 -0
- data/etc/userland/vmware/apache2/openvas_443.conf +87 -0
- data/etc/userland/vmware/apache2/openvas_80.conf +7 -0
- data/etc/userland/vmware/apache2/sast_443.conf +87 -0
- data/etc/userland/vmware/apache2/sast_80.conf +9 -0
- data/etc/userland/vmware/apache2/vagrant.yaml.EXAMPLE +9 -0
- data/etc/userland/vmware/arachni/navigation-REST.instruct.EXAMPLE +29 -0
- data/etc/userland/vmware/arachni/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/vmware/burpsuite/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/vmware/burpsuite/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/vmware/defectdojo/vagrant.yaml.EXAMPLE +3 -0
- data/etc/userland/vmware/jenkins/inject_build_envs.sh +15 -0
- data/etc/userland/vmware/jenkins/jenkins +81 -0
- data/etc/userland/vmware/jenkins/jobs/pipeline-pwntemplate.xml +298 -0
- data/etc/userland/vmware/jenkins/jobs/pipeline-selfupdate.xml +462 -0
- data/etc/userland/vmware/jenkins/jobs/pwntemplate-DOMAIN-arachni.xml +35 -0
- data/etc/userland/vmware/jenkins/jobs/pwntemplate-DOMAIN-burpsuite.xml +44 -0
- data/etc/userland/vmware/jenkins/jobs/pwntemplate-DOMAIN-owasp_zap.xml +35 -0
- data/etc/userland/vmware/jenkins/jobs/pwntemplate-DOMAIN-ssllabs-scan.xml +45 -0
- data/etc/userland/vmware/jenkins/jobs/pwntemplate-GITREPO_BRANCH-sast.xml +71 -0
- data/etc/userland/vmware/jenkins/jobs/pwntemplate-NETWORKRANGE-nmap_discovery_scan_tcp_udp_65k.xml +56 -0
- data/etc/userland/vmware/jenkins/jobs/pwntemplate-NETWORKRANGE-nmap_xml_results_searchsploit.xml +59 -0
- data/etc/userland/vmware/jenkins/jobs/pwntemplate-NETWORKRANGE-openvas.xml +45 -0
- data/etc/userland/vmware/jenkins/jobs/selfupdate-exploit-db.xml +43 -0
- data/etc/userland/vmware/jenkins/jobs/selfupdate-gem.xml +42 -0
- data/etc/userland/vmware/jenkins/jobs/selfupdate-jenkins_plugins.xml +42 -0
- data/etc/userland/vmware/jenkins/jobs/selfupdate-metasploit.xml +42 -0
- data/etc/userland/vmware/jenkins/jobs/selfupdate-nmap_all_live_hosts.xml +42 -0
- data/etc/userland/vmware/jenkins/jobs/selfupdate-openvas_sync.xml +42 -0
- data/etc/userland/vmware/jenkins/jobs/selfupdate-openvas_wrappers.xml +42 -0
- data/etc/userland/vmware/jenkins/jobs/selfupdate-os.xml +42 -0
- data/etc/userland/vmware/jenkins/jobs/selfupdate-pwn.xml +42 -0
- data/etc/userland/vmware/jenkins/jobs/selfupdate-rvm.xml +42 -0
- data/etc/userland/vmware/jenkins/jobs/selfupdate-ssllabs-scan.xml +42 -0
- data/etc/userland/vmware/jenkins/jobs/selfupdate-wpscan.xml +42 -0
- data/etc/userland/vmware/jenkins/jobs_userland/.gitkeep +0 -0
- data/etc/userland/vmware/jenkins/log_parser_rules/arachni.rules +5 -0
- data/etc/userland/vmware/jenkins/log_parser_rules/sast.rules +2 -0
- data/etc/userland/vmware/jenkins/log_parser_rules/self_update.rules +14 -0
- data/etc/userland/vmware/jenkins/log_parser_rules/ssllabs-scan.rules +8 -0
- data/etc/userland/vmware/jenkins/log_parser_rules/system_maintenance.rules +9 -0
- data/etc/userland/vmware/jenkins/log_parser_rules/wpscan.rules +2 -0
- data/etc/userland/vmware/jenkins/vagrant.yaml.EXAMPLE +8 -0
- data/etc/userland/vmware/letsencrypt/vagrant.yaml.EXAMPLE +5 -0
- data/etc/userland/vmware/metasploit/vagrant.yaml.EXAMPLE +4 -0
- data/etc/userland/vmware/nessus/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/vmware/openvas/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/vmware/owasp_zap/navigation.instruct.EXAMPLE +3 -0
- data/etc/userland/vmware/postgres/vagrant.yaml.EXAMPLE +2 -0
- data/etc/userland/vmware/recon-ng/vagrant.yaml.EXAMPLE +52 -0
- data/etc/userland/vmware/vagrant.yaml.EXAMPLE +5 -0
- data/find_latest_gem_versions_per_Gemfile.sh +11 -0
- data/git_commit_test_reinit_gem.sh +22 -0
- data/install.sh +180 -0
- data/lib/pwn/aws/acm.rb +92 -0
- data/lib/pwn/aws/api_gateway.rb +92 -0
- data/lib/pwn/aws/app_stream.rb +92 -0
- data/lib/pwn/aws/application_auto_scaling.rb +92 -0
- data/lib/pwn/aws/application_discovery_service.rb +92 -0
- data/lib/pwn/aws/auto_scaling.rb +92 -0
- data/lib/pwn/aws/batch.rb +92 -0
- data/lib/pwn/aws/budgets.rb +92 -0
- data/lib/pwn/aws/cloud_formation.rb +92 -0
- data/lib/pwn/aws/cloud_front.rb +92 -0
- data/lib/pwn/aws/cloud_hsm.rb +92 -0
- data/lib/pwn/aws/cloud_search.rb +92 -0
- data/lib/pwn/aws/cloud_search_domain.rb +92 -0
- data/lib/pwn/aws/cloud_trail.rb +92 -0
- data/lib/pwn/aws/cloud_watch.rb +92 -0
- data/lib/pwn/aws/cloud_watch_events.rb +92 -0
- data/lib/pwn/aws/cloud_watch_logs.rb +92 -0
- data/lib/pwn/aws/code_build.rb +92 -0
- data/lib/pwn/aws/code_commit.rb +92 -0
- data/lib/pwn/aws/code_deploy.rb +92 -0
- data/lib/pwn/aws/code_pipeline.rb +92 -0
- data/lib/pwn/aws/cognito_identity.rb +92 -0
- data/lib/pwn/aws/cognito_identity_provider.rb +92 -0
- data/lib/pwn/aws/cognito_sync.rb +92 -0
- data/lib/pwn/aws/config_service.rb +92 -0
- data/lib/pwn/aws/data_pipleline.rb +92 -0
- data/lib/pwn/aws/database_migration_service.rb +92 -0
- data/lib/pwn/aws/device_farm.rb +92 -0
- data/lib/pwn/aws/direct_connect.rb +92 -0
- data/lib/pwn/aws/directory_service.rb +92 -0
- data/lib/pwn/aws/dynamo_db.rb +92 -0
- data/lib/pwn/aws/dynamo_db_streams.rb +92 -0
- data/lib/pwn/aws/ec2.rb +92 -0
- data/lib/pwn/aws/ecr.rb +92 -0
- data/lib/pwn/aws/ecs.rb +92 -0
- data/lib/pwn/aws/efs.rb +92 -0
- data/lib/pwn/aws/elasti_cache.rb +92 -0
- data/lib/pwn/aws/elastic_beanstalk.rb +89 -0
- data/lib/pwn/aws/elastic_load_balancing.rb +92 -0
- data/lib/pwn/aws/elastic_load_balancing_v2.rb +92 -0
- data/lib/pwn/aws/elastic_transcoder.rb +92 -0
- data/lib/pwn/aws/elasticsearch_service.rb +92 -0
- data/lib/pwn/aws/emr.rb +92 -0
- data/lib/pwn/aws/firehose.rb +92 -0
- data/lib/pwn/aws/game_lift.rb +92 -0
- data/lib/pwn/aws/glacier.rb +92 -0
- data/lib/pwn/aws/health.rb +92 -0
- data/lib/pwn/aws/iam.rb +92 -0
- data/lib/pwn/aws/import_export.rb +92 -0
- data/lib/pwn/aws/inspector.rb +92 -0
- data/lib/pwn/aws/iot.rb +92 -0
- data/lib/pwn/aws/iot_data_plane.rb +92 -0
- data/lib/pwn/aws/kinesis.rb +92 -0
- data/lib/pwn/aws/kinesis_analytics.rb +92 -0
- data/lib/pwn/aws/kms.rb +92 -0
- data/lib/pwn/aws/lambda.rb +92 -0
- data/lib/pwn/aws/lambda_preview.rb +92 -0
- data/lib/pwn/aws/lex.rb +92 -0
- data/lib/pwn/aws/lightsail.rb +92 -0
- data/lib/pwn/aws/machine_learning.rb +92 -0
- data/lib/pwn/aws/marketplace_commerce_analytics.rb +92 -0
- data/lib/pwn/aws/marketplace_metering.rb +92 -0
- data/lib/pwn/aws/ops_works.rb +92 -0
- data/lib/pwn/aws/ops_works_cm.rb +92 -0
- data/lib/pwn/aws/pinpoint.rb +92 -0
- data/lib/pwn/aws/polly.rb +92 -0
- data/lib/pwn/aws/rds.rb +92 -0
- data/lib/pwn/aws/redshift.rb +92 -0
- data/lib/pwn/aws/rekognition.rb +92 -0
- data/lib/pwn/aws/route53.rb +92 -0
- data/lib/pwn/aws/route53_domains.rb +92 -0
- data/lib/pwn/aws/s3.rb +92 -0
- data/lib/pwn/aws/service_catalog.rb +92 -0
- data/lib/pwn/aws/ses.rb +92 -0
- data/lib/pwn/aws/shield.rb +92 -0
- data/lib/pwn/aws/simple_db.rb +92 -0
- data/lib/pwn/aws/sms.rb +92 -0
- data/lib/pwn/aws/snowball.rb +92 -0
- data/lib/pwn/aws/sns.rb +92 -0
- data/lib/pwn/aws/sqs.rb +92 -0
- data/lib/pwn/aws/ssm.rb +92 -0
- data/lib/pwn/aws/states.rb +92 -0
- data/lib/pwn/aws/storage_gateway.rb +92 -0
- data/lib/pwn/aws/sts.rb +63 -0
- data/lib/pwn/aws/support.rb +92 -0
- data/lib/pwn/aws/swf.rb +92 -0
- data/lib/pwn/aws/waf.rb +92 -0
- data/lib/pwn/aws/waf_regional.rb +92 -0
- data/lib/pwn/aws/workspaces.rb +92 -0
- data/lib/pwn/aws/x_ray.rb +92 -0
- data/lib/pwn/aws.rb +105 -0
- data/lib/pwn/ffi.rb +16 -0
- data/lib/pwn/plugins/android.rb +1616 -0
- data/lib/pwn/plugins/ansible_vault.rb +75 -0
- data/lib/pwn/plugins/authentication_helper.rb +79 -0
- data/lib/pwn/plugins/basic_auth.rb +63 -0
- data/lib/pwn/plugins/beef.rb +309 -0
- data/lib/pwn/plugins/burp_suite.rb +340 -0
- data/lib/pwn/plugins/bus_pirate.rb +150 -0
- data/lib/pwn/plugins/char.rb +459 -0
- data/lib/pwn/plugins/credit_card.rb +53 -0
- data/lib/pwn/plugins/dao_ldap.rb +131 -0
- data/lib/pwn/plugins/dao_mongo.rb +96 -0
- data/lib/pwn/plugins/dao_postgres.rb +224 -0
- data/lib/pwn/plugins/dao_sqlite3.rb +125 -0
- data/lib/pwn/plugins/defect_dojo.rb +759 -0
- data/lib/pwn/plugins/detect_os.rb +40 -0
- data/lib/pwn/plugins/ein.rb +141 -0
- data/lib/pwn/plugins/file_fu.rb +73 -0
- data/lib/pwn/plugins/fuzz.rb +206 -0
- data/lib/pwn/plugins/git.rb +166 -0
- data/lib/pwn/plugins/hacker_one.rb +152 -0
- data/lib/pwn/plugins/http_intercept_helper.rb +122 -0
- data/lib/pwn/plugins/ibm_appscan.rb +927 -0
- data/lib/pwn/plugins/ip_info.rb +100 -0
- data/lib/pwn/plugins/jenkins.rb +545 -0
- data/lib/pwn/plugins/json_pathify.rb +46 -0
- data/lib/pwn/plugins/mail_agent.rb +344 -0
- data/lib/pwn/plugins/metasploit.rb +151 -0
- data/lib/pwn/plugins/nessus_cloud.rb +325 -0
- data/lib/pwn/plugins/nexpose_vuln_scan.rb +356 -0
- data/lib/pwn/plugins/nmap_it.rb +99 -0
- data/lib/pwn/plugins/oauth2.rb +67 -0
- data/lib/pwn/plugins/ocr.rb +43 -0
- data/lib/pwn/plugins/openvas.rb +308 -0
- data/lib/pwn/plugins/owasp_zap.rb +550 -0
- data/lib/pwn/plugins/packet.rb +1271 -0
- data/lib/pwn/plugins/pdf_parse.rb +53 -0
- data/lib/pwn/plugins/pony.rb +282 -0
- data/lib/pwn/plugins/pwn_logger.rb +46 -0
- data/lib/pwn/plugins/rabbit_mq_hole.rb +66 -0
- data/lib/pwn/plugins/rfidler.rb +58 -0
- data/lib/pwn/plugins/serial.rb +268 -0
- data/lib/pwn/plugins/shodan.rb +566 -0
- data/lib/pwn/plugins/slack_client.rb +104 -0
- data/lib/pwn/plugins/sock.rb +156 -0
- data/lib/pwn/plugins/son_micro_rfid.rb +432 -0
- data/lib/pwn/plugins/spider.rb +80 -0
- data/lib/pwn/plugins/ssn.rb +52 -0
- data/lib/pwn/plugins/thread_pool.rb +71 -0
- data/lib/pwn/plugins/transparent_browser.rb +337 -0
- data/lib/pwn/plugins/twitter_api.rb +148 -0
- data/lib/pwn/plugins/uri_scheme.rb +328 -0
- data/lib/pwn/plugins/vsphere.rb +82 -0
- data/lib/pwn/plugins.rb +66 -0
- data/lib/pwn/reports/fuzz.rb +270 -0
- data/lib/pwn/reports/sast.rb +306 -0
- data/lib/pwn/reports.rb +21 -0
- data/lib/pwn/sast/amqp_connect_as_guest.rb +140 -0
- data/lib/pwn/sast/apache_file_system_util_api.rb +137 -0
- data/lib/pwn/sast/aws.rb +142 -0
- data/lib/pwn/sast/banned_function_calls_c.rb +265 -0
- data/lib/pwn/sast/base64.rb +143 -0
- data/lib/pwn/sast/beef_hook.rb +137 -0
- data/lib/pwn/sast/cmd_execution_java.rb +142 -0
- data/lib/pwn/sast/cmd_execution_python.rb +144 -0
- data/lib/pwn/sast/cmd_execution_ruby.rb +152 -0
- data/lib/pwn/sast/cmd_execution_scala.rb +142 -0
- data/lib/pwn/sast/csrf.rb +136 -0
- data/lib/pwn/sast/deserial_java.rb +135 -0
- data/lib/pwn/sast/emoticon.rb +145 -0
- data/lib/pwn/sast/eval.rb +140 -0
- data/lib/pwn/sast/factory.rb +135 -0
- data/lib/pwn/sast/file_permission.rb +142 -0
- data/lib/pwn/sast/inner_html.rb +140 -0
- data/lib/pwn/sast/keystore.rb +137 -0
- data/lib/pwn/sast/location_hash.rb +140 -0
- data/lib/pwn/sast/log4j.rb +140 -0
- data/lib/pwn/sast/logger.rb +155 -0
- data/lib/pwn/sast/outer_html.rb +140 -0
- data/lib/pwn/sast/password.rb +140 -0
- data/lib/pwn/sast/pom_version.rb +144 -0
- data/lib/pwn/sast/port.rb +147 -0
- data/lib/pwn/sast/private_key.rb +140 -0
- data/lib/pwn/sast/redirect.rb +142 -0
- data/lib/pwn/sast/redos.rb +147 -0
- data/lib/pwn/sast/shell.rb +148 -0
- data/lib/pwn/sast/sql.rb +144 -0
- data/lib/pwn/sast/ssl.rb +137 -0
- data/lib/pwn/sast/sudo.rb +140 -0
- data/lib/pwn/sast/task_tag.rb +154 -0
- data/lib/pwn/sast/throw_errors.rb +139 -0
- data/lib/pwn/sast/token.rb +137 -0
- data/lib/pwn/sast/version.rb +137 -0
- data/lib/pwn/sast/window_location_hash.rb +139 -0
- data/lib/pwn/sast.rb +53 -0
- data/lib/pwn/version.rb +5 -0
- data/lib/pwn/www/app_cobalt_io.rb +168 -0
- data/lib/pwn/www/bing.rb +119 -0
- data/lib/pwn/www/bug_crowd.rb +165 -0
- data/lib/pwn/www/checkip.rb +101 -0
- data/lib/pwn/www/duckduckgo.rb +141 -0
- data/lib/pwn/www/facebook.rb +153 -0
- data/lib/pwn/www/google.rb +145 -0
- data/lib/pwn/www/hacker_one.rb +153 -0
- data/lib/pwn/www/linkedin.rb +153 -0
- data/lib/pwn/www/pandora.rb +153 -0
- data/lib/pwn/www/pastebin.rb +114 -0
- data/lib/pwn/www/paypal.rb +235 -0
- data/lib/pwn/www/synack.rb +165 -0
- data/lib/pwn/www/torch.rb +138 -0
- data/lib/pwn/www/twitter.rb +165 -0
- data/lib/pwn/www/uber.rb +153 -0
- data/lib/pwn/www/upwork.rb +153 -0
- data/lib/pwn/www/youtube.rb +119 -0
- data/lib/pwn/www.rb +33 -0
- data/lib/pwn.rb +24 -0
- data/packer/daemons/msfrpcd.rb +64 -0
- data/packer/daemons/openvas.rb +51 -0
- data/packer/deploy_docker_containers.sh +9 -0
- data/packer/deploy_packer_box.sh +87 -0
- data/packer/docker/kali_rolling_docker_pwn_fuzz_net_app_proto.json +44 -0
- data/packer/docker/kali_rolling_docker_pwn_prototyper.json +48 -0
- data/packer/docker/kali_rolling_docker_pwn_sast.json +44 -0
- data/packer/docker/kali_rolling_docker_pwn_transparent_browser.json +46 -0
- data/packer/docker/kali_rolling_docker_pwn_www_checkip.json +34 -0
- data/packer/http/kali_rolling_preseed.cfg +81 -0
- data/packer/kali_rolling_aws_ami.json +135 -0
- data/packer/kali_rolling_qemu_kvm.json +155 -0
- data/packer/kali_rolling_virtualbox.json +182 -0
- data/packer/kali_rolling_vmware.json +163 -0
- data/packer/packer_secrets.json.EXAMPLE +9 -0
- data/packer/provisioners/PayloadsAllTheThings.sh +5 -0
- data/packer/provisioners/SecLists.sh +5 -0
- data/packer/provisioners/afl.sh +28 -0
- data/packer/provisioners/aliases.rb +18 -0
- data/packer/provisioners/amass.sh +5 -0
- data/packer/provisioners/android.sh +18 -0
- data/packer/provisioners/ansible.sh +5 -0
- data/packer/provisioners/apache2.sh +24 -0
- data/packer/provisioners/arachni.sh +28 -0
- data/packer/provisioners/awscli.sh +5 -0
- data/packer/provisioners/bashrc.sh +13 -0
- data/packer/provisioners/beef.rb +23 -0
- data/packer/provisioners/burpsuite.sh +23 -0
- data/packer/provisioners/chrome.sh +11 -0
- data/packer/provisioners/coreutils.sh +6 -0
- data/packer/provisioners/curl.sh +6 -0
- data/packer/provisioners/docker.sh +43 -0
- data/packer/provisioners/docker_bashrc.sh +2 -0
- data/packer/provisioners/docker_rvm.sh +22 -0
- data/packer/provisioners/eyewitness.sh +5 -0
- data/packer/provisioners/ffmpeg.sh +6 -0
- data/packer/provisioners/firefox.sh +7 -0
- data/packer/provisioners/fuzzdb.sh +5 -0
- data/packer/provisioners/gdb.sh +5 -0
- data/packer/provisioners/geckodriver.sh +9 -0
- data/packer/provisioners/ghidra.sh +5 -0
- data/packer/provisioners/git.sh +6 -0
- data/packer/provisioners/init_image.sh +103 -0
- data/packer/provisioners/install_vagrant_ssh_key.sh +15 -0
- data/packer/provisioners/jenkins.sh +62 -0
- data/packer/provisioners/metasploit.rb +59 -0
- data/packer/provisioners/nmap_all_live_hosts.sh +8 -0
- data/packer/provisioners/openvas.sh +23 -0
- data/packer/provisioners/openvas_wrappers.sh +4 -0
- data/packer/provisioners/openvpn.sh +7 -0
- data/packer/provisioners/peda.sh +4 -0
- data/packer/provisioners/phantomjs.rb +28 -0
- data/packer/provisioners/phantomjs_wrapper.sh +22 -0
- data/packer/provisioners/post_install.sh +41 -0
- data/packer/provisioners/postgresql.sh +49 -0
- data/packer/provisioners/preeny.sh +8 -0
- data/packer/provisioners/pwn.sh +89 -0
- data/packer/provisioners/pwntools.sh +13 -0
- data/packer/provisioners/radamsa.sh +7 -0
- data/packer/provisioners/rc.local.sh +16 -0
- data/packer/provisioners/reboot_os.sh +7 -0
- data/packer/provisioners/ruby.sh +36 -0
- data/packer/provisioners/rvm.sh +30 -0
- data/packer/provisioners/scapy.sh +5 -0
- data/packer/provisioners/scout2.sh +5 -0
- data/packer/provisioners/sox.sh +5 -0
- data/packer/provisioners/ssllabs-scan.sh +9 -0
- data/packer/provisioners/strace.sh +5 -0
- data/packer/provisioners/sublist3r.sh +5 -0
- data/packer/provisioners/terminator.sh +5 -0
- data/packer/provisioners/toggle_tor.sh +2 -0
- data/packer/provisioners/tor.sh +5 -0
- data/packer/provisioners/twinkle.sh +6 -0
- data/packer/provisioners/update_os.sh +108 -0
- data/packer/provisioners/upload_globals.sh +55 -0
- data/packer/provisioners/vim.sh +19 -0
- data/packer/provisioners/virtualbox_guest_additions.sh +20 -0
- data/packer/provisioners/vmware_tools.sh +8 -0
- data/packer/provisioners/wpscan.rb +23 -0
- data/packer/provisioners/xrdp.sh +22 -0
- data/packer/provisioners/zzuf.sh +5 -0
- data/pwn.gemspec +34 -0
- data/reinstall_pwn_gemset.sh +31 -0
- data/spec/lib/pwn/aws/acm_spec.rb +15 -0
- data/spec/lib/pwn/aws/api_gateway_spec.rb +15 -0
- data/spec/lib/pwn/aws/app_stream_spec.rb +15 -0
- data/spec/lib/pwn/aws/application_auto_scaling_spec.rb +15 -0
- data/spec/lib/pwn/aws/application_discovery_service_spec.rb +15 -0
- data/spec/lib/pwn/aws/auto_scaling_spec.rb +15 -0
- data/spec/lib/pwn/aws/batch_spec.rb +15 -0
- data/spec/lib/pwn/aws/budgets_spec.rb +15 -0
- data/spec/lib/pwn/aws/cloud_formation_spec.rb +15 -0
- data/spec/lib/pwn/aws/cloud_front_spec.rb +15 -0
- data/spec/lib/pwn/aws/cloud_hsm_spec.rb +15 -0
- data/spec/lib/pwn/aws/cloud_search_domain_spec.rb +15 -0
- data/spec/lib/pwn/aws/cloud_search_spec.rb +15 -0
- data/spec/lib/pwn/aws/cloud_trail_spec.rb +15 -0
- data/spec/lib/pwn/aws/cloud_watch_events_spec.rb +15 -0
- data/spec/lib/pwn/aws/cloud_watch_logs_spec.rb +15 -0
- data/spec/lib/pwn/aws/cloud_watch_spec.rb +15 -0
- data/spec/lib/pwn/aws/code_build_spec.rb +15 -0
- data/spec/lib/pwn/aws/code_commit_spec.rb +15 -0
- data/spec/lib/pwn/aws/code_deploy_spec.rb +15 -0
- data/spec/lib/pwn/aws/code_pipeline_spec.rb +15 -0
- data/spec/lib/pwn/aws/cognito_identity_provider_spec.rb +15 -0
- data/spec/lib/pwn/aws/cognito_identity_spec.rb +15 -0
- data/spec/lib/pwn/aws/cognito_sync_spec.rb +15 -0
- data/spec/lib/pwn/aws/config_service_spec.rb +15 -0
- data/spec/lib/pwn/aws/data_pipleline_spec.rb +15 -0
- data/spec/lib/pwn/aws/database_migration_service_spec.rb +15 -0
- data/spec/lib/pwn/aws/device_farm_spec.rb +15 -0
- data/spec/lib/pwn/aws/direct_connect_spec.rb +15 -0
- data/spec/lib/pwn/aws/directory_service_spec.rb +15 -0
- data/spec/lib/pwn/aws/dynamo_db_spec.rb +15 -0
- data/spec/lib/pwn/aws/dynamo_db_streams_spec.rb +15 -0
- data/spec/lib/pwn/aws/ec2_spec.rb +15 -0
- data/spec/lib/pwn/aws/ecr_spec.rb +15 -0
- data/spec/lib/pwn/aws/ecs_spec.rb +15 -0
- data/spec/lib/pwn/aws/efs_spec.rb +15 -0
- data/spec/lib/pwn/aws/elasti_cache_spec.rb +15 -0
- data/spec/lib/pwn/aws/elastic_beanstalk_spec.rb +15 -0
- data/spec/lib/pwn/aws/elastic_load_balancing_spec.rb +15 -0
- data/spec/lib/pwn/aws/elastic_load_balancing_v2_spec.rb +15 -0
- data/spec/lib/pwn/aws/elastic_transcoder_spec.rb +15 -0
- data/spec/lib/pwn/aws/elasticsearch_service_spec.rb +15 -0
- data/spec/lib/pwn/aws/emr_spec.rb +15 -0
- data/spec/lib/pwn/aws/firehose_spec.rb +15 -0
- data/spec/lib/pwn/aws/game_lift_spec.rb +15 -0
- data/spec/lib/pwn/aws/glacier_spec.rb +15 -0
- data/spec/lib/pwn/aws/health_spec.rb +15 -0
- data/spec/lib/pwn/aws/iam_spec.rb +15 -0
- data/spec/lib/pwn/aws/import_export_spec.rb +15 -0
- data/spec/lib/pwn/aws/inspector_spec.rb +15 -0
- data/spec/lib/pwn/aws/iot_data_plane_spec.rb +15 -0
- data/spec/lib/pwn/aws/iot_spec.rb +15 -0
- data/spec/lib/pwn/aws/kinesis_analytics_spec.rb +15 -0
- data/spec/lib/pwn/aws/kinesis_spec.rb +15 -0
- data/spec/lib/pwn/aws/kms_spec.rb +15 -0
- data/spec/lib/pwn/aws/lambda_preview_spec.rb +15 -0
- data/spec/lib/pwn/aws/lambda_spec.rb +15 -0
- data/spec/lib/pwn/aws/lex_spec.rb +15 -0
- data/spec/lib/pwn/aws/lightsail_spec.rb +15 -0
- data/spec/lib/pwn/aws/machine_learning_spec.rb +15 -0
- data/spec/lib/pwn/aws/marketplace_commerce_analytics_spec.rb +15 -0
- data/spec/lib/pwn/aws/marketplace_metering_spec.rb +15 -0
- data/spec/lib/pwn/aws/ops_works_cm_spec.rb +15 -0
- data/spec/lib/pwn/aws/ops_works_spec.rb +15 -0
- data/spec/lib/pwn/aws/pinpoint_spec.rb +15 -0
- data/spec/lib/pwn/aws/polly_spec.rb +15 -0
- data/spec/lib/pwn/aws/rds_spec.rb +15 -0
- data/spec/lib/pwn/aws/redshift_spec.rb +15 -0
- data/spec/lib/pwn/aws/rekognition_spec.rb +15 -0
- data/spec/lib/pwn/aws/route53_domains_spec.rb +15 -0
- data/spec/lib/pwn/aws/route53_spec.rb +15 -0
- data/spec/lib/pwn/aws/s3_spec.rb +15 -0
- data/spec/lib/pwn/aws/service_catalog_spec.rb +15 -0
- data/spec/lib/pwn/aws/ses_spec.rb +15 -0
- data/spec/lib/pwn/aws/shield_spec.rb +15 -0
- data/spec/lib/pwn/aws/simple_db_spec.rb +15 -0
- data/spec/lib/pwn/aws/sms_spec.rb +15 -0
- data/spec/lib/pwn/aws/snowball_spec.rb +15 -0
- data/spec/lib/pwn/aws/sns_spec.rb +15 -0
- data/spec/lib/pwn/aws/sqs_spec.rb +15 -0
- data/spec/lib/pwn/aws/ssm_spec.rb +15 -0
- data/spec/lib/pwn/aws/states_spec.rb +15 -0
- data/spec/lib/pwn/aws/storage_gateway_spec.rb +15 -0
- data/spec/lib/pwn/aws/sts_spec.rb +15 -0
- data/spec/lib/pwn/aws/support_spec.rb +15 -0
- data/spec/lib/pwn/aws/swf_spec.rb +15 -0
- data/spec/lib/pwn/aws/waf_regional_spec.rb +15 -0
- data/spec/lib/pwn/aws/waf_spec.rb +15 -0
- data/spec/lib/pwn/aws/workspaces_spec.rb +15 -0
- data/spec/lib/pwn/aws/x_ray_spec.rb +15 -0
- data/spec/lib/pwn/aws_spec.rb +10 -0
- data/spec/lib/pwn/ffi_spec.rb +10 -0
- data/spec/lib/pwn/plugins/android_spec.rb +15 -0
- data/spec/lib/pwn/plugins/authentication_helper_spec.rb +15 -0
- data/spec/lib/pwn/plugins/basic_auth_spec.rb +15 -0
- data/spec/lib/pwn/plugins/beef_spec.rb +15 -0
- data/spec/lib/pwn/plugins/burp_suite_spec.rb +15 -0
- data/spec/lib/pwn/plugins/bus_pirate_spec.rb +15 -0
- data/spec/lib/pwn/plugins/char_spec.rb +15 -0
- data/spec/lib/pwn/plugins/credit_card_spec.rb +15 -0
- data/spec/lib/pwn/plugins/dao_ldap_spec.rb +15 -0
- data/spec/lib/pwn/plugins/dao_mongo_spec.rb +15 -0
- data/spec/lib/pwn/plugins/dao_postgres_spec.rb +15 -0
- data/spec/lib/pwn/plugins/dao_sqlite3_spec.rb +15 -0
- data/spec/lib/pwn/plugins/defect_dojo_spec.rb +15 -0
- data/spec/lib/pwn/plugins/detect_os_spec.rb +15 -0
- data/spec/lib/pwn/plugins/ein_spec.rb +15 -0
- data/spec/lib/pwn/plugins/file_fu_spec.rb +15 -0
- data/spec/lib/pwn/plugins/fuzz_spec.rb +15 -0
- data/spec/lib/pwn/plugins/git_spec.rb +15 -0
- data/spec/lib/pwn/plugins/hacker_one_spec.rb +15 -0
- data/spec/lib/pwn/plugins/ibm_appscan_spec.rb +15 -0
- data/spec/lib/pwn/plugins/ip_info_spec.rb +15 -0
- data/spec/lib/pwn/plugins/jenkins_spec.rb +15 -0
- data/spec/lib/pwn/plugins/json_pathify_spec.rb +15 -0
- data/spec/lib/pwn/plugins/mail_agent_spec.rb +15 -0
- data/spec/lib/pwn/plugins/metasploit_spec.rb +15 -0
- data/spec/lib/pwn/plugins/nessus_cloud_spec.rb +15 -0
- data/spec/lib/pwn/plugins/nexpose_vuln_scan_spec.rb +15 -0
- data/spec/lib/pwn/plugins/nmap_it_spec.rb +15 -0
- data/spec/lib/pwn/plugins/oauth2_spec.rb +15 -0
- data/spec/lib/pwn/plugins/ocr_spec.rb +15 -0
- data/spec/lib/pwn/plugins/openvas_spec.rb +15 -0
- data/spec/lib/pwn/plugins/owasp_zap_spec.rb +15 -0
- data/spec/lib/pwn/plugins/packet_spec.rb +15 -0
- data/spec/lib/pwn/plugins/pdf_parse_spec.rb +15 -0
- data/spec/lib/pwn/plugins/pony_spec.rb +15 -0
- data/spec/lib/pwn/plugins/rabbit_mq_hole_spec.rb +15 -0
- data/spec/lib/pwn/plugins/rfidler_spec.rb +15 -0
- data/spec/lib/pwn/plugins/serial_spec.rb +15 -0
- data/spec/lib/pwn/plugins/shodan_spec.rb +15 -0
- data/spec/lib/pwn/plugins/slack_client_spec.rb +15 -0
- data/spec/lib/pwn/plugins/sock_spec.rb +15 -0
- data/spec/lib/pwn/plugins/son_micro_rfid_spec.rb +15 -0
- data/spec/lib/pwn/plugins/spider_spec.rb +15 -0
- data/spec/lib/pwn/plugins/ssn_spec.rb +15 -0
- data/spec/lib/pwn/plugins/thread_pool_spec.rb +15 -0
- data/spec/lib/pwn/plugins/transparent_browser_spec.rb +15 -0
- data/spec/lib/pwn/plugins/twitter_api_spec.rb +15 -0
- data/spec/lib/pwn/plugins/uri_scheme_spec.rb +15 -0
- data/spec/lib/pwn/plugins/vsphere_spec.rb +15 -0
- data/spec/lib/pwn/plugins_spec.rb +10 -0
- data/spec/lib/pwn/reports/fuzz_spec.rb +15 -0
- data/spec/lib/pwn/reports/sast_spec.rb +15 -0
- data/spec/lib/pwn/reports_spec.rb +10 -0
- data/spec/lib/pwn/sast/amqp_connect_as_guest_spec.rb +25 -0
- data/spec/lib/pwn/sast/apache_file_system_util_api_spec.rb +25 -0
- data/spec/lib/pwn/sast/aws_spec.rb +25 -0
- data/spec/lib/pwn/sast/banned_function_calls_c_spec.rb +25 -0
- data/spec/lib/pwn/sast/base64_spec.rb +25 -0
- data/spec/lib/pwn/sast/beef_hook_spec.rb +25 -0
- data/spec/lib/pwn/sast/cmd_execution_java_spec.rb +25 -0
- data/spec/lib/pwn/sast/cmd_execution_python_spec.rb +25 -0
- data/spec/lib/pwn/sast/cmd_execution_ruby_spec.rb +25 -0
- data/spec/lib/pwn/sast/cmd_execution_scala_spec.rb +25 -0
- data/spec/lib/pwn/sast/csrf_spec.rb +25 -0
- data/spec/lib/pwn/sast/deserial_java_spec.rb +25 -0
- data/spec/lib/pwn/sast/emoticon_spec.rb +25 -0
- data/spec/lib/pwn/sast/eval_spec.rb +25 -0
- data/spec/lib/pwn/sast/factory_spec.rb +25 -0
- data/spec/lib/pwn/sast/file_permission_spec.rb +25 -0
- data/spec/lib/pwn/sast/inner_html_spec.rb +25 -0
- data/spec/lib/pwn/sast/keystore_spec.rb +25 -0
- data/spec/lib/pwn/sast/location_hash_spec.rb +25 -0
- data/spec/lib/pwn/sast/log4j_spec.rb +25 -0
- data/spec/lib/pwn/sast/logger_spec.rb +25 -0
- data/spec/lib/pwn/sast/password_spec.rb +25 -0
- data/spec/lib/pwn/sast/pom_version_spec.rb +25 -0
- data/spec/lib/pwn/sast/port_spec.rb +25 -0
- data/spec/lib/pwn/sast/private_key_spec.rb +25 -0
- data/spec/lib/pwn/sast/redirect_spec.rb +25 -0
- data/spec/lib/pwn/sast/redos_spec.rb +25 -0
- data/spec/lib/pwn/sast/shell_spec.rb +25 -0
- data/spec/lib/pwn/sast/sql_spec.rb +25 -0
- data/spec/lib/pwn/sast/ssl_spec.rb +25 -0
- data/spec/lib/pwn/sast/sudo_spec.rb +25 -0
- data/spec/lib/pwn/sast/task_tag_spec.rb +25 -0
- data/spec/lib/pwn/sast/throw_errors_spec.rb +25 -0
- data/spec/lib/pwn/sast/token_spec.rb +25 -0
- data/spec/lib/pwn/sast/version_spec.rb +25 -0
- data/spec/lib/pwn/sast/window_location_hash_spec.rb +25 -0
- data/spec/lib/pwn/sast_spec.rb +10 -0
- data/spec/lib/pwn/www/app_cobalt_io_spec.rb +15 -0
- data/spec/lib/pwn/www/bing_spec.rb +15 -0
- data/spec/lib/pwn/www/bug_crowd.rb +15 -0
- data/spec/lib/pwn/www/checkip_spec.rb +15 -0
- data/spec/lib/pwn/www/duckduckgo_spec.rb +15 -0
- data/spec/lib/pwn/www/facebook_spec.rb +15 -0
- data/spec/lib/pwn/www/google_spec.rb +15 -0
- data/spec/lib/pwn/www/hacker_one_spec.rb +15 -0
- data/spec/lib/pwn/www/linkedin_spec.rb +15 -0
- data/spec/lib/pwn/www/pandora_spec.rb +15 -0
- data/spec/lib/pwn/www/pastebin_spec.rb +15 -0
- data/spec/lib/pwn/www/paypal_spec.rb +15 -0
- data/spec/lib/pwn/www/synack_spec.rb +15 -0
- data/spec/lib/pwn/www/torch_spec.rb +15 -0
- data/spec/lib/pwn/www/twitter_spec.rb +15 -0
- data/spec/lib/pwn/www/uber_spec.rb +15 -0
- data/spec/lib/pwn/www/upwork_spec.rb +15 -0
- data/spec/lib/pwn/www/youtube_spec.rb +15 -0
- data/spec/lib/pwn/www_spec.rb +10 -0
- data/spec/lib/pwn_spec.rb +10 -0
- data/spec/spec_helper.rb +3 -0
- data/third_party/.gitkeep +0 -0
- data/update_pwn.sh +15 -0
- data/upgrade_ruby.sh +46 -0
- data/vagrant/provisioners/apache2.sh +76 -0
- data/vagrant/provisioners/beef.rb +30 -0
- data/vagrant/provisioners/burpsuite_pro.rb +37 -0
- data/vagrant/provisioners/exploit-db.sh +2 -0
- data/vagrant/provisioners/gem.sh +4 -0
- data/vagrant/provisioners/init_env.sh +22 -0
- data/vagrant/provisioners/jenkins.sh +87 -0
- data/vagrant/provisioners/jenkins_ssh-keygen.rb +86 -0
- data/vagrant/provisioners/kali_customize.rb +130 -0
- data/vagrant/provisioners/letsencrypt.rb +35 -0
- data/vagrant/provisioners/metasploit.rb +25 -0
- data/vagrant/provisioners/nmap_all_live_hosts.sh +2 -0
- data/vagrant/provisioners/openvas.sh +23 -0
- data/vagrant/provisioners/openvas_wrappers.sh +2 -0
- data/vagrant/provisioners/post_install.sh +14 -0
- data/vagrant/provisioners/postgres.sh +22 -0
- data/vagrant/provisioners/pwn.sh +15 -0
- data/vagrant/provisioners/rvm.sh +18 -0
- data/vagrant/provisioners/ssllabs-scan.sh +10 -0
- data/vagrant/provisioners/toggle_tor.sh +2 -0
- data/vagrant/provisioners/update_jenkins_plugins.rb +30 -0
- data/vagrant/provisioners/update_os.sh +108 -0
- data/vagrant/provisioners/upload_globals.sh +55 -0
- data/vagrant/provisioners/userland_fdisk.sh +22 -0
- data/vagrant/provisioners/userland_lvm.sh +5 -0
- data/vagrant/provisioners/wpscan.rb +25 -0
- data/vagrant_rsync_third_party.lst +1 -0
- data/vagrant_rsync_userland_template.lst +8 -0
- metadata +1245 -0
data/spec/spec_helper.rb
ADDED
File without changes
|
data/update_pwn.sh
ADDED
@@ -0,0 +1,15 @@
|
|
1
|
+
#!/bin/bash --login
|
2
|
+
if [[ $PWN_ROOT == '' ]]; then
|
3
|
+
if [[ ! -d '/pwn' ]]; then
|
4
|
+
pwn_root=$(pwd)
|
5
|
+
else
|
6
|
+
pwn_root='/pwn'
|
7
|
+
fi
|
8
|
+
else
|
9
|
+
pwn_root="${PWN_ROOT}"
|
10
|
+
fi
|
11
|
+
|
12
|
+
#sudo /bin/bash --login -c "cd ${pwn_root} && ./reinstall_pwn_gemset.sh"
|
13
|
+
#sudo /bin/bash --login -c "cd ${pwn_root} && ./build_pwn_gem.sh"
|
14
|
+
export rvmsudo_secure_path=1
|
15
|
+
rvmsudo /bin/bash --login -c "cd ${pwn_root} && ./build_pwn_gem.sh"
|
data/upgrade_ruby.sh
ADDED
@@ -0,0 +1,46 @@
|
|
1
|
+
#!/bin/bash --login
|
2
|
+
# USE THIS SCRIPT WHEN UPGRADING RUBY
|
3
|
+
if [[ $PWN_ROOT == '' ]]; then
|
4
|
+
if [[ ! -d '/pwn' ]]; then
|
5
|
+
pwn_root=$(pwd)
|
6
|
+
else
|
7
|
+
pwn_root='/pwn'
|
8
|
+
fi
|
9
|
+
else
|
10
|
+
pwn_root="${PWN_ROOT}"
|
11
|
+
fi
|
12
|
+
|
13
|
+
function usage() {
|
14
|
+
echo $"Usage: $0 <new ruby version e.g. 2.4.4> <optional bool running from build_pwn_gem.sh>"
|
15
|
+
exit 1
|
16
|
+
}
|
17
|
+
|
18
|
+
source /etc/profile.d/rvm.sh
|
19
|
+
|
20
|
+
new_ruby_version=$1
|
21
|
+
if [[ $2 != '' ]]; then
|
22
|
+
old_ruby_version=$2
|
23
|
+
else
|
24
|
+
old_ruby_version=`cat ${pwn_root}/.ruby-version`
|
25
|
+
fi
|
26
|
+
|
27
|
+
ruby_gemset=`cat ${pwn_root}/.ruby-gemset`
|
28
|
+
|
29
|
+
if [[ $# < 1 ]]; then
|
30
|
+
usage
|
31
|
+
fi
|
32
|
+
|
33
|
+
# Upgrade RVM
|
34
|
+
#curl -sSL https://get.rvm.io | sudo bash -s latest
|
35
|
+
curl -sSL https://rvm.io/mpapis.asc | sudo gpg2 --import -
|
36
|
+
curl -sSL https://rvm.io/pkuczynski.asc | sudo gpg2 --import -
|
37
|
+
export rvmsudo_secure_path=1
|
38
|
+
rvmsudo rvm get latest
|
39
|
+
rvm reload
|
40
|
+
|
41
|
+
# Install New Version of RubyGems & Ruby
|
42
|
+
cd $pwn_root && ./vagrant/provisioners/gem.sh
|
43
|
+
rvmsudo rvm install ruby-$new_ruby_version
|
44
|
+
echo $new_ruby_version > $pwn_root/.ruby-version
|
45
|
+
|
46
|
+
cd $pwn_root && rvm use $new_ruby_version@$ruby_gemset && ./build_pwn_gem.sh
|
@@ -0,0 +1,76 @@
|
|
1
|
+
#!/bin/bash
|
2
|
+
if [[ $PWN_ROOT == '' ]]; then
|
3
|
+
if [[ ! -d '/pwn' ]]; then
|
4
|
+
pwn_root=$(pwd)
|
5
|
+
else
|
6
|
+
pwn_root='/pwn'
|
7
|
+
fi
|
8
|
+
else
|
9
|
+
pwn_root="${PWN_ROOT}"
|
10
|
+
fi
|
11
|
+
|
12
|
+
pwn_provider=`echo $PWN_PROVIDER`
|
13
|
+
apache_userland_root="${pwn_root}/etc/userland/${pwn_provider}/apache2"
|
14
|
+
apache_vagrant_yaml="${apache_userland_root}/vagrant.yaml"
|
15
|
+
domain_name=$(hostname -d)
|
16
|
+
sudo /bin/bash --login -c "echo -e '127.0.0.1\tjenkins.${domain_name}' >> /etc/hosts"
|
17
|
+
sudo /bin/bash --login -c "echo -e '127.0.0.1\topenvas.${domain_name}' >> /etc/hosts"
|
18
|
+
sudo /bin/bash --login -c "sed -i \"s/DOMAIN/${domain_name}/g\" /etc/apache2/sites-available/*.conf"
|
19
|
+
sudo rm /etc/apache2/sites-enabled/*
|
20
|
+
sudo ln -s /etc/apache2/sites-available/jenkins_80.conf /etc/apache2/sites-enabled/
|
21
|
+
sudo ln -s /etc/apache2/sites-available/jenkins_443.conf /etc/apache2/sites-enabled/
|
22
|
+
sudo ln -s /etc/apache2/sites-available/openvas_80.conf /etc/apache2/sites-enabled/
|
23
|
+
sudo ln -s /etc/apache2/sites-available/openvas_443.conf /etc/apache2/sites-enabled/
|
24
|
+
|
25
|
+
tls_deployment_type=`ruby -e "require 'yaml'; print YAML.load_file('${apache_userland_root}/vagrant.yaml')['tls_deployment_type']"`
|
26
|
+
|
27
|
+
case $tls_deployment_type in
|
28
|
+
'letsencrypt')
|
29
|
+
# Public Facing
|
30
|
+
$pwn_root/vagrant/provisioners/letsencrypt.rb
|
31
|
+
;;
|
32
|
+
'self_signed')
|
33
|
+
# Internally Hosted
|
34
|
+
sudo mkdir /etc/apache2/ssl
|
35
|
+
|
36
|
+
country_name=`ruby -e "require 'yaml'; print YAML.load_file('${apache_vagrant_yaml}')['country_name']"`
|
37
|
+
state_or_prov=`ruby -e "require 'yaml'; print YAML.load_file('${apache_vagrant_yaml}')['state_or_prov']"`
|
38
|
+
city_name=`ruby -e "require 'yaml'; print YAML.load_file('${apache_vagrant_yaml}')['city_name']"`
|
39
|
+
org_company_name=`ruby -e "require 'yaml'; print YAML.load_file('${apache_vagrant_yaml}')['org_company_name']"`
|
40
|
+
org_unit_name=`ruby -e "require 'yaml'; print YAML.load_file('${apache_vagrant_yaml}')['org_unit_name']"`
|
41
|
+
common_name_fqdn=`ruby -e "require 'yaml'; print YAML.load_file('${apache_vagrant_yaml}')['common_name_fqdn']"`
|
42
|
+
email_addr=`ruby -e "require 'yaml'; print YAML.load_file('${apache_vagrant_yaml}')['email_addr']"`
|
43
|
+
|
44
|
+
sudo openssl req \
|
45
|
+
-x509 -nodes -days 999 -newkey rsa:4096 \
|
46
|
+
-keyout /etc/apache2/ssl/jenkins.key \
|
47
|
+
-out /etc/apache2/ssl/jenkins.crt \
|
48
|
+
-subj "/C=${country_name}/ST=${state_or_prov}/L=${city_name}/O=${org_company_name}/OU=${org_unit_name}/CN=jenkins.${common_name_fqdn}/emailAddress=${email_addr}"
|
49
|
+
|
50
|
+
sudo openssl req \
|
51
|
+
-x509 -nodes -days 999 -newkey rsa:4096 \
|
52
|
+
-keyout /etc/apache2/ssl/openvas.key \
|
53
|
+
-out /etc/apache2/ssl/openvas.crt \
|
54
|
+
-subj "/C=${country_name}/ST=${state_or_prov}/L=${city_name}/O=${org_company_name}/OU=${org_unit_name}/CN=openvas.${common_name_fqdn}/emailAddress=${email_addr}"
|
55
|
+
|
56
|
+
# Replace LetsEncrypt TLS Entries w/ Self-Signed for OpenVAS
|
57
|
+
sudo sed -i '12s/.*/SSLCertificateFile \/etc\/apache2\/ssl\/jenkins\.crt/' \
|
58
|
+
/etc/apache2/sites-available/jenkins_443.conf
|
59
|
+
sudo sed -i '13s/.*/SSLCertificateKeyFile \/etc\/apache2\/ssl\/jenkins\.key/' \
|
60
|
+
/etc/apache2/sites-available/jenkins_443.conf
|
61
|
+
sudo sed -i '14s/.*//' /etc/apache2/sites-available/jenkins_443.conf
|
62
|
+
|
63
|
+
# Replace LetsEncrypt TLS Entries w/ Self-Signed for OpenVAS
|
64
|
+
sudo sed -i '12s/.*/SSLCertificateFile \/etc\/apache2\/ssl\/openvas\.crt/' \
|
65
|
+
/etc/apache2/sites-available/openvas_443.conf
|
66
|
+
sudo sed -i '13s/.*/SSLCertificateKeyFile \/etc\/apache2\/ssl\/openvas\.key/' \
|
67
|
+
/etc/apache2/sites-available/openvas_443.conf
|
68
|
+
sudo sed -i '14s/.*//' /etc/apache2/sites-available/openvas_443.conf
|
69
|
+
;;
|
70
|
+
*)
|
71
|
+
echo "No tls_deployment_type Specified in ${apache_vagrant_yaml} for Apache2 Virtual Hosting"
|
72
|
+
exit 1
|
73
|
+
esac
|
74
|
+
|
75
|
+
sudo systemctl enable apache2
|
76
|
+
sudo systemctl restart apache2
|
@@ -0,0 +1,30 @@
|
|
1
|
+
#!/usr/bin/env ruby
|
2
|
+
# frozen_string_literal: true
|
3
|
+
|
4
|
+
print 'Updating BeEF...'
|
5
|
+
beef_root = '/opt/beef-dev/'
|
6
|
+
puts `
|
7
|
+
sudo /bin/bash \
|
8
|
+
--login \
|
9
|
+
-c "\
|
10
|
+
cd #{beef_root} && \
|
11
|
+
rm Gemfile.lock && \
|
12
|
+
git pull
|
13
|
+
"
|
14
|
+
`
|
15
|
+
beef_ruby_version = File.readlines("#{beef_root}/.ruby-version")[0].to_s.scrub.strip.chomp
|
16
|
+
beef_gemset = File.readlines("#{beef_root}/.ruby-gemset")[0].to_s.scrub.strip.chomp
|
17
|
+
puts `
|
18
|
+
sudo bash \
|
19
|
+
--login \
|
20
|
+
-c "\
|
21
|
+
source /etc/profile.d/rvm.sh; \
|
22
|
+
rvm install ruby-#{beef_ruby_version}; \
|
23
|
+
rvm use ruby-#{beef_ruby_version}; \
|
24
|
+
rvm gemset create #{beef_gemset}; \
|
25
|
+
cd #{beef_root}; \
|
26
|
+
gem install bundler; \
|
27
|
+
bundle install
|
28
|
+
"
|
29
|
+
`
|
30
|
+
puts 'complete.'
|
@@ -0,0 +1,37 @@
|
|
1
|
+
#!/usr/bin/env ruby
|
2
|
+
# frozen_string_literal: true
|
3
|
+
|
4
|
+
require 'yaml'
|
5
|
+
require 'digest'
|
6
|
+
require 'fileutils'
|
7
|
+
|
8
|
+
if ENV['PWN_ROOT']
|
9
|
+
pwn_root = ENV['PWN_ROOT']
|
10
|
+
elsif Dir.exist?('/pwn')
|
11
|
+
pwn_root = '/pwn'
|
12
|
+
else
|
13
|
+
pwn_root = Dir.pwd
|
14
|
+
end
|
15
|
+
|
16
|
+
pwn_provider = ENV['PWN_PROVIDER'] if ENV['PWN_PROVIDER']
|
17
|
+
userland_config = "#{pwn_root}/etc/userland/#{pwn_provider}/burpsuite/vagrant.yaml"
|
18
|
+
userland_burpsuite_pro_jar_path = "#{pwn_root}/third_party/burpsuite-pro.jar"
|
19
|
+
burpsuite_pro_jar_dest_path = "/opt/burpsuite/#{File.basename(userland_burpsuite_pro_jar_path)}"
|
20
|
+
if File.exist?(userland_burpsuite_pro_jar_path)
|
21
|
+
burpsuite_pro_yaml = YAML.load_file(userland_config)
|
22
|
+
burpsuite_pro_jar_sha256_sum = burpsuite_pro_yaml['burpsuite_pro_jar_sha256_sum']
|
23
|
+
# license_key = burpsuite_pro_yaml['license_key'].to_s.scrub.strip.chomp
|
24
|
+
|
25
|
+
this_sha256_sum = Digest::SHA256.file(userland_burpsuite_pro_jar_path).to_s
|
26
|
+
|
27
|
+
if this_sha256_sum == burpsuite_pro_jar_sha256_sum
|
28
|
+
print "Copying #{userland_burpsuite_pro_jar_path} to #{burpsuite_pro_jar_dest_path}..."
|
29
|
+
system("sudo cp #{userland_burpsuite_pro_jar_path} #{burpsuite_pro_jar_dest_path}")
|
30
|
+
else
|
31
|
+
puts "#{burpsuite_pro_jar_dest_path}: (SHA256 Sum #{this_sha256_sum})"
|
32
|
+
puts "!= #{userland_config} (SHA256 Sum: #{burpsuite_pro_jar_sha256_sum})"
|
33
|
+
print 'removing...'
|
34
|
+
system("sudo rm #{userland_burpsuite_pro_jar_path} #{burpsuite_pro_jar_dest_path}")
|
35
|
+
end
|
36
|
+
puts 'complete.'
|
37
|
+
end
|
@@ -0,0 +1,22 @@
|
|
1
|
+
#!/bin/bash
|
2
|
+
hostname=$1
|
3
|
+
|
4
|
+
echo 'Updating /etc/sudoers'
|
5
|
+
if [[ ! -e '/etc/sudoers.d/jenkins' ]]; then
|
6
|
+
sudo /bin/bash --login -c 'echo "jenkins ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/jenkins'
|
7
|
+
fi
|
8
|
+
sudo sed -i -e 's/^Defaults.*requiretty/# Defaults requiretty/g' /etc/sudoers
|
9
|
+
sudo /bin/bash --login -c 'echo "Defaults:admin !requiretty" >> /etc/sudoers'
|
10
|
+
sudo sed -i -e 's/^%sudo.+ALL=(ALL:ALL) ALL/%sudo.+ALL=(ALL:ALL) NOPASSWD:ALL/g' /etc/sudoers
|
11
|
+
echo "Updating FQDN: ${hostname}"
|
12
|
+
cat /etc/hosts | grep "${hostname}" || sudo sed "s/127.0.0.1/127.0.0.1 ${hostname}/g" -i /etc/hosts
|
13
|
+
hostname | grep "${hostname}" || sudo hostname "${hostname}"
|
14
|
+
|
15
|
+
# Listens on TCP 80 & 443 by default which collides w/ Apache
|
16
|
+
# TCP 80 Collision
|
17
|
+
sudo systemctl disable nginx
|
18
|
+
sudo systemctl stop nginx
|
19
|
+
|
20
|
+
# TCP 443 Collision
|
21
|
+
sudo systemctl disable inetsim
|
22
|
+
sudo systemctl stop inetsim
|
@@ -0,0 +1,87 @@
|
|
1
|
+
#!/bin/bash --login
|
2
|
+
if [[ $PWN_ROOT == '' ]]; then
|
3
|
+
if [[ ! -d '/pwn' ]]; then
|
4
|
+
pwn_root=$(pwd)
|
5
|
+
else
|
6
|
+
pwn_root='/pwn'
|
7
|
+
fi
|
8
|
+
else
|
9
|
+
pwn_root="${PWN_ROOT}"
|
10
|
+
fi
|
11
|
+
|
12
|
+
pwn_provider=`echo $PWN_PROVIDER`
|
13
|
+
jenkins_userland_root="${pwn_root}/etc/userland/${pwn_provider}/jenkins"
|
14
|
+
jenkins_vagrant_yaml="${jenkins_userland_root}/vagrant.yaml"
|
15
|
+
|
16
|
+
# Make sure the pwn gemset has been loaded
|
17
|
+
source /etc/profile.d/rvm.sh
|
18
|
+
ruby_version=`cat ${pwn_root}/.ruby-version`
|
19
|
+
rvm use ruby-$ruby_version@pwn
|
20
|
+
|
21
|
+
initial_admin_pwd=$(sudo cat /var/lib/jenkins/secrets/initialAdminPassword)
|
22
|
+
|
23
|
+
printf "Creating User *************************************************************************"
|
24
|
+
new_user=`ruby -e "require 'yaml'; print YAML.load_file('${jenkins_vagrant_yaml}')['user']"`
|
25
|
+
new_pass=`ruby -e "require 'yaml'; print YAML.load_file('${jenkins_vagrant_yaml}')['pass']"`
|
26
|
+
new_fullname=`ruby -e "require 'yaml'; print YAML.load_file('${jenkins_vagrant_yaml}')['fullname']"`
|
27
|
+
new_email=`ruby -e "require 'yaml'; print YAML.load_file('${jenkins_vagrant_yaml}')['email']"`
|
28
|
+
|
29
|
+
pwn_jenkins_useradd -s 127.0.0.1 -d 8888 -u $new_user -p $new_pass -U admin -P $initial_admin_pwd -e $new_email
|
30
|
+
|
31
|
+
# Begin Creating Self-Update Jobs in Jenkins and Template-Based Jobs to Describe how to Intgrate PWN into Jenkins
|
32
|
+
printf "Creating Self-Update and PWN-Template Jobs ********************************************"
|
33
|
+
ls $jenkins_userland_root/jobs/*.xml | while read jenkins_xml_config; do
|
34
|
+
file_name=`basename $jenkins_xml_config`
|
35
|
+
job_name=${file_name%.*}
|
36
|
+
pwn_jenkins_create_job --jenkins_ip 127.0.0.1 \
|
37
|
+
-d 8888 \
|
38
|
+
-U admin \
|
39
|
+
-P $initial_admin_pwd \
|
40
|
+
-j $job_name \
|
41
|
+
-c $jenkins_xml_config
|
42
|
+
done
|
43
|
+
|
44
|
+
# Create any jobs residing in $pwn_root/etc/userland/$pwn_provider/jenkins/jobs_userland
|
45
|
+
ls $jenkins_userland_root/jobs_userland/*.xml 2> /dev/null
|
46
|
+
if [[ $? == 0 ]]; then
|
47
|
+
printf "Creating User-Land Jobs ***************************************************************"
|
48
|
+
ls $jenkins_userland_root/jobs_userland/*.xml | while read jenkins_xml_config; do
|
49
|
+
file_name=`basename $jenkins_xml_config`
|
50
|
+
job_name=${file_name%.*}
|
51
|
+
pwn_jenkins_create_job --jenkins_ip 127.0.0.1 \
|
52
|
+
-d 8888 \
|
53
|
+
-U admin \
|
54
|
+
-P $initial_admin_pwd \
|
55
|
+
-j $job_name \
|
56
|
+
-c $jenkins_xml_config
|
57
|
+
done
|
58
|
+
fi
|
59
|
+
|
60
|
+
printf "Creating Jenkins Views ****************************************************************"
|
61
|
+
pwn_jenkins_create_view --jenkins_ip 127.0.0.1 \
|
62
|
+
-d 8888 \
|
63
|
+
-U admin \
|
64
|
+
-P $initial_admin_pwd \
|
65
|
+
-v 'PWN-Templates' \
|
66
|
+
-r '^pwntemplate-.+$'
|
67
|
+
|
68
|
+
pwn_jenkins_create_view --jenkins_ip 127.0.0.1 \
|
69
|
+
-d 8888 \
|
70
|
+
-U admin \
|
71
|
+
-P $initial_admin_pwd \
|
72
|
+
-v 'Self-Update' \
|
73
|
+
-r '^selfupdate-.+$'
|
74
|
+
|
75
|
+
pwn_jenkins_create_view --jenkins_ip 127.0.0.1 \
|
76
|
+
-d 8888 \
|
77
|
+
-U admin \
|
78
|
+
-P $initial_admin_pwd \
|
79
|
+
-v 'Pipeline' \
|
80
|
+
-r '^pipeline-.+$'
|
81
|
+
|
82
|
+
pwn_jenkins_create_view --jenkins_ip 127.0.0.1 \
|
83
|
+
-d 8888 \
|
84
|
+
-U admin \
|
85
|
+
-P $initial_admin_pwd \
|
86
|
+
-v 'User-Land' \
|
87
|
+
-r '^userland-.+$'
|
@@ -0,0 +1,86 @@
|
|
1
|
+
#!/usr/bin/env ruby
|
2
|
+
# frozen_string_literal: true
|
3
|
+
|
4
|
+
require 'yaml'
|
5
|
+
require 'pwn'
|
6
|
+
|
7
|
+
if ENV['PWN_ROOT']
|
8
|
+
pwn_root = ENV['PWN_ROOT']
|
9
|
+
elsif Dir.exist?('/pwn')
|
10
|
+
pwn_root = '/pwn'
|
11
|
+
else
|
12
|
+
pwn_root = Dir.pwd
|
13
|
+
end
|
14
|
+
|
15
|
+
pwn_provider = ENV['PWN_PROVIDER'] if ENV['PWN_PROVIDER']
|
16
|
+
jenkins_userland_config = YAML.load_file("#{pwn_root}/etc/userland/#{pwn_provider}/jenkins/vagrant.yaml")
|
17
|
+
private_key_path = '/var/lib/jenkins/.ssh/id_rsa-pwn_jenkins'
|
18
|
+
userland_ssh_keygen_pass = jenkins_userland_config['ssh_keygen_pass']
|
19
|
+
userland_user = jenkins_userland_config['user']
|
20
|
+
userland_pass = jenkins_userland_config['pass']
|
21
|
+
hostname = `hostname`.to_s.chomp.strip.scrub
|
22
|
+
|
23
|
+
print 'Creating SSH Key for Userland Jenkins Jobs...'
|
24
|
+
puts `
|
25
|
+
sudo \
|
26
|
+
-H \
|
27
|
+
-u jenkins \
|
28
|
+
/bin/bash \
|
29
|
+
--login \
|
30
|
+
-c "
|
31
|
+
echo y | \
|
32
|
+
ssh-keygen \
|
33
|
+
-t rsa \
|
34
|
+
-b 4096 \
|
35
|
+
-C 'jenkins@#{hostname}' \
|
36
|
+
-N '#{userland_ssh_keygen_pass}' \
|
37
|
+
-f '#{private_key_path}'
|
38
|
+
"
|
39
|
+
`
|
40
|
+
|
41
|
+
# TODO: Begin Potential Race Condition of Private SSH Key for Jenkins User
|
42
|
+
`sudo -H -u jenkins /bin/bash --login -c 'chmod 777 #{File.dirname(private_key_path)} && chmod 644 #{private_key_path}'`
|
43
|
+
|
44
|
+
# TODO: Create Jenkins SSH Credentials for all hosts referenced in vagrant.yaml (User-Land Config)
|
45
|
+
jenkins_obj = PWN::Plugins::Jenkins.connect(
|
46
|
+
jenkins_ip: '127.0.0.1',
|
47
|
+
port: 8888,
|
48
|
+
username: userland_user,
|
49
|
+
password: userland_pass
|
50
|
+
)
|
51
|
+
|
52
|
+
if jenkins_userland_config.include?('jenkins_job_credentials') &&
|
53
|
+
jenkins_userland_config['jenkins_job_credentials'].any?
|
54
|
+
|
55
|
+
jenkins_userland_config['jenkins_job_credentials'].each do |j_creds_hash|
|
56
|
+
ssh_username = j_creds_hash['ssh_username']
|
57
|
+
description = j_creds_hash['description']
|
58
|
+
credential_id = j_creds_hash['credential_id'].to_s
|
59
|
+
|
60
|
+
if credential_id == ''
|
61
|
+
PWN::Plugins::Jenkins.create_ssh_credential(
|
62
|
+
jenkins_obj: jenkins_obj,
|
63
|
+
username: ssh_username,
|
64
|
+
private_key_path: private_key_path,
|
65
|
+
key_passphrase: userland_ssh_keygen_pass,
|
66
|
+
description: description
|
67
|
+
)
|
68
|
+
else
|
69
|
+
PWN::Plugins::Jenkins.create_ssh_credential(
|
70
|
+
jenkins_obj: jenkins_obj,
|
71
|
+
username: ssh_username,
|
72
|
+
private_key_path: private_key_path,
|
73
|
+
key_passphrase: userland_ssh_keygen_pass,
|
74
|
+
credential_id: credential_id,
|
75
|
+
description: description
|
76
|
+
)
|
77
|
+
end
|
78
|
+
end
|
79
|
+
end
|
80
|
+
|
81
|
+
puts 'The following is the public SSH key created for Jenkins:'
|
82
|
+
puts `sudo cat /var/lib/jenkins/.ssh/id_rsa-pwn_jenkins.pub`
|
83
|
+
puts 'If you intend on leveraging User-Land jobs that will connect to remote hosts via SSH'
|
84
|
+
puts 'please ensure you add the aforementioned public key value to your respective ~/.ssh/authorized_keys file.'
|
85
|
+
# TODO: End of Potential Race Condition
|
86
|
+
`sudo -H -u jenkins /bin/bash --login -c 'chmod 600 #{private_key_path} && chmod 700 #{File.dirname(private_key_path)}'`
|
@@ -0,0 +1,130 @@
|
|
1
|
+
#!/usr/bin/env ruby
|
2
|
+
# frozen_string_literal: true
|
3
|
+
|
4
|
+
if ENV['PWN_ROOT']
|
5
|
+
pwn_root = ENV['PWN_ROOT']
|
6
|
+
elsif Dir.exist?('/pwn')
|
7
|
+
pwn_root = '/pwn'
|
8
|
+
else
|
9
|
+
pwn_root = Dir.pwd
|
10
|
+
end
|
11
|
+
|
12
|
+
# A list of these are available in /usr/share/applications/*.desktop
|
13
|
+
panel_root = '/usr/share/applications'
|
14
|
+
wallpaper = "#{pwn_root}/documentation/pwn_wallpaper.jpg"
|
15
|
+
|
16
|
+
system("sudo chmod 777 #{panel_root}")
|
17
|
+
|
18
|
+
File.open("#{panel_root}/pwn-prototyper.desktop", 'w') do |f|
|
19
|
+
f.puts '[Desktop Entry]'
|
20
|
+
f.puts 'Name=pwn'
|
21
|
+
f.puts 'Encoding=UTF-8'
|
22
|
+
f.puts 'Exec=/bin/bash --login -c pwn'
|
23
|
+
f.puts 'Icon=gksu-root-terminal'
|
24
|
+
f.puts 'StartupNotify=false'
|
25
|
+
f.puts 'Terminal=true'
|
26
|
+
f.puts 'Type=Application'
|
27
|
+
end
|
28
|
+
|
29
|
+
File.open("#{panel_root}/pwn-chromium-jenkins.desktop", 'w') do |f|
|
30
|
+
f.puts '[Desktop Entry]'
|
31
|
+
f.puts 'Name=Jenkins'
|
32
|
+
f.puts 'Encoding=UTF-8'
|
33
|
+
f.puts 'Exec=/bin/bash --login -c "/usr/bin/chromium https://jenkins.$(hostname -d)"'
|
34
|
+
f.puts 'Icon=dconf-editor'
|
35
|
+
f.puts 'Type=Application'
|
36
|
+
f.puts 'Categories=Network;WebBrowser;'
|
37
|
+
f.puts 'MimeType=text/html;text/xml;application/xhtml_xml;application/x-mimearchive;x-scheme-handler/http;x-scheme-handler/https;'
|
38
|
+
f.puts 'StartupWMClass=chromium'
|
39
|
+
f.puts 'StartupNotify=true'
|
40
|
+
end
|
41
|
+
|
42
|
+
File.open("#{panel_root}/pwn-chromium-openvas.desktop", 'w') do |f|
|
43
|
+
f.puts '[Desktop Entry]'
|
44
|
+
f.puts 'Name=OpenVAS'
|
45
|
+
f.puts 'Encoding=UTF-8'
|
46
|
+
f.puts 'Exec=/bin/bash --login -c "/usr/bin/chromium https://openvas.$(hostname -d)"'
|
47
|
+
f.puts 'Terminal=false'
|
48
|
+
f.puts 'X-MultipleArgs=false'
|
49
|
+
f.puts 'Type=Application'
|
50
|
+
f.puts 'Icon=kali-openvas.png'
|
51
|
+
f.puts 'Categories=Network;WebBrowser;'
|
52
|
+
f.puts 'MimeType=text/html;text/xml;application/xhtml_xml;application/x-mimearchive;x-scheme-handler/http;x-scheme-handler/https;'
|
53
|
+
f.puts 'StartupWMClass=chromium'
|
54
|
+
f.puts 'StartupNotify=true'
|
55
|
+
end
|
56
|
+
|
57
|
+
File.open("#{panel_root}/pwn-msfconsole.desktop", 'w') do |f|
|
58
|
+
f.puts '[Desktop Entry]'
|
59
|
+
f.puts 'Name=metasploit framework'
|
60
|
+
f.puts 'Encoding=UTF-8'
|
61
|
+
f.puts 'Exec=sudo /bin/bash --login -c "cd /opt/metasploit-framework-dev && ./msfconsole"'
|
62
|
+
f.puts 'Icon=kali-metasploit-framework.png'
|
63
|
+
f.puts 'StartupNotify=false'
|
64
|
+
f.puts 'Terminal=true'
|
65
|
+
f.puts 'Type=Application'
|
66
|
+
end
|
67
|
+
|
68
|
+
File.open("#{panel_root}/pwn-setoolkit.desktop", 'w') do |f|
|
69
|
+
f.puts '[Desktop Entry]'
|
70
|
+
f.puts 'Name=social engineering toolkit'
|
71
|
+
f.puts 'Encoding=UTF-8'
|
72
|
+
f.puts 'Exec=sudo /bin/bash --login -c "setoolkit"'
|
73
|
+
f.puts 'Icon=kali-set.png'
|
74
|
+
f.puts 'StartupNotify=false'
|
75
|
+
f.puts 'Terminal=true'
|
76
|
+
f.puts 'Type=Application'
|
77
|
+
f.puts 'Categories=08-exploitation-tools;13-social-engineering-tools;'
|
78
|
+
f.puts 'X-Kali-Package=set'
|
79
|
+
end
|
80
|
+
|
81
|
+
system("sudo chown root:root #{panel_root}/*.desktop")
|
82
|
+
system("sudo chmod 755 #{panel_root}")
|
83
|
+
|
84
|
+
panel_items = [
|
85
|
+
'pwn-prototyper.desktop',
|
86
|
+
'terminator.desktop',
|
87
|
+
'kali-recon-ng.desktop',
|
88
|
+
'pwn-chromium-jenkins.desktop',
|
89
|
+
'pwn-chromium-openvas.desktop',
|
90
|
+
'chromium.desktop',
|
91
|
+
'firefox-esr.desktop',
|
92
|
+
'kali-burpsuite.desktop',
|
93
|
+
'kali-zaproxy.desktop',
|
94
|
+
'pwn-msfconsole.desktop',
|
95
|
+
'kali-searchsploit.desktop',
|
96
|
+
'pwn-setoolkit.desktop'
|
97
|
+
]
|
98
|
+
|
99
|
+
# XFCE
|
100
|
+
# Do not show icons on Desktop
|
101
|
+
system('xfconf-query --channel xfce4-desktop --property /desktop-icons/file-icons/show-home --set false')
|
102
|
+
system('xfconf-query --channel xfce4-desktop --property /desktop-icons/file-icons/show-trash --set false')
|
103
|
+
system('xfconf-query --channel xfce4-desktop --property /desktop-icons/file-icons/show-removable --set false')
|
104
|
+
system('xfconf-query --channel xfce4-desktop --property /desktop-icons/file-icons/show-filesystem --set false')
|
105
|
+
|
106
|
+
# Create the Custom Kali Panel
|
107
|
+
system('xfce4-clipman &')
|
108
|
+
panel_items.each do |panel_item|
|
109
|
+
system("xfce4-panel --add=launcher #{panel_root}/#{panel_item}")
|
110
|
+
end
|
111
|
+
|
112
|
+
# Use the PWN Wallpaper for LightDm Greeter
|
113
|
+
# Keep space between c\ background...
|
114
|
+
system("sudo sed -i '/background/c\ background = #{wallpaper}' /etc/lightdm/lightdm-gtk-greeter.conf")
|
115
|
+
# Use the PWN Wallpaper
|
116
|
+
system(
|
117
|
+
"
|
118
|
+
xfconf-query \
|
119
|
+
--channel xfce4-desktop \
|
120
|
+
--list | \
|
121
|
+
grep image | \
|
122
|
+
grep -e path -e last | \
|
123
|
+
while read property; do \
|
124
|
+
xfconf-query \
|
125
|
+
--channel xfce4-desktop \
|
126
|
+
--property $property \
|
127
|
+
--set #{wallpaper}; \
|
128
|
+
done
|
129
|
+
"
|
130
|
+
)
|
@@ -0,0 +1,35 @@
|
|
1
|
+
#!/usr/bin/env ruby
|
2
|
+
# frozen_string_literal: true
|
3
|
+
|
4
|
+
require 'yaml'
|
5
|
+
|
6
|
+
print "Installing Let's Encrypt **************************************************************"
|
7
|
+
if ENV['PWN_ROOT']
|
8
|
+
pwn_root = ENV['PWN_ROOT']
|
9
|
+
elsif Dir.exist?('/pwn')
|
10
|
+
pwn_root = '/pwn'
|
11
|
+
else
|
12
|
+
pwn_root = Dir.pwd
|
13
|
+
end
|
14
|
+
|
15
|
+
pwn_provider = ENV['PWN_PROVIDER'] if ENV['PWN_PROVIDER']
|
16
|
+
letsencrypt_git = 'https://github.com/letsencrypt/letsencrypt'
|
17
|
+
letsencrypt_root = '/opt/letsencrypt-git'
|
18
|
+
letsencrypt_yaml = YAML.load_file("#{pwn_root}/etc/userland/#{pwn_provider}/letsencrypt/vagrant.yaml")
|
19
|
+
letsencrypt_domains = letsencrypt_yaml['domains']
|
20
|
+
letsencrypt_email = letsencrypt_yaml['email'].to_s.scrub.strip.chomp
|
21
|
+
|
22
|
+
letsencrypt_flags = '--apache'
|
23
|
+
letsencrypt_domains.each { |domain| letsencrypt_flags = "#{letsencrypt_flags} -d #{domain}" }
|
24
|
+
letsencrypt_flags = "#{letsencrypt_flags} --non-interactive --agree-tos --text --email #{letsencrypt_email}"
|
25
|
+
|
26
|
+
system(
|
27
|
+
"sudo -i /bin/bash \
|
28
|
+
--login \
|
29
|
+
-c \"
|
30
|
+
git clone #{letsencrypt_git} #{letsencrypt_root} && \
|
31
|
+
cd #{letsencrypt_root} && \
|
32
|
+
./letsencrypt-auto-source/letsencrypt-auto #{letsencrypt_flags}
|
33
|
+
\"
|
34
|
+
"
|
35
|
+
)
|
@@ -0,0 +1,25 @@
|
|
1
|
+
#!/usr/bin/env ruby
|
2
|
+
# frozen_string_literal: true
|
3
|
+
|
4
|
+
print 'Updating Metasploit...'
|
5
|
+
metasploit_root = '/opt/metasploit-framework-dev/'
|
6
|
+
puts `sudo /bin/bash --login -c "cd #{metasploit_root} && rm Gemfile.lock && git pull"`
|
7
|
+
metasploit_ruby_version = File.readlines("#{metasploit_root}/.ruby-version")[0].to_s.scrub.strip.chomp
|
8
|
+
puts `
|
9
|
+
sudo bash \
|
10
|
+
--login \
|
11
|
+
-c "
|
12
|
+
source /etc/profile.d/rvm.sh; \
|
13
|
+
rvm install ruby-#{metasploit_ruby_version}; \
|
14
|
+
rvm use ruby-#{metasploit_ruby_version}; \
|
15
|
+
rvm gemset create metasploit-framework; \
|
16
|
+
cd #{metasploit_root}; \
|
17
|
+
gem install bundler && \
|
18
|
+
bundle install && \
|
19
|
+
systemctl restart msfrpcd.service; \
|
20
|
+
ls tools/exploit | while read util; do \
|
21
|
+
ln -sf ./tools/exploit/$util; \
|
22
|
+
done
|
23
|
+
"
|
24
|
+
`
|
25
|
+
puts 'complete.'
|
@@ -0,0 +1,23 @@
|
|
1
|
+
#!/bin/bash
|
2
|
+
# Update user/pass based on UserLand Configs
|
3
|
+
if [[ $PWN_ROOT == '' ]]; then
|
4
|
+
if [[ ! -d '/pwn' ]]; then
|
5
|
+
pwn_root=$(pwd)
|
6
|
+
else
|
7
|
+
pwn_root='/pwn'
|
8
|
+
fi
|
9
|
+
else
|
10
|
+
pwn_root="${PWN_ROOT}"
|
11
|
+
fi
|
12
|
+
|
13
|
+
pwn_provider=`echo $PWN_PROVIDER`
|
14
|
+
openvas_vagrant_yaml="${pwn_root}/etc/userland/${pwn_provider}/openvas/vagrant.yaml"
|
15
|
+
apache_vagrant_yaml="${pwn_root}/etc/userland/${pwn_provider}/apache2/vagrant.yaml"
|
16
|
+
user=`ruby -e "require 'yaml'; print YAML.load_file('${openvas_vagrant_yaml}')['user']"`
|
17
|
+
pass=`ruby -e "require 'yaml'; print YAML.load_file('${openvas_vagrant_yaml}')['pass']"`
|
18
|
+
fqdn=`ruby -e "require 'yaml'; print YAML.load_file('${apache_vagrant_yaml}')['common_name_fqdn']"`
|
19
|
+
sudo /bin/bash --login -c "openvasmd --create-user ${user}"
|
20
|
+
sudo /bin/bash --login -c "openvasmd --user=${user} --new-password=${pass}"
|
21
|
+
sudo sed -i "9s/.*/ExecStart=\/usr\/sbin\/gsad --foreground --listen=127\.0\.0\.1 --port=9392 --mlisten=127\.0\.0\.1 --mport=9390 --http-only --no-redirect --allow-header-host openvas.${fqdn}/" /lib/systemd/system/greenbone-security-assistant.service
|
22
|
+
sudo systemctl daemon-reload
|
23
|
+
sudo systemctl restart greenbone-security-assistant
|
@@ -0,0 +1,14 @@
|
|
1
|
+
#!/bin/bash --login
|
2
|
+
if [[ $pwn_provider != 'aws' ]]; then
|
3
|
+
sudo passwd --expire admin
|
4
|
+
fi
|
5
|
+
|
6
|
+
sudo userdel -r pwnadmin
|
7
|
+
|
8
|
+
# Regenerate SSH Keys
|
9
|
+
# RSA
|
10
|
+
yes y | sudo ssh-keygen -f /etc/ssh/ssh_host_rsa_key -N '' -t rsa -b 8192
|
11
|
+
# DSA
|
12
|
+
yes y | sudo ssh-keygen -f /etc/ssh/ssh_host_dsa_key -N '' -t dsa -b 1024
|
13
|
+
# ECDSA
|
14
|
+
yes y | sudo ssh-keygen -f /etc/ssh/ssh_host_ecdsa_key -N '' -t ecdsa -b 521
|