RubyGems - pwn - Versions diffs - 0.4.480 → 0.4.483 - Mend

pwn 0.4.480 → 0.4.483

Files changed (7) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 1745701a8f5d6aaca6159fc1a05fbc82fe547bc7e410215af1b69ca013d4e98d
-  data.tar.gz: de67baa326728cbf3add2ef72498263fbf8d813e079e42e0c0af166a27b2a492
+  metadata.gz: 3b2312868fae10dcecce40572e6e7e1322c7acd5a2f9f7d0db67027379e1e3b6
+  data.tar.gz: 1a3de23ee29c029a6c6b42a2395e8b89b42f123d40ab0d4c485dfeb4372bf00b
 SHA512:
-  metadata.gz: e06d7f528cdadd19f7941bae1682dff378a39388425caa5d29cabe0a3e297b1ce89678a31d1c5a0917c8af194e9bc0eaa0164e6c2fbea167f47d6f6911d1e893
-  data.tar.gz: 64385168c97cada272ce1e3049367901952090070513a6d0e6196d6b9be0a2e2b4aeacfc58833c47a62653b1b9e5f4a1cdee33fcbf25890435010a962ace48fc
+  metadata.gz: 838d40e50d60ce05d1685c6284f2e1c267d8e7a19fa7c0f9883e239cd605a40aa2152df6a7deee3d588ae60c546b039bd9f53691af165491aed9ba3d5a11c80f
+  data.tar.gz: c54d893999875d1c3beeeb6a0cbe7a9a60376dece4bfa7d4cef70408af11c31cffada1f3300842ffaf71a085d24937d19f7911c7c032430bbd9a1b7dc0a247fd

data/Gemfile CHANGED Viewed

@@ -33,7 +33,7 @@ gem 'ipaddress', '0.8.3'
 gem 'js-beautify', '0.1.8'
 gem 'json', '2.6.2'
 gem 'jsonpath', '1.1.2'
-gem 'jwt', '2.4.0'
+gem 'jwt', '2.4.1'
 gem 'luhn', '1.0.2'
 gem 'mail', '2.7.1'
 gem 'mongo', '2.17.1'

data/README.md CHANGED Viewed

@@ -37,7 +37,7 @@ $ rvm use ruby-3.1.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.480]:001 >>> PWN.help
+pwn[v0.4.483]:001 >>> PWN.help
 ```
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.1.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.480]:001 >>> PWN.help
+pwn[v0.4.483]:001 >>> PWN.help
 ```

data/bin/pwn_serial_msr206 CHANGED Viewed

@@ -101,7 +101,6 @@ begin
     puts '[(B)ackup Card]'
     puts '[(C)opy Card]'
     puts '[(L)oad Card from File]'
-    puts '[(E)dit Card]'
     puts '[(W)arm Reset]'
     puts '[(Q)uit]'
     puts menu_msg
@@ -112,38 +111,24 @@ begin
     case option
     when :R
       menu_msg = 'READ CARD'
-      # Read Card
       track_data = PWN::Plugins::MSR206.read_card(
         msr206_obj: msr206_obj
       )
     when :B
       menu_msg = 'BACKUP CARD TO FILE'
-      # Read Card to Backup
       track_data = PWN::Plugins::MSR206.backup_card(
         msr206_obj: msr206_obj
       )
     when :C
       menu_msg = 'COPY CARD'
-      # Copy Card
       track_data = PWN::Plugins::MSR206.copy_card(
         msr206_obj: msr206_obj
       )
     when :L
       menu_msg = 'LOAD FROM FILE'
-      # Read Card to Backup
       track_data = PWN::Plugins::MSR206.load_card_from_file(
         msr206_obj: msr206_obj
       )
-    when :E
-      menu_msg = 'EDIT'
-      # Read Target Card
-      track_data = PWN::Plugins::MSR206.edit_card(
-        msr206_obj: msr206_obj
-      )
-      # TODO: Save Original Card Contents
-      # arm_to_write card to edit
-      # read edited card to verify successful write
     when :W
       menu_msg = 'WARM RESET'
       exec_resp = PWN::Plugins::MSR206.exec(

data/lib/pwn/plugins/msr206.rb CHANGED Viewed

@@ -662,6 +662,7 @@ module PWN
                   params: [param]
                 )
                 exec_resp[:encoding] = encoding
+                exec_resp[:track_format] = [param]
                 puts exec_resp[:decoded]
                 puts exec_resp.inspect
                 track_data_arr.push(exec_resp)
@@ -687,17 +688,20 @@ module PWN
                   params: [param]
                 )
                 exec_resp[:encoding] = encoding
+                exec_resp[:track_format] = [param]
                 puts exec_resp[:decoded]
                 puts exec_resp.inspect
                 track_data_arr.push(exec_resp)
                 # 3 byte command
+                param = [0x5f] + [param]
                 exec_resp = exec(
                   msr206_obj: msr206_obj,
                   cmd: cmd,
-                  params: [0x5f] + [param]
+                  params: param
                 )
                 exec_resp[:encoding] = encoding
+                exec_resp[:track_format] = param
                 puts exec_resp[:decoded]
                 puts exec_resp.inspect
                 track_data_arr.push(exec_resp)
@@ -708,6 +712,9 @@ module PWN
              :arm_to_write_with_raw,
              :arm_to_write_with_raw_speed_prompts
+          # TODO: Set Write Density for Tracks Here
+          # >>>
           if encoding == :iso
             cmds_arr = %i[
               load_iso_std_data_for_writing_track1
@@ -715,6 +722,37 @@ module PWN
               load_iso_std_data_for_writing_track3
             ]
+            # TODO: Get Data by cmd (e.g. load_iso_std_data_for_writing_track1)
+            cmds_arr.each_with_index do |cmd, track|
+              puts "\n*** #{cmd.to_s.gsub('_', ' ').upcase} #{'*' * 17}"
+              puts track_data[track][:decoded]
+              next if track_data[track][:decoded] == '+'
+              this_track = track_data[track][:decoded].chars.map do |c|
+                c.unpack1('H*').to_i(16)
+              end
+              track_eot = [0x04]
+              track_payload = this_track + track_eot
+              puts track_payload.inspect
+              exec_resp = exec(
+                msr206_obj: msr206_obj,
+                cmd: cmd,
+                params: track_payload
+              )
+              exec_resp[:encoding] = encoding
+              puts exec_resp.inspect
+              track_data_arr.push(exec_resp)
+            end
+          end
+          if encoding == :iso_alt
+            cmds_arr = %i[
+              alt_load_iso_std_data_for_writing_track1
+              alt_load_iso_std_data_for_writing_track2
+              alt_load_iso_std_data_for_writing_track3
+            ]
+            # TODO: Get Data by cmd (e.g. alt_load_iso_std_data_for_writing_track1)
             cmds_arr.each_with_index do |cmd, track|
               puts "\n*** #{cmd.to_s.gsub('_', ' ').upcase} #{'*' * 17}"
               puts track_data[track][:decoded]
@@ -723,12 +761,14 @@ module PWN
               this_track = track_data[track][:decoded].chars.map do |c|
                 c.unpack1('H*').to_i(16)
               end
-              this_track_w_eot = this_track + [0x04]
-              puts this_track_w_eot.inspect
+              track_format = track_data[track][:track_format]
+              track_eot = [0x04]
+              track_payload = track_format + this_track + track_eot
+              puts track_payload.inspect
               exec_resp = exec(
                 msr206_obj: msr206_obj,
                 cmd: cmd,
-                params: this_track_w_eot
+                params: track_payload
               )
               exec_resp[:encoding] = encoding
               puts exec_resp.inspect
@@ -736,45 +776,36 @@ module PWN
             end
           end
-          # if encoding == :iso_alt
-          #   cmds_arr = %i[
-          #     alt_load_iso_std_data_for_writing_track1
-          #     alt_load_iso_std_data_for_writing_track2
-          #     alt_load_iso_std_data_for_writing_track3
-          #   ]
-          #   cmds_arr.each do |cmd|
-          #     puts "\n*** #{cmd.to_s.gsub('_', ' ').upcase} #{'*' * 17}"
-          #     exec_resp = exec(
-          #       msr206_obj: msr206_obj,
-          #       cmd: cmd
-          #     )
-          #     exec_resp[:encoding] = encoding
-          #     puts exec_resp[:decoded]
-          #     puts exec_resp.inspect
-          #     track_data_arr.push(exec_resp)
-          #   end
-          # end
-          # if encoding == :raw
-          #   cmds_arr = %i[
-          #     load_custom_data_for_writing_track1
-          #     load_custom_data_for_writing_track2
-          #     load_custom_data_for_writing_track3
-          #   ]
-          #   cmds_arr.each do |cmd|
-          #     puts "\n*** #{cmd.to_s.gsub('_', ' ').upcase} #{'*' * 17}"
-          #     exec_resp = exec(
-          #       msr206_obj: msr206_obj,
-          #       cmd: cmd
-          #     )
-          #     exec_resp[:encoding] = encoding
-          #     puts exec_resp[:decoded]
-          #     puts exec_resp.inspect
-          #     track_data_arr.push(exec_resp)
-          #   end
-          # end
+          if encoding == :raw
+            cmds_arr = %i[
+              load_custom_data_for_writing_track1
+              load_custom_data_for_writing_track2
+              load_custom_data_for_writing_track3
+            ]
+            # TODO: Get Data by cmd (e.g. load_custom_data_for_writing_track1)
+            cmds_arr.each_with_index do |cmd, track|
+              puts "\n*** #{cmd.to_s.gsub('_', ' ').upcase} #{'*' * 17}"
+              puts track_data[track][:decoded]
+              next if track_data[track][:decoded] == '+'
+              this_track = track_data[track][:decoded].chars.map do |c|
+                c.unpack1('H*').to_i(16)
+              end
+              track_format = track_data[track][:track_format]
+              track_eot = [0x04]
+              track_payload = track_format + this_track + track_eot
+              puts track_payload.inspect
+              exec_resp = exec(
+                msr206_obj: msr206_obj,
+                cmd: cmd,
+                params: track_payload
+              )
+              exec_resp[:encoding] = encoding
+              puts exec_resp.inspect
+              track_data_arr.push(exec_resp)
+            end
+          end
           exec_resp = PWN::Plugins::MSR206.exec(
             msr206_obj: msr206_obj,
@@ -927,8 +958,8 @@ module PWN
         coercivity = :waiting_for_selection
         loop do
           puts "\nCOERCIVITY OPTIONS:"
-          puts '[(H)igh (Black Stripe)]'
-          puts '[(L)ow (Brown Stripe)]'
+          puts '[(H)igh (Most Often Black Stripe)]'
+          puts '[(L)ow  (Most Often Brown Stripe)]'
           print 'COERCIVITY LEVEL >>> '
           coercivity_choice = gets.scrub.chomp.strip.upcase.to_sym
@@ -1053,32 +1084,6 @@ module PWN
         raise e
       end
-      # Supported Method Parameters::
-      # PWN::Plugins::MSR206.edit_card(
-      #   msr206_obj: 'required - msr206_obj returned from #connect method'
-      # )
-      public_class_method def self.edit_card(opts = {})
-        msr206_obj = opts[:msr206_obj]
-        # Read Card to Backup
-        track_data = backup_card(
-          msr206_obj: msr206_obj
-        )
-        # TODO: Inline Editing
-        encoding = track_data.first[:encoding] if track_data.length == 3
-        # TODO: Save Original Card Contents
-        write_card(
-          msr206_obj: msr206_obj,
-          encoding: encoding,
-          track_data: track_data
-        )
-      rescue StandardError => e
-        raise e
-      end
       # Supported Method Parameters::
       # PWN::Plugins::MSR206.get_config(
       #   msr206_obj: 'required - msr206_obj returned from #connect method'

data/lib/pwn/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module PWN
-  VERSION = '0.4.480'
+  VERSION = '0.4.483'
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.480
+  version: 0.4.483
 platform: ruby
 authors:
 - 0day Inc.
@@ -310,14 +310,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.4.0
+        version: 2.4.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.4.0
+        version: 2.4.1
 - !ruby/object:Gem::Dependency
   name: luhn
   requirement: !ruby/object:Gem::Requirement