pwn 0.4.530 → 0.4.533

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. checksums.yaml +4 -4
  2. data/README.md +2 -2
  3. data/bin/pwn_www_uri_buster +22 -3
  4. data/lib/pwn/version.rb +1 -1
  5. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 612f547ef710363dbb2354048dbae80679dc8153f74512d09847f8d43e29e90c
4
- data.tar.gz: ce2ef03d718183d5130749244cd0237774b3b58003e693b790c59abf21abbe5f
3
+ metadata.gz: 8807c949959dce31363a83a20bb3948204d6be996b8eb11c722cd89a1c79edba
4
+ data.tar.gz: 49cce1612c878b7efdff59889de8079f7888075c918d460981a626b7e81ba588
5
5
  SHA512:
6
- metadata.gz: 6fd3b7a65884a9551eb6b8cec0b34f1d96dd3211d2d511c144ef31a93ba5ca828327c7c768e42b694765f46af93cfd8b858275c5cf4b9b1065336c430edb1ce7
7
- data.tar.gz: 0bef199fc9669b712205d3dac1d30e50b24135dd389a28ceccc1a7e193c9fc01fbf33f578665f808d52f22e0d67d55fc72eccda2819b230317eaa7010b7b2f9e
6
+ metadata.gz: 563a4f4dc42433fe5d9663b56adce9c42d04bf313f0256585130c8897f74242904efe0a83b80e1ce94f986aa1bf64718b24d9487e39dd7a2e55b99b46cdd18f1
7
+ data.tar.gz: 3117a7944577b35453f50f06f1e07b3da2d7049280f0922d52d9efb6126082e7232508584703852a5675462f0231fb509b454f725d55a776de1261d8b51fb6ca
data/README.md CHANGED
@@ -37,7 +37,7 @@ $ rvm use ruby-3.1.2@pwn
37
37
  $ rvm list gemsets
38
38
  $ gem install --verbose pwn
39
39
  $ pwn
40
- pwn[v0.4.530]:001 >>> PWN.help
40
+ pwn[v0.4.533]:001 >>> PWN.help
41
41
  ```
42
42
 
43
43
  [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.1.2@pwn
52
52
  $ gem uninstall --all --executables pwn
53
53
  $ gem install --verbose pwn
54
54
  $ pwn
55
- pwn[v0.4.530]:001 >>> PWN.help
55
+ pwn[v0.4.533]:001 >>> PWN.help
56
56
  ```
57
57
 
58
58
 
data/bin/pwn_www_uri_buster CHANGED
@@ -21,6 +21,10 @@ OptionParser.new do |options|
21
21
  opts[:wordlist] = w
22
22
  end
23
23
 
24
+ options.on('-rHEADERS', '--request-headers=HEADERS', '<Optional - HTTP Request Headers in JSON Format)>') do |h|
25
+ opts[:http_request_headers] = h
26
+ end
27
+
24
28
  options.on('-tTHREADS', '--max-threads=THREADS', '<Optional # HTTP Requests to Run Simultaneously (Default 100)>') do |t|
25
29
  opts[:max_threads] = t
26
30
  end
@@ -53,6 +57,8 @@ begin
53
57
  wordlist = opts[:wordlist]
54
58
  raise "ERROR: #{wordlist} Does Not Exist." unless File.exist?(wordlist)
55
59
 
60
+ http_request_headers = opts[:http_request_headers]
61
+
56
62
  max_threads = opts[:max_threads]
57
63
  max_threads ||= 100
58
64
 
@@ -82,6 +88,7 @@ begin
82
88
 
83
89
  next if wordlist_line.match?(/^#/)
84
90
 
91
+ # http_methods = %i[CONNECT DELETE GET HEAD OPTIONS PATCH POST PUT TRACE]
85
92
  http_methods = %i[GET HEAD POST PUT DELETE OPTIONS TRACE]
86
93
  http_methods.each do |http_method|
87
94
  begin
@@ -89,9 +96,19 @@ begin
89
96
  http_uri = "#{target_url}/#{wordlist_line}"
90
97
  rest_client_resp_hash = {}
91
98
  rest_client = PWN::Plugins::TransparentBrowser.open(browser_type: :rest)::Request
99
+
100
+ headers = nil
101
+ if http_request_headers
102
+ headers = JSON.parse(
103
+ http_request_headers,
104
+ symbolize_names: true
105
+ )
106
+ end
107
+
92
108
  response = rest_client.execute(
93
109
  method: http_method,
94
110
  url: http_uri,
111
+ headers: headers,
95
112
  verify_ssl: false
96
113
  )
97
114
 
@@ -102,10 +119,12 @@ begin
102
119
  http_resp_code: response.code,
103
120
  http_resp: response.body[0..300]
104
121
  }
105
- rescue RestClient::Forbidden,
106
- RestClient::BadRequest,
122
+ rescue RestClient::BadRequest,
123
+ RestClient::Forbidden,
124
+ RestClient::GatewayTimeout,
107
125
  RestClient::MethodNotAllowed,
108
- RestClient::NotFound => e
126
+ RestClient::NotFound,
127
+ RestClient::ServiceUnavailable => e
109
128
 
110
129
  rest_client_resp_hash = {
111
130
  request_timestamp: Time.now.strftime('%Y-%m-%d_%H-%M-%S'),
data/lib/pwn/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  # frozen_string_literal: true
2
2
 
3
3
  module PWN
4
- VERSION = '0.4.530'
4
+ VERSION = '0.4.533'
5
5
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: pwn
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.4.530
4
+ version: 0.4.533
5
5
  platform: ruby
6
6
  authors:
7
7
  - 0day Inc.
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-08-29 00:00:00.000000000 Z
11
+ date: 2022-08-30 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: activesupport