pwn 0.4.571 → 0.4.574

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 758c24e1c40fc065072d2513b798c6b0f33a8ee5bda1b9d510c7f09582a76a69
-  data.tar.gz: 1175f06f73d8dbf810cbbd169571e6f3c3366983b4c4ce78ec6f040d709c403c
+  metadata.gz: cb88a0293d025a0bddb923374dcfc1092f6a64763e182df73c1475b47be2cf29
+  data.tar.gz: b28ee3fa4b754ffec3067865e4fc660af3f9bc395787bb125aee275bcdff9cbc
 SHA512:
-  metadata.gz: 30eb94f010a1aeaa6d696bb8bbce40d350b934bd611d1235db62a4eff6eb379f8ece0af3bd3ca9452b5124a537e3fe2d7a107ac2d98a13933b31d7cbf37b36fa
-  data.tar.gz: 216fd24a9097f983f586549d848350e1e4e884ca534e20c768270d5f319902eb5024c201911658e9e2a42a38cc166a9123a200c4e9f90b403f830bdbbb1cd014
+  metadata.gz: 1e474ce41fe0d15b1804b8d862ee3c70a593869ce787e6cfcef56c1ff5f61ded879c5e4c0fb41e03c0bf282fe77641123e4d1af536023d3d9d737c74cb8b4a35
+  data.tar.gz: c8104d907f8424c29449c9f53b697c4cf05e79dc4d854c07e1742e0ca8df8ddc94bf08964d99e7a426132c29e98ce05400ac63aeebf5445c0830255d4c8250a5

data/Gemfile

@@ -16,9 +16,9 @@ gem 'anemone', '0.7.2'
 gem 'authy', '3.0.1'
 gem 'aws-sdk', '3.1.0'
 gem 'bettercap', '1.6.2'
-gem 'brakeman', '5.3.1'
+gem 'brakeman', '5.4.0'
 gem 'bson', '4.15.0'
-gem 'bundler', '>=2.3.25'
+gem 'bundler', '>=2.3.26'
 gem 'bundler-audit', '0.9.1'
 gem 'bunny', '2.19.0'
 gem 'colorize', '0.8.1'
@@ -32,49 +32,49 @@ gem 'htmlentities', '4.3.4'
 gem 'ipaddress', '0.8.3'
 # gem 'jenkins_api_client', '1.5.3' # Temporarily disabled until arangamani/jenkins_api_client/issues/304 is Closed out
 gem 'js-beautify', '0.1.8'
-gem 'json', '2.6.2'
+gem 'json', '2.6.3'
 gem 'jsonpath', '1.1.2'
 gem 'jwt', '2.5.0'
 gem 'luhn', '1.0.2'
-gem 'mail', '2.7.1'
+gem 'mail', '2.8.0'
 gem 'mongo', '2.18.1'
 gem 'msfrpc-client', '1.1.2'
 gem 'net-ldap', '0.17.1'
 gem 'net-openvpn', '0.8.7'
 gem 'net-smtp', '0.3.3'
 gem 'nexpose', '7.3.0'
-gem 'nokogiri', '1.13.9'
+gem 'nokogiri', '1.13.10'
 gem 'oily_png', '1.2.1'
 gem 'os', '1.1.4'
 gem 'packetfu', '1.1.13'
 gem 'pdf-reader', '2.11.0'
-gem 'pg', '1.4.4'
+gem 'pg', '1.4.5'
 gem 'pry', '0.14.1'
 gem 'pry-doc', '1.3.0'
 gem 'rake', '13.0.6'
 gem 'rb-readline', '0.5.5'
 gem 'rbvmomi', '3.0.0'
-gem 'rdoc', '6.4.0'
+gem 'rdoc', '6.5.0'
 gem 'rest-client', '2.1.0'
 gem 'rex', '2.0.13'
-gem 'rmagick', '5.0.0'
+gem 'rmagick', '5.1.0'
 gem 'rspec', '3.12.0'
 gem 'rtesseract', '3.1.2'
-gem 'rubocop', '1.38.0'
+gem 'rubocop', '1.40.0'
 gem 'rubocop-rake', '0.6.0'
 gem 'rubocop-rspec', '2.15.0'
 gem 'ruby-audio', '1.6.1'
-gem 'ruby-nmap', '0.10.0'
+gem 'ruby-nmap', '1.0.0'
 gem 'ruby-saml', '1.14.0'
 gem 'rvm', '1.11.3.9'
 gem 'savon', '2.13.1'
-gem 'selenium-devtools', '0.107.0'
+gem 'selenium-devtools', '0.108.0'
 gem 'serialport', '1.3.2'
-gem 'sinatra', '3.0.2'
+gem 'sinatra', '3.0.4'
 gem 'slack-ruby-client', '2.0.0'
 gem 'socksify', '1.7.1'
 gem 'spreadsheet', '1.3.0'
-gem 'sqlite3', '1.5.3'
+gem 'sqlite3', '1.5.4'
 gem 'thin', '1.8.1'
 gem 'tty-prompt', '0.23.1'
 gem 'watir', '7.1.0'

data/README.md

@@ -37,7 +37,7 @@ $ rvm use ruby-3.1.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.571]:001 >>> PWN.help
+pwn[v0.4.574]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.1.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.571]:001 >>> PWN.help
+pwn[v0.4.574]:001 >>> PWN.help
 ```
 
 

data/lib/pwn/plugins/burp_suite.rb

@@ -245,9 +245,13 @@ module PWN
         end
 
         report_url = Base64.strict_encode64(target_domain)
-        # Ready scanreport API call in burpbuddy to support iHTML & XML report generation
-        report_resp = rest_browser.get("http://#{burpbuddy_api}/scanreport/#{report_type.to_s.upcase}/#{report_url}")
-        # report_resp = rest_browser.get("http://#{burpbuddy_api}/scanreport/#{report_url}")
+        # Ready scanreport API call in burpbuddy to support HTML & XML report generation
+        # report_resp = rest_browser.get(
+        #   "http://#{burpbuddy_api}/scanreport/#{report_type.to_s.upcase}/#{report_url}"
+        # )
+        report_resp = rest_browser.get(
+          "http://#{burpbuddy_api}/scanreport/#{report_url}"
+        )
         File.open(output_path, 'w') do |f|
           f.puts(report_resp.body)
         end

data/lib/pwn/plugins/nmap_it.rb

@@ -1,6 +1,7 @@
 # frozen_string_literal: true
 
-require 'nmap'
+require 'nmap/command'
+require 'nmap/xml'
 
 module PWN
   module Plugins
@@ -12,7 +13,7 @@ module PWN
       # end
 
       public_class_method def self.port_scan
-        Nmap::Program.scan do |nmap|
+        Nmap::Command.sudo do |nmap|
           yield(nmap)
         end
       rescue StandardError => e
@@ -43,7 +44,7 @@ module PWN
       public_class_method def self.parse_xml_results(opts = {})
         xml_file = opts[:xml_file].to_s.scrub.strip.chomp if File.exist?(opts[:xml_file].to_s.scrub.strip.chomp)
 
-        Nmap::XML.new(xml_file) do |xml|
+        Nmap::XML.open(xml_file) do |xml|
           yield(xml)
         end
       rescue StandardError => e

data/lib/pwn/plugins/son_micro_rfid.rb

@@ -3,7 +3,8 @@
 module PWN
   module Plugins
     # This plugin is used for interacting with a SonMicro
-    # SM132 USB RFID Reader / Writer (PCB v3)
+    # SM132 USB RFID Reader / Writer (PCB V3) &&
+    # SM2330-USB Rev.0
     module SonMicroRFID
       # Supported Method Parameters::
       # son_micro_rfid_obj = PWN::Plugins::SonMicroRFID.connect(

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.4.571'
+  VERSION = '0.4.574'
 end

data/packer/provisioners/pwn.sh

@@ -22,6 +22,9 @@ case $os in
     echo "Installing fontconfig..."
     sudo port -N install fontconfig
 
+    echo "Installing cmatrix..."
+    sudo port -N install cmatrix
+
     echo 'Installing Postgres Libraries for pg gem...'
     sudo port -N install postgresql96-server
 
@@ -49,6 +52,10 @@ case $os in
       $screen_cmd "${apt} install -y fontconfig ${assess_update_errors}"
       grok_error
 
+      echo "Installing fontmatrix..."
+      $screen_cmd "${apt} install -y fontmatrix ${assess_update_errors}"
+      grok_error
+
       echo "Installing Postgres Libraries for pg gem..."
       $screen_cmd "${apt} install -y postgresql-server-dev-all ${assess_update_errors}"
       grok_error

data/packer/provisioners/ruby.sh

@@ -32,5 +32,4 @@ esac
 sudo /bin/bash --login -c "git clone https://github.com/0dayinc/pwn.git ${pwn_root}"
 
 ruby_version=`cat ${pwn_root}/.ruby-version`
-ruby_gemset=`cat ${pwn_root}/.ruby-gemset`
-sudo /bin/bash --login -c "source /etc/profile.d/rvm.sh && rvm install ruby-${ruby_version}"
+rvmsudo rvm install ruby-$ruby_version

data/packer/provisioners/rvm.sh

@@ -27,4 +27,5 @@ sudo /bin/bash --login -c "echo -e \"trust\n5\ny\n\" | gpg2 --no-tty --command-f
 sudo /bin/bash --login -c "echo -e \"trust\n5\ny\n\" | gpg2 --no-tty --command-fd 0 --edit-key ${key2}"
 
 # Multi-user install required due to the need to run MSFRPCD as root w/in metasploit gemset
-curl -sSL https://get.rvm.io | sudo bash -s latest
+curl -sSL https://get.rvm.io | sudo bash -s stable
+rvm reload

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.571
+  version: 0.4.574
 platform: ruby
 authors:
 - 0day Inc.
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-11-04 00:00:00.000000000 Z
+date: 2022-12-08 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -86,14 +86,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 5.3.1
+        version: 5.4.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 5.3.1
+        version: 5.4.0
 - !ruby/object:Gem::Dependency
   name: bson
   requirement: !ruby/object:Gem::Requirement
@@ -114,14 +114,14 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.3.25
+        version: 2.3.26
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.3.25
+        version: 2.3.26
 - !ruby/object:Gem::Dependency
   name: bundler-audit
   requirement: !ruby/object:Gem::Requirement
@@ -296,14 +296,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.6.2
+        version: 2.6.3
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.6.2
+        version: 2.6.3
 - !ruby/object:Gem::Dependency
   name: jsonpath
   requirement: !ruby/object:Gem::Requirement
@@ -352,14 +352,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.7.1
+        version: 2.8.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.7.1
+        version: 2.8.0
 - !ruby/object:Gem::Dependency
   name: mongo
   requirement: !ruby/object:Gem::Requirement
@@ -450,14 +450,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.13.9
+        version: 1.13.10
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.13.9
+        version: 1.13.10
 - !ruby/object:Gem::Dependency
   name: oily_png
   requirement: !ruby/object:Gem::Requirement
@@ -520,14 +520,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.4.4
+        version: 1.4.5
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.4.4
+        version: 1.4.5
 - !ruby/object:Gem::Dependency
   name: pry
   requirement: !ruby/object:Gem::Requirement
@@ -604,14 +604,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 6.4.0
+        version: 6.5.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 6.4.0
+        version: 6.5.0
 - !ruby/object:Gem::Dependency
   name: rest-client
   requirement: !ruby/object:Gem::Requirement
@@ -646,14 +646,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 5.0.0
+        version: 5.1.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 5.0.0
+        version: 5.1.0
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
@@ -688,14 +688,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.38.0
+        version: 1.40.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.38.0
+        version: 1.40.0
 - !ruby/object:Gem::Dependency
   name: rubocop-rake
   requirement: !ruby/object:Gem::Requirement
@@ -744,14 +744,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.10.0
+        version: 1.0.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.10.0
+        version: 1.0.0
 - !ruby/object:Gem::Dependency
   name: ruby-saml
   requirement: !ruby/object:Gem::Requirement
@@ -800,14 +800,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.107.0
+        version: 0.108.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.107.0
+        version: 0.108.0
 - !ruby/object:Gem::Dependency
   name: serialport
   requirement: !ruby/object:Gem::Requirement
@@ -828,14 +828,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 3.0.2
+        version: 3.0.4
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 3.0.2
+        version: 3.0.4
 - !ruby/object:Gem::Dependency
   name: slack-ruby-client
   requirement: !ruby/object:Gem::Requirement
@@ -884,14 +884,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.5.3
+        version: 1.5.4
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.5.3
+        version: 1.5.4
 - !ruby/object:Gem::Dependency
   name: thin
   requirement: !ruby/object:Gem::Requirement
@@ -2032,7 +2032,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.25
+rubygems_version: 3.3.26
 signing_key:
 specification_version: 4
 summary: Automated Security Testing for CI/CD Pipelines & Beyond