pwn 0.4.637 → 0.4.639
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/README.md +2 -2
- data/lib/pwn/plugins/burp_suite.rb +6 -6
- data/lib/pwn/plugins/owasp_zap.rb +7 -9
- data/lib/pwn/version.rb +1 -1
- metadata +1 -1
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 97f242f5bec84492461a574a163b6f26e7afb963912672410f87cc641880ffe8
|
|
4
|
+
data.tar.gz: 717c35aa314073985921cab690fb97565be3793623b2af2b2ea8592341b4694d
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 076d2edf0be4d70425eb7454d3a9bf8c6921123da10f1aa9e0db41aaf585caa12979b067b3560a1b768d55bf26ea0dd2812f76c156a6a35546a692933ac86fb6
|
|
7
|
+
data.tar.gz: e98550ef2b85ad001364e4707a1527526c15d120d57e5c68e7c026a867dde19a59601c1cac2ece6daa477974d6c79a54a5a115423986ce3a5c70bb1cacf32147
|
data/README.md
CHANGED
|
@@ -37,7 +37,7 @@ $ rvm use ruby-3.2.2@pwn
|
|
|
37
37
|
$ rvm list gemsets
|
|
38
38
|
$ gem install --verbose pwn
|
|
39
39
|
$ pwn
|
|
40
|
-
pwn[v0.4.
|
|
40
|
+
pwn[v0.4.639]:001 >>> PWN.help
|
|
41
41
|
```
|
|
42
42
|
|
|
43
43
|
[](https://youtu.be/G7iLUY4FzsI)
|
|
@@ -52,7 +52,7 @@ $ rvm use ruby-3.2.2@pwn
|
|
|
52
52
|
$ gem uninstall --all --executables pwn
|
|
53
53
|
$ gem install --verbose pwn
|
|
54
54
|
$ pwn
|
|
55
|
-
pwn[v0.4.
|
|
55
|
+
pwn[v0.4.639]:001 >>> PWN.help
|
|
56
56
|
```
|
|
57
57
|
|
|
58
58
|
|
|
@@ -40,11 +40,11 @@ module PWN
|
|
|
40
40
|
burp_obj = {}
|
|
41
41
|
burp_obj[:pid] = Process.spawn(burp_cmd_string)
|
|
42
42
|
rest_browser = PWN::Plugins::TransparentBrowser.open(browser_type: :rest)
|
|
43
|
-
random_mitm_port = PWN::Plugins::Sock.get_random_unused_port
|
|
44
|
-
random_bb_port = random_mitm_port
|
|
45
|
-
random_bb_port = PWN::Plugins::Sock.get_random_unused_port while random_bb_port == random_mitm_port
|
|
46
|
-
burp_obj[:mitm_proxy] =
|
|
47
|
-
burp_obj[:burpbuddy_api] =
|
|
43
|
+
# random_mitm_port = PWN::Plugins::Sock.get_random_unused_port
|
|
44
|
+
# random_bb_port = random_mitm_port
|
|
45
|
+
# random_bb_port = PWN::Plugins::Sock.get_random_unused_port while random_bb_port == random_mitm_port
|
|
46
|
+
burp_obj[:mitm_proxy] = '127.0.0.1:8080'
|
|
47
|
+
burp_obj[:burpbuddy_api] = '127.0.0.1:8001'
|
|
48
48
|
burp_obj[:rest_browser] = rest_browser
|
|
49
49
|
|
|
50
50
|
# Proxy always listens on localhost...use SSH tunneling if remote access is required
|
|
@@ -57,7 +57,7 @@ module PWN
|
|
|
57
57
|
|
|
58
58
|
# Wait for TCP 8001 to open prior to returning burp_obj
|
|
59
59
|
loop do
|
|
60
|
-
s = TCPSocket.new('127.0.0.1',
|
|
60
|
+
s = TCPSocket.new('127.0.0.1', 8001)
|
|
61
61
|
s.close
|
|
62
62
|
break
|
|
63
63
|
rescue Errno::ECONNREFUSED
|
|
@@ -113,15 +113,13 @@ module PWN
|
|
|
113
113
|
owasp_zap_cmd = "cd #{zap_dir} && ./#{zap_bin}"
|
|
114
114
|
end
|
|
115
115
|
|
|
116
|
-
|
|
117
|
-
|
|
118
|
-
|
|
119
|
-
|
|
120
|
-
|
|
121
|
-
|
|
122
|
-
|
|
123
|
-
proxy_uri = URI.parse(proxy)
|
|
124
|
-
end
|
|
116
|
+
random_port = PWN::Plugins::Sock.get_random_unused_port
|
|
117
|
+
|
|
118
|
+
proxy = "http://127.0.0.1:#{random_port}"
|
|
119
|
+
proxy = opts[:proxy].to_s.scrub.strip.chomp if opts[:proxy]
|
|
120
|
+
|
|
121
|
+
proxy_uri = URI.parse(proxy)
|
|
122
|
+
owasp_zap_cmd = "#{owasp_zap_cmd} -host #{proxy_uri.host} -port #{proxy_uri.port}"
|
|
125
123
|
zap_obj[:host] = proxy_uri.host.to_s.scrub
|
|
126
124
|
zap_obj[:port] = proxy_uri.port.to_i
|
|
127
125
|
|
data/lib/pwn/version.rb
CHANGED