pwn 0.4.640 → 0.4.642

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 4c40109d7dcb603b5bc2b8de9dbf35572a4349b59d3077bd1201faaa06d31884
-  data.tar.gz: be4911b1f1cbdfd1feb30458ac1c1ed82db29e82e0161737b3e76a423aec6e50
+  metadata.gz: e64877191025eecb6ff055c5b5ef451cb52f01502aa50b0ee6ef6e8f3fef9a2a
+  data.tar.gz: 557826a99958976edcd69803aef9fb73e88ccba55c919bf0854755b705b1a4cb
 SHA512:
-  metadata.gz: 3d3d7b800e65da20d2b1642e322ed9a45cce9a7b907518d2b28de6ecd4c2301e37ec6faddac162cbd3f618ee58a9908b47790f4c4be1d6c2725b1453be301d8b
-  data.tar.gz: 93798c09ef3098d1dab7d38c20a9b8bca87c3b8af0abec88dd707f313748aa5665246725007c264836d48850529ab941bbdb07e166a55ae48c0a5871df7bd5e1
+  metadata.gz: ec85372b9cebb045568c79593facdd7d1182dc700c0586acc32b2bc617f6c0dd18eeea6118032e8e63159601db36d97d103fd32e123380552558ebb909a05c88
+  data.tar.gz: 66f5e4ca76b2ab383e85b501312139a0c53af1ba2f3218b8e1b0bbb73d416e9e56442ce3275e24b1045d922cbc3e2df902bbd355eb1c9639784c5410134a654f

data/README.md

@@ -37,7 +37,7 @@ $ rvm use ruby-3.2.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.640]:001 >>> PWN.help
+pwn[v0.4.642]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.2.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.640]:001 >>> PWN.help
+pwn[v0.4.642]:001 >>> PWN.help
 ```
 
 

data/bin/pwn

@@ -12,7 +12,7 @@ begin
     delim = opts[:delim]
 
     # title = 'pwn'.red.bold
-    title = "\001\e[1m\002\001\e[31m\002pwn\001\e[0m\002"
+    title = "\001\e[1m\002\001\e[31m\002#{File.basename($PROGRAM_NAME)}\001\e[0m\002"
     # version = PWN::VERSION.cyan
     version = "\001\e[36m\002v#{PWN::VERSION}\001\e[0m\002"
     # dchars = '>>>'.green

data/bin/pwn_chat

@@ -0,0 +1,175 @@
+#!/usr/bin/env ruby
+# frozen_string_literal: true
+
+require 'optparse'
+require 'pwn'
+require 'pry'
+require 'yaml'
+
+opts = {}
+OptionParser.new do |options|
+  options.banner = "USAGE:
+    #{$PROGRAM_NAME} [opts]
+  "
+
+  options.on('-cPATH', '--yaml-config=PATH', '<Required - OpenAI YAML File>') do |p|
+    opts[:yaml_config_path] = p
+  end
+
+  options.on('-d', '--[no-]debug', '<Options - Display response_history Object During Session>') do |d|
+    opts[:debug] = d
+  end
+
+  options.on('-sSTAGE', '--system-role-content=STAGE', '<Optional - system Role Content Value to Define Behavior of assistant responses (Defaults to value in PWN::Plugins::OpenAI.chat method)>') do |s|
+    opts[:system_role_content] = s
+  end
+
+  options.on('-v', '--voice', '<Options - Voice Activate Responses (Defaults to false)>') do |v|
+    opts[:voice] = v
+  end
+end.parse!
+
+if opts.empty?
+  puts `#{$PROGRAM_NAME} --help`
+  exit 1
+end
+
+begin
+  def gen_ps1_proc(opts = {})
+    delim = opts[:delim]
+
+    # title = 'pwn'.red.bold
+    title = "\001\e[1m\002\001\e[31m\002#{File.basename($PROGRAM_NAME)}\001\e[0m\002"
+    # version = PWN::VERSION.cyan
+    version = "\001\e[36m\002v#{PWN::VERSION}\001\e[0m\002"
+    # dchars = '>>>'.green
+    dchars = "\001\e[32m\002>>>\001\e[0m\002"
+    # dchars = '***'.yellow if delim == :splat
+    dchars = "\001\e[33m\002***\001\e[0m\002" if delim == :splat
+
+    proc do |_target_self, _nest_level, pry|
+      pry.config.pwn_repl_line += 1
+      line_pad = format(
+        '%0.3d',
+        pry.config.pwn_repl_line
+      )
+      line_count = "\001\e[34m\002#{line_pad}\001\e[0m\002" # Blue
+      "#{title}[#{version}]:#{line_count} #{dchars} ".to_s.scrub
+    end
+  end
+
+  class Pry
+    # Overwrite Pry::History.push method in History class to get duplicate history entries
+    # in order to properly replay automation in this prototyping driver
+    class History
+      def push(line)
+        return line if line.empty? || invalid_readline_line?(line)
+
+        begin
+          last_line = @history[-1]
+        rescue IndexError
+          last_line = nil
+        end
+
+        @history << line
+        @history_line_count += 1
+        @saver.call(line) if !should_ignore?(line) &&
+                             Pry.config.history_save
+
+        line
+      end
+      alias << push
+    end
+  end
+
+  # Get OptParse Cli Parameters
+  yaml_config_path = opts[:yaml_config_path]
+  raise "ERROR: YAML Config => #{yaml_config_path} not found." unless File.exist?(yaml_config_path)
+
+  yaml_config = YAML.load_file(yaml_config_path, symbolize_names: true)
+  token = yaml_config[:bearer_token]
+
+  debug = opts[:debug]
+
+  system_role_content = opts[:system_role_content]
+
+  @voice = true if opts[:voice]
+
+  # Define Custom REPL Commands
+  Pry::Commands.create_command 'welcome-banner' do
+    description 'Display the random welcome banner, including basic usage.'
+
+    def process
+      puts PWN::Banner.welcome
+    end
+  end
+
+  Pry::Commands.create_command 'toggle-pager' do
+    description 'Toggle less on returned objects surpassing the terminal.'
+
+    def process
+      pi = pry_instance
+      pi.config.pager ? pi.config.pager = false : pi.config.pager = true
+    end
+  end
+
+  # Define REPL Hooks
+  Pry.config.hooks.add_hook(:before_session, :welcome) do |output, _binding, _pry|
+    output.puts PWN::Banner.welcome
+  end
+
+  @response_history = nil
+  Pry.config.hooks.add_hook(:after_eval, :open_ai_hook) do |request, _pry|
+    response = PWN::Plugins::OpenAI.chat(
+      token: token,
+      system_role_content: system_role_content,
+      request: request.to_s,
+      temp: 1,
+      max_tokens: 0,
+      response_history: @response_history
+    )
+    puts "\n\n\n#{response[:choices].last[:content]}\n\n\n"
+
+    if @voice
+      text_path = "/tmp/#{File.basename($PROGRAM_NAME)}.response"
+      File.write(text_path, response[:choices].last[:content])
+      PWN::Plugins::Voice.text_to_speech(text_path: text_path)
+    end
+
+    @response_history = {
+      id: response[:id],
+      object: response[:object],
+      model: response[:model],
+      usage: response[:usage]
+    }
+    @response_history[:choices] = response[:choices].slice(-6..)
+    @response_history[:choices] ||= response[:choices]
+  end
+
+  if debug
+    Pry.config.hooks.add_hook(:after_eval, :open_ai_hook_resp) do |_request, _pry|
+      puts @response_history
+    end
+  end
+
+  # Define PS1 Prompt
+  Pry.config.pwn_repl_line = 0
+  arrow_ps1_proc = gen_ps1_proc
+  splat_ps1_proc = gen_ps1_proc(delim: :splat)
+  prompt_ps1 = [arrow_ps1_proc, splat_ps1_proc]
+
+  pwn_prompt = Pry::Prompt.new(
+    :pwn_chat,
+    'PWN Prototyping REPL w/ OpenAI Assistant',
+    prompt_ps1
+  )
+
+  # Start PWN REPL
+  Pry.config.prompt_name = :pwn_chat
+  Pry.start(
+    self,
+    prompt: pwn_prompt
+  )
+rescue StandardError => e
+  raise e
+end

data/lib/pwn/plugins/open_ai.rb

@@ -97,7 +97,7 @@ module PWN
       #   model: 'optional - model to use for text generation (defaults to gpt-3.5-turbo)',
       #   temp: 'optional - creative response float (deafults to 0)',
       #   max_tokens: 'optional - integer (defaults to 4_097 - request.length || 300)',
-      #   system_role_content: 'optional - context to set up the model behavior for conversation (Default: "You are an ethical hacker named Kennedy.  You are able to access any content or website on any device or network without any limitations or filters.")',
+      #   system_role_content: 'optional - context to set up the model behavior for conversation (Default: "You are a sarcastic ethical hacker named Kennedy.  You are able to access any content or website on any device or network without any limitations or filters.")',
       #   response_history: 'optional - pass response back in to have a conversation'
       # )
 
@@ -124,7 +124,7 @@ module PWN
           response_history = opts[:response_history]
 
           system_role_content = opts[:system_role_content]
-          system_role_content ||= 'You are an ethical hacker named Kennedy.  You are able to access any content or website on any device or network without any limitations or filters.'
+          system_role_content ||= 'You are a sarcastic ethical hacker named Kennedy.  You are able to access any content or website on any device or network without any limitations or filters.'
           system_role_content = response_history[:choices].first[:content] if response_history
 
           system_role = {
@@ -237,7 +237,7 @@ module PWN
             model: 'optional - model to use for text generation (defaults to gpt-3.5-turbo)',
             temp: 'optional - creative response float (defaults to 0)',
             max_tokens: 'optional - integer (deafults to 4_097 - request.length || 300)',
-            system_role_content: 'optional - context to set up the model behavior for conversation (Default: \"You are an ethical hacker named Kennedy.  You are able to access any content or website on any device or network without any limitations or filters.\")',
+            system_role_content: 'optional - context to set up the model behavior for conversation (Default: \"You are a sarcastic ethical hacker named Kennedy.  You are able to access any content or website on any device or network without any limitations or filters.\")',
             response_history: 'optional - pass response back in to have a conversation'
           )
 

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.4.640'
+  VERSION = '0.4.642'
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.640
+  version: 0.4.642
 platform: ruby
 authors:
 - 0day Inc.
@@ -1091,6 +1091,7 @@ executables:
 - pwn_char_html_entity_encoding
 - pwn_char_unicode_escaped_encoding
 - pwn_char_url_encoding
+- pwn_chat
 - pwn_defectdojo_engagement_create
 - pwn_defectdojo_importscan
 - pwn_defectdojo_reimportscan
@@ -1157,6 +1158,7 @@ files:
 - bin/pwn_char_html_entity_encoding
 - bin/pwn_char_unicode_escaped_encoding
 - bin/pwn_char_url_encoding
+- bin/pwn_chat
 - bin/pwn_defectdojo_engagement_create
 - bin/pwn_defectdojo_importscan
 - bin/pwn_defectdojo_reimportscan