pwn 0.4.661 → 0.4.663

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: bd98af58e97c52c8924292ab003cfa70bb8ae714506e962a278f233702cce8b4
-  data.tar.gz: ecca1f74b783a92ed4b8f31b23d088f2dddeb851cc37a95b63fba2a972f29313
+  metadata.gz: 9fc057160008602306c98afd5dd5eb649b8d702b304ed885bdf2d7edb4df38be
+  data.tar.gz: dd6ddbea17943b85f834de5677ba316f4d4c36973237ede1c2951d2fdd4b3c3a
 SHA512:
-  metadata.gz: 8b3e154756cc071989a9aacee9cb0292bc42e48f58b3a0e085a0e27013336fdf2dab4f815a7e679920dc8c9c02992098d332553ab3e9001131880ea872dfd858
-  data.tar.gz: e5096825172efab4cf82f8389e118b96a0fba392649e37072b0a4cda4c123143a58ed4209662496b054d88a3d90b8536156c0b7c931450f8e973946ef5375080
+  metadata.gz: ef27e033d6dfa1acb58a98c57b49fc79a9d53d7666b79bcf91e6de7ef5359bd748ede77f48e7e0e49eadb8afd946402546bbcc605e702b25b0edbe4a4276003d
+  data.tar.gz: 6e293cc91415495a397ebbbfdd0c73444328cb74a017ac4dac43de8e1cfa811c5cda934b0b49179bad979406c9d9d19a929e19c92130c27995e96cf7140ec30f

data/README.md

@@ -37,7 +37,7 @@ $ rvm use ruby-3.2.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.661]:001 >>> PWN.help
+pwn[v0.4.663]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.2.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.661]:001 >>> PWN.help
+pwn[v0.4.663]:001 >>> PWN.help
 ```
 
 

data/bin/pwn_nessus_cloud_vulnscan

@@ -77,7 +77,8 @@ begin
     )
 
     scan_status = scan_status_resp[:status]
-    break if scan_status != 'initializing' && scan_status != 'pending' && scan_status != 'running'
+    break if scan_status != 'initializing' && scan_status != 'pending' && scan_status != 'running' && scan_status != 'publishing'
+    # break if scan_status == 'completed'
   end
 
   raise "Scan status reached an unexpected condition: #{scan_status}.  Re-verify the scan config for, '#{scan_name}' and try again." unless scan_status == 'completed'

data/lib/pwn/plugins/ansible_vault.rb

@@ -6,8 +6,6 @@ module PWN
     # Used to encrypt/decrypt configuration files leveraging AES256
     # (ansible-vault utility wrapper)
     module AnsibleVault
-      @@logger = PWN::Plugins::PWNLogger.create
-
       # Supported Method Parameters::
       # PWN::Plugins::AnsibleVault.encrypt(
       #   yaml_config: 'required - yaml config to encrypt',

data/lib/pwn/plugins/baresip.rb

@@ -6,7 +6,6 @@ module PWN
   module Plugins
     # This plugin is used for interacting w/ baresip over a screen session.
     module BareSIP
-      @@logger = PWN::Plugins::PWNLogger.create
       @session_data = []
       # Supported Method Parameters::
       # baresip_http_call(

data/lib/pwn/plugins/burp_suite.rb

@@ -14,8 +14,6 @@ module PWN
       #   browser_type: 'optional - defaults to :firefox. See PWN::Plugins::TransparentBrowser.help for a list of types',
       # )
 
-      @@logger = PWN::Plugins::PWNLogger.create
-
       public_class_method def self.start(opts = {})
         burp_jar_path = opts[:burp_jar_path]
         raise 'Invalid path to burp jar file.  Please check your spelling and try again.' unless File.exist?(burp_jar_path)

data/lib/pwn/plugins/char.rb

@@ -7,8 +7,6 @@ module PWN
   module Plugins
     # This plugin was created to generate various characters for fuzzing
     module Char
-      @@logger = PWN::Plugins::PWNLogger.create
-
       # Supported Method Parameters::
       # PWN::Plugins::Char.generate_by_range(
       #   from: 'required - integer to start from',

data/lib/pwn/plugins/fuzz.rb

@@ -8,8 +8,6 @@ module PWN
   module Plugins
     # This plugin was created to support fuzzing various networking protocols
     module Fuzz
-      @@logger = PWN::Plugins::PWNLogger.create
-
       # Supported Method Parameters::
       # socket_fuzz_results_arr = PWN::Plugins::Fuzz.socket(
       #   target: 'required - target host or ip',

data/lib/pwn/plugins/log.rb

@@ -0,0 +1,123 @@
+# frozen_string_literal: true
+
+require 'json'
+require 'logger'
+require 'securerandom'
+
+module PWN
+  module Plugins
+    # This plugin is used to instantiate a PWN logger with a custom message format
+    module Log
+      # Supported Method Parameters::
+      # PWN::Log.create(
+      # )
+      public_class_method def self.append(opts = {})
+        level = opts[:level].to_s.downcase.to_sym
+        msg = opts[:msg]
+        which_self = opts[:which_self].to_s
+
+        driver_name = File.basename($PROGRAM_NAME)
+
+        # Only attempt to exit gracefully if level == :error
+        exit_gracefully = false
+
+        # Define Date / Time Format
+        datetime_str = '%Y-%m-%d %H:%M:%S.%N%z'
+
+        # Always append to log file
+        if level == :learning
+          session = SecureRandom.hex
+          log_file_path = "/tmp/pwn-ai-#{session}.json" if level == :learning
+          log_file = File.open(log_file_path, 'w')
+        else
+          log_file_path = '/tmp/pwn.log'
+          log_file = File.open(log_file_path, 'a')
+        end
+
+        # Leave 10 "old" log files where
+        # each file is ~ 1,024,000 bytes
+        logger = Logger.new(
+          log_file,
+          10,
+          1_024_000
+        )
+        logger.datetime_format = datetime_str
+
+        case level
+        when :debug
+          logger.level = Logger::DEBUG
+        when :error
+          logger.level = Logger::ERROR
+          exit_gracefully = true unless driver_name == 'pwn'
+          puts "\nERROR: See #{log_file_path} for more details." if driver_name == 'pwn'
+        when :fatal
+          logger.level = Logger::FATAL
+          if driver_name == 'pwn'
+            puts "\n FATAL ERROR: See #{log_file_path} for more details."
+          end
+        when :info, :learning
+          logger.level = Logger::INFO
+        when :unknown
+          logger.level = Logger::UNKNOWN
+        when :warn
+          logger.level = Logger::WARN
+        else
+          level_error = "ERROR: Invalid log level. Valid options are:\n"
+          level_error += ":debug\n:error\n:fatal\n:info\n:learning\n:unknown\n:warn\n"
+          raise level_error
+        end
+
+        if level == :learning
+          log_event = msg
+          logger.formatter = proc do |_severity, _datetime, _progname, learning_arr|
+            JSON.pretty_generate(
+              learning_data: learning_arr
+            )
+          end
+        else
+          log_event = "driver: #{driver_name}"
+
+          if msg.instance_of?(Interrupt)
+            logger.level = Logger::WARN
+            if driver_name == 'pwn'
+              log_event += ' => CTRL+C Detected.'
+            else
+              log_event += ' => CTRL+C Detected...Exiting Session.'
+              exit_gracefully = true unless driver_name == 'pwn'
+            end
+          else
+            log_event += " => #{msg}"
+            if msg.respond_to?('backtrace') && !msg.instance_of?(Errno::ECONNRESET)
+              log_event += " => \n\t#{msg.backtrace.join("\n\t")}"
+              log_event += "\n\n\n"
+            end
+          end
+        end
+
+        logger.add(logger.level, log_event, which_self)
+      rescue Interrupt, StandardError => e
+        raise e
+      end
+
+      # Author(s):: 0day Inc. <request.pentest@0dayinc.com>
+
+      public_class_method def self.authors
+        "AUTHOR(S):
+          0day Inc. <request.pentest@0dayinc.com>
+        "
+      end
+
+    # Display Usage for this Module
+
+      public_class_method def self.help
+        puts "USAGE:
+          logger = #{self}.append(
+            level: 'required - log verbosity :debug|:error|:fatal|:info|:learning|:unknown|:warn',
+            msg: 'required - message to log',
+            which_self: 'required - pass in self object from module calling #{self}'
+          )
+        "
+      end
+    end
+  end
+end

data/lib/pwn/plugins/open_ai.rb

@@ -11,8 +11,6 @@ module PWN
     # This is based on the following OpenAI API Specification:
     # https://api.openai.com/v1
     module OpenAI
-      @@logger = PWN::Plugins::PWNLogger.create
-
       # Supported Method Parameters::
       # open_ai_rest_call(
       #   token: 'required - open_ai bearer token',

data/lib/pwn/plugins/pony.rb

@@ -10,7 +10,6 @@ module PWN
     # This module's purpose is to exist until the necessary
     # functionality can be integrated into PWN::Plugins::MailAgent
     module Pony
-      @@logger = PWN::Plugins::PWNLogger.create
       @@options = {}
       @@override_options = {}
       @@subject_prefix = false

data/lib/pwn/plugins/spider.rb

@@ -13,8 +13,6 @@ module PWN
       #   proxy: 'optional - proxy to spider through e.g. http://127.0.0.1:8080'
       # )
 
-      @@logger = PWN::Plugins::PWNLogger.create
-
       public_class_method def self.crawl(opts = {})
         # TODO: Add AuthN Support
         # FYI: Anemone very well may have a memory leak.

data/lib/pwn/plugins.rb

@@ -33,6 +33,7 @@ module PWN
     autoload :Jenkins, 'pwn/plugins/jenkins'
     autoload :JiraServer, 'pwn/plugins/jira_server'
     autoload :JSONPathify, 'pwn/plugins/json_pathify'
+    autoload :Log, 'pwn/plugins/log'
     autoload :MailAgent, 'pwn/plugins/mail_agent'
     autoload :Metasploit, 'pwn/plugins/metasploit'
     autoload :MSR206, 'pwn/plugins/msr206'

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.4.661'
+  VERSION = '0.4.663'
 end

data/spec/lib/pwn/plugins/log_spec.rb

@@ -0,0 +1,15 @@
+# frozen_string_literal: true
+
+require 'spec_helper'
+
+describe PWN::Plugins::Log do
+  it 'should display information for authors' do
+    authors_response = PWN::Plugins::Log
+    expect(authors_response).to respond_to :authors
+  end
+
+  it 'should display information for existing help method' do
+    help_response = PWN::Plugins::Log
+    expect(help_response).to respond_to :help
+  end
+end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.661
+  version: 0.4.663
 platform: ruby
 authors:
 - 0day Inc.
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-04-28 00:00:00.000000000 Z
+date: 2023-05-01 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -1657,6 +1657,7 @@ files:
 - lib/pwn/plugins/jenkins.rb
 - lib/pwn/plugins/jira_server.rb
 - lib/pwn/plugins/json_pathify.rb
+- lib/pwn/plugins/log.rb
 - lib/pwn/plugins/mail_agent.rb
 - lib/pwn/plugins/metasploit.rb
 - lib/pwn/plugins/msr206.rb
@@ -1964,6 +1965,7 @@ files:
 - spec/lib/pwn/plugins/jenkins_spec.rb
 - spec/lib/pwn/plugins/jira_server_spec.rb
 - spec/lib/pwn/plugins/json_pathify_spec.rb
+- spec/lib/pwn/plugins/log_spec.rb
 - spec/lib/pwn/plugins/mail_agent_spec.rb
 - spec/lib/pwn/plugins/metasploit_spec.rb
 - spec/lib/pwn/plugins/msr206_spec.rb