pwn 0.4.781 → 0.4.783

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 121672a13a6ed2a9612bdff41f5a6d3a9b2738c0d0786f6280b9b7b9b4da8cc3
-  data.tar.gz: c32e53c870610a547ebd1e24a2eaf741a71aeadf5f3368cf007a4b1abdb2d23b
+  metadata.gz: a0d1bb24dba9a8d5d163801e5797c02ea474d9be13dff0bbce7cf1eabfed62e0
+  data.tar.gz: d390d9ae67b2c5c6c3244896bc1725e6ea81c5468f388acd41b48592d07c529b
 SHA512:
-  metadata.gz: ee8d7b6ecda36fe032d27b1f4dff3925046a35cb37dae7eb5657875c69251113f7432542ec5f5301f0fea98c26629f2b285eedacf6c108734753af583f3b57d5
-  data.tar.gz: 2460e3f9557132f856d3be6c6578b2ddffaad22e9145f786cfbe5520c1000a3744290db3524859bc2509dabd8f5205e5f6a546286c338ea5f806b604199a82a4
+  metadata.gz: 47f60ff5a5635bea99bf3409c221d4e52b26f17f13d792da36a9bd87cbf3fb8fad3ec181aa48da9f5ddb4d1f952ffcd67d6241432cec86b51795dc7f399ed78c
+  data.tar.gz: 3d9d8355bd6511753ded5e39cce81e467514a4cfc5e64d436bdddee2e334ca7c024812fd492f93622a2c0ed529c9b34ccece0a58795a77466e0701cf9abd211b

data/.rubocop_todo.yml

@@ -1,6 +1,6 @@
 # This configuration was generated by
 # `rubocop --auto-gen-config`
-# on 2023-04-21 21:47:04 UTC using RuboCop version 1.50.2.
+# on 2023-07-06 20:02:51 UTC using RuboCop version 1.53.1.
 # The point is for the user to remove these configuration records
 # one by one as the offenses are removed from the code base.
 # Note that changes in the inspected code, or installation of new
@@ -17,15 +17,16 @@ Layout/LineContinuationSpacing:
     - 'packer/provisioners/wpscan.rb'
     - 'vagrant/provisioners/beef.rb'
 
-# Offense count: 269
+# Offense count: 282
+# This cop supports unsafe autocorrection (--autocorrect-all).
 Lint/UselessAssignment:
   Enabled: false
 
-# Offense count: 628
+# Offense count: 669
 Lint/UselessRescue:
   Enabled: false
 
-# Offense count: 273
+# Offense count: 283
 # Configuration parameters: AllowedMethods, AllowedPatterns, CountRepeatedAttributes.
 Metrics/AbcSize:
   Max: 328
@@ -36,7 +37,7 @@ Metrics/AbcSize:
 Metrics/BlockLength:
   Max: 196
 
-# Offense count: 47
+# Offense count: 49
 # Configuration parameters: CountBlocks.
 Metrics/BlockNesting:
   Max: 5
@@ -47,31 +48,31 @@ Metrics/CollectionLiteralLength:
   Exclude:
     - 'lib/pwn/plugins/uri_scheme.rb'
 
-# Offense count: 100
+# Offense count: 108
 # Configuration parameters: AllowedMethods, AllowedPatterns.
 Metrics/CyclomaticComplexity:
   Max: 231
 
-# Offense count: 496
+# Offense count: 518
 # Configuration parameters: CountComments, CountAsOne, AllowedMethods, AllowedPatterns.
 Metrics/MethodLength:
   Max: 466
 
-# Offense count: 49
+# Offense count: 52
 # Configuration parameters: CountComments, CountAsOne.
 Metrics/ModuleLength:
-  Max: 1186
+  Max: 1187
 
-# Offense count: 93
+# Offense count: 101
 # Configuration parameters: AllowedMethods, AllowedPatterns.
 Metrics/PerceivedComplexity:
   Max: 51
 
-# Offense count: 165
+# Offense count: 158
 Style/ClassVars:
   Enabled: false
 
-# Offense count: 289
+# Offense count: 287
 # This cop supports safe autocorrection (--autocorrect).
 # Configuration parameters: EnforcedStyle, SingleLineConditionsOnly, IncludeTernaryExpressions.
 # SupportedStyles: assign_to_condition, assign_inside_condition
@@ -129,7 +130,7 @@ Style/StringLiterals:
   Exclude:
     - 'bin/pwn'
 
-# Offense count: 585
+# Offense count: 601
 # This cop supports safe autocorrection (--autocorrect).
 # Configuration parameters: AllowHeredoc, AllowURI, URISchemes, IgnoreCopDirectives, AllowedPatterns.
 # URISchemes: http, https

data/Gemfile

@@ -48,7 +48,7 @@ gem 'net-ldap', '0.18.0'
 gem 'net-openvpn', '0.8.7'
 gem 'net-smtp', '0.3.3'
 gem 'nexpose', '7.3.0'
-gem 'nokogiri', '1.15.2'
+gem 'nokogiri', '1.15.3'
 gem 'nokogiri-diff', '0.2.0'
 gem 'oily_png', '1.2.1'
 gem 'open3', '0.1.2'
@@ -67,7 +67,7 @@ gem 'rex', '2.0.13'
 gem 'rmagick', '5.2.0'
 gem 'rspec', '3.12.0'
 gem 'rtesseract', '3.1.2'
-gem 'rubocop', '1.53.1'
+gem 'rubocop', '1.54.1'
 gem 'rubocop-rake', '0.6.0'
 gem 'rubocop-rspec', '2.22.0'
 gem 'ruby-audio', '1.6.1'

data/README.md

@@ -37,7 +37,7 @@ $ rvm use ruby-3.2.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.781]:001 >>> PWN.help
+pwn[v0.4.783]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.2.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.781]:001 >>> PWN.help
+pwn[v0.4.783]:001 >>> PWN.help
 ```
 
 

data/bin/pwn_jenkins_install_plugin

@@ -28,7 +28,7 @@ OptionParser.new do |options|
     opts[:plugins] = plugins
   end
 
-  options.on('-L', '--[no-]list-available', '<Optional - List Available Jenkins Plugins for Installation>') do |list_available_bool|
+  options.on('-L', '--list-available', '<Optional - List Available Jenkins Plugins for Installation>') do |list_available_bool|
     opts[:list_available_bool] = list_available_bool
   end
 
@@ -42,54 +42,52 @@ if opts.empty?
   exit 1
 end
 
-ip = opts[:ip].to_s.scrub
-port = opts[:port].to_i
-username = opts[:username]
-api_key = opts[:api_key]
-plugins = opts[:plugins].to_s.scrub
-list_available_bool = if opts[:list_available_bool]
-                        true
-                      else
-                        false
-                      end
+begin
+  ip = opts[:ip].to_s.scrub
+  port = opts[:port].to_i
+  username = opts[:username]
+  api_key = opts[:api_key]
+  plugins = opts[:plugins].to_s.scrub
+  list_available_bool = true if opts[:list_available_bool] ||= false
+  restart_jenkins = true if opts[:restart_jenkins] ||= false
+
+  if port.positive?
+    jenkins_obj = PWN::Plugins::Jenkins.connect(
+      ip: ip,
+      port: port,
+      username: username,
+      api_key: api_key
+    )
+  else
+    jenkins_obj = PWN::Plugins::Jenkins.connect(
+      ip: ip,
+      username: username,
+      api_key: api_key
+    )
+  end
 
-restart_jenkins = true if opts[:restart_jenkins] ||= false
-if restart_jenkins
-  puts 'Restarting Jenkins...'
-  jenkins_obj.system.restart
-  exit 0
-end
+  if restart_jenkins
+    puts 'Restarting Jenkins...'
+    jenkins_obj.system.restart
+    exit 0
+  end
 
-if port.positive?
-  jenkins_obj = PWN::Plugins::Jenkins.connect(
-    ip: ip,
-    port: port,
-    username: username,
-    api_key: api_key
-  )
-else
-  jenkins_obj = PWN::Plugins::Jenkins.connect(
-    ip: ip,
-    username: username,
-    api_key: api_key
-  )
-end
+  if list_available_bool
+    puts jenkins_obj.plugin.list_available
+  else
+    plugin_arr = []
+    plugins.split(',').each do |p|
+      plugin_arr.push(p.strip.chomp)
+    end
 
-if list_available_bool
-  puts jenkins_obj.plugin.list_available
-else
-  plugin_arr = []
-  plugins.split(',').each do |p|
-    plugin_arr.push(p.strip.chomp)
+    jenkins_obj.plugin.install(plugin_arr)
   end
-
-  # In Reference to https://github.com/arangamani/jenkins_api_client/issues/287
-  # Bug in RubyGem jenkins_api_client 1.5.3 when interacting w/ Jenkins > 2.190
-  # i.e.
-  # Crumbs turned on...
-  # JenkinsApi::Exceptions::Forbidden: Access Denied...
-  # Crumb expired...
-  jenkins_obj.plugin.install(plugin_arr)
+rescue Interrupt
+  puts "\nGoodbye."
+rescue JenkinsApi::Exceptions::ServiceUnavailable
+  puts 'Jenkins Server Unavailable.' unless restart_jenkins
+rescue StandardError => e
+  raise e
+ensure
+  PWN::Plugins::Jenkins.disconnect(jenkins_obj: jenkins_obj) unless restart_jenkins
 end
-
-PWN::Plugins::Jenkins.disconnect(jenkins_obj: jenkins_obj)

data/lib/pwn/plugins/android.rb

@@ -175,7 +175,8 @@ module PWN
                   end
 
         `#{adb_path} root` if as_root
-        app_resp = `#{adb_path} shell pm list packages`
+        app_resp = `#{adb_path} shell pm list packages` if as_root
+        app_resp = `#{adb_path} shell pm list packages --user 0` unless as_root
         app_resp.gsub("\npackage:", "\n").split("\n")
       rescue StandardError => e
         raise e

data/lib/pwn/plugins/jenkins.rb

@@ -23,20 +23,12 @@ module PWN
 
       public_class_method def self.connect(opts = {})
         ip = opts[:ip]
-        port = if opts[:port]
-                 opts[:port].to_i
-               else
-                 8080
-               end
+        port = opts[:port].to_i ||= 8888
         username = opts[:username].to_s.scrub
         base_jenkins_api_uri = "https://#{ip}/ase/services".to_s.scrub
         api_key = opts[:api_key].to_s.scrub
         identity_file = opts[:identity_file].to_s.scrub
-        ssl_bool = if opts[:ssl] == true
-                     opts[:ssl]
-                   else
-                     false
-                   end
+        ssl_bool = true if opts[:ssl] ||= false
 
         if opts[:proxy]
           proxy = URI(opts[:proxy])

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.4.781'
+  VERSION = '0.4.783'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.781
+  version: 0.4.783
 platform: ruby
 authors:
 - 0day Inc.
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-06-30 00:00:00.000000000 Z
+date: 2023-07-06 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -520,14 +520,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.15.2
+        version: 1.15.3
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.15.2
+        version: 1.15.3
 - !ruby/object:Gem::Dependency
   name: nokogiri-diff
   requirement: !ruby/object:Gem::Requirement
@@ -786,14 +786,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.53.1
+        version: 1.54.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.53.1
+        version: 1.54.1
 - !ruby/object:Gem::Dependency
   name: rubocop-rake
   requirement: !ruby/object:Gem::Requirement