pwn 0.4.830 → 0.4.831

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 1f8fe3b903e8f8cdcb3bd315ba1c9f8a2a3864e1186c8606f22092278e40f03d
-  data.tar.gz: cdb2e98c75a3e13daa0dcbf48fcd1c45653f7837015163581af9fd081e3dbf23
+  metadata.gz: 006b32a48b59e5990975a5f161e91c63749c3f63fc1a825c8ce67cf647a9c3e5
+  data.tar.gz: d27b7a2ddcd2102ebb6273bc284352cb67b9327dead053c9cb82584a693b73a4
 SHA512:
-  metadata.gz: 159987de9835f9cb5e49d000cbcaab1bb377d4cf49f527ff3a0b5632081011496d206c076f7fc5ce0ca4227a0d121aafd5d37cfdec61f7611475ba7187ff937d
-  data.tar.gz: a97eafa3d0aea791e3f30b361c53c5a4edb5b1bd2593680a8298b43e3d0af666b6a4eb77d38432f9cc3ede31a452497a3bee6cb8370992dfe1d51434e5fa29d1
+  metadata.gz: 1643fe23f6480e7eca3b87b780586676c15a0ea5202d82bc58ec314b8ed7e971d67ad0e9d4c18e972173a29fe2ebc23688bae4eecae93cf21d9bbb53014cab6b
+  data.tar.gz: 173647df72e9ccbe41b7bab18da2596caa3ec6e3b49daec6b1db4989fb95262d7ebc7ef78759676491288cbb80e98e652d08b18addb0dec4fc648a69200ea6b1

data/Gemfile

@@ -19,7 +19,7 @@ gem 'aws-sdk', '3.1.0'
 gem 'barby', '0.6.8'
 gem 'brakeman', '6.0.1'
 gem 'bson', '4.15.0'
-gem 'bundler', '>=2.4.18'
+gem 'bundler', '>=2.4.19'
 gem 'bundler-audit', '0.9.1'
 gem 'bunny', '2.22.0'
 gem 'colorize', '1.1.0'
@@ -69,7 +69,7 @@ gem 'rmagick', '5.3.0'
 gem 'rqrcode', '2.2.0'
 gem 'rspec', '3.12.0'
 gem 'rtesseract', '3.1.2'
-gem 'rubocop', '1.56.0'
+gem 'rubocop', '1.56.1'
 gem 'rubocop-rake', '0.6.0'
 gem 'rubocop-rspec', '2.23.2'
 gem 'ruby-audio', '1.6.1'

data/README.md

@@ -37,7 +37,7 @@ $ rvm use ruby-3.2.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.830]:001 >>> PWN.help
+pwn[v0.4.831]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.2.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.830]:001 >>> PWN.help
+pwn[v0.4.831]:001 >>> PWN.help
 ```
 
 

data/lib/pwn/plugins/shodan.rb

@@ -1,6 +1,7 @@
 # frozen_string_literal: true
 
 require 'json'
+require 'uri'
 
 module PWN
   module Plugins
@@ -11,6 +12,29 @@ module PWN
     module Shodan
       @@logger = PWN::Plugins::PWNLogger.create
 
+      # Supported Method Parameters::
+      # extract_and_validate_uris((
+      #   search_results_hash: 'required - iteration of search results'
+      # )
+
+      private_class_method def self.extract_and_validate_uris(opts = {})
+        search_result_hash = opts[:search_result_hash]
+        uri_arr = []
+        search_result_hash.each_value do |search_result_value|
+          URI.extract(search_result_value.to_s).each do |uri|
+            uri_arr.push(uri) if %w[http https].include?(URI.parse(uri).scheme)
+          end
+        end
+        uri_arr
+      rescue URI::BadURIError,
+             URI::InvalidURIError,
+             URI::InvalidComponentError
+
+        next
+      rescue StandardError => e
+        raise e
+      end
+
       # Supported Method Parameters::
       # shodan_rest_call(
       #   api_key: 'required - shodan api key',
@@ -472,6 +496,23 @@ module PWN
         raise e
       end
 
+      # Supported Method Parameters::
+      # uri_arr = PWN::Plugins::Shodan.get_uris(
+      #   search_results: 'required - search_results object returned from #search method'
+      # )
+
+      public_class_method def self.get_uris(opts = {})
+        search_results = opts[:search_results]
+
+        search_results[:matches].map do |search_resuls_hash|
+          extract_and_validate_uris(
+            search_results_hash: search_results_hash
+          )
+        end.flatten
+      rescue StandardError => e
+        raise e
+      end
+
       # Author(s):: 0day Inc. <request.pentest@0dayinc.com>
 
       public_class_method def self.authors

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.4.830'
+  VERSION = '0.4.831'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.830
+  version: 0.4.831
 platform: ruby
 authors:
 - 0day Inc.
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-08-17 00:00:00.000000000 Z
+date: 2023-08-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -114,14 +114,14 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.4.18
+        version: 2.4.19
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.4.18
+        version: 2.4.19
 - !ruby/object:Gem::Dependency
   name: bundler-audit
   requirement: !ruby/object:Gem::Requirement
@@ -814,14 +814,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.56.0
+        version: 1.56.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.56.0
+        version: 1.56.1
 - !ruby/object:Gem::Dependency
   name: rubocop-rake
   requirement: !ruby/object:Gem::Requirement
@@ -2179,7 +2179,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.4.18
+rubygems_version: 3.4.19
 signing_key:
 specification_version: 4
 summary: Automated Security Testing for CI/CD Pipelines & Beyond