RubyGems - pwn - Versions diffs - 0.4.879 → 0.4.882 - Mend

pwn 0.4.879 → 0.4.882

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 5420e18a9f3591fb4a6b3b630569752837738607a572c5bc44a72f158f1e3c1a
-  data.tar.gz: 2528859528b403be16080e0d443b65a884ebc4979887fe0faaae078ea537b6d7
+  metadata.gz: cf22b1c254e324d6d66b5b6e2644137c668bb7da964485ac8614d00bcb4a4080
+  data.tar.gz: 39c485bb8345e69519595c9eb8d9fe9fcea4a877c66b0b8282d8a83986604c44
 SHA512:
-  metadata.gz: d23d25ff25f48423f9e1cd06f21f86f8c13a78db47c0da27d6d1ff176e830a78809ff3a007f28218366253f66d77fe42be1bc82260a53aafa9fff6dad235c83b
-  data.tar.gz: ef7bcf278c79ea39b59d035d0bf027ba414b050f7a6f487825ed80462f2c6d4d93b20a1b42b5a99081f0e9c0775e46a112cc89c9700261b14eb4bf8eb3646a88
+  metadata.gz: 94cc6104f8eac1b8ab11c18162e64bb4a2886fc9585ddb30b47bb654e214363758b7302edb93730c132391f01acc9ffa5a3c3a064713012e7b78bf226c1ae8e4
+  data.tar.gz: df6b516ae409849a780b2342f1197caeb013bb0ae58cbe8eaf072f41c4b3075d87c5031b8634f65c44a7c6810ba4167cd8c869b6243d5ca4f6229bf0bee3b470

data/README.md CHANGED Viewed

@@ -37,7 +37,7 @@ $ rvm use ruby-3.2.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.879]:001 >>> PWN.help
+pwn[v0.4.882]:001 >>> PWN.help
 ```
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.2.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.879]:001 >>> PWN.help
+pwn[v0.4.882]:001 >>> PWN.help
 ```

data/bin/pwn_www_checkip CHANGED Viewed

@@ -49,7 +49,7 @@ begin
   puts "PUBLIC IP: #{public_ip_address}"
   if ipinfo
     puts PWN::Plugins::IPInfo.get(
-      ip_or_host: public_ip_address,
+      target: public_ip_address,
       proxy: proxy
     )
   end

data/lib/pwn/plugins/ip_info.rb CHANGED Viewed

@@ -10,7 +10,7 @@ module PWN
     # 1,000 daily requests are allowed for free
     module IPInfo
       # Supported Method Parameters::
-      # PWN::Plugins::IPInfo.get(
+      # ip_resp_json = ip_info_rest_call(
       #   ip: 'required - IP or Host to lookup',
       #   proxy: 'optional - use a proxy'
       # )
@@ -47,54 +47,53 @@ module PWN
       # Supported Method Parameters::
       # ip_info_struc = PWN::Plugins::IPInfo.get(
-      #   ip_or_host: 'required - IP or Host to lookup',
+      #   target: 'required - IP or Host to lookup',
       #   proxy: 'optional - use a proxy',
       #   tls_port: 'optional port to check cert for Domain Name (default: 443). Will not execute if proxy parameter is set.'
       # )
       public_class_method def self.get(opts = {})
-        ip_or_host = opts[:ip_or_host].to_s.scrub.strip.chomp
+        target = opts[:target].to_s.scrub.strip.chomp
         proxy = opts[:proxy]
         tls_port = opts[:tls_port]
         tls_port ||= 443
         ip_info_resp = []
-        if IPAddress.valid?(ip_or_host)
+        if IPAddress.valid?(target)
           if proxy
-            ip_resp_json = ip_info_rest_call(ip: ip_or_host, proxy: proxy)
+            ip_resp_json = ip_info_rest_call(ip: target, proxy: proxy)
           else
-            ip_resp_json = ip_info_rest_call(ip: ip_or_host)
+            ip_resp_json = ip_info_rest_call(ip: target)
           end
           ip_info_resp.push(ip_resp_json)
         else
-          Resolv::DNS.new.each_address(ip_or_host) do |ip|
+          Resolv::DNS.new.each_address(target) do |ip|
             ip_info_resp.push(ip_info_rest_call(ip: ip))
           end
         end
         if proxy.nil?
           ip_info_resp.each do |ip_resp|
-            # TODO: add this block as a method in PWN::Plugins::Sock
             tls_port_avail = PWN::Plugins::Sock.check_port_in_use(
-              server_ip: ip_or_host,
-              server_port: tls_port
+              server_ip: target,
+              port: tls_port
             )
             ip_resp[:tls_avail] = tls_port_avail
+            ip_resp[:cert_txt] = false
+            ip_resp[:cert_obj] = false
             next unless tls_port_avail
-            tls_sock_obj = PWN::Plugins::Sock.connect(
-              target: ip_or_host,
-              port: tls_port,
-              protocol: :tcp,
-              tls: true
+            cert_obj = PWN::Plugins::Sock.get_tls_cert(
+              target: target,
+              port: tls_port
             )
-            tls_sock_obj.sync_close = true
-            cert = tls_sock.peer_cert
-            ip_resp[:cert_txt] = cert.to_text
+            next unless cert_obj.is_a?(OpenSSL::X509::Certificate)
+            ip_resp[:cert_txt] = cert_obj.to_text
             ip_resp[:cert_obj] = cert
-            PWN::Plugins::Sock.disconnect(sock_obj: tls_sock_obj)
           end
         end
@@ -116,7 +115,7 @@ module PWN
       public_class_method def self.help
         puts "USAGE:
           ip_info_struc = #{self}.get(
-            ip_or_host: 'required - IP or Host to lookup',
+            target: 'required - IP or Host to lookup',
             proxy: 'optional - use a proxy',
             tls_port: 'optional port to check cert for Domain Name (default: 443). Will not execute if proxy parameter is set.'
           )

data/lib/pwn/plugins/sock.rb CHANGED Viewed

@@ -169,6 +169,33 @@ module PWN
         listen_obj = disconnect(sock_obj: listen_obj) unless listen_obj.nil?
       end
+      # Supported Method Parameters::
+      # cert_obj = PWN::Plugins::Sock.get_tls_cert(
+      #   target: 'required - target host or ip',
+      #   port: 'optional - target port (defaults to 443)'
+      # )
+      public_class_method def self.get_tls_cert(opts = {})
+        target = opts[:target].to_s.scrub
+        port = opts[:port]
+        port ||= 443
+        tls_sock_obj = connect(
+          target: target,
+          port: port,
+          protocol: :tcp,
+          tls: true
+        )
+        tls_sock_obj.sync_close = true
+        tls_sock_obj.peer_cert
+      rescue OpenSSL::SSL::SSLError
+        false
+      rescue StandardError => e
+        raise e
+      ensure
+        tls_sock_obj = disconnect(sock_obj: tls_sock_obj) unless tls_sock_obj.nil?
+      end
       # Supported Method Parameters::
       # sock_obj = PWN::Plugins::Sock.disconnect(
       #   sock_obj: 'required - sock_obj returned from #connect method'

data/lib/pwn/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module PWN
-  VERSION = '0.4.879'
+  VERSION = '0.4.882'
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.879
+  version: 0.4.882
 platform: ruby
 authors:
 - 0day Inc.