pwn 0.4.921 → 0.4.924

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 48f40f1214917bd9a6c846b6e2815645e89a4db4108e907e3302e2924517adaa
-  data.tar.gz: c6461897911c1979882723c64ba71c350c9993b81054c87ee647964b3899b1e6
+  metadata.gz: 8f52f5a00595e64e9969f0319067ab211cf3df8438274aa89efdbdc376f40804
+  data.tar.gz: c9e5d62d57d9083b22504b1c8ae4d70d8b05c890761a2d3dfea9a4cc32eb3e6c
 SHA512:
-  metadata.gz: 1de48f313a153225b9951b4428ce6ccd6d81e7866c6e02d17349c9e20756740e77f83a040025d819739d201c489398a0b463ae14340f0b42d5ee486fd8669909
-  data.tar.gz: 846c8f59a9f87096b8c40d9441f24894665f051fec9a7b47eabc32d53a2ae29f768e46517568f486e8417b6cf612134e1b13e72174fa6e94cf90031288f509f7
+  metadata.gz: 42979a9a7df6d28c8108794f353b0a3c57f66faed8f051ccc2016d62d0b50a02c877cd2f73d76edad7b79f48361f365201c9d30613e88ee17de18e62dac2aef7
+  data.tar.gz: 0cda27394a59d9dd547501ff28371db33265872f2d8447ce5539235e74eb551a6674d06b57e2aa4475cc41fb45a8f0c857ea1aa8dca8259ac3bc8015d52ad5c6

data/Gemfile

@@ -11,7 +11,7 @@ gemspec
 # In some circumstances custom flags are passed to gems in order
 # to build appropriately.  Defer to ./reinstall_pwn_gemset.sh
 # to review these custom flags (e.g. pg, serialport, etc).
-gem 'activesupport', '7.0.8'
+gem 'activesupport', '7.1.0'
 gem 'anemone', '0.7.2'
 gem 'authy', '3.0.1'
 gem 'aws-sdk', '3.1.0'
@@ -23,12 +23,12 @@ gem 'bundler', '>=2.4.20'
 gem 'bundler-audit', '0.9.1'
 gem 'bunny', '2.22.0'
 gem 'colorize', '1.1.0'
-gem 'credit_card_validations', '6.0.0'
+# gem 'credit_card_validations', '6.0.0'
 gem 'eventmachine', '1.2.7'
 gem 'executable-hooks', '1.6.1'
 gem 'faker', '3.2.1'
 gem 'faye-websocket', '0.11.3'
-gem 'ffi', '1.16.2'
+gem 'ffi', '1.16.3'
 gem 'fftw3', '0.3'
 gem 'gdb', '1.0.0'
 gem 'gem-wrappers', '1.4.0'
@@ -68,7 +68,7 @@ gem 'rex', '2.0.13'
 gem 'rmagick', '5.3.0'
 gem 'rqrcode', '2.2.0'
 gem 'rspec', '3.12.0'
-gem 'rtesseract', '3.1.2'
+gem 'rtesseract', '3.1.3'
 gem 'rubocop', '1.56.4'
 gem 'rubocop-rake', '0.6.0'
 gem 'rubocop-rspec', '2.24.1'

data/README.md

@@ -37,7 +37,7 @@ $ rvm use ruby-3.2.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.921]:001 >>> PWN.help
+pwn[v0.4.924]:001 >>> PWN.help
 ```
 
 If you're using a multi-user install of RVM do:
@@ -48,7 +48,7 @@ $ rvm use ruby-3.2.2@pwn
 $ rvm list gemsets
 $ rvmsudo gem install --verbose pwn
 $ pwn
-pwn[v0.4.921]:001 >>> PWN.help
+pwn[v0.4.924]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -63,7 +63,7 @@ $ rvm use ruby-3.2.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.921]:001 >>> PWN.help
+pwn[v0.4.924]:001 >>> PWN.help
 ```
 
 If you're using a multi-user install of RVM do:
@@ -73,7 +73,7 @@ $ rvm use ruby-3.2.2@pwn
 $ rvmsudo gem uninstall --all --executables pwn
 $ rvmsudo gem install --verbose pwn
 $ pwn
-pwn[v0.4.921]:001 >>> PWN.help
+pwn[v0.4.924]:001 >>> PWN.help
 ```
 
 

data/bin/pwn_bdba_scan

@@ -4,7 +4,6 @@
 require 'cgi'
 require 'optparse'
 require 'pwn'
-require 'timeout'
 require 'yaml'
 
 opts = {}
@@ -33,10 +32,14 @@ OptionParser.new do |options|
     opts[:queue_timeout] = q
   end
 
-  options.on('-a', '--scan-attempts', '<Optional - Number of Attempts to Scan a File if the Scan was Aborted Due to Queue Timeouts (Default: 3)>') do |a|
+  options.on('-a', '--scan-attempts', '<Optional - Number of Attempts to Scan a File if the Scan was Aborted Due to Queue Timeouts or RestClient Exceptions (Default: 3)>') do |a|
     opts[:scan_attempts] = a
   end
 
+  options.on('-S', '--sleep-between-scan-attempts', '<Optional - Seconds to Sleep Between Attempts to Scan a File if the Scan was Aborted Due to Queue Timeouts or RestClient Exceptions (Default: 60)>') do |s|
+    opts[:sleep_between_scan_attempts] = s
+  end
+
   options.on('-R', '--report-only', '<Optional - Only Generate a Black Duck Binary Analysis Scan Report for an Existing Scan (Default: false)>') do |o|
     opts[:report_only] = o
   end
@@ -80,6 +83,7 @@ begin
   queue_timeout = opts[:queue_timeout] ||= 5_400
 
   scan_attempts = opts[:scan_attempts] ||= 3
+  sleep_between_scan_attempts = opts[:sleep_between_scan_attempts] ||= 60
 
   report_only = opts[:report_only] ||= false
 
@@ -120,7 +124,7 @@ begin
         )
       end
 
-      raise Timeout::Error, "ERROR: BDBA Scan Aborted: #{target_file}"
+      raise IO::TimeoutError, "ERROR: BDBA Scan Aborted: #{target_file}"
     end
 
     10.times do
@@ -140,10 +144,23 @@ begin
   )
 
   puts "\nReport Saved to: #{report_path}"
-rescue Timeout::Error
+rescue IO::TimeoutError,
+       RestClient::Unauthorized,
+       RestClient::Forbidden,
+       RestClient::BadRequest,
+       RestClient::ResourceNotFound,
+       RestClient::InternalServerError,
+       RestClient::BadGateway,
+       RestClient::ServiceUnavailable,
+       RestClient::GatewayTimeout
+
   abort_total += 1
 
-  retry if abort_total <= scan_attempts.to_i
+  if abort_total <= scan_attempts.to_i
+    puts 'Sleeping for 60 Seconds and Retrying...'
+    sleep sleep_between_scan_attempts.to_i
+    retry
+  end
 
   puts 'Scan Attempts Reached - Goodbye.'
   exit 1

data/lib/pwn/plugins/black_duck_binary_analysis.rb

@@ -84,29 +84,7 @@ module PWN
           puts "HTTP RESPONSE BODY:\n#{e.response.body.inspect}\n\n\n"
         end
 
-        # Use case statement to evaluate the
-        # type of RestClient::ExceptionWithResponse
-        # and handle accordingly.
-        case e
-        when RestClient::Unauthorized
-          raise "ERROR: #{e.message} - Invalid token."
-        when RestClient::Forbidden
-          raise "ERROR: #{e.message} - Insufficient permissions."
-        when RestClient::BadRequest
-          raise "ERROR: #{e.message} - Invalid request."
-        when RestClient::ResourceNotFound
-          raise "ERROR: #{e.message} - Resource not found."
-        when RestClient::InternalServerError
-          raise "ERROR: #{e.message} - Internal server error."
-        when RestClient::BadGateway
-          raise "ERROR: #{e.message} - Bad gateway."
-        when RestClient::ServiceUnavailable
-          raise "ERROR: #{e.message} - Service unavailable."
-        when RestClient::GatewayTimeout
-          raise "ERROR: #{e.message} - Gateway timeout."
-        else
-          raise e
-        end
+        raise e
       rescue StandardError => e
         case e.message
         when '400 Bad Request', '404 Resource Not Found'

data/lib/pwn/plugins/credit_card.rb

@@ -1,7 +1,7 @@
 # frozen_string_literal: true
 
-require 'credit_card_validations'
-require 'credit_card_validations/string'
+# require 'credit_card_validations'
+# require 'credit_card_validations/string'
 
 module PWN
   module Plugins

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.4.921'
+  VERSION = '0.4.924'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.921
+  version: 0.4.924
 platform: ruby
 authors:
 - 0day Inc.
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-10-02 00:00:00.000000000 Z
+date: 2023-10-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 7.0.8
+        version: 7.1.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 7.0.8
+        version: 7.1.0
 - !ruby/object:Gem::Dependency
   name: anemone
   requirement: !ruby/object:Gem::Requirement
@@ -164,20 +164,6 @@ dependencies:
     - - '='
       - !ruby/object:Gem::Version
         version: 1.1.0
-- !ruby/object:Gem::Dependency
-  name: credit_card_validations
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - '='
-      - !ruby/object:Gem::Version
-        version: 6.0.0
-  type: :runtime
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - '='
-      - !ruby/object:Gem::Version
-        version: 6.0.0
 - !ruby/object:Gem::Dependency
   name: eventmachine
   requirement: !ruby/object:Gem::Requirement
@@ -240,14 +226,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.16.2
+        version: 1.16.3
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.16.2
+        version: 1.16.3
 - !ruby/object:Gem::Dependency
   name: fftw3
   requirement: !ruby/object:Gem::Requirement
@@ -800,14 +786,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 3.1.2
+        version: 3.1.3
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 3.1.2
+        version: 3.1.3
 - !ruby/object:Gem::Dependency
   name: rubocop
   requirement: !ruby/object:Gem::Requirement