pwn 0.5.106 → 0.5.108
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/Gemfile +2 -2
- data/README.md +3 -3
- data/lib/pwn/version.rb +1 -1
- data/packer/provisioners/jenkins.sh +14 -4
- metadata +7 -7
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 7908fe4984a7d6f12eb9e77c6904c6c77ba5431216a1d0b0ed6e19d00b4b9f66
|
4
|
+
data.tar.gz: 74f1bf73f221cd0c00adcb6ef1a550672ae869b366de958d3aae68b70dcd3312
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: f5f38bdbb60ed24563773ecbd6677f7c07db5d788a486dc1f5d6679b76d8c4941f322c3c76e2bde9fd0b4d692c182cbeb23157951d815af9371ad3fdc650c734
|
7
|
+
data.tar.gz: e3d9052c19afc6e4ccd114dc3d4a44eeeba045370531a01ee43766b8ab4a7535d6346e302774a9d6441bbb3112a20d7aadc7be3521d830dada2350f40e759965
|
data/Gemfile
CHANGED
@@ -19,7 +19,7 @@ gem 'aws-sdk', '3.2.0'
|
|
19
19
|
gem 'barby', '0.6.9'
|
20
20
|
gem 'brakeman', '6.1.2'
|
21
21
|
gem 'bson', '5.0.0'
|
22
|
-
gem 'bundler', '>=2.5.
|
22
|
+
gem 'bundler', '>=2.5.10'
|
23
23
|
gem 'bundler-audit', '0.9.1'
|
24
24
|
gem 'bunny', '2.22.0'
|
25
25
|
gem 'colorize', '1.1.0'
|
@@ -46,7 +46,7 @@ gem 'jwt', '2.8.1'
|
|
46
46
|
gem 'libusb', '0.7.1'
|
47
47
|
gem 'luhn', '1.0.2'
|
48
48
|
gem 'mail', '2.8.1'
|
49
|
-
gem 'meshtastic', '0.0.
|
49
|
+
gem 'meshtastic', '0.0.44'
|
50
50
|
gem 'metasm', '1.0.5'
|
51
51
|
gem 'mongo', '2.20.0'
|
52
52
|
gem 'msfrpc-client', '1.1.2'
|
data/README.md
CHANGED
@@ -37,7 +37,7 @@ $ cd /opt/pwn
|
|
37
37
|
$ ./install.sh
|
38
38
|
$ ./install.sh ruby-gem
|
39
39
|
$ pwn
|
40
|
-
pwn[v0.5.
|
40
|
+
pwn[v0.5.108]:001 >>> PWN.help
|
41
41
|
```
|
42
42
|
|
43
43
|
[![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
|
@@ -52,7 +52,7 @@ $ rvm use ruby-3.3.1@pwn
|
|
52
52
|
$ gem uninstall --all --executables pwn
|
53
53
|
$ gem install --verbose pwn
|
54
54
|
$ pwn
|
55
|
-
pwn[v0.5.
|
55
|
+
pwn[v0.5.108]:001 >>> PWN.help
|
56
56
|
```
|
57
57
|
|
58
58
|
If you're using a multi-user install of RVM do:
|
@@ -62,7 +62,7 @@ $ rvm use ruby-3.3.1@pwn
|
|
62
62
|
$ rvmsudo gem uninstall --all --executables pwn
|
63
63
|
$ rvmsudo gem install --verbose pwn
|
64
64
|
$ pwn
|
65
|
-
pwn[v0.5.
|
65
|
+
pwn[v0.5.108]:001 >>> PWN.help
|
66
66
|
```
|
67
67
|
|
68
68
|
PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`. The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:
|
data/lib/pwn/version.rb
CHANGED
@@ -11,6 +11,8 @@ else
|
|
11
11
|
pwn_root="${PWN_ROOT}"
|
12
12
|
fi
|
13
13
|
|
14
|
+
target_jdk='openjdk-17-jdk'
|
15
|
+
jenkins_java_version=$(echo ${target_jdk} | sed 's/-/ /g' | awk '{print $2}')
|
14
16
|
pwn_provider=`echo $PWN_PROVIDER`
|
15
17
|
|
16
18
|
# Make sure the pwn gemset has been loaded
|
@@ -27,14 +29,12 @@ echo deb [signed-by=/usr/share/keyrings/jenkins-keyring.asc] \
|
|
27
29
|
https://pkg.jenkins.io/debian binary/ | sudo tee \
|
28
30
|
/etc/apt/sources.list.d/jenkins.list > /dev/null
|
29
31
|
|
30
|
-
# Get back to a Java version Jenkins supports
|
31
|
-
sudo ln -sf /usr/lib/jvm/java-11-openjdk-amd64/bin/java /etc/alternatives/java
|
32
32
|
sudo sh -c 'echo deb https://pkg.jenkins.io/debian-stable binary/ > /etc/apt/sources.list.d/jenkins.list'
|
33
33
|
|
34
34
|
$screen_cmd "${apt} update"
|
35
35
|
grok_error
|
36
36
|
|
37
|
-
$screen_cmd "${apt} install -yq
|
37
|
+
$screen_cmd "${apt} install -yq ${target_jdk}"
|
38
38
|
grok_error
|
39
39
|
|
40
40
|
$screen_cmd "${apt} install -yq jenkins"
|
@@ -45,6 +45,17 @@ sudo /bin/bash --login -c "cp ${pwn_root}/etc/userland/$pwn_provider/jenkins/jen
|
|
45
45
|
sudo /bin/bash --login -c "sed -i \"s/DOMAIN/${domain_name}/g\" /etc/default/jenkins"
|
46
46
|
sudo usermod -a -G sudo jenkins
|
47
47
|
sudo /bin/bash --login -c 'echo "jenkins ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/jenkins'
|
48
|
+
|
49
|
+
# Ensure Java version is supported by Jenkins
|
50
|
+
sudo echo tee -a /etc/systemd/system/jenkins.service.d/override.conf << EOF
|
51
|
+
[Service]
|
52
|
+
Environment="JAVA_OPTS=-Djava.awt.headless=true -Dhudson.DNSMultiCast.disabled=true -Djava.net.preferIPv4Stack=true -Dmail.smtp.starttls.enable=true -Dhudson.model.DirectoryBrowserSupport.CSP= -Xmx2g"
|
53
|
+
Environment="JENKINS_LISTEN_ADDRESS=127.0.0.1"
|
54
|
+
Environment="JENKINS_PORT=8888"
|
55
|
+
Environment="JENKINS_JAVA_CMD=/usr/lib/jvm/java-${jenkins_java_version}-openjdk-amd64/bin/java"
|
56
|
+
EOF
|
57
|
+
|
58
|
+
sudo systemctl daemon-reload
|
48
59
|
sudo systemctl enable jenkins
|
49
60
|
sudo systemctl restart jenkins
|
50
61
|
|
@@ -64,4 +75,3 @@ pwn_jenkins_install_plugin --ip 127.0.0.1 \
|
|
64
75
|
-U admin \
|
65
76
|
--api-key $initial_admin_pwd \
|
66
77
|
-p "ansicolor, build-pipeline-plugin, bulk-builder, git, git-client, htmlpublisher, log-parser, mailer, matrix-auth, nested-view, purge-build-queue-plugin, ssh-agent, ssh-credentials"
|
67
|
-
# -p "ace-editor, analysis-core, ansicolor, ant, antisamy-markup-formatter, apache-httpcomponents-client-4-api, bouncycastle-api, build-pipeline-plugin, bulk-builder, command-launcher, conditional-buildstep, credentials, dashboard-view, dependency-check-jenkins-plugin, dependency-track, display-url-api, external-monitor-job, git, git-client, handlebars, htmlpublisher, jackson2-api, javadoc, jdk-tool, jquery, jquery-detached, jquery-ui, jsch, junit, ldap, log-parser, mailer, matrix-auth, matrix-project, maven-plugin, momentjs, nested-view, pam-auth, parameterized-trigger, pipeline-build-step, pipeline-graph-analysis, pipeline-input-step, pipeline-rest-api, pipeline-stage-step, pipeline-stage-view, plain-credentials, purge-build-queue-plugin, role-strategy, run-condition, scm-api, script-security, slack, ssh-agent, ssh-credentials, ssh-slaves, structs, token-macro, windows-slaves, workflow-api, workflow-cps, workflow-job, workflow-scm-step, workflow-step-api, workflow-support"
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: pwn
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.5.
|
4
|
+
version: 0.5.108
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- 0day Inc.
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2024-05-
|
11
|
+
date: 2024-05-07 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: activesupport
|
@@ -114,14 +114,14 @@ dependencies:
|
|
114
114
|
requirements:
|
115
115
|
- - ">="
|
116
116
|
- !ruby/object:Gem::Version
|
117
|
-
version: 2.5.
|
117
|
+
version: 2.5.10
|
118
118
|
type: :development
|
119
119
|
prerelease: false
|
120
120
|
version_requirements: !ruby/object:Gem::Requirement
|
121
121
|
requirements:
|
122
122
|
- - ">="
|
123
123
|
- !ruby/object:Gem::Version
|
124
|
-
version: 2.5.
|
124
|
+
version: 2.5.10
|
125
125
|
- !ruby/object:Gem::Dependency
|
126
126
|
name: bundler-audit
|
127
127
|
requirement: !ruby/object:Gem::Requirement
|
@@ -478,14 +478,14 @@ dependencies:
|
|
478
478
|
requirements:
|
479
479
|
- - '='
|
480
480
|
- !ruby/object:Gem::Version
|
481
|
-
version: 0.0.
|
481
|
+
version: 0.0.44
|
482
482
|
type: :runtime
|
483
483
|
prerelease: false
|
484
484
|
version_requirements: !ruby/object:Gem::Requirement
|
485
485
|
requirements:
|
486
486
|
- - '='
|
487
487
|
- !ruby/object:Gem::Version
|
488
|
-
version: 0.0.
|
488
|
+
version: 0.0.44
|
489
489
|
- !ruby/object:Gem::Dependency
|
490
490
|
name: metasm
|
491
491
|
requirement: !ruby/object:Gem::Requirement
|
@@ -2305,7 +2305,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
2305
2305
|
- !ruby/object:Gem::Version
|
2306
2306
|
version: '0'
|
2307
2307
|
requirements: []
|
2308
|
-
rubygems_version: 3.5.
|
2308
|
+
rubygems_version: 3.5.10
|
2309
2309
|
signing_key:
|
2310
2310
|
specification_version: 4
|
2311
2311
|
summary: Automated Security Testing for CI/CD Pipelines & Beyond
|