pwn 0.5.323 → 0.5.325

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 489d28655a398392c8563966dfe04887f65edf719b799a767e667b3b0851c033
-  data.tar.gz: 1d8e8e536b39b57b82570f87251111996e3882b1ca6f592381227fb09ebf0840
+  metadata.gz: 6b4cfc42fbf4443b1d9c8f228234c7b30bf95cc96ba8e0f770d52e26dcb2b86d
+  data.tar.gz: dd28c2feabc577aa90c9659ce6e22720fc7c5c54c42daef2dd1e753f0b976ecd
 SHA512:
-  metadata.gz: c2bd7b7a743a9ceea59b67396389314d344cd7d93e04c32eacb33d6ad76b3c72e0f0981ebaa79170c99829f33e8decfa8dec959ede5d71d02afee658c72a2464
-  data.tar.gz: da8291ff61704bbd4e0073334817b2ec1bf82b0ec1bb36bdc9d3c3dad9861d3f2fdf195031369bd7545c5e3a304dba18a60ddf6b6610657baf4f188efb38c3b3
+  metadata.gz: f2a74daf3fcd9ca7b57b7f5e6e4a7c8c6af2a839172c32def63171341aa6a6b0f6f4b29c3cc752433cb76347788365c0600efa859a18d9f57acb1de3d384f640
+  data.tar.gz: 65ab796ce1eb7ed21de5586eb3f1e90c683d98067ec00040b50fc26c2d33334a52430fb98ca6ef4281040cec9df0d979bcb83472ab274feadc95c616400c0f5d

data/Gemfile

@@ -35,7 +35,7 @@ gem 'gdb', '1.0.0'
 gem 'gem-wrappers', '1.4.0'
 gem 'geocoder', '1.8.5'
 gem 'gist', '6.0.0'
-gem 'gruff', '0.27.1'
+gem 'gruff', '0.28.0'
 # gem 'hidapi', '0.1.9'
 gem 'htmlentities', '4.3.4'
 gem 'ipaddress', '0.8.3'
@@ -56,7 +56,7 @@ gem 'net-ldap', '0.19.0'
 gem 'net-openvpn', '0.8.7'
 gem 'net-smtp', '0.5.1'
 gem 'nexpose', '7.3.0'
-gem 'nokogiri', '1.18.8'
+gem 'nokogiri', '1.18.9'
 gem 'nokogiri-diff', '0.3.0'
 # gem 'oauth2', '2.0.9'
 gem 'oily_png', '1.2.1'
@@ -92,8 +92,8 @@ gem 'savon', '2.15.1'
 gem 'selenium-devtools', '0.138.0'
 # gem 'serialport', '1.3.2'
 # gem 'sinatra', '4.0.0'
-gem 'slack-ruby-client', '2.6.0'
-gem 'socksify', '1.8.0'
+gem 'slack-ruby-client', '2.7.0'
+gem 'socksify', '1.8.1'
 gem 'spreadsheet', '1.3.4'
 gem 'sqlite3', '2.7.3'
 gem 'thin', '2.0.1'

data/README.md

@@ -37,7 +37,7 @@ $ cd /opt/pwn
 $ ./install.sh
 $ ./install.sh ruby-gem
 $ pwn
-pwn[v0.5.323]:001 >>> PWN.help
+pwn[v0.5.325]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.4.4@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.5.323]:001 >>> PWN.help
+pwn[v0.5.325]:001 >>> PWN.help
 ```
 
 If you're using a multi-user install of RVM do:
@@ -62,7 +62,7 @@ $ rvm use ruby-3.4.4@pwn
 $ rvmsudo gem uninstall --all --executables pwn
 $ rvmsudo gem install --verbose pwn
 $ pwn
-pwn[v0.5.323]:001 >>> PWN.help
+pwn[v0.5.325]:001 >>> PWN.help
 ```
 
 PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`.  The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:

data/bin/pwn_burp_suite_pro_active_scan

@@ -79,6 +79,12 @@ begin
   # Disable Proxy Intercepting Capabilities for this Driver
   PWN::Plugins::BurpSuite.disable_proxy(burp_obj: burp_obj)
 
+  # Add URL to Target >> Scope >> Inclue in scope
+  PWN::Plugins::BurpSuite.add_to_scope(
+    burp_obj: burp_obj,
+    target_url: in_scope
+  )
+
   # Use a headless browser w/ JavaScript Support to Load Our Target
   # and Optionally Authenticate to Provide the Capability to Conduct
   # a Burp Active Scan in a Post-AuthN state.  Since our browsers
@@ -93,12 +99,6 @@ begin
     browser.instance_eval(instruction.to_s.scrub.strip.chomp)
   end
 
-  # Add URL to Target >> Scope >> Inclue in scope
-  PWN::Plugins::BurpSuite.add_to_scope(
-    burp_obj: burp_obj,
-    target_url: in_scope
-  )
-
   duration = 9
   print "Waiting #{duration} seconds prior to kicking off active scan..."
   sleep duration # Sleep for now so everything loads the way we expect - blech.

data/lib/pwn/plugins/burp_suite.rb

@@ -350,6 +350,7 @@ module PWN
         report_resp = rest_browser.get(
           "http://#{burpbuddy_api}/scanreport/#{report_type.to_s.upcase}/#{report_url}"
         )
+
         # This is for the older burpbuddy-3.1.0-SNAPSHOT-all.jar
         # report_resp = rest_browser.get(
         #   "http://#{burpbuddy_api}/scanreport/#{report_url}"
@@ -357,7 +358,6 @@ module PWN
         File.open(output_path, 'w') do |f|
           f.puts(report_resp.body.gsub("\r\n", "\n"))
         end
-      rescue RestClient::Exceptions::NotFound
       rescue StandardError => e
         stop(burp_obj: burp_obj) unless burp_obj.nil?
         raise e

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.5.323'
+  VERSION = '0.5.325'
 end

data/third_party/pwn_rdoc.jsonl

@@ -492,9 +492,11 @@
 {"messages":[{"role":"user","content":"PWN::Plugins::BlackDuckBinaryAnalysis.get_vulnerabilities Usage"},{"role":"assistant","content":"`PWN::Plugins::BlackDuckBinaryAnalysis.get_vulnerabilities`: Supported Method Parameters\n\nresponse = PWN::Plugins::BlackDuckBinaryAnalysis.get_vulnerabilities(\n\ntoken: 'required - Bearer token'\n\n)\n"}]}
 {"messages":[{"role":"user","content":"PWN::Plugins::BlackDuckBinaryAnalysis.help Usage"},{"role":"assistant","content":"`PWN::Plugins::BlackDuckBinaryAnalysis.help`: "}]}
 {"messages":[{"role":"user","content":"PWN::Plugins::BlackDuckBinaryAnalysis.upload_file Usage"},{"role":"assistant","content":"`PWN::Plugins::BlackDuckBinaryAnalysis.upload_file`: Supported Method Parameters\n\nresponse = PWN::Plugins::BlackDuckBinaryAnalysis.upload_file(\n\ntoken: 'required - Bearer token',\nfile: 'required - path of file to upload',\ngroup_id: 'optional - group id',\ndelete_binary: 'optional - delete binary after upload (defaults to false)',\nforce_scan: 'optional - force scan (defaults to false)',\ncallback_url: 'optional - callback url',\nscan_infoleak: 'optional - scan infoleak (defaults to true)',\ncode_analysis: 'optional - code analysis (defaults to true)',\nscan_code_familiarity: 'optional - scan code familiarity (defaults to false)',\nversion: 'optional - version',\nproduct_id: 'optional - product id'\n\n)\n"}]}
+{"messages":[{"role":"user","content":"PWN::Plugins::BurpSuite.add_to_scope Usage"},{"role":"assistant","content":"`PWN::Plugins::BurpSuite.add_to_scope`: Supported Method Parameters\n\njson_in_scope = PWN::Plugins::BurpSuite.add_to_scope(\n\nburp_obj: 'required - burp_obj returned by #start method',\ntarget_url: 'required - target url to add to scope'\n\n)\n"}]}
 {"messages":[{"role":"user","content":"PWN::Plugins::BurpSuite.authors Usage"},{"role":"assistant","content":"`PWN::Plugins::BurpSuite.authors`: Author(s)\n\n0day Inc. <support@0dayinc.com>\n"}]}
 {"messages":[{"role":"user","content":"PWN::Plugins::BurpSuite.disable_proxy Usage"},{"role":"assistant","content":"`PWN::Plugins::BurpSuite.disable_proxy`: Supported Method Parameters\n\nPWN::Plugins::BurpSuite.disable_proxy(\n\nburp_obj: 'required - burp_obj returned by #start method'\n\n)\n"}]}
 {"messages":[{"role":"user","content":"PWN::Plugins::BurpSuite.enable_proxy Usage"},{"role":"assistant","content":"`PWN::Plugins::BurpSuite.enable_proxy`: Supported Method Parameters\n\nPWN::Plugins::BurpSuite.enable_proxy(\n\nburp_obj: 'required - burp_obj returned by #start method'\n\n)\n"}]}
+{"messages":[{"role":"user","content":"PWN::Plugins::BurpSuite.format_uri_from_sitemap_resp Usage"},{"role":"assistant","content":"`PWN::Plugins::BurpSuite.format_uri_from_sitemap_resp`: Supported Method Parameters\n\nuri = PWN::Plugins::BurpSuite.format_uri_from_sitemap_resp(\n\nscheme: 'required - scheme of the URI (http|https)',\nhost: 'required - host of the URI',\nport: 'optional - port of the URI',\npath: 'optional - path of the URI'\n\n)\n"}]}
 {"messages":[{"role":"user","content":"PWN::Plugins::BurpSuite.generate_scan_report Usage"},{"role":"assistant","content":"`PWN::Plugins::BurpSuite.generate_scan_report`: Supported Method Parameters\n\nPWN::Plugins::BurpSuite.generate_scan_report(\n\nburp_obj: 'required - burp_obj returned by #start method',\ntarget_url: 'required - target_url passed to #invoke_active_scan method',\nreport_type: :html|:xml|:both,\noutput_path: 'required - path to save report results'\n\n)\n"}]}
 {"messages":[{"role":"user","content":"PWN::Plugins::BurpSuite.get_current_sitemap Usage"},{"role":"assistant","content":"`PWN::Plugins::BurpSuite.get_current_sitemap`: Supported Method Parameters\n\njson_sitemap = PWN::Plugins::BurpSuite.get_current_sitemap(\n\nburp_obj: 'required - burp_obj returned by #start method'\n\n)\n"}]}
 {"messages":[{"role":"user","content":"PWN::Plugins::BurpSuite.get_scan_issues Usage"},{"role":"assistant","content":"`PWN::Plugins::BurpSuite.get_scan_issues`: Supported Method Parameters\n\njson_scan_issues = PWN::Plugins::BurpSuite.get_scan_issues(\n\nburp_obj: 'required - burp_obj returned by #start method'\n\n)\n"}]}

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.5.323
+  version: 0.5.325
 platform: ruby
 authors:
 - 0day Inc.
@@ -337,14 +337,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.27.1
+        version: 0.28.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.27.1
+        version: 0.28.0
 - !ruby/object:Gem::Dependency
   name: htmlentities
   requirement: !ruby/object:Gem::Requirement
@@ -617,14 +617,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.18.8
+        version: 1.18.9
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.18.8
+        version: 1.18.9
 - !ruby/object:Gem::Dependency
   name: nokogiri-diff
   requirement: !ruby/object:Gem::Requirement
@@ -1051,28 +1051,28 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.6.0
+        version: 2.7.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.6.0
+        version: 2.7.0
 - !ruby/object:Gem::Dependency
   name: socksify
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.8.0
+        version: 1.8.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.8.0
+        version: 1.8.1
 - !ruby/object:Gem::Dependency
   name: spreadsheet
   requirement: !ruby/object:Gem::Requirement
@@ -2298,6 +2298,7 @@ files:
 - spec/lib/pwn_spec.rb
 - spec/spec_helper.rb
 - third_party/.gitkeep
+- third_party/burpbuddy-3.1.1-SNAPSHOT-all.jar
 - third_party/http-request-headers-fields-large.txt
 - third_party/pwn_rdoc.jsonl
 - third_party/r2-pwn-layout