pwn 0.5.340 → 0.5.342
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/README.md +3 -3
- data/lib/pwn/plugins/burp_suite.rb +7 -7
- data/lib/pwn/version.rb +1 -1
- metadata +1 -1
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b3440136b1a6d76828fcf4f6ef0a7463f33ca5a6c9c19ef2c642287c3b7d8559
|
|
4
|
+
data.tar.gz: 54b37256df17dfe8d098cc8865fe278c4aaab065b1bd1714c540e80c20a40f29
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: e1c4345bf6bfdcf93f02446fdc609588978ceb0f1ae60568f1a395485614acadcc81608b8d4ae4fa53d3d8eda486c05a8bee5fa464911ea198347b3c18ebe9ac
|
|
7
|
+
data.tar.gz: 86f2fc6cd2efb5e71d4eb52f36469ba240cc6297156f130d1be5ed9c0930d5533ff9f5b661f07c59fcf020a7234958efc9b71efde5b087344396e68a74973ca5
|
data/README.md
CHANGED
|
@@ -37,7 +37,7 @@ $ cd /opt/pwn
|
|
|
37
37
|
$ ./install.sh
|
|
38
38
|
$ ./install.sh ruby-gem
|
|
39
39
|
$ pwn
|
|
40
|
-
pwn[v0.5.
|
|
40
|
+
pwn[v0.5.342]:001 >>> PWN.help
|
|
41
41
|
```
|
|
42
42
|
|
|
43
43
|
[](https://youtu.be/G7iLUY4FzsI)
|
|
@@ -52,7 +52,7 @@ $ rvm use ruby-3.4.4@pwn
|
|
|
52
52
|
$ gem uninstall --all --executables pwn
|
|
53
53
|
$ gem install --verbose pwn
|
|
54
54
|
$ pwn
|
|
55
|
-
pwn[v0.5.
|
|
55
|
+
pwn[v0.5.342]:001 >>> PWN.help
|
|
56
56
|
```
|
|
57
57
|
|
|
58
58
|
If you're using a multi-user install of RVM do:
|
|
@@ -62,7 +62,7 @@ $ rvm use ruby-3.4.4@pwn
|
|
|
62
62
|
$ rvmsudo gem uninstall --all --executables pwn
|
|
63
63
|
$ rvmsudo gem install --verbose pwn
|
|
64
64
|
$ pwn
|
|
65
|
-
pwn[v0.5.
|
|
65
|
+
pwn[v0.5.342]:001 >>> PWN.help
|
|
66
66
|
```
|
|
67
67
|
|
|
68
68
|
PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`. The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:
|
|
@@ -188,6 +188,8 @@ module PWN
|
|
|
188
188
|
)
|
|
189
189
|
spider_json = JSON.parse(in_scope, symbolize_names: true)
|
|
190
190
|
spider_id = spider_json[:id]
|
|
191
|
+
|
|
192
|
+
spider_status_json = {}
|
|
191
193
|
loop do
|
|
192
194
|
print '.'
|
|
193
195
|
spider_status_resp = rest_browser.get("http://#{pwn_burp_api}/spider/#{spider_id}")
|
|
@@ -633,7 +635,10 @@ module PWN
|
|
|
633
635
|
active_scan_url_arr = []
|
|
634
636
|
|
|
635
637
|
json_sitemap = get_sitemap(burp_obj: burp_obj, target_url: target_url)
|
|
636
|
-
json_sitemap.each do |site|
|
|
638
|
+
json_sitemap.uniq.each do |site|
|
|
639
|
+
# Skip if the site does not have a request or http_service
|
|
640
|
+
next unless site[:request].is_a?(String) && site[:http_service].is_a?(Hash)
|
|
641
|
+
|
|
637
642
|
json_req = site[:request]
|
|
638
643
|
b64_decoded_req = Base64.strict_decode64(json_req)
|
|
639
644
|
json_path = b64_decoded_req.split[1].to_s.scrub.strip.chomp
|
|
@@ -680,12 +685,6 @@ module PWN
|
|
|
680
685
|
rescue RestClient::ExceptionWithResponse => e
|
|
681
686
|
puts " => #{e.response.code}"
|
|
682
687
|
next
|
|
683
|
-
rescue RestClient::ServerBrokeConnection
|
|
684
|
-
puts ' => Server broke connection.'
|
|
685
|
-
next
|
|
686
|
-
rescue Errno::ECONNRESET
|
|
687
|
-
puts ' => Connection reset by peer.'
|
|
688
|
-
next
|
|
689
688
|
end
|
|
690
689
|
|
|
691
690
|
# Wait for scan completion
|
|
@@ -707,6 +706,7 @@ module PWN
|
|
|
707
706
|
active_scan_url_arr # Return array of targeted URIs to pass to #generate_scan_report method
|
|
708
707
|
rescue StandardError => e
|
|
709
708
|
# stop(burp_obj: burp_obj) unless burp_obj.nil?
|
|
709
|
+
puts e.backtrace
|
|
710
710
|
raise e
|
|
711
711
|
end
|
|
712
712
|
|
data/lib/pwn/version.rb
CHANGED