pwn 0.5.363 → 0.5.365

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 21fb86e8e898726e81f654e71dd0e14d9aa039e710065c6912f313ab2ede3a96
-  data.tar.gz: 7905036ae9535d7a3ef4374d9510d3c7ae99a36fcb9d14cd238028ab5071436d
+  metadata.gz: 2468a8ceb5aaf33a3fbb166bf0f96ae40070b513756899c542e59caa1ee7639b
+  data.tar.gz: 75320fca9b6d6fa200ec30438c68dbd61df11daa46108a2c7b38a0ca296e15ac
 SHA512:
-  metadata.gz: 02b055c4fe25af6f7621b4e4b26a28b38c24207c122042c538c184760c84a3bb29ecf60e003b2aa808a7cd5ace57c4984f0d352c767a9d02cc6e6ae85da985ff
-  data.tar.gz: 2beef162c831d0143544cc150b5e944b31923d5a8fdbf506acfa8d0f7139e93002967ef3b8d6b152448cdd663993bb434088d000d29a1647737c3fd65e8aa82d
+  metadata.gz: 055c34d4802ac7a9cea63d6903abfcf8d764f95b1e85f586626a33ada0ea6981b3abca6f6268e43a8e366b36d14e898802b130ebd14cda1e14baba538653e984
+  data.tar.gz: aea3d7774c484b434ace4facfbbf498bd9273497a5f9a5b4f38c6c0fbfcab129cb97da96339447d69c6a9f179540c7277b8aa1f0a918bade1a8f861c761f70f7

data/Gemfile

@@ -11,7 +11,7 @@ gemspec
 # In some circumstances custom flags are passed to gems in order
 # to build appropriately.  Defer to ./reinstall_pwn_gemset.sh
 # to review these custom flags (e.g. pg, serialport, etc).
-gem 'activesupport', '8.0.2'
+gem 'activesupport', '8.0.2.1'
 gem 'anemone', '0.7.2'
 gem 'authy', '3.0.1'
 gem 'aws-sdk', '3.3.0'
@@ -67,7 +67,7 @@ gem 'open3', '0.2.1'
 gem 'os', '1.1.4'
 gem 'ostruct', '0.6.3'
 gem 'packetfu', '2.0.0'
-gem 'packetgen', '4.1.0'
+gem 'packetgen', '4.1.1'
 gem 'pdf-reader', '2.15.0'
 gem 'pg', '1.6.1'
 gem 'pry', '0.15.2'

data/README.md

@@ -37,7 +37,7 @@ $ cd /opt/pwn
 $ ./install.sh
 $ ./install.sh ruby-gem
 $ pwn
-pwn[v0.5.363]:001 >>> PWN.help
+pwn[v0.5.365]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.4.4@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.5.363]:001 >>> PWN.help
+pwn[v0.5.365]:001 >>> PWN.help
 ```
 
 If you're using a multi-user install of RVM do:
@@ -62,7 +62,7 @@ $ rvm use ruby-3.4.4@pwn
 $ rvmsudo gem uninstall --all --executables pwn
 $ rvmsudo gem install --verbose pwn
 $ pwn
-pwn[v0.5.363]:001 >>> PWN.help
+pwn[v0.5.365]:001 >>> PWN.help
 ```
 
 PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`.  The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:

data/bin/pwn_burp_suite_pro_active_scan

@@ -18,6 +18,10 @@ OptionParser.new do |options|
     opts[:output_path] = o
   end
 
+  options.on('-eLIST', '--exclude_paths=LIST', '<Optional - Comma-delimited list of paths to exlude from scanning (e.g. "/api/login, /api/logout, /api/etc")>') do |e|
+    opts[:exclude_paths] = e
+  end
+
   options.on('-bBPATH', '--burp_path=BPATH', '<Optional - Path to Burp Suite Pro Jar File (Defaults to /opt/burpsuite/burpsuite-pro.jar)>') do |b|
     opts[:burp_jar_path] = b
   end
@@ -56,6 +60,9 @@ begin
   output_path = opts[:output_path]
   raise 'ERROR: --report_output_path is required.' if output_path.nil?
 
+  exlude_paths = opts[:exclude_paths]
+  exlude_paths = exlude_paths.split(',').map(&:strip) if exlude_paths.is_a?(String)
+
   navigation_instruct = opts[:navigation_instruct]
 
   in_scope = opts[:in_scope] ||= target_url
@@ -112,7 +119,7 @@ begin
   sleep duration # Sleep for now so everything loads the way we expect - blech.
   print "\n"
 
-  PWN::Plugins::BurpSuite.invoke_active_scan(burp_obj: burp_obj, target_url: in_scope)
+  PWN::Plugins::BurpSuite.invoke_active_scan(burp_obj: burp_obj, target_url: in_scope, exclude_paths: exlude_paths)
 
   # Dump a list of scan issues from Active Scan result
   # scan_issues = PWN::Plugins::BurpSuite.get_scan_issues(burp_obj: burp_obj)

data/lib/pwn/plugins/burp_suite.rb

@@ -771,7 +771,8 @@ module PWN
       # Supported Method Parameters::
       # active_scan_url_arr = PWN::Plugins::BurpSuite.invoke_active_scan(
       #   burp_obj: 'required - burp_obj returned by #start method',
-      #   target_url: 'required - target url to scan in sitemap (should be loaded & authenticated w/ burp_obj[:burp_browser])'
+      #   target_url: 'required - target url to scan in sitemap (should be loaded & authenticated w/ burp_obj[:burp_browser])',
+      #   exclude_paths: 'optional - array of paths to exclude from active scan (default: [])'
       # )
 
       public_class_method def self.invoke_active_scan(opts = {})
@@ -779,6 +780,10 @@ module PWN
         rest_browser = burp_obj[:rest_browser]
         pwn_burp_api = burp_obj[:pwn_burp_api]
         target_url = opts[:target_url].to_s.scrub.strip.chomp
+        raise 'ERROR: target_url parameter is required' if target_url.empty?
+
+        exclude_paths = opts[:exclude_paths] ||= []
+
         target_scheme = URI.parse(target_url).scheme
         target_host = URI.parse(target_url).host
         target_path = URI.parse(target_url).path
@@ -793,6 +798,8 @@ module PWN
           json_req = site[:request]
           b64_decoded_req = Base64.strict_decode64(json_req)
           json_path = b64_decoded_req.split[1].to_s.scrub.strip.chomp
+          next if exclude_paths.include?(json_path)
+
           json_query = json_path.split('?')[1].to_s.scrub.strip.chomp
 
           json_http_svc = site[:http_service]
@@ -967,10 +974,13 @@ module PWN
       public_class_method def self.stop(opts = {})
         burp_obj = opts[:burp_obj]
         browser_obj = burp_obj[:burp_browser]
-        burp_pid = burp_obj[:pid]
+        rest_browser = burp_obj[:rest_browser]
+        pwn_burp_api = burp_obj[:pwn_burp_api]
+        # burp_pid = burp_obj[:pid]
 
         browser_obj = PWN::Plugins::TransparentBrowser.close(browser_obj: browser_obj)
-        Process.kill('TERM', burp_pid)
+        rest_browser.post("http://#{pwn_burp_api}/shutdown", '')
+        # Process.kill('TERM', burp_pid)
 
         burp_obj = nil
       rescue StandardError => e
@@ -1080,7 +1090,8 @@ module PWN
 
           active_scan_url_arr = #{self}.invoke_active_scan(
             burp_obj: 'required - burp_obj returned by #start method',
-            target_url: 'required - target url to scan in sitemap (should be loaded & authenticated w/ burp_obj[:burp_browser])'
+            target_url: 'required - target url to scan in sitemap (should be loaded & authenticated w/ burp_obj[:burp_browser])',
+            exclude_paths: 'optional - array of paths to exclude from active scan (default: [])'
           )
 
           json_scan_issues = #{self}.get_scan_issues(

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.5.363'
+  VERSION = '0.5.365'
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.5.363
+  version: 0.5.365
 platform: ruby
 authors:
 - 0day Inc.
@@ -15,14 +15,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 8.0.2
+        version: 8.0.2.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 8.0.2
+        version: 8.0.2.1
 - !ruby/object:Gem::Dependency
   name: anemone
   requirement: !ruby/object:Gem::Requirement
@@ -729,14 +729,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 4.1.0
+        version: 4.1.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 4.1.0
+        version: 4.1.1
 - !ruby/object:Gem::Dependency
   name: pdf-reader
   requirement: !ruby/object:Gem::Requirement