pwn 0.5.364 → 0.5.365

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: '05464287ffd20ddf285b20aeaf1fe0d634a8fb61487096db84f053c0269fcccd'
-  data.tar.gz: de44e7d63efe3e1cb0991f8174481387c722aaa1e8f63b2e45c4512fc547c61c
+  metadata.gz: 2468a8ceb5aaf33a3fbb166bf0f96ae40070b513756899c542e59caa1ee7639b
+  data.tar.gz: 75320fca9b6d6fa200ec30438c68dbd61df11daa46108a2c7b38a0ca296e15ac
 SHA512:
-  metadata.gz: 83257271047217678cd082d0296787a558df43d85459696c36574df73e6a44abbd18b1f0c15cd74e0e9d3c56af717c7b293bda9645d6b0dae0ddf9d3d516b6a0
-  data.tar.gz: b1df72203fcbd6f1dd597fc81754ef48df2516881faf001521ee9f1f60a3225d74248e42871d9e8532a7fce2483c5676565a66f7742118b2b732a94dde1fb0bf
+  metadata.gz: 055c34d4802ac7a9cea63d6903abfcf8d764f95b1e85f586626a33ada0ea6981b3abca6f6268e43a8e366b36d14e898802b130ebd14cda1e14baba538653e984
+  data.tar.gz: aea3d7774c484b434ace4facfbbf498bd9273497a5f9a5b4f38c6c0fbfcab129cb97da96339447d69c6a9f179540c7277b8aa1f0a918bade1a8f861c761f70f7

data/README.md

@@ -37,7 +37,7 @@ $ cd /opt/pwn
 $ ./install.sh
 $ ./install.sh ruby-gem
 $ pwn
-pwn[v0.5.364]:001 >>> PWN.help
+pwn[v0.5.365]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.4.4@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.5.364]:001 >>> PWN.help
+pwn[v0.5.365]:001 >>> PWN.help
 ```
 
 If you're using a multi-user install of RVM do:
@@ -62,7 +62,7 @@ $ rvm use ruby-3.4.4@pwn
 $ rvmsudo gem uninstall --all --executables pwn
 $ rvmsudo gem install --verbose pwn
 $ pwn
-pwn[v0.5.364]:001 >>> PWN.help
+pwn[v0.5.365]:001 >>> PWN.help
 ```
 
 PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`.  The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:

data/bin/pwn_burp_suite_pro_active_scan

@@ -18,6 +18,10 @@ OptionParser.new do |options|
     opts[:output_path] = o
   end
 
+  options.on('-eLIST', '--exclude_paths=LIST', '<Optional - Comma-delimited list of paths to exlude from scanning (e.g. "/api/login, /api/logout, /api/etc")>') do |e|
+    opts[:exclude_paths] = e
+  end
+
   options.on('-bBPATH', '--burp_path=BPATH', '<Optional - Path to Burp Suite Pro Jar File (Defaults to /opt/burpsuite/burpsuite-pro.jar)>') do |b|
     opts[:burp_jar_path] = b
   end
@@ -56,6 +60,9 @@ begin
   output_path = opts[:output_path]
   raise 'ERROR: --report_output_path is required.' if output_path.nil?
 
+  exlude_paths = opts[:exclude_paths]
+  exlude_paths = exlude_paths.split(',').map(&:strip) if exlude_paths.is_a?(String)
+
   navigation_instruct = opts[:navigation_instruct]
 
   in_scope = opts[:in_scope] ||= target_url
@@ -112,7 +119,7 @@ begin
   sleep duration # Sleep for now so everything loads the way we expect - blech.
   print "\n"
 
-  PWN::Plugins::BurpSuite.invoke_active_scan(burp_obj: burp_obj, target_url: in_scope)
+  PWN::Plugins::BurpSuite.invoke_active_scan(burp_obj: burp_obj, target_url: in_scope, exclude_paths: exlude_paths)
 
   # Dump a list of scan issues from Active Scan result
   # scan_issues = PWN::Plugins::BurpSuite.get_scan_issues(burp_obj: burp_obj)

data/lib/pwn/plugins/burp_suite.rb

@@ -771,7 +771,8 @@ module PWN
       # Supported Method Parameters::
       # active_scan_url_arr = PWN::Plugins::BurpSuite.invoke_active_scan(
       #   burp_obj: 'required - burp_obj returned by #start method',
-      #   target_url: 'required - target url to scan in sitemap (should be loaded & authenticated w/ burp_obj[:burp_browser])'
+      #   target_url: 'required - target url to scan in sitemap (should be loaded & authenticated w/ burp_obj[:burp_browser])',
+      #   exclude_paths: 'optional - array of paths to exclude from active scan (default: [])'
       # )
 
       public_class_method def self.invoke_active_scan(opts = {})
@@ -779,6 +780,10 @@ module PWN
         rest_browser = burp_obj[:rest_browser]
         pwn_burp_api = burp_obj[:pwn_burp_api]
         target_url = opts[:target_url].to_s.scrub.strip.chomp
+        raise 'ERROR: target_url parameter is required' if target_url.empty?
+
+        exclude_paths = opts[:exclude_paths] ||= []
+
         target_scheme = URI.parse(target_url).scheme
         target_host = URI.parse(target_url).host
         target_path = URI.parse(target_url).path
@@ -793,6 +798,8 @@ module PWN
           json_req = site[:request]
           b64_decoded_req = Base64.strict_decode64(json_req)
           json_path = b64_decoded_req.split[1].to_s.scrub.strip.chomp
+          next if exclude_paths.include?(json_path)
+
           json_query = json_path.split('?')[1].to_s.scrub.strip.chomp
 
           json_http_svc = site[:http_service]
@@ -1083,7 +1090,8 @@ module PWN
 
           active_scan_url_arr = #{self}.invoke_active_scan(
             burp_obj: 'required - burp_obj returned by #start method',
-            target_url: 'required - target url to scan in sitemap (should be loaded & authenticated w/ burp_obj[:burp_browser])'
+            target_url: 'required - target url to scan in sitemap (should be loaded & authenticated w/ burp_obj[:burp_browser])',
+            exclude_paths: 'optional - array of paths to exclude from active scan (default: [])'
           )
 
           json_scan_issues = #{self}.get_scan_issues(

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.5.364'
+  VERSION = '0.5.365'
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.5.364
+  version: 0.5.365
 platform: ruby
 authors:
 - 0day Inc.