pwn 0.5.5 → 0.5.7

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 830ff0222ce1d91faa0cb731810085935ad1c9da2e1785d6468ba5419e3bfb87
-  data.tar.gz: efcb347f3225693b7b67ac78e09635c2c186cc9302dd1b37e103eaf658d156f2
+  metadata.gz: 7d90e05f1c7239ec8e88a82a7799538b5f8f77cab5c154c6d60c3dfd0889f5ea
+  data.tar.gz: eaff4854dea9da4e25636abf2eb9a0e4ca250e96cccf22550f931785693fad7e
 SHA512:
-  metadata.gz: cb81f182a1d8de751a45bf66fd73ccdfb64ab01bdbb9c5921d8673888f9de7744c9bc7a2c422e388566d1a8c20e778ee7e8870640f15969a6be40139d7ad763e
-  data.tar.gz: 3d3c30615ef6808af1b5441ee5642ab7acdb3a7989755f115f93c3e2cc4b56f0a75ad3c468743100377f327208e2c4154c326aa8e99c656afc9f96a5f3d6d5bc
+  metadata.gz: 9d9dade4d33378df39631a52d1253da4bf7b0494a0c97b1023b53e9ce25fc35c2355532c73d9f4cc61b2955211e474f376cb68b2b3e774a49a4a929f9f9aad0c
+  data.tar.gz: b7b0b33da255e61de0b78191be5b6c8196707fd45396674d33d3b107bcb8c45a8240c956533f1007f936c5f7a7370e95764b8c19fbc549ea6f15d9ea07c20b73

data/Gemfile

@@ -83,10 +83,10 @@ gem 'savon', '2.14.0'
 gem 'selenium-devtools', '0.121.0'
 gem 'serialport', '1.3.2'
 # gem 'sinatra', '4.0.0'
-gem 'slack-ruby-client', '2.2.0'
+gem 'slack-ruby-client', '2.3.0'
 gem 'socksify', '1.7.1'
 gem 'spreadsheet', '1.3.1'
-gem 'sqlite3', '1.7.1'
+gem 'sqlite3', '1.7.2'
 gem 'thin', '1.8.2'
 gem 'tty-prompt', '0.23.1'
 gem 'tty-spinner', '0.9.3'

data/README.md

@@ -37,7 +37,7 @@ $ cd /opt/pwn
 $ ./install.sh
 $ ./install.sh ruby-gem
 $ pwn
-pwn[v0.5.5]:001 >>> PWN.help
+pwn[v0.5.7]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.3.0@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.5.5]:001 >>> PWN.help
+pwn[v0.5.7]:001 >>> PWN.help
 ```
 
 If you're using a multi-user install of RVM do:
@@ -62,7 +62,7 @@ $ rvm use ruby-3.3.0@pwn
 $ rvmsudo gem uninstall --all --executables pwn
 $ rvmsudo gem install --verbose pwn
 $ pwn
-pwn[v0.5.5]:001 >>> PWN.help
+pwn[v0.5.7]:001 >>> PWN.help
 ```
 
 PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`.  The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:

data/bin/pwn_bdba_scan

@@ -146,10 +146,9 @@ begin
   find_product_attempts = scan_attempts
   print 'Looking for Product in Apps by Group...'
   loop do
-    # File encoding conducting by synopsis is kinda goofy.
-    # The encode space w/ + (which is expected) but dont
-    # encode + to %2B (whiich _isn't_ expected)
-    target_basename = CGI.unescape_uri_component(File.basename(target_file))
+    # target_basename = CGI.unescape_uri_component(File.basename(target_file))
+    # ^ Synopsis unescapes it for us.
+    target_basename = File.basename(target_file)
 
     find_product = scan_progress_resp[:products].find { |p| p[:name] == target_basename }
 

data/lib/pwn/plugins/xxd.rb

@@ -163,9 +163,10 @@ module PWN
               s3: v[:ascii]
             )
           end.join
-          puts hexdump
         end
 
+        puts hexdump
+
         # Useful for testing which chunk(s)
         # trigger malware detection engines
         if byte_chunks.to_i.positive?
@@ -184,7 +185,9 @@ module PWN
             chunk_file = "#{file}.#{start_chunk_addr}-#{end_chunk_addr}"
 
             binary_data = chunk.map do |line|
-              line.split[1..8].map do |hex|
+              hex_line = line.split[1..8]
+              hex_line = line.split[1..-2] if hex_line.length < 8
+              hex_line.map do |hex|
                 [hex].pack('H*')
               end.join
             end.join
@@ -193,7 +196,9 @@ module PWN
           end
         else
           binary_data = hexdump.lines.map do |line|
-            line.split[1..8].map do |hex|
+            hex_line = line.split[1..8]
+            hex_line = line.split[1..-2] if hex_line.length < 8
+            hex_line.map do |hex|
               [hex].pack('H*')
             end.join
           end.join

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.5.5'
+  VERSION = '0.5.7'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.5.5
+  version: 0.5.7
 platform: ruby
 authors:
 - 0day Inc.
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-01-29 00:00:00.000000000 Z
+date: 2024-02-01 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -996,14 +996,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.2.0
+        version: 2.3.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.2.0
+        version: 2.3.0
 - !ruby/object:Gem::Dependency
   name: socksify
   requirement: !ruby/object:Gem::Requirement
@@ -1038,14 +1038,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.7.1
+        version: 1.7.2
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.7.1
+        version: 1.7.2
 - !ruby/object:Gem::Dependency
   name: thin
   requirement: !ruby/object:Gem::Requirement