RubyGems - pwn - Versions diffs - 0.5.551 → 0.5.552 - Mend

pwn 0.5.551 → 0.5.552

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

checksums.yaml +4 -4
data/.rubocop.yml +1 -1
data/Gemfile +1 -1
data/README.md +3 -3
data/lib/pwn/plugins/burp_suite.rb +66 -9
data/lib/pwn/version.rb +1 -1
metadata +3 -3

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 0e0aad93e7d83b22a576c3ee41b5d804daf4fdfd21ac0711ac502b8703d18891
-  data.tar.gz: c2fc43c97a06e96a908899d28092a73f4ed39c0f73fc01d5f5525ecb4d930dc0
+  metadata.gz: 0eb71ac056fca69e9b903f0cfca9c905f1acafa556aad10dfb3da0cd64675b0d
+  data.tar.gz: 4416c11597a1ba0ee7c84267be3f47cdf67bb236f2ab89f766155a86b72eaaea
 SHA512:
-  metadata.gz: b7d2eda4eb05ecccdd31f7725d3c63da7e9190ec36d4559f959d538f929704305b7b9143e88aff63c68a4593a60c0ef9e5f5df395255540e501c6495623e3d42
-  data.tar.gz: 0bc1a8ba361fe00580d0bbe9405ee97387bb6ac9edf118fedb3206a7bd776d3a438722dde482085013e1631888767c74680825b5c342149d086ff36adde61212
+  metadata.gz: a8815c6bb53071f7a6094ced8da45d537b0bf6a454b404325cbb30e446034827fd1fcac537cc90f3dd0213da498793fd46b1d762b593d0b2040d80da09658eb8
+  data.tar.gz: efc39f2cf19f17aedf98b7fb7a8784865821e387df44382390b5488e2ae1df1da4fb0b582f86cf3c6914f42b217b0c6f4700c7d092c1c445ba16b491eb452e14

data/.rubocop.yml CHANGED Viewed

@@ -18,7 +18,7 @@ Metrics/CyclomaticComplexity:
 Metrics/MethodLength:
   Max: 733
 Metrics/ModuleLength:
-  Max: 1574
+  Max: 1584
 Metrics/PerceivedComplexity:
   Max: 157
 Style/HashEachMethods:

data/Gemfile CHANGED Viewed

@@ -49,7 +49,7 @@ gem 'jwt', '3.1.2'
 gem 'libusb', '0.7.2'
 gem 'luhn', '3.0.0'
 gem 'mail', '2.9.0'
-gem 'mcp', '0.9.1'
+gem 'mcp', '0.9.2'
 gem 'meshtastic', '0.0.158'
 gem 'metasm', '1.0.5'
 gem 'mongo', '2.23.0'

data/README.md CHANGED Viewed

@@ -37,7 +37,7 @@ $ cd /opt/pwn
 $ ./install.sh
 $ ./install.sh ruby-gem
 $ pwn
-pwn[v0.5.551]:001 >>> PWN.help
+pwn[v0.5.552]:001 >>> PWN.help
 ```
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-4.0.1@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.5.551]:001 >>> PWN.help
+pwn[v0.5.552]:001 >>> PWN.help
 ```
 If you're using a multi-user install of RVM do:
@@ -62,7 +62,7 @@ $ rvm use ruby-4.0.1@pwn
 $ rvmsudo gem uninstall --all --executables pwn
 $ rvmsudo gem install --verbose pwn
 $ pwn
-pwn[v0.5.551]:001 >>> PWN.help
+pwn[v0.5.552]:001 >>> PWN.help
 ```
 PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`.  The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:

data/lib/pwn/plugins/burp_suite.rb CHANGED Viewed

@@ -90,14 +90,22 @@ module PWN
             end
             default_http_ports = [80, 443]
+            offset = 0
+            limit = 200
             loop do
               # TODO: Implement repeater into the loop?  This reduces load to LLM but is slooow.
               # Repeater should analyze the reqesut/response pair and suggest
               # modifications to the request to further probe for vulnerabilities _quickly_.
               case type
               when :proxy_history
-                sitemap = get_sitemap(burp_obj: burp_obj)
-                proxy_history = get_proxy_history(burp_obj: burp_obj)
+                proxy_history = get_proxy_history(
+                  burp_obj: burp_obj,
+                  limit: limit,
+                  offset: offset
+                )
+                offset = 0 if proxy_history.empty?
                 proxy_history.each do |entry|
                   request = entry[:request]
                   response = entry[:response]
@@ -115,6 +123,7 @@ module PWN
                   # If sitemap comment and highlight color exists, use that instead of re-analyzing
                   sitemap_entry = nil
+                  sitemap = get_sitemap(burp_obj: burp_obj, uri: uri)
                   if sitemap.any?
                     sitemap_entry = sitemap.find do |site|
                       next unless site.key?(:http_service) && site.key?(:request)
@@ -152,8 +161,12 @@ module PWN
                 sleep Random.rand(30..60)
               when :sitemap
-                proxy_history = get_proxy_history(burp_obj: burp_obj)
-                sitemap = get_sitemap(burp_obj: burp_obj)
+                sitemap = get_sitemap(
+                  burp_obj: burp_obj,
+                  limit: limit,
+                  offset: offset
+                )
+                offset = 0 if sitemap.empty?
                 sitemap.each do |entry|
                   request = entry[:request]
                   response = entry[:response]
@@ -170,6 +183,7 @@ module PWN
                   next unless entry.key?(:comment) && entry[:comment].to_s.strip.empty?
                   proxy_history_entry = nil
+                  proxy_history = get_proxy_history(burp_obj: burp_obj, uri: uri)
                   if proxy_history.any?
                     proxy_history_entry = proxy_history.find do |proxy_entry|
                       next unless proxy_entry.key?(:http_service) && proxy_entry.key?(:request)
@@ -206,7 +220,12 @@ module PWN
                 sleep Random.rand(60..90)
               when :websocket_history
-                websocket_history = get_websocket_history(burp_obj: burp_obj)
+                websocket_history = get_websocket_history(
+                  burp_obj: burp_obj,
+                  limit: limit,
+                  offset: offset
+                )
+                offset = 0 if websocket_history.empty?
                 websocket_history.each do |entry|
                   uri = entry[:url]
                   next unless in_scope(burp_obj: burp_obj, uri: uri)
@@ -236,6 +255,7 @@ module PWN
                 end
                 sleep Random.rand(3..10)
               end
+              offset += limit
             end
           rescue Errno::ECONNREFUSED
             puts "BurpSuite:#{type} AI Introspection Thread >>> Terminating API Calls..."
@@ -592,6 +612,9 @@ module PWN
       # Supported Method Parameters::
       # json_proxy_history = PWN::Plugins::BurpSuite.get_proxy_history(
       #   burp_obj: 'required - burp_obj returned by #start method',
+      #   limit: 'optional - number of proxy history entries to return (default: 200)',
+      #   offset: 'optional - offset for pagination of proxy history entries (default: 0)',
+      #   uri: 'optional - filter proxy history entries by URI (default: nil)',
       #   keyword: 'optional - keyword to filter proxy history entries (default: nil)',
       #   return_as: 'optional - :base64 or :har (defaults to :base64)'
       # )
@@ -600,10 +623,19 @@ module PWN
         burp_obj = opts[:burp_obj]
         rest_browser = burp_obj[:rest_browser]
         mitm_rest_api = burp_obj[:mitm_rest_api]
+        limit = opts[:limit] ||= 200
+        offset = opts[:offset] ||= 0
+        uri = opts[:uri]
         keyword = opts[:keyword]
         return_as = opts[:return_as] ||= :base64
-        rest_call = "http://#{mitm_rest_api}/proxy/history"
+        if uri.nil?
+          rest_call = "http://#{mitm_rest_api}/proxy/history?limit=#{limit}&offset=#{offset}"
+        else
+          base64_encoded_uri = Base64.strict_encode64(uri.to_s.scrub.strip.chomp)
+          rest_call = "http://#{mitm_rest_api}/proxy/history/#{base64_encoded_uri}?limit=#{limit}&offset=#{offset}"
+        end
         sitemap = rest_browser.get(
           rest_call,
@@ -810,6 +842,8 @@ module PWN
       # Supported Method Parameters::
       # json_web_socket_history = PWN::Plugins::BurpSuite.get_websocket_history(
       #   burp_obj: 'required - burp_obj returned by #start method',
+      #   limit: 'optional - number of websocket history entries to return (default: 200)',
+      #   offset: 'optional - offset for pagination of websocket history entries (default: 0)',
       #   keyword: 'optional - keyword to filter websocket history entries (default: nil)'
       # )
@@ -817,9 +851,12 @@ module PWN
         burp_obj = opts[:burp_obj]
         rest_browser = burp_obj[:rest_browser]
         mitm_rest_api = burp_obj[:mitm_rest_api]
+        limit = opts[:limit] ||= 200
+        offset = opts[:offset] ||= 0
         keyword = opts[:keyword]
-        rest_call = "http://#{mitm_rest_api}/websocket/history"
+        rest_call = "http://#{mitm_rest_api}/websocket/history?limit=#{limit}&offset=#{offset}"
         sitemap = rest_browser.get(
           rest_call,
@@ -881,6 +918,9 @@ module PWN
       # Supported Method Parameters::
       # json_sitemap = PWN::Plugins::BurpSuite.get_sitemap(
       #   burp_obj: 'required - burp_obj returned by #start method',
+      #   limit: 'optional - number of sitemap entries to return (default: 200)',
+      #   offset: 'optional - offset for pagination of sitemap entries (default: 0)',
+      #   uri: 'optional - URI to filter sitemap entries (default: nil)',
       #   keyword: 'optional - keyword to filter sitemap entries (default: nil)',
       #   return_as: 'optional - :base64 or :har (defaults to :base64)'
       # )
@@ -889,10 +929,19 @@ module PWN
         burp_obj = opts[:burp_obj]
         rest_browser = burp_obj[:rest_browser]
         mitm_rest_api = burp_obj[:mitm_rest_api]
+        limit = opts[:limit] ||= 200
+        offset = opts[:offset] ||= 0
+        uri = opts[:uri]
         keyword = opts[:keyword]
         return_as = opts[:return_as] ||= :base64
-        rest_call = "http://#{mitm_rest_api}/sitemap"
+        if uri.nil?
+          rest_call = "http://#{mitm_rest_api}/sitemap?limit=#{limit}&offset=#{offset}"
+        else
+          base64_encoded_uri = Base64.strict_encode64(uri.to_s.scrub.strip.chomp)
+          rest_call = "http://#{mitm_rest_api}/sitemap/#{base64_encoded_uri}?limit=#{limit}&offset=#{offset}"
+        end
         sitemap = rest_browser.get(
           rest_call,
@@ -1614,7 +1663,7 @@ module PWN
         target_port = URI.parse(target_url).port.to_i
         active_scan_url_arr = []
-        json_sitemap = get_sitemap(burp_obj: burp_obj, target_url: target_url)
+        json_sitemap = get_sitemap(burp_obj: burp_obj, url: target_url)
         json_sitemap.uniq.each do |site|
           # Skip if the site does not have a request or http_service
           next if site[:request].empty?
@@ -2061,6 +2110,9 @@ module PWN
           json_proxy_history = #{self}.get_proxy_history(
             burp_obj: 'required - burp_obj returned by #start method',
+            limit: 'optional - integer to limit number of proxy history entries returned (default: 200)',
+            offset: 'optional - integer to offset proxy history results (default: 0)',
+            uri: 'optional - URI to filter proxy history results (default: nil)',
             keyword: 'optional - keyword to filter proxy history results (default: nil)',
             return_as: 'optional - :base64 or :har (defaults to :base64)'
           )
@@ -2072,6 +2124,8 @@ module PWN
           json_proxy_history = #{self}.get_websocket_history(
             burp_obj: 'required - burp_obj returned by #start method',
+            limit: 'optional - integer to limit number of websocket history entries returned (default: 200)',
+            offset: 'optional - integer to offset websocket history results (default: 0)',
             keyword: 'optional - keyword to filter websocket history results (default: nil)'
           )
@@ -2082,6 +2136,9 @@ module PWN
           json_sitemap = #{self}.get_sitemap(
             burp_obj: 'required - burp_obj returned by #start method',
+            limit: 'optional - integer to limit number of sitemap entries returned (default: 200)',
+            offset: 'optional - integer to offset sitemap results (default: 0)',
+            uri: 'optional - URI to filter sitemap results (default: nil)',
             keyword: 'optional - keyword to filter sitemap results (default: nil)',
             return_as: 'optional - :base64 or :har (defaults to :base64)'
           )

data/lib/pwn/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module PWN
-  VERSION = '0.5.551'
+  VERSION = '0.5.552'
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.5.551
+  version: 0.5.552
 platform: ruby
 authors:
 - 0day Inc.
@@ -533,14 +533,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.9.1
+        version: 0.9.2
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.9.1
+        version: 0.9.2
 - !ruby/object:Gem::Dependency
   name: meshtastic
   requirement: !ruby/object:Gem::Requirement