RubyGems - pwn - Versions diffs - 0.5.553 → 0.5.554 - Mend

pwn 0.5.553 → 0.5.554

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

checksums.yaml +4 -4
data/README.md +3 -3
data/lib/pwn/plugins/burp_suite.rb +9 -2
data/lib/pwn/version.rb +1 -1
metadata +1 -1

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b63daf980e7d378a35b6969dab3552dc628c44b248ff5200c8ab994d0a18a19e
-  data.tar.gz: f828d48541156917caea7b7079f5513ad61743a41945a8813e6544dc43252fcb
+  metadata.gz: 49eb5496957e5c639b18bbbee93a0e8f51516b5c0a8f001b32c7de7ca5e1211b
+  data.tar.gz: 872444c1e4c9fb5fb80280d2dd7dc9437a3bfe473711964127a7b519c13b10fc
 SHA512:
-  metadata.gz: ff6019fa716cf5783b24cd78b58c4fb4a56b4f183db67a88565c4923bc1a8640eb10bb3cc6b51a71746a73ff75a69060a5af92d4e244d68a626550eeba8f1507
-  data.tar.gz: 2dddb9bac901fd203ec3edb436ec286bb8f519c50b03945111fa5d5ac91b95a156a80c554fb0a1bb3e0fe02342eebdbe9851415c60902ec82d447be85610632e
+  metadata.gz: 512dbde8dbbdac206c76606f3a0d9900903ed027bbefe8231d26a9c33cac3817bf63a610dfc7196ac7d7ed18e21b168d63f4e64493adda91f4076a356208c39b
+  data.tar.gz: 0a135f251ad1076a446d221e10532d97c0a2d43e4c77da18752bd89763a907f03f6717b37ccce982338bf534b6c4c13a39a02227f16e8cc716111ba3e716ddce

data/README.md CHANGED Viewed

@@ -37,7 +37,7 @@ $ cd /opt/pwn
 $ ./install.sh
 $ ./install.sh ruby-gem
 $ pwn
-pwn[v0.5.553]:001 >>> PWN.help
+pwn[v0.5.554]:001 >>> PWN.help
 ```
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-4.0.1@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.5.553]:001 >>> PWN.help
+pwn[v0.5.554]:001 >>> PWN.help
 ```
 If you're using a multi-user install of RVM do:
@@ -62,7 +62,7 @@ $ rvm use ruby-4.0.1@pwn
 $ rvmsudo gem uninstall --all --executables pwn
 $ rvmsudo gem install --verbose pwn
 $ pwn
-pwn[v0.5.553]:001 >>> PWN.help
+pwn[v0.5.554]:001 >>> PWN.help
 ```
 PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`.  The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:

data/lib/pwn/plugins/burp_suite.rb CHANGED Viewed

@@ -90,10 +90,11 @@ module PWN
             end
             default_http_ports = [80, 443]
-            offset = 0
             limit = 10
+            offset = 0
             loop do
+              keep_offset = false
               # TODO: Implement repeater into the loop?  This reduces load to LLM but is slooow.
               # Repeater should analyze the reqesut/response pair and suggest
               # modifications to the request to further probe for vulnerabilities _quickly_.
@@ -121,6 +122,8 @@ module PWN
                   next unless entry.key?(:comment) && entry[:comment].to_s.strip.empty?
+                  keep_offset = true
                   # If sitemap comment and highlight color exists, use that instead of re-analyzing
                   sitemap_entry = nil
                   sitemap = get_sitemap(burp_obj: burp_obj, uri: uri)
@@ -182,6 +185,8 @@ module PWN
                   next unless entry.key?(:comment) && entry[:comment].to_s.strip.empty?
+                  keep_offset = true
                   proxy_history_entry = nil
                   proxy_history = get_proxy_history(burp_obj: burp_obj, uri: uri)
                   if proxy_history.any?
@@ -232,6 +237,8 @@ module PWN
                   next unless entry.key?(:comment) && entry[:comment].to_s.strip.empty?
+                  keep_offset = true
                   web_socket_id = entry[:web_socket_id]
                   direction = entry[:direction]
                   payload = entry[:payload]
@@ -255,7 +262,7 @@ module PWN
                 end
                 sleep Random.rand(3..10)
               end
-              offset += limit
+              offset += limit unless keep_offset
             end
           rescue Errno::ECONNREFUSED
             puts "BurpSuite:#{type} AI Introspection Thread >>> Terminating API Calls..."

data/lib/pwn/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module PWN
-  VERSION = '0.5.553'
+  VERSION = '0.5.554'
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.5.553
+  version: 0.5.554
 platform: ruby
 authors:
 - 0day Inc.