RubyGems - pwn - Versions diffs - 0.5.64 → 0.5.65 - Mend

pwn 0.5.64 → 0.5.65

Files changed (6) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c42962690f6fcba146756b708712680aa0f82bdcc83085bdb28f004206e069c0
-  data.tar.gz: 524d051208dde3344f8878474b36b5418ccbe300547f846398cab16236344c35
+  metadata.gz: 19fba8018db8e90a1c82fda10a5c0af6c560e367ae45a105c0daa495df25647b
+  data.tar.gz: 6c6fb1cc72ccb0438a655151925fb45ad5c9978fbe21607b26bc0c21cddf5575
 SHA512:
-  metadata.gz: ead15133e412b3bad3871b31fb7fe6db531f9cdb729f83ea46b51d8f5f4311a6394097e6b27352abc1d8755338cb8f78e0abf84aa94ef258973dbc89db355421
-  data.tar.gz: 903fbff707e0166a55169ab78d955e42ae0582b48a507893b91ba0ad530bf840e180fc2ac9d06de9cc8f7c2de7f9fdd5d9638735caf3041107875c9602be32b2
+  metadata.gz: 765212cd579f768bea360c0d0e39ba71b16997e19124915ed1941915c26bec2e10253141d4e70f2cd5741aa7599f3169a5343f6351a50194dc7dd03cdd70065f
+  data.tar.gz: 5d76ffbbebd93ec75e2d16bf798c809b2f2be1a039fb459f917683ba2b960cb487da9ea8c750720fa8ca8a885e586b326f07e7f85fb340762919ad3ab4730e2f

data/README.md CHANGED Viewed

@@ -37,7 +37,7 @@ $ cd /opt/pwn
 $ ./install.sh
 $ ./install.sh ruby-gem
 $ pwn
-pwn[v0.5.64]:001 >>> PWN.help
+pwn[v0.5.65]:001 >>> PWN.help
 ```
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.3.0@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.5.64]:001 >>> PWN.help
+pwn[v0.5.65]:001 >>> PWN.help
 ```
 If you're using a multi-user install of RVM do:
@@ -62,7 +62,7 @@ $ rvm use ruby-3.3.0@pwn
 $ rvmsudo gem uninstall --all --executables pwn
 $ rvmsudo gem install --verbose pwn
 $ pwn
-pwn[v0.5.64]:001 >>> PWN.help
+pwn[v0.5.65]:001 >>> PWN.help
 ```
 PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`.  The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:

data/bin/pwn CHANGED Viewed

@@ -312,12 +312,10 @@ begin
       if is_encrypted
         # TODO: Implement "something you know, something you have, && something you are?"
-        decryption_file = opts[:decryption_file] ||= "#{ENV.fetch('HOME')}/pwn.decryptor.yaml"
-        raise "ERROR: Decryption file not found at #{decryption_file}" unless File.exist?(decryption_file)
-        yaml_decryptor = YAML.load_file(decryption_file, symbolize_names: true)
-        key = opts[:key] ||= yaml_decryptor[:key]
-        iv = opts[:iv] ||= yaml_decryptor[:iv]
+        decryption_file = opts[:decryption_file] ||= "#{Dir.home}/pwn.decryptor.yaml"
+        yaml_decryptor = YAML.load_file(decryption_file, symbolize_names: true) if File.exist?(decryption_file)
+        key = opts[:key] ||= yaml_decryptor[:key] ||= ENV.fetch('PWN_DECRYPTOR_KEY')
+        iv = opts[:iv] ||= yaml_decryptor[:iv] ||= ENV.fetch('PWN_DECRYPTOR_IV')
         encrypted_config_dump = PWN::Plugins::Vault.dump(
           file: yaml_config_path,

data/etc/pwn.decryptor.yaml.EXAMPLE CHANGED Viewed

@@ -1,2 +1,4 @@
+# If you rely upon this file, it should be out-of-band
+# (e.g. not available in code repos, permission protected, limited access, etc.)
 key: 'KEY PROVIDED WHEN USING PWN::Plugins::Vault.create(file: "pwn.yaml") TO ENCRYPT pwn.yaml'
 iv: 'KEY PROVIDED WHEN USING PWN::Plugins::Vault.create(file: "pwn.yaml") TO ENCRYPT pwn.yaml'

data/lib/pwn/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module PWN
-  VERSION = '0.5.64'
+  VERSION = '0.5.65'
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.5.64
+  version: 0.5.65
 platform: ruby
 authors:
 - 0day Inc.