pwn 0.5.84 → 0.5.86

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 140bec69aaf1bd6d7c4cdaa6eea7e065de1ba99d1bc19af79d647fc04c50a5f1
-  data.tar.gz: 22fa36d33db3cedbfbae8125357fc5c4385ab1d83098537ce8a454474d5456ee
+  metadata.gz: 4c115357ddd23aa5957cffd1b858e332b4b90086826ae7f2d04e5b57c25fd982
+  data.tar.gz: 99cbd0e279109e5d8524c26751ff238a5fe42bdb69c7af478a0aee8f10891535
 SHA512:
-  metadata.gz: 534ef6b2be5bbda8b98384464b16744e2a8b69a70a2e5eb3d475b513543a047a0830f9d0cb2bd9f4b2619b4b9a5d3579570721f3c46820964904c9970e8c940b
-  data.tar.gz: bafb717f2cab353ab3d9e3515bfde975d7bbab1f10769e8e54d602d0d92718ea909bebec8b1afda3b793814551287bf924df9348b252b45f9af9ac73340119d9
+  metadata.gz: 81f4bffb62a4f4982256c5616f2624dffa1c5b39ea2e9976d7dfaedbdd6f17dc254b265ebf89e7901dc1f62a420891f7558dbde6e464c15c4eb9b15afaf3878b
+  data.tar.gz: a17960dd7bd9550c4f46dcea164ba3c1c57c5d8341acfba3a3b5c88d9c78f729b23da50d06d3003509f17cf5cebf1f50926cd4c39b89b664a4e277fa79290019

data/Gemfile

@@ -46,9 +46,9 @@ gem 'jwt', '2.8.1'
 gem 'libusb', '0.7.1'
 gem 'luhn', '1.0.2'
 gem 'mail', '2.8.1'
+gem 'meshtastic', '0.0.1'
 gem 'metasm', '1.0.5'
-gem 'mqtt', '0.6.0'
-# gem 'mongo', '2.19.3'
+gem 'mongo', '2.20.0'
 gem 'msfrpc-client', '1.1.2'
 gem 'netaddr', '2.0.6'
 gem 'net-ldap', '0.19.0'
@@ -84,7 +84,7 @@ gem 'ruby-nmap', '1.0.3'
 gem 'ruby-saml', '1.16.0'
 gem 'rvm', '1.11.3.9'
 gem 'savon', '2.15.0'
-gem 'selenium-devtools', '0.123.0'
+gem 'selenium-devtools', '0.124.0'
 gem 'serialport', '1.3.2'
 # gem 'sinatra', '4.0.0'
 gem 'slack-ruby-client', '2.3.0'

data/README.md

@@ -37,7 +37,7 @@ $ cd /opt/pwn
 $ ./install.sh
 $ ./install.sh ruby-gem
 $ pwn
-pwn[v0.5.84]:001 >>> PWN.help
+pwn[v0.5.86]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.3.0@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.5.84]:001 >>> PWN.help
+pwn[v0.5.86]:001 >>> PWN.help
 ```
 
 If you're using a multi-user install of RVM do:
@@ -62,7 +62,7 @@ $ rvm use ruby-3.3.0@pwn
 $ rvmsudo gem uninstall --all --executables pwn
 $ rvmsudo gem install --verbose pwn
 $ pwn
-pwn[v0.5.84]:001 >>> PWN.help
+pwn[v0.5.86]:001 >>> PWN.help
 ```
 
 PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`.  The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:

data/lib/pwn/aws.rb

@@ -96,7 +96,7 @@ module PWN
     autoload :Workspaces, 'pwn/aws/workspaces'
     autoload :XRay, 'pwn/aws/x_ray'
 
-    # Display a List of Every PWN Plugin
+    # Display a List of Every PWN::AWS Module
 
     public_class_method def self.help
       constants.sort

data/lib/pwn/ffi/stdio.rb

@@ -0,0 +1,40 @@
+# frozen_string_literal: true
+
+require 'ffi'
+
+module PWN
+  module FFI
+    # This plugin is a wrapper for the standard I/O functions in libc.
+    module Stdio
+      extend FFI::Library
+
+      ffi_lib FFI::Library::LIBC
+
+      attach_function(:puts, [:string], :int)
+      attach_function(:printf, %i[string varargs], :int, convention: :default)
+      attach_function(:scanf, %i[string varargs], :int)
+
+      # Author(s):: 0day Inc. <request.pentest@0dayinc.com>
+
+      public_class_method def self.authors
+        "AUTHOR(S):
+          0day Inc. <request.pentest@0dayinc.com>
+        "
+      end
+
+      # Display Usage for this Module
+
+      public_class_method def self.help
+        puts "USAGE:
+          #{self}.puts string
+          #{self}.printf(\"format string\", str, int, etc)
+
+          scanf_buffer = FFI::MemoryPointer.new(:char, 100)
+          #{self}.scanf(\"format string\", scanf_buffer)
+
+          #{self}.authors
+        "
+      end
+    end
+  end
+end

data/lib/pwn/ffi.rb

@@ -5,9 +5,9 @@ module PWN
   # into memory only when they're needed. For more information, see:
   # http://www.rubyinside.com/ruby-techniques-revealed-autoload-1652.html
   module FFI
-    # autoload :Sock, 'pwn/ffi/sock'
+    autoload :Stdio, 'pwn/ffi/stdio'
 
-    # Display a List of Every PWN Report
+    # Display a List of Every PWN::FFI Module
 
     public_class_method def self.help
       constants.sort

data/lib/pwn/plugins.rb

@@ -37,7 +37,6 @@ module PWN
     autoload :JSONPathify, 'pwn/plugins/json_pathify'
     autoload :Log, 'pwn/plugins/log'
     autoload :MailAgent, 'pwn/plugins/mail_agent'
-    autoload :Meshtastic, 'pwn/plugins/meshtastic'
     autoload :Metasploit, 'pwn/plugins/metasploit'
     autoload :MonkeyPatch, 'pwn/plugins/monkey_patch'
     autoload :MSR206, 'pwn/plugins/msr206'
@@ -75,7 +74,7 @@ module PWN
     autoload :Vsphere, 'pwn/plugins/vsphere'
     autoload :XXD, 'pwn/plugins/xxd'
 
-    # Display a List of Every PWN Plugin
+    # Display a List of Every PWN::Plugins Module
 
     public_class_method def self.help
       constants.sort

data/lib/pwn/reports.rb

@@ -14,7 +14,7 @@ module PWN
     autoload :URIBuster, 'pwn/reports/uri_buster'
     # autoload :XML, 'pwn/reports/xml'
 
-    # Display a List of Every PWN Report
+    # Display a List of Every PWN::Reports Module
 
     public_class_method def self.help
       constants.sort

data/lib/pwn/sast.rb

@@ -50,7 +50,7 @@ module PWN
     autoload :Version, 'pwn/sast/version'
     autoload :WindowLocationHash, 'pwn/sast/window_location_hash'
 
-    # Display a List of Each Static Code Anti-Pattern Matching Module
+    # Display a List of Every PWN::SAST Module
 
     public_class_method def self.help
       constants.sort

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.5.84'
+  VERSION = '0.5.86'
 end

data/lib/pwn/www.rb

@@ -26,7 +26,7 @@ module PWN
     autoload :Upwork, 'pwn/www/upwork'
     autoload :Youtube, 'pwn/www/youtube'
 
-    # Display a List of Every PWN WWW module
+    # Display a List of Every PWN::WWW Module
 
     public_class_method def self.help
       constants.sort

data/lib/pwn.rb

@@ -17,7 +17,7 @@ module PWN
   autoload :SAST, 'pwn/sast'
   autoload :WWW, 'pwn/www'
 
-  # Display Usage for the PWN Framework ~
+  # Display a List of Every PWN Module
 
   public_class_method def self.help
     constants.sort

data/spec/lib/pwn/{plugins/meshtastic_spec.rb → ffi/stdio_spec.rb}

@@ -2,14 +2,14 @@
 
 require 'spec_helper'
 
-describe PWN::Plugins::Meshtastic do
+describe PWN::FFI::Stdio do
   it 'should display information for authors' do
-    authors_response = PWN::Plugins::Meshtastic
+    authors_response = PWN::FFI::Stdio
     expect(authors_response).to respond_to :authors
   end
 
   it 'should display information for existing help method' do
-    help_response = PWN::Plugins::Meshtastic
+    help_response = PWN::FFI::Stdio
     expect(help_response).to respond_to :help
   end
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.5.84
+  version: 0.5.86
 platform: ruby
 authors:
 - 0day Inc.
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-04-23 00:00:00.000000000 Z
+date: 2024-04-25 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -472,6 +472,20 @@ dependencies:
     - - '='
       - !ruby/object:Gem::Version
         version: 2.8.1
+- !ruby/object:Gem::Dependency
+  name: meshtastic
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.0.1
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.0.1
 - !ruby/object:Gem::Dependency
   name: metasm
   requirement: !ruby/object:Gem::Requirement
@@ -487,19 +501,19 @@ dependencies:
       - !ruby/object:Gem::Version
         version: 1.0.5
 - !ruby/object:Gem::Dependency
-  name: mqtt
+  name: mongo
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.0
+        version: 2.20.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.6.0
+        version: 2.20.0
 - !ruby/object:Gem::Dependency
   name: msfrpc-client
   requirement: !ruby/object:Gem::Requirement
@@ -996,14 +1010,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.123.0
+        version: 0.124.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.123.0
+        version: 0.124.0
 - !ruby/object:Gem::Dependency
   name: serialport
   requirement: !ruby/object:Gem::Requirement
@@ -1763,6 +1777,7 @@ files:
 - lib/pwn/banner/radare2.rb
 - lib/pwn/banner/white_rabbit.rb
 - lib/pwn/ffi.rb
+- lib/pwn/ffi/stdio.rb
 - lib/pwn/plugins.rb
 - lib/pwn/plugins/android.rb
 - lib/pwn/plugins/assembly.rb
@@ -1795,7 +1810,6 @@ files:
 - lib/pwn/plugins/json_pathify.rb
 - lib/pwn/plugins/log.rb
 - lib/pwn/plugins/mail_agent.rb
-- lib/pwn/plugins/meshtastic.rb
 - lib/pwn/plugins/metasploit.rb
 - lib/pwn/plugins/monkey_patch.rb
 - lib/pwn/plugins/msr206.rb
@@ -2094,6 +2108,7 @@ files:
 - spec/lib/pwn/banner/radare2_spec.rb
 - spec/lib/pwn/banner/white_rabbit_spec.rb
 - spec/lib/pwn/banner_spec.rb
+- spec/lib/pwn/ffi/stdio_spec.rb
 - spec/lib/pwn/ffi_spec.rb
 - spec/lib/pwn/plugins/android_spec.rb
 - spec/lib/pwn/plugins/assembly_spec.rb
@@ -2126,7 +2141,6 @@ files:
 - spec/lib/pwn/plugins/json_pathify_spec.rb
 - spec/lib/pwn/plugins/log_spec.rb
 - spec/lib/pwn/plugins/mail_agent_spec.rb
-- spec/lib/pwn/plugins/meshtastic_spec.rb
 - spec/lib/pwn/plugins/metasploit_spec.rb
 - spec/lib/pwn/plugins/monkey_patch_spec.rb
 - spec/lib/pwn/plugins/msr206_spec.rb

data/lib/pwn/plugins/meshtastic.rb

@@ -1,265 +0,0 @@
-# frozen_string_literal: true
-
-require 'base64'
-require 'geocoder'
-require 'json'
-require 'mqtt'
-require 'openssl'
-require 'securerandom'
-
-module PWN
-  module Plugins
-    # Plugin used to interact with Meshtastic nodes
-    module Meshtastic
-      # Supported Method Parameters::
-      # mqtt_obj = PWN::Plugins::Meshtastic.connect(
-      #   host: 'optional - mqtt host (default: mqtt.meshtastic.org)',
-      #   port: 'optional - mqtt port (defaults: 1883)',
-      #   username: 'optional - mqtt username (default: meshdev)',
-      #   password: 'optional - (default: large4cats)'
-      # )
-
-      public_class_method def self.connect(opts = {})
-        # Publicly available MQTT server / credentials by default
-        host = opts[:host] ||= 'mqtt.meshtastic.org'
-        port = opts[:port] ||= 1883
-        username = opts[:username] ||= 'meshdev'
-        password = opts[:password] ||= 'large4cats'
-
-        mqtt_obj = MQTT::Client.connect(
-          host: host,
-          port: port,
-          username: username,
-          password: password
-        )
-
-        mqtt_obj.client_id = SecureRandom.random_bytes(8).unpack1('H*')
-
-        mqtt_obj
-      rescue StandardError => e
-        raise e
-      end
-
-      # Supported Method Parameters::
-      # PWN::Plugins::Meshtastic.subscribe(
-      #   mqtt_obj: 'required - mqtt_obj returned from #connect method'
-      #   region: 'optional - region (default: US)',
-      #   channel: 'optional - channel name (default: LongFast)',
-      #   psk: 'optional - channel pre-shared key (default: AQ==)',
-      #   qos: 'optional - quality of service (default: 0)',
-      #   json: 'optional - JSON output (default: false)'
-      # )
-
-      public_class_method def self.subscribe(opts = {})
-        mqtt_obj = opts[:mqtt_obj]
-        region = opts[:region] ||= 'US'
-        channel = opts[:channel] ||= 'LongFast'
-        psk = opts[:psk] ||= 'AQ=='
-        qos = opts[:qos] ||= 0
-        json = opts[:json] ||= false
-
-        # TODO: Find JSON URI for this
-        root_topic = "msh/#{region}/2/json" if json
-        # root_topic = "msh/#{region}/2/e" unless json
-        root_topic = "msh/#{region}/2/c" unless json
-        mqtt_obj.subscribe("#{root_topic}/#{channel}/#", qos)
-
-        # Decrypt the message
-        # Our AES key is 128 or 256 bits, shared as part of the 'Channel' specification.
-
-        # Actual pre-shared key for LongFast channel
-        psk = '1PG7OiApB1nwvP+rz05pAQ==' if channel == 'LongFast'
-        padded_psk = psk.ljust(psk.length + ((4 - (psk.length % 4)) % 4), '=')
-        replaced_psk = padded_psk.gsub('-', '+').gsub('_', '/')
-        psk = replaced_psk
-        dec_psk = Base64.strict_decode64(psk)
-
-        # cipher = OpenSSL::Cipher.new('AES-256-CTR')
-        cipher = OpenSSL::Cipher.new('AES-128-CTR')
-
-        if json
-          mqtt_obj.get_packet do |json_packet|
-            puts '-' * 80
-            packet = JSON.parse(json_packet.payload, symbolize_names: true)
-            puts JSON.pretty_generate(packet)
-            puts '-' * 80
-            puts "\n\n\n"
-          end
-        else
-          mqtt_obj.get_packet do |packet|
-            puts '-' * 80
-
-            payload = packet.payload.to_s
-
-            # Convert raw packet to hex-escaped bytes
-            # puts "PSK: #{psk.inspect} | Length: #{psk.length}"
-            # puts "Dec PSK: #{dec_psk.inspect} | Length: #{dec_psk.length}"
-            packet_from_backwards = payload[3..6]
-            if packet_from_backwards
-              packet_from_str = packet_from_backwards.reverse
-              packet_from_hex = packet_from_str.bytes.map { |byte| byte.to_s(16).rjust(2, '0') }.join
-              packet_from = packet_from_hex.to_i(16)
-              puts "\nFrom: #{packet_from_str.inspect} >> #{packet_from_hex} >> #{packet_from}"
-            end
-
-            packet_to_backwards = payload[8..11]
-            if packet_to_backwards
-              packet_to_str = packet_to_backwards.reverse
-              packet_to_hex = packet_to_str.bytes.map { |byte| byte.to_s(16).rjust(2, '0') }.join
-              packet_to = packet_to_hex.to_i(16)
-              puts "To: #{packet_to_str.inspect} >> #{packet_to_hex} >> #{packet_to}"
-            end
-
-            mystery_byte = payload[12]
-            if mystery_byte
-              mystery_hex = mystery_byte.bytes.map { |byte| byte.to_s(16).rjust(2, '0') }.join
-              mystery = mystery_hex.to_i(16)
-              puts "Mystery 1: #{mystery_byte.inspect} >> #{mystery_hex} >> #{mystery}"
-            end
-
-            msg_len = 0
-            msg_len_byte = payload[13]
-            if msg_len_byte
-              msg_len_hex = msg_len_byte.bytes.map { |byte| byte.to_s(16).rjust(2, '0') }.join
-              msg_len = msg_len_hex.to_i(16)
-            end
-            puts "Message Length: #{msg_len_byte.inspect} >> #{msg_len}"
-
-            channel_byte = payload[14]
-            if channel_byte
-              channel_hex = channel_byte.bytes.map { |byte| byte.to_s(16).rjust(2, '0') }.join
-              channel = channel_hex.to_i(16)
-              puts "Channel: #{channel_byte.inspect} >> #{channel_hex} >> #{channel}"
-            end
-
-            mystery_byte = payload[15]
-            if mystery_byte
-              mystery_hex = mystery_byte.bytes.map { |byte| byte.to_s(16).rjust(2, '0') }.join
-              mystery = mystery_hex.to_i(16)
-              puts "Mystery 2: #{mystery_byte.inspect} >> #{mystery_hex} >> #{mystery}"
-            end
-
-            pid_id_backwards = payload.b[-34..-31]
-            if pid_id_backwards
-              pid_str = pid_id_backwards.reverse
-              pid_hex = pid_str.bytes.map { |byte| byte.to_s(16).rjust(2, '0') }.join
-              packet_id = pid_hex.to_i(16)
-              puts "ID: #{pid_str.inspect} >> #{pid_hex} >> #{packet_id}"
-            end
-
-            topic = packet.topic
-            puts "\nTopic: #{topic}"
-
-            if msg_len.positive?
-              begin
-                puts "Payload: #{payload.inspect}"
-                puts "Payload Length: #{payload.length}"
-
-                nonce_packet_id = [packet_id].pack('V').ljust(8, "\x00")
-                nonce_from_node = [packet_from].pack('V').ljust(8, "\x00")
-                # puts "Nonce from Node: #{nonce_from_node.inspect} | Length: #{nonce_from_node.length}"
-                nonce = "#{nonce_packet_id}#{nonce_from_node}".b
-                puts "Nonce: #{nonce.inspect} | Length: #{nonce.length}"
-
-                # Decrypt the message
-                # Key must be 32 bytes
-                # IV mustr be 16 bytes
-                cipher.decrypt
-                cipher.key = dec_psk
-                cipher.iv = nonce
-                first_byte = 16
-                last_byte = first_byte + msg_len - 1
-                encrypted_payload = payload[first_byte..last_byte]
-                puts "\nEncrypted Payload:\n#{encrypted_payload.inspect}"
-                puts "Length: #{encrypted_payload.length}" if encrypted_payload
-
-                decrypted = cipher.update(encrypted_payload) + cipher.final
-                puts "\nDecrypted Payload:\n#{decrypted.inspect}"
-                puts "Length: #{decrypted.length}" if decrypted
-              rescue StandardError => e
-                puts "Error decrypting message: #{e}"
-              end
-            end
-            raw_packet = packet.to_s.b
-            puts "\nRaw Packet: #{raw_packet.inspect}"
-            puts "Length: #{packet.to_s.length}"
-            puts '-' * 80
-            puts "\n\n\n"
-          end
-        end
-      rescue Interrupt
-        puts "\nCTRL+C detected. Exiting..."
-      rescue StandardError => e
-        raise e
-      ensure
-        mqtt_obj.disconnect if mqtt_obj
-      end
-
-      # Supported Method Parameters::
-      # mqtt_obj = PWN::Plugins::Meshtastic.gps_search(
-      #   lat: 'required - latitude float (e.g. 37.7749)',
-      #   lon: 'required - longitude float (e.g. -122.4194)',
-      # )
-      public_class_method def self.gps_search(opts = {})
-        lat = opts[:lat]
-        lon = opts[:lon]
-
-        raise 'ERROR: Latitude and Longitude are required' unless lat && lon
-
-        gps_arr = [lat.to_f, lon.to_f]
-
-        Geocoder.search(gps_arr)
-      rescue StandardError => e
-        raise e
-      end
-
-      # Supported Method Parameters::
-      # mqtt_obj = PWN::Plugins::Meshtastic.disconnect(
-      #   mqtt_obj: 'required - mqtt_obj returned from #connect method'
-      # )
-      public_class_method def self.disconnect(opts = {})
-        mqtt_obj = opts[:mqtt_obj]
-
-        mqtt_obj.disconnect if mqtt_obj
-        nil
-      rescue StandardError => e
-        raise e
-      end
-
-      # Author(s):: 0day Inc. <request.pentest@0dayinc.com>
-
-      public_class_method def self.authors
-        "AUTHOR(S):
-          0day Inc. <request.pentest@0dayinc.com>
-        "
-      end
-
-      # Display Usage for this Module
-
-      public_class_method def self.help
-        puts "USAGE:
-          mqtt_obj = #{self}.connect(
-            host: 'optional - mqtt host (default: mqtt.meshtastic.org)',
-            port: 'optional - mqtt port (defaults: 1883)',
-            username: 'optional - mqtt username (default: meshdev)',
-            password: 'optional - (default: large4cats)'
-          )
-
-          #{self}.subscribe(
-            mqtt_obj: 'required - mqtt_obj object returned from #connect method',
-            region: 'optional - region (default: US)',
-            channel: 'optional - channel name (default: LongFast)',
-            psk: 'optional - channel pre-shared key (default: AQ==)',
-            qos: 'optional - quality of service (default: 0)'
-          )
-
-          mqtt_obj = #{self}.disconnect(
-            mqtt_obj: 'required - mqtt_obj object returned from #connect method'
-          )
-
-          #{self}.authors
-        "
-      end
-    end
-  end
-end