pwn 0.4.501 → 0.4.502

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 9e546fad9868b6dbd8cb95ee377ea94503ed000612051e617eb09951123861ef
-  data.tar.gz: c995ad6e341e84efbf5f303843a606d8552f8c7490f99c12b99f70f02e60ac46
+  metadata.gz: 8e6a9cadce0579fb5fae8d210d13e9d3be8693978ed49f309f911e21d2369465
+  data.tar.gz: 25614e923ad9677ba7b281eb6efc4f1b7b5c4bd4fd7eb1d1729665c3cd8f769b
 SHA512:
-  metadata.gz: 517fdf2e2127a4816bbfd048632fde8716f1bd2c956c1018577d20a0178c356a163c3070881bc7b1607f69ec38b8bb3974ff8001024373f3ec324400270f90ad
-  data.tar.gz: ff2f7661ff166161d4087d3b0c72bb64534eaa0faee1cb7981a49cde5b38ba9f466f19f8e9ddb5411a30d9db672d19b64264f7d91d4284428f158d1d48712d84
+  metadata.gz: d619efe1e91a920ae8f2155ee42627668a9c61b559352e82746a2eced1472e6d5c45304729b9efce166aa0f4e23d1707bb8485903c99c1d791dca2113480b0d4
+  data.tar.gz: 67e549838acfc45e4658e2bcccf030755a7bb9a12201f15fbd94503e1bcbdaa8dfbad333607a80780c462ba6485c698eda4ca272c873e110949466ccedc90901

data/Gemfile

@@ -47,7 +47,7 @@ gem 'oily_png', '1.2.1'
 gem 'os', '1.1.4'
 gem 'packetfu', '1.1.13'
 gem 'pdf-reader', '2.10.0'
-gem 'pg', '1.3.5'
+gem 'pg', '1.4.0'
 gem 'pry', '0.14.1'
 gem 'pry-doc', '1.3.0'
 gem 'rake', '13.0.6'

data/README.md

@@ -37,7 +37,7 @@ $ rvm use ruby-3.1.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.501]:001 >>> PWN.help
+pwn[v0.4.502]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.1.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.501]:001 >>> PWN.help
+pwn[v0.4.502]:001 >>> PWN.help
 ```
 
 

data/lib/pwn/plugins/github.rb

@@ -0,0 +1,132 @@
+# frozen_string_literal: true
+
+require 'json'
+
+module PWN
+  module Plugins
+    # This plugin is used for interacting w/ Github's REST API using
+    # the 'rest' browser type of PWN::Plugins::TransparentBrowser.
+    module Github
+      @@logger = PWN::Plugins::PWNLogger.create
+
+      # Supported Method Parameters::
+      # github_rest_call(
+      #   http_method: 'optional HTTP method (defaults to GET)
+      #   rest_call: 'required rest call to make per the schema',
+      #   params: 'optional params passed in the URI or HTTP Headers',
+      #   http_body: 'optional HTTP body sent in HTTP methods that support it e.g. POST'
+      # )
+
+      private_class_method def self.github_rest_call(opts = {})
+        http_method = if opts[:http_method].nil?
+                        :get
+                      else
+                        opts[:http_method].to_s.scrub.to_sym
+                      end
+        rest_call = opts[:rest_call].to_s.scrub
+        params = opts[:params]
+        http_body = opts[:http_body].to_s.scrub
+        base_gist_api_uri = 'https://api.github.com'
+
+        rest_client = PWN::Plugins::TransparentBrowser.open(browser_type: :rest)::Request
+
+        case http_method
+        when :get
+          response = rest_client.execute(
+            method: :get,
+            url: "#{base_gist_api_uri}/#{rest_call}",
+            headers: {
+              content_type: 'application/json; charset=UTF-8',
+              params: params
+            },
+            verify_ssl: false
+          )
+
+        when :post
+          response = rest_client.execute(
+            method: :post,
+            url: "#{base_gist_api_uri}/#{rest_call}",
+            headers: {
+              content_type: 'application/json; charset=UTF-8',
+              params: params
+            },
+            payload: http_body,
+            verify_ssl: false
+          )
+
+        else
+          raise @@logger.error("Unsupported HTTP Method #{http_method} for #{self} Plugin")
+        end
+
+        response
+      rescue RestClient::Forbidden
+        raise response
+      rescue RestClient::BadRequest, RestClient::NotFound, StandardError => e
+        raise
+      end
+
+      # Supported Method Parameters::
+      # response_json = PWN::Plugins::Github.download_all_gists(
+      #   username: 'required - username of gists to backup',
+      #   target_dir: 'required - target directory to save respective gists'
+      # )
+
+      public_class_method def self.download_all_gists(opts = {})
+        username = opts[:username].to_s.scrub
+        target_dir = opts[:target_dir].to_s.scrub
+
+        raise "ERROR: #{target_dir} Does Not Exist." unless Dir.exist?(target_dir)
+
+        params = {}
+        page = 1
+        response_json = [{}]
+        while response_json.any?
+          params[:page] = page
+          response_body = github_rest_call(
+            rest_call: "users/#{username}/gists",
+            params: params
+          ).body
+
+          Dir.chdir(target_dir)
+          response_json = JSON.parse(response_body, symbolize_names: true)
+          response_json.each do |gist_hash|
+            clone_dir = gist_hash[:id]
+            clone_uri = gist_hash[:git_pull_url]
+            next if Dir.exist?(clone_dir)
+
+            print "Cloning: #{clone_uri}..."
+            system('git', 'clone', clone_uri)
+            puts 'complete.'
+          end
+
+          page += 1
+        end
+
+        response_json
+      rescue StandardError => e
+        raise e
+      end
+
+      # Author(s):: 0day Inc. <request.pentest@0dayinc.com>
+
+      public_class_method def self.authors
+        "AUTHOR(S):
+          0day Inc. <request.pentest@0dayinc.com>
+        "
+      end
+
+      # Display Usage for this Module
+
+      public_class_method def self.help
+        puts "USAGE:
+          response_json = #{self}.download_all_gists(
+            username: 'required - username of gists to download',
+            target_dir: 'required - target directory to save respective gists'
+          )
+
+          #{self}.authors
+        "
+      end
+    end
+  end
+end

data/lib/pwn/plugins.rb

@@ -25,6 +25,7 @@ module PWN
     autoload :FileFu, 'pwn/plugins/file_fu'
     autoload :Fuzz, 'pwn/plugins/fuzz'
     autoload :Git, 'pwn/plugins/git'
+    autoload :Github, 'pwn/plugins/github'
     autoload :HackerOne, 'pwn/plugins/hacker_one'
     autoload :IBMAppscan, 'pwn/plugins/ibm_appscan'
     autoload :IPInfo, 'pwn/plugins/ip_info'

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.4.501'
+  VERSION = '0.4.502'
 end

data/spec/lib/pwn/plugins/github_spec.rb

@@ -0,0 +1,15 @@
+# frozen_string_literal: true
+
+require 'spec_helper'
+
+describe PWN::Plugins::Github do
+  it 'should display information for authors' do
+    authors_response = PWN::Plugins::Github
+    expect(authors_response).to respond_to :authors
+  end
+
+  it 'should display information for existing help method' do
+    help_response = PWN::Plugins::Github
+    expect(help_response).to respond_to :help
+  end
+end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.501
+  version: 0.4.502
 platform: ruby
 authors:
 - 0day Inc.
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-06-16 00:00:00.000000000 Z
+date: 2022-06-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -506,14 +506,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.3.5
+        version: 1.4.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.3.5
+        version: 1.4.0
 - !ruby/object:Gem::Dependency
   name: pry
   requirement: !ruby/object:Gem::Requirement
@@ -1558,6 +1558,7 @@ files:
 - lib/pwn/plugins/file_fu.rb
 - lib/pwn/plugins/fuzz.rb
 - lib/pwn/plugins/git.rb
+- lib/pwn/plugins/github.rb
 - lib/pwn/plugins/hacker_one.rb
 - lib/pwn/plugins/http_intercept_helper.rb
 - lib/pwn/plugins/ibm_appscan.rb
@@ -1856,6 +1857,7 @@ files:
 - spec/lib/pwn/plugins/file_fu_spec.rb
 - spec/lib/pwn/plugins/fuzz_spec.rb
 - spec/lib/pwn/plugins/git_spec.rb
+- spec/lib/pwn/plugins/github_spec.rb
 - spec/lib/pwn/plugins/hacker_one_spec.rb
 - spec/lib/pwn/plugins/ibm_appscan_spec.rb
 - spec/lib/pwn/plugins/ip_info_spec.rb