pwn 0.4.576 → 0.4.577

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: fad1d346e883ab5b4ffc291b9317e05c60137eb77341557dc01802c281316be6
-  data.tar.gz: b368b3e029452db240d813b6c8bf93ec2ad618072672dc01b017eaa3b17ca238
+  metadata.gz: 82b40d0807c2179cfcf55eb8f0a39ca8b70c1ad829509cbe20df80e49c48ca2b
+  data.tar.gz: 3e37e2e01a9473884cc9c7c5180040378170d74e9b80e982a2620c419403ee78
 SHA512:
-  metadata.gz: 39e5cf270589ed81bbaccba6b2e26968a6062db2930bdd73e38badadc24ab659da38ef388cbdd21cac72d62970614155b9ebd0f3051c0d0c935ef2d1c550d205
-  data.tar.gz: 95c66d184ae2e824e93faa4bb5a81df1b9589675ee4275a2286547e6d4630465f4debb56a3e27f600190799d473b39bedc0e312c7ad4968739e32dc5ede378d3
+  metadata.gz: fe3e01924bdfa8ad543f2c0a62f7f08333a92e2ed4e81d69865cde205d65a92db0e328b6022ab1d6eee39cf951643711dabd3899dce92efcd97d5e2995227fb0
+  data.tar.gz: c4e37f4a41b60f332dc25deb4e96d4c4b04e518ac3083ca9e3eff5c8036c370597a3bbe48def228a42d89da199e298ce3d7f9eea0e6bf267a114b9d91bc99599

data/Gemfile

@@ -18,9 +18,9 @@ gem 'aws-sdk', '3.1.0'
 gem 'bettercap', '1.6.2'
 gem 'brakeman', '5.4.0'
 gem 'bson', '4.15.0'
-gem 'bundler', '>=2.3.26'
+gem 'bundler', '>=2.4.1'
 gem 'bundler-audit', '0.9.1'
-gem 'bunny', '2.19.0'
+gem 'bunny', '2.20.1'
 gem 'colorize', '0.8.1'
 gem 'credit_card_validations', '6.0.0'
 gem 'eventmachine', '1.2.7'
@@ -34,7 +34,7 @@ gem 'ipaddress', '0.8.3'
 gem 'js-beautify', '0.1.8'
 gem 'json', '2.6.3'
 gem 'jsonpath', '1.1.2'
-gem 'jwt', '2.5.0'
+gem 'jwt', '2.6.0'
 gem 'luhn', '1.0.2'
 gem 'mail', '2.8.0'
 gem 'mongo', '2.18.2'
@@ -60,24 +60,24 @@ gem 'rex', '2.0.13'
 gem 'rmagick', '5.1.0'
 gem 'rspec', '3.12.0'
 gem 'rtesseract', '3.1.2'
-gem 'rubocop', '1.40.0'
+gem 'rubocop', '1.41.1'
 gem 'rubocop-rake', '0.6.0'
 gem 'rubocop-rspec', '2.16.0'
 gem 'ruby-audio', '1.6.1'
 gem 'ruby-nmap', '1.0.1'
 gem 'ruby-saml', '1.14.0'
 gem 'rvm', '1.11.3.9'
-gem 'savon', '2.13.1'
+gem 'savon', '2.14.0'
 gem 'selenium-devtools', '0.108.0'
 gem 'serialport', '1.3.2'
-gem 'sinatra', '3.0.4'
+gem 'sinatra', '3.0.5'
 gem 'slack-ruby-client', '2.0.0'
 gem 'socksify', '1.7.1'
 gem 'spreadsheet', '1.3.0'
 gem 'sqlite3', '1.5.4'
 gem 'thin', '1.8.1'
 gem 'tty-prompt', '0.23.1'
-gem 'watir', '7.1.0'
+gem 'watir', '7.2.0'
 gem 'waveform', '0.1.2'
 gem 'webrick', '1.7.0'
 gem 'whois', '5.1.0'

data/README.md

@@ -37,7 +37,7 @@ $ rvm use ruby-3.1.3@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.576]:001 >>> PWN.help
+pwn[v0.4.577]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.1.3@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.576]:001 >>> PWN.help
+pwn[v0.4.577]:001 >>> PWN.help
 ```
 
 

data/lib/pwn/plugins/open_ai.rb

@@ -0,0 +1,145 @@
+# frozen_string_literal: true
+
+require 'json'
+
+module PWN
+  module Plugins
+    # This plugin is used for interacting w/ OpenAI's REST API using
+    # the 'rest' browser type of PWN::Plugins::TransparentBrowser.
+    #  This is based on the following OpenAI API Specification:
+    # https://developer.shodan.io/api
+    module OpenAI
+      @@logger = PWN::Plugins::PWNLogger.create
+
+      # Supported Method Parameters::
+      # open_ai_rest_call(
+      #   token: 'required - open_ai bearer token',
+      #   http_method: 'optional HTTP method (defaults to GET)
+      #   rest_call: 'required rest call to make per the schema',
+      #   params: 'optional params passed in the URI or HTTP Headers',
+      #   http_body: 'optional HTTP body sent in HTTP methods that support it e.g. POST'
+      # )
+
+      private_class_method def self.open_ai_rest_call(opts = {})
+        http_method = if opts[:http_method].nil?
+                        :get
+                      else
+                        opts[:http_method].to_s.scrub.to_sym
+                      end
+        rest_call = opts[:rest_call].to_s.scrub
+        params = opts[:params]
+        http_body = opts[:http_body].to_s.scrub
+        base_open_ai_api_uri = 'https://api.openai.com/v1'
+        token = opts[:token]
+
+        rest_client = PWN::Plugins::TransparentBrowser.open(browser_type: :rest)::Request
+
+        case http_method
+        when :get
+          response = rest_client.execute(
+            method: :get,
+            url: "#{base_open_ai_api_uri}/#{rest_call}",
+            headers: {
+              content_type: 'application/json; charset=UTF-8',
+              authorization: "Bearer #{token}",
+              params: params
+            },
+            verify_ssl: false
+          )
+
+        when :post
+          response = rest_client.execute(
+            method: :post,
+            url: "#{base_open_ai_api_uri}/#{rest_call}",
+            headers: {
+              content_type: 'application/json; charset=UTF-8',
+              authorization: "Bearer #{token}"
+            },
+            payload: http_body,
+            verify_ssl: false
+          )
+
+        else
+          raise @@logger.error("Unsupported HTTP Method #{http_method} for #{self} Plugin")
+        end
+        response
+      rescue StandardError => e
+        case e.message
+        when '400 Bad Request', '404 Resource Not Found'
+          "#{e.message}: #{e.response}"
+        else
+          raise e
+        end
+      end
+
+      # Supported Method Parameters::
+      # response = PWN::Plugins::OpenAI.get_models(
+      #   token: 'required - Bearer token',
+      # )
+
+      public_class_method def self.get_models(opts = {})
+        token = opts[:token]
+
+        response = open_ai_rest_call(
+          http_method: :post,
+          token: token,
+          rest_call: 'models'
+        )
+
+        JSON.parse(response, symbolize_names: true)
+      rescue StandardError => e
+        raise e
+      end
+
+      # Supported Method Parameters::
+      # response = PWN::Plugins::OpenAI.chat_gpt(
+      #   token: 'required - Bearer token',
+      #   request: 'required - message to ChatGPT'
+      # )
+
+      public_class_method def self.chat_gpt(opts = {})
+        token = opts[:token]
+        request = opts[:request]
+
+        http_body = {
+          model: 'text-davinci-003',
+          prompt: request,
+          temperature: 0,
+          max_tokens: 1024
+        }
+
+        response = open_ai_rest_call(
+          http_method: :post,
+          token: token,
+          rest_call: 'completions',
+          http_body: http_body.to_json
+        )
+
+        JSON.parse(response, symbolize_names: true)
+      rescue StandardError => e
+        raise e
+      end
+
+      # Author(s):: 0day Inc. <request.pentest@0dayinc.com>
+
+      public_class_method def self.authors
+        "AUTHOR(S):
+          0day Inc. <request.pentest@0dayinc.com>
+        "
+      end
+
+      # Display Usage for this Module
+
+      public_class_method def self.help
+        puts "USAGE:
+          response #{self}.chat_gpt(
+            token: 'required - Bearer token',
+            request: 'required - message to ChatGPT'
+          )
+
+          #{self}.authors
+        "
+      end
+    end
+  end
+end

data/lib/pwn/plugins.rb

@@ -40,6 +40,7 @@ module PWN
     autoload :NmapIt, 'pwn/plugins/nmap_it'
     autoload :OAuth2, 'pwn/plugins/oauth2'
     autoload :OCR, 'pwn/plugins/ocr'
+    autoload :OpenAI, 'pwn/plugins/open_ai'
     autoload :OpenVAS, 'pwn/plugins/openvas'
     autoload :OwaspZap, 'pwn/plugins/owasp_zap'
     autoload :Packet, 'pwn/plugins/packet'

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.4.576'
+  VERSION = '0.4.577'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.576
+  version: 0.4.577
 platform: ruby
 authors:
 - 0day Inc.
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-12-15 00:00:00.000000000 Z
+date: 2022-12-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -114,14 +114,14 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.3.26
+        version: 2.4.1
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.3.26
+        version: 2.4.1
 - !ruby/object:Gem::Dependency
   name: bundler-audit
   requirement: !ruby/object:Gem::Requirement
@@ -142,14 +142,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.19.0
+        version: 2.20.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.19.0
+        version: 2.20.1
 - !ruby/object:Gem::Dependency
   name: colorize
   requirement: !ruby/object:Gem::Requirement
@@ -324,14 +324,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.5.0
+        version: 2.6.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.5.0
+        version: 2.6.0
 - !ruby/object:Gem::Dependency
   name: luhn
   requirement: !ruby/object:Gem::Requirement
@@ -688,14 +688,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.40.0
+        version: 1.41.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 1.40.0
+        version: 1.41.1
 - !ruby/object:Gem::Dependency
   name: rubocop-rake
   requirement: !ruby/object:Gem::Requirement
@@ -786,14 +786,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.13.1
+        version: 2.14.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.13.1
+        version: 2.14.0
 - !ruby/object:Gem::Dependency
   name: selenium-devtools
   requirement: !ruby/object:Gem::Requirement
@@ -828,14 +828,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 3.0.4
+        version: 3.0.5
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 3.0.4
+        version: 3.0.5
 - !ruby/object:Gem::Dependency
   name: slack-ruby-client
   requirement: !ruby/object:Gem::Requirement
@@ -926,14 +926,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 7.1.0
+        version: 7.2.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 7.1.0
+        version: 7.2.0
 - !ruby/object:Gem::Dependency
   name: waveform
   requirement: !ruby/object:Gem::Requirement
@@ -1592,6 +1592,7 @@ files:
 - lib/pwn/plugins/nmap_it.rb
 - lib/pwn/plugins/oauth2.rb
 - lib/pwn/plugins/ocr.rb
+- lib/pwn/plugins/open_ai.rb
 - lib/pwn/plugins/openvas.rb
 - lib/pwn/plugins/owasp_zap.rb
 - lib/pwn/plugins/packet.rb