pwn 0.5.353 → 0.5.354
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/README.md +3 -3
- data/bin/pwn_phone +1 -0
- data/lib/pwn/reports/fuzz.rb +14 -55
- data/lib/pwn/reports/phone.rb +9 -48
- data/lib/pwn/reports/uri_buster.rb +9 -48
- data/lib/pwn/version.rb +1 -1
- metadata +1 -1
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 8512e5e4d1177bad32c255ef76118b23cf334c579f75c7e89fcf01ffacfc4e4c
|
|
4
|
+
data.tar.gz: f14e9efed8c396aa61ab72a3a60437854c924b694f8c70c793abb2f3536a3260
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 0ea6aed1954cf83f6ad74518aafb11386679e4a387b063b80b8286609c54d634bc9d65528a6fe569dd80ed0581cb1dfbd93b8d463741c68e5807793f8c65d6d9
|
|
7
|
+
data.tar.gz: dc78f00786760d81eeca854594acaa1dbaae3e8401c958458fc3d1ddc01d492b23d42ba9dd4737e35aeca3d661519b35a4ce98f17e814edd1cee9a1f7ab83069
|
data/README.md
CHANGED
|
@@ -37,7 +37,7 @@ $ cd /opt/pwn
|
|
|
37
37
|
$ ./install.sh
|
|
38
38
|
$ ./install.sh ruby-gem
|
|
39
39
|
$ pwn
|
|
40
|
-
pwn[v0.5.
|
|
40
|
+
pwn[v0.5.354]:001 >>> PWN.help
|
|
41
41
|
```
|
|
42
42
|
|
|
43
43
|
[](https://youtu.be/G7iLUY4FzsI)
|
|
@@ -52,7 +52,7 @@ $ rvm use ruby-3.4.4@pwn
|
|
|
52
52
|
$ gem uninstall --all --executables pwn
|
|
53
53
|
$ gem install --verbose pwn
|
|
54
54
|
$ pwn
|
|
55
|
-
pwn[v0.5.
|
|
55
|
+
pwn[v0.5.354]:001 >>> PWN.help
|
|
56
56
|
```
|
|
57
57
|
|
|
58
58
|
If you're using a multi-user install of RVM do:
|
|
@@ -62,7 +62,7 @@ $ rvm use ruby-3.4.4@pwn
|
|
|
62
62
|
$ rvmsudo gem uninstall --all --executables pwn
|
|
63
63
|
$ rvmsudo gem install --verbose pwn
|
|
64
64
|
$ pwn
|
|
65
|
-
pwn[v0.5.
|
|
65
|
+
pwn[v0.5.354]:001 >>> PWN.help
|
|
66
66
|
```
|
|
67
67
|
|
|
68
68
|
PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`. The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:
|
data/bin/pwn_phone
CHANGED
data/lib/pwn/reports/fuzz.rb
CHANGED
|
@@ -70,16 +70,12 @@ module PWN
|
|
|
70
70
|
border-spacing:0px;
|
|
71
71
|
}
|
|
72
72
|
|
|
73
|
-
table.squish {
|
|
74
|
-
table-layout: fixed;
|
|
75
|
-
}
|
|
76
|
-
|
|
77
73
|
td {
|
|
78
74
|
vertical-align: top;
|
|
79
75
|
word-wrap: break-word !important;
|
|
80
76
|
}
|
|
81
77
|
|
|
82
|
-
tr.
|
|
78
|
+
tr.selected td {
|
|
83
79
|
background-color: #FFF396 !important;
|
|
84
80
|
}
|
|
85
81
|
</style>
|
|
@@ -99,7 +95,6 @@ module PWN
|
|
|
99
95
|
</h1><br /><br />
|
|
100
96
|
|
|
101
97
|
<div>
|
|
102
|
-
<!--<button type="button" id="button">Rows Selected</button>-->
|
|
103
98
|
<button type="button" id="export_selected">Export Selected to JSON</button>
|
|
104
99
|
</div><br />
|
|
105
100
|
|
|
@@ -108,9 +103,9 @@ module PWN
|
|
|
108
103
|
<a class="toggle-vis" data-column="1" href="#">Timestamp</a> |
|
|
109
104
|
<a class="toggle-vis" data-column="2" href="#">Request</a> |
|
|
110
105
|
<a class="toggle-vis" data-column="3" href="#">Request Encoding</a> |
|
|
111
|
-
<a class="toggle-vis" data-column="
|
|
112
|
-
<a class="toggle-vis" data-column="
|
|
113
|
-
<a class="toggle-vis" data-column="
|
|
106
|
+
<a class="toggle-vis" data-column="4" href="#">Request Length</a> |
|
|
107
|
+
<a class="toggle-vis" data-column="5" href="#">Response</a> |
|
|
108
|
+
<a class="toggle-vis" data-column="6" href="#">Response Length</a> |
|
|
114
109
|
</div>
|
|
115
110
|
<br /><br />
|
|
116
111
|
|
|
@@ -119,7 +114,7 @@ module PWN
|
|
|
119
114
|
</div><br />
|
|
120
115
|
|
|
121
116
|
<div>
|
|
122
|
-
<table id="pwn_fuzz_net_app_proto" class="display
|
|
117
|
+
<table id="pwn_fuzz_net_app_proto" class="display" cellspacing="0">
|
|
123
118
|
<thead>
|
|
124
119
|
<tr>
|
|
125
120
|
<th>#</th>
|
|
@@ -145,7 +140,6 @@ module PWN
|
|
|
145
140
|
<script>
|
|
146
141
|
var htmlEntityEncode = $.fn.dataTable.render.text().display;
|
|
147
142
|
|
|
148
|
-
var line_entry_uri = "";
|
|
149
143
|
$(document).ready(function() {
|
|
150
144
|
var oldStart = 0;
|
|
151
145
|
var table = $('#pwn_fuzz_net_app_proto').DataTable( {
|
|
@@ -170,13 +164,16 @@ module PWN
|
|
|
170
164
|
//"deferRender": true,
|
|
171
165
|
"dom": "fplitfpliS",
|
|
172
166
|
"autoWidth": false,
|
|
167
|
+
"select": {
|
|
168
|
+
"style": "multi"
|
|
169
|
+
},
|
|
173
170
|
"columnDefs": [
|
|
174
171
|
{
|
|
175
|
-
targets:
|
|
172
|
+
targets: 4,
|
|
176
173
|
className: 'dt-body-center'
|
|
177
174
|
},
|
|
178
175
|
{
|
|
179
|
-
targets:
|
|
176
|
+
targets: 6,
|
|
180
177
|
className: 'dt-body-center'
|
|
181
178
|
}
|
|
182
179
|
],
|
|
@@ -269,54 +266,16 @@ module PWN
|
|
|
269
266
|
column.visible( ! column.visible() );
|
|
270
267
|
});
|
|
271
268
|
|
|
272
|
-
$('#button').click( function () {
|
|
273
|
-
alert($('.multi_line_select tr.highlighted').length +' row(s) highlighted');
|
|
274
|
-
});
|
|
275
|
-
|
|
276
269
|
$('#export_selected').click( function () {
|
|
277
|
-
|
|
270
|
+
var selectedRows = table.rows({ selected: true });
|
|
271
|
+
if (selectedRows.count() === 0) {
|
|
278
272
|
alert('No rows selected');
|
|
279
273
|
return;
|
|
280
274
|
}
|
|
281
275
|
|
|
282
276
|
$.getJSON(table.ajax.url(), function(original_json) {
|
|
283
|
-
var
|
|
284
|
-
|
|
285
|
-
$('.multi_line_select tr.highlighted').each(function() {
|
|
286
|
-
var inner_tr = $(this);
|
|
287
|
-
var main_tr = inner_tr.closest('td').parent();
|
|
288
|
-
var row = table.row(main_tr);
|
|
289
|
-
var row_index = row.index();
|
|
290
|
-
var line_index = inner_tr.index();
|
|
291
|
-
|
|
292
|
-
if (selected_results[row_index] === undefined) {
|
|
293
|
-
selected_results[row_index] = {
|
|
294
|
-
row: row,
|
|
295
|
-
lines: []
|
|
296
|
-
};
|
|
297
|
-
}
|
|
298
|
-
|
|
299
|
-
selected_results[row_index].lines.push(line_index);
|
|
300
|
-
});
|
|
301
|
-
|
|
302
|
-
var new_data = [];
|
|
303
|
-
|
|
304
|
-
Object.keys(selected_results).forEach(function(ri) {
|
|
305
|
-
var sel = selected_results[ri];
|
|
306
|
-
var orig_row_data = sel.row.data();
|
|
307
|
-
var new_row_data = JSON.parse(JSON.stringify(orig_row_data));
|
|
308
|
-
|
|
309
|
-
sel.lines.sort((a, b) => a - b);
|
|
310
|
-
new_row_data.line_no_and_contents = sel.lines.map(function(li) {
|
|
311
|
-
return orig_row_data.line_no_and_contents[li];
|
|
312
|
-
});
|
|
313
|
-
|
|
314
|
-
new_row_data.raw_content = new_row_data.line_no_and_contents.map(l => l.contents).join('\\n');
|
|
315
|
-
|
|
316
|
-
new_data.push(new_row_data);
|
|
317
|
-
});
|
|
318
|
-
|
|
319
|
-
original_json.data = new_data;
|
|
277
|
+
var selected_data = selectedRows.data().toArray();
|
|
278
|
+
original_json.data = selected_data;
|
|
320
279
|
|
|
321
280
|
if (original_json.report_name) {
|
|
322
281
|
original_json.report_name += '_selected';
|
data/lib/pwn/reports/phone.rb
CHANGED
|
@@ -62,16 +62,12 @@ module PWN
|
|
|
62
62
|
border-spacing:0px;
|
|
63
63
|
}
|
|
64
64
|
|
|
65
|
-
table.squish {
|
|
66
|
-
table-layout: fixed;
|
|
67
|
-
}
|
|
68
|
-
|
|
69
65
|
td {
|
|
70
66
|
vertical-align: top;
|
|
71
67
|
word-wrap: break-word !important;
|
|
72
68
|
}
|
|
73
69
|
|
|
74
|
-
tr.
|
|
70
|
+
tr.selected td {
|
|
75
71
|
background-color: #FFF396 !important;
|
|
76
72
|
}
|
|
77
73
|
</style>
|
|
@@ -159,7 +155,7 @@ module PWN
|
|
|
159
155
|
|
|
160
156
|
<script>
|
|
161
157
|
var htmlEntityEncode = $.fn.dataTable.render.text().display;
|
|
162
|
-
|
|
158
|
+
|
|
163
159
|
$(document).ready(function() {
|
|
164
160
|
var oldStart = 0;
|
|
165
161
|
var table = $('#pwn_phone_results').DataTable( {
|
|
@@ -184,6 +180,9 @@ module PWN
|
|
|
184
180
|
//"deferRender": true,
|
|
185
181
|
"dom": "fplitfpliS",
|
|
186
182
|
"autoWidth": false,
|
|
183
|
+
"select": {
|
|
184
|
+
"style": "multi"
|
|
185
|
+
},
|
|
187
186
|
"columns": [
|
|
188
187
|
{ "data": null },
|
|
189
188
|
{
|
|
@@ -324,54 +323,16 @@ module PWN
|
|
|
324
323
|
column.visible( ! column.visible() );
|
|
325
324
|
});
|
|
326
325
|
|
|
327
|
-
$('#button').click( function () {
|
|
328
|
-
alert($('.multi_line_select tr.highlighted').length +' row(s) highlighted');
|
|
329
|
-
});
|
|
330
|
-
|
|
331
326
|
$('#export_selected').click( function () {
|
|
332
|
-
|
|
327
|
+
var selectedRows = table.rows({ selected: true });
|
|
328
|
+
if (selectedRows.count() === 0) {
|
|
333
329
|
alert('No rows selected');
|
|
334
330
|
return;
|
|
335
331
|
}
|
|
336
332
|
|
|
337
333
|
$.getJSON(table.ajax.url(), function(original_json) {
|
|
338
|
-
var
|
|
339
|
-
|
|
340
|
-
$('.multi_line_select tr.highlighted').each(function() {
|
|
341
|
-
var inner_tr = $(this);
|
|
342
|
-
var main_tr = inner_tr.closest('td').parent();
|
|
343
|
-
var row = table.row(main_tr);
|
|
344
|
-
var row_index = row.index();
|
|
345
|
-
var line_index = inner_tr.index();
|
|
346
|
-
|
|
347
|
-
if (selected_results[row_index] === undefined) {
|
|
348
|
-
selected_results[row_index] = {
|
|
349
|
-
row: row,
|
|
350
|
-
lines: []
|
|
351
|
-
};
|
|
352
|
-
}
|
|
353
|
-
|
|
354
|
-
selected_results[row_index].lines.push(line_index);
|
|
355
|
-
});
|
|
356
|
-
|
|
357
|
-
var new_data = [];
|
|
358
|
-
|
|
359
|
-
Object.keys(selected_results).forEach(function(ri) {
|
|
360
|
-
var sel = selected_results[ri];
|
|
361
|
-
var orig_row_data = sel.row.data();
|
|
362
|
-
var new_row_data = JSON.parse(JSON.stringify(orig_row_data));
|
|
363
|
-
|
|
364
|
-
sel.lines.sort((a, b) => a - b);
|
|
365
|
-
new_row_data.line_no_and_contents = sel.lines.map(function(li) {
|
|
366
|
-
return orig_row_data.line_no_and_contents[li];
|
|
367
|
-
});
|
|
368
|
-
|
|
369
|
-
new_row_data.raw_content = new_row_data.line_no_and_contents.map(l => l.contents).join('\\n');
|
|
370
|
-
|
|
371
|
-
new_data.push(new_row_data);
|
|
372
|
-
});
|
|
373
|
-
|
|
374
|
-
original_json.data = new_data;
|
|
334
|
+
var selected_data = selectedRows.data().toArray();
|
|
335
|
+
original_json.data = selected_data;
|
|
375
336
|
|
|
376
337
|
if (original_json.report_name) {
|
|
377
338
|
original_json.report_name += '_selected';
|
|
@@ -62,16 +62,12 @@ module PWN
|
|
|
62
62
|
border-spacing:0px;
|
|
63
63
|
}
|
|
64
64
|
|
|
65
|
-
table.squish {
|
|
66
|
-
table-layout: fixed;
|
|
67
|
-
}
|
|
68
|
-
|
|
69
65
|
td {
|
|
70
66
|
vertical-align: top;
|
|
71
67
|
word-wrap: break-word !important;
|
|
72
68
|
}
|
|
73
69
|
|
|
74
|
-
tr.
|
|
70
|
+
tr.selected td {
|
|
75
71
|
background-color: #FFF396 !important;
|
|
76
72
|
}
|
|
77
73
|
</style>
|
|
@@ -147,7 +143,7 @@ module PWN
|
|
|
147
143
|
|
|
148
144
|
<script>
|
|
149
145
|
var htmlEntityEncode = $.fn.dataTable.render.text().display;
|
|
150
|
-
|
|
146
|
+
|
|
151
147
|
$(document).ready(function() {
|
|
152
148
|
var oldStart = 0;
|
|
153
149
|
var table = $('#pwn_www_uri_buster_results').DataTable( {
|
|
@@ -172,6 +168,9 @@ module PWN
|
|
|
172
168
|
//"deferRender": true,
|
|
173
169
|
"dom": "fplitfpliS",
|
|
174
170
|
"autoWidth": false,
|
|
171
|
+
"select": {
|
|
172
|
+
"style": "multi"
|
|
173
|
+
},
|
|
175
174
|
"columns": [
|
|
176
175
|
{ "data": null },
|
|
177
176
|
{
|
|
@@ -275,54 +274,16 @@ module PWN
|
|
|
275
274
|
column.visible( ! column.visible() );
|
|
276
275
|
});
|
|
277
276
|
|
|
278
|
-
$('#button').click( function () {
|
|
279
|
-
alert($('.multi_line_select tr.highlighted').length +' row(s) highlighted');
|
|
280
|
-
});
|
|
281
|
-
|
|
282
277
|
$('#export_selected').click( function () {
|
|
283
|
-
|
|
278
|
+
var selectedRows = table.rows({ selected: true });
|
|
279
|
+
if (selectedRows.count() === 0) {
|
|
284
280
|
alert('No rows selected');
|
|
285
281
|
return;
|
|
286
282
|
}
|
|
287
283
|
|
|
288
284
|
$.getJSON(table.ajax.url(), function(original_json) {
|
|
289
|
-
var
|
|
290
|
-
|
|
291
|
-
$('.multi_line_select tr.highlighted').each(function() {
|
|
292
|
-
var inner_tr = $(this);
|
|
293
|
-
var main_tr = inner_tr.closest('td').parent();
|
|
294
|
-
var row = table.row(main_tr);
|
|
295
|
-
var row_index = row.index();
|
|
296
|
-
var line_index = inner_tr.index();
|
|
297
|
-
|
|
298
|
-
if (selected_results[row_index] === undefined) {
|
|
299
|
-
selected_results[row_index] = {
|
|
300
|
-
row: row,
|
|
301
|
-
lines: []
|
|
302
|
-
};
|
|
303
|
-
}
|
|
304
|
-
|
|
305
|
-
selected_results[row_index].lines.push(line_index);
|
|
306
|
-
});
|
|
307
|
-
|
|
308
|
-
var new_data = [];
|
|
309
|
-
|
|
310
|
-
Object.keys(selected_results).forEach(function(ri) {
|
|
311
|
-
var sel = selected_results[ri];
|
|
312
|
-
var orig_row_data = sel.row.data();
|
|
313
|
-
var new_row_data = JSON.parse(JSON.stringify(orig_row_data));
|
|
314
|
-
|
|
315
|
-
sel.lines.sort((a, b) => a - b);
|
|
316
|
-
new_row_data.line_no_and_contents = sel.lines.map(function(li) {
|
|
317
|
-
return orig_row_data.line_no_and_contents[li];
|
|
318
|
-
});
|
|
319
|
-
|
|
320
|
-
new_row_data.raw_content = new_row_data.line_no_and_contents.map(l => l.contents).join('\\n');
|
|
321
|
-
|
|
322
|
-
new_data.push(new_row_data);
|
|
323
|
-
});
|
|
324
|
-
|
|
325
|
-
original_json.data = new_data;
|
|
285
|
+
var selected_data = selectedRows.data().toArray();
|
|
286
|
+
original_json.data = selected_data;
|
|
326
287
|
|
|
327
288
|
if (original_json.report_name) {
|
|
328
289
|
original_json.report_name += '_selected';
|
data/lib/pwn/version.rb
CHANGED