snackhack2 0.6.2 → 0.6.3
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/snackhack2/cryptoextractor.rb +8 -8
- data/lib/snackhack2/ssrf.rb +20 -0
- data/lib/snackhack2/version.rb +1 -1
- data/lib/snackhack2/wpForo_Forum.rb +2 -1
- data/lib/snackhack2.rb +1 -1
- metadata +3 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 53282826a6f249348a56f21a2aeca1ce6b7d94e10d942f7745590f5a7fc1a610
|
|
4
|
+
data.tar.gz: e061957e93c5b097e3a76f8a41823c09b89fdd0ce78f0176091fdccaf6a4d98a
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 5b8c9a6fcea6b5a329bd7ee09b2296ef059635d10040bd4bf3aa599e2b7d365276b1c8cbb9cb2e2d76abeef8982dff1149eb7b51acf283341259c3fa64ebadb2
|
|
7
|
+
data.tar.gz: 888e8310dc7aa1b08355e9924b78a69943ce2e4d8fc9fadf31aa7bc28fef4dbc97e07f688693ccf0aa783356ed8c43cac2021670ce45aecf94d7a5a09b706a96
|
|
@@ -12,7 +12,7 @@ module Snackhack2
|
|
|
12
12
|
@save_file = save_file
|
|
13
13
|
end
|
|
14
14
|
|
|
15
|
-
def
|
|
15
|
+
def all
|
|
16
16
|
addresses = []
|
|
17
17
|
addresses << monero unless monero.nil?
|
|
18
18
|
addresses << bitcoin unless bitcoin.nil?
|
|
@@ -30,7 +30,7 @@ module Snackhack2
|
|
|
30
30
|
end
|
|
31
31
|
|
|
32
32
|
def monero
|
|
33
|
-
|
|
33
|
+
@http.scan(/([48][0-9AB][1-9A-HJ-NP-Za-km-z]{93})/)
|
|
34
34
|
end
|
|
35
35
|
|
|
36
36
|
def bitcoin
|
|
@@ -38,27 +38,27 @@ module Snackhack2
|
|
|
38
38
|
end
|
|
39
39
|
|
|
40
40
|
def dash
|
|
41
|
-
@http.scan(/X[1-9A-HJ-NP-Za-km-z]{33}/)
|
|
41
|
+
@http.scan(/(X[1-9A-HJ-NP-Za-km-z]{33})/)
|
|
42
42
|
end
|
|
43
43
|
|
|
44
44
|
def stellar
|
|
45
|
-
@http.scan(/G[A-Z0-9]{55}
|
|
45
|
+
@http.scan(/(G[A-Z0-9]{55}$)/)
|
|
46
46
|
end
|
|
47
47
|
|
|
48
48
|
def litecoin
|
|
49
|
-
@http.scan(/[LM3][a-km-zA-HJ-NP-Z1-9]{26,33}/)
|
|
49
|
+
@http.scan(/([LM3][a-km-zA-HJ-NP-Z1-9]{26,33})/)
|
|
50
50
|
end
|
|
51
51
|
|
|
52
52
|
def dogecoin
|
|
53
|
-
@http.scan(/D{1}[56789ABCDEFGHJKLMNPQRSTU]{1}[123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz]{32}
|
|
53
|
+
@http.scan(/(D{1}[56789ABCDEFGHJKLMNPQRSTU]{1}[123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz]{32}$)/)
|
|
54
54
|
end
|
|
55
55
|
|
|
56
56
|
def ethereum
|
|
57
|
-
@http.scan(/0x[a-fA-F0-9]{40}/)
|
|
57
|
+
@http.scan(/(0x[a-fA-F0-9]{40})/)
|
|
58
58
|
end
|
|
59
59
|
|
|
60
60
|
def bitcoincash
|
|
61
|
-
@http.scan(/[13][a-km-zA-HJ-NP-Z1-9]{33}/)
|
|
61
|
+
@http.scan(/([13][a-km-zA-HJ-NP-Z1-9]{33})/)
|
|
62
62
|
end
|
|
63
63
|
end
|
|
64
64
|
end
|
|
@@ -0,0 +1,20 @@
|
|
|
1
|
+
|
|
2
|
+
|
|
3
|
+
#Process.spawn("ruby -run -ehttpd . -p8008")
|
|
4
|
+
#sleep 10
|
|
5
|
+
module Snackhack2
|
|
6
|
+
class SSRF
|
|
7
|
+
attr_accessor :site
|
|
8
|
+
def initialize
|
|
9
|
+
@site = site
|
|
10
|
+
end
|
|
11
|
+
def ssrf
|
|
12
|
+
url = @site.gsub("SSRF", "http://google.com")
|
|
13
|
+
ht = HTTParty.get(url)
|
|
14
|
+
if ht.body.include?("Search the world's information, including webpages, images, videos and more. Google has many special features to help you find exactly what you're looking for.")
|
|
15
|
+
puts "Boom Shaka. It's vulnerable to SSRF..."
|
|
16
|
+
end
|
|
17
|
+
|
|
18
|
+
end
|
|
19
|
+
end
|
|
20
|
+
end
|
data/lib/snackhack2/version.rb
CHANGED
data/lib/snackhack2.rb
CHANGED
|
@@ -32,7 +32,7 @@ require_relative 'snackhack2/indirect_command_injection'
|
|
|
32
32
|
require_relative 'snackhack2/list_users'
|
|
33
33
|
require_relative "snackhack2/bypass_403"
|
|
34
34
|
require_relative "snackhack2/comments"
|
|
35
|
-
|
|
35
|
+
require_relative "snackhack2/ssrf"
|
|
36
36
|
module Snackhack2
|
|
37
37
|
UA = "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36"
|
|
38
38
|
def self.read_serverversion
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: snackhack2
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.6.
|
|
4
|
+
version: 0.6.3
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- mike
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: exe
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2024-
|
|
11
|
+
date: 2024-12-07 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: httparty
|
|
@@ -97,6 +97,7 @@ files:
|
|
|
97
97
|
- lib/snackhack2/screenshots.rb
|
|
98
98
|
- lib/snackhack2/sitemap.rb
|
|
99
99
|
- lib/snackhack2/sshbrute.rb
|
|
100
|
+
- lib/snackhack2/ssrf.rb
|
|
100
101
|
- lib/snackhack2/subdomains.rb
|
|
101
102
|
- lib/snackhack2/subdomains2.rb
|
|
102
103
|
- lib/snackhack2/tomcat.rb
|