timing_attack 0.4.1 → 0.5.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 4c07deac97e0cdfadcb0c1249fc09a950642030b
-  data.tar.gz: b565450cb34a4c42a6e7a89394296546834c37cc
+  metadata.gz: 5287eec2e908eee5eb488df3f54f34331db4657e
+  data.tar.gz: 411d19b42241bd668205812445bae18139bb8292
 SHA512:
-  metadata.gz: 27f0cbb88c3038b68d16764d8170a924c0c344117545c8ca37877e854d7b80526297b37f866c53cdc1ad0f5615df354dd898ba3267dd5ccb428db4d6d66a25af
-  data.tar.gz: 0507d9712a8d68d75d5686c7aa3e32e9042a3f7f9116dda113eac59bfed863e5a9203315a57bb1c0e5e38732bcfc3ff0e661f82f87b0b40be6a0d05f61d3b35e
+  metadata.gz: 494cc10f5f13d3fc1057c8b697cfa5ab3a66f1982f08d8178105729ec0c3feb672510408a53c426ad719197d1cbc2d81f79b5420cda67ae2bdb54818540d6470
+  data.tar.gz: d89c6979cb2cb61cd73bafaec6d5d5e0304a87e65e09ceec332dd0623d49e2384d22ba80fa81f6ff5912bd26f0abc0e9c7caad727ad6a70cf7a8dfd7940b0964

data/README.md

@@ -1,3 +1,4 @@
+[![Gem Version](https://badge.fury.io/rb/timing_attack.svg)](http://badge.fury.io/rb/timing_attack)
 # timing_attack
 
 Profile web applications, sorting inputs into two categories based on

data/bin/console

@@ -3,12 +3,5 @@
 require "bundler/setup"
 require "timing_attack"
 
-# You can add fixtures and/or initialization code here to make experimenting
-# with your gem easier. You can also use a different console, if you like.
-
-# (If you use this, don't forget to add pry to your Gemfile!)
-# require "pry"
-# Pry.start
-
-require "irb"
-IRB.start
+require "pry"
+Pry.start

data/exe/timing_attack

@@ -1,68 +1,98 @@
 #!/usr/bin/env ruby
 require 'timing_attack'
 
-options = {}
-opt_parser = OptionParser.new do |opts|
-  opts.program_name = File.basename(__FILE__)
-  opts.banner = "#{opts.program_name} [options] -u <target> <inputs>"
-  opts.on("-u URL", "--url URL", "URL of endpoint to profile") { |str| options[:url] = str }
-  opts.on("-n NUM", "--number NUM", "Requests per input (default: 50)") do |num|
-    options[:iterations] = num.to_i
+class TimingAttackCli
+  attr_reader :options
+  def initialize
+    @options = {}
   end
-  opts.on("-c NUM", "--concurrency NUM", "Number of concurrent requests (default: 15)") do |num|
-    options[:concurrency] = num.to_i
-  end
-  opts.on("-t NUM", "--threshold NUM", "Minimum threshold, in seconds, for meaningfulness (default: 0.025)") do |num|
-    options[:threshold] = num.to_f
-  end
-  opts.on("-p", "--post", "Use POST, not GET") { |bool| options[:method] = bool ? :post : :get }
-  opts.on("-q", "--quiet", "Quiet mode (don't display progress bars)") { |bool| options[:verbose] = !bool }
-  opts.on("--brute_force", "Brute force mode") { |bool| options[:brute_force] = bool }
-  opts.on("--parameters STR", "JSON hash of parameters.  'INPUT' will be replaced with the attack string") do |str|
-    options[:params] = JSON.parse(str)
+
+  def run
+    parse_options
+    sanitize_options
+    execute_attack
   end
-  opts.on("--body STR", "JSON of body paramets to be sent to Typhoeus.  'INPUT' will be replaced with the attack string") do |str|
-    options[:body] = JSON.parse(str)
+
+  private
+
+  def opt_parser
+    @opt_parser ||= OptionParser.new do |opts|
+      opts.program_name = File.basename(__FILE__)
+      opts.banner = "#{opts.program_name} [options] -u <target> <inputs>"
+      opts.on("-u URL", "--url URL", "URL of endpoint to profile") { |str| options[:url] = str }
+      opts.on("-n NUM", "--number NUM", "Requests per input (default: 50)") do |num|
+        options[:iterations] = num.to_i
+      end
+      opts.on("-c NUM", "--concurrency NUM", "Number of concurrent requests (default: 15)") do |num|
+        options[:concurrency] = num.to_i
+      end
+      opts.on("-t NUM", "--threshold NUM", "Minimum threshold, in seconds, for meaningfulness (default: 0.025)") do |num|
+        options[:threshold] = num.to_f
+      end
+      opts.on("-p", "--post", "Use POST, not GET") { |bool| options[:method] = bool ? :post : :get }
+      opts.on("-q", "--quiet", "Quiet mode (don't display progress bars)") { |bool| options[:verbose] = !bool }
+      opts.on("-b", "--brute-force", "Brute force mode") { |bool| options[:brute_force] = bool }
+      opts.on("--parameters STR", "JSON hash of parameters.  'INPUT' will be replaced with the attack string") do |str|
+        options[:params] = JSON.parse(str)
+      end
+      opts.on("--body STR", "JSON of body paramets to be sent to Typhoeus.  'INPUT' will be replaced with the attack string") do |str|
+        options[:body] = JSON.parse(str)
+      end
+      opts.on("--http-username STR", "HTTP basic authentication username.  'INPUT' will be replaced with the attack string") do |str|
+        options[:basic_auth_username] = str
+      end
+      opts.on("--http-password STR", "HTTP basic authentication password.  'INPUT' will be replaced with the attack string") do |str|
+        options[:basic_auth_password] = str
+      end
+      opts.on("--percentile NUM", "Use NUMth percentile for calculations (default: 3)") { |num| options[:percentile] = num.to_i }
+      opts.on("--mean", "Use mean for calculations") { |bool| options[:mean] = bool }
+      opts.on("--median", "Use median for calculations") { |bool| options[:median] = bool }
+      opts.on_tail("-v", "--version", "Print version information") do
+        gem = Gem::Specification.find_by_name('timing_attack')
+        puts "#{gem.name} #{gem.version}"
+        exit
+      end
+      opts.on_tail("-h", "--help", "Display this screen") { puts opts ; exit }
+    end
   end
-  opts.on("--percentile NUM", "Use NUMth percentile for calculations (default: 3)") { |num| options[:percentile] = num.to_i }
-  opts.on("--mean", "Use mean for calculations") { |bool| options[:mean] = bool }
-  opts.on("--median", "Use median for calculations") { |bool| options[:median] = bool }
-  opts.on_tail("-v", "--version", "Print version information") do
-    gem = Gem::Specification.find_by_name('timing_attack')
-    puts "#{gem.name} #{gem.version}"
-    exit
+
+  def parse_options
+    begin
+      opt_parser.parse!
+    rescue OptionParser::InvalidOption => e
+      STDERR.puts e.message
+      puts opt_parser
+      exit
+    end
   end
-  opts.on_tail("-h", "--help", "Display this screen") { puts opts ; exit }
-end
 
-begin
-  opt_parser.parse!
-rescue OptionParser::InvalidOption => e
-  STDERR.puts e.message
-  puts opt_parser
-  exit
-end
-options[:verbose] = true if options[:verbose].nil?
-if options[:percentile]
-  options.delete(:mean)
-elsif options[:median]
-  options[:percentile] = 50
-elsif options[:mean]
-  options.delete(:percentile)
-end
+  def sanitize_options
+    options[:verbose] = true if options[:verbose].nil?
+    if options[:percentile]
+      options.delete(:mean)
+    elsif options[:median]
+      options[:percentile] = 50
+    elsif options[:mean]
+      options.delete(:percentile)
+    end
+  end
 
-begin
-  atk = if options.delete(:brute_force)
-          TimingAttack::BruteForcer.new(options: options)
-        else
-          TimingAttack::Enumerator.new(inputs: ARGV, options: options)
-        end
-  atk.run!
-rescue ArgumentError => e
-  STDERR.puts e.message
-  puts opt_parser
-  exit
-rescue Interrupt => e
-  puts "\nCaught interrupt, exiting"
-  exit
+  def execute_attack
+    begin
+      atk = if options.delete(:brute_force)
+              TimingAttack::BruteForcer.new(options: options)
+            else
+              TimingAttack::Enumerator.new(inputs: ARGV, options: options)
+            end
+      atk.run!
+    rescue ArgumentError => e
+      STDERR.puts e.message
+      puts opt_parser
+      exit
+    rescue Interrupt
+      puts "\nCaught interrupt, exiting"
+      exit
+    end
+  end
 end
+TimingAttackCli.new.run

data/lib/timing_attack/attacker.rb

@@ -1,5 +1,15 @@
 module TimingAttack
   module Attacker
+    def initialize(options: {}, inputs: [])
+      @options = default_options.merge(options)
+      raise ArgumentError.new("Must provide url") if url.nil?
+      unless specified_input_option?
+        msg = "'#{INPUT_FLAG}' not found in url, parameters, body, or HTTP authentication options"
+        raise ArgumentError.new(msg)
+      end
+      raise ArgumentError.new("Iterations can't be < 3") if iterations < 3
+    end
+
     def run!
       if verbose?
         puts "Target: #{url}"
@@ -29,7 +39,30 @@ module TimingAttack
         concurrency: 15,
         params: {},
         body: {},
+        basic_auth_username: "",
+        basic_auth_password: ""
       }.freeze
     end
+
+    def option_contains_input?(obj)
+      case obj
+      when String
+        obj.include?(INPUT_FLAG)
+      when Symbol
+        option_contains_input?(obj.to_s)
+      when Array
+        obj.any? {|el| option_contains_input?(el) }
+      when Hash
+        option_contains_input?(obj.keys) || option_contains_input?(obj.values)
+      end
+    end
+
+    def input_options
+      @input_options ||= %i(basic_auth_password basic_auth_username body params url)
+    end
+
+    def specified_input_option?
+      input_options.any? { |opt| option_contains_input?(options[opt]) }
+    end
   end
 end

data/lib/timing_attack/brute_forcer.rb

@@ -3,8 +3,7 @@ module TimingAttack
     include TimingAttack::Attacker
 
     def initialize(options: {})
-      @options = default_options.merge(options)
-      raise ArgumentError.new("Must provide :url key") if url.nil?
+      super(options: options)
       @known = ""
     end
 

data/lib/timing_attack/enumerator.rb

@@ -4,10 +4,8 @@ module TimingAttack
 
     def initialize(inputs: [], options: {})
       @inputs = inputs
-      @options = default_options.merge(options)
-      raise ArgumentError.new("url is a required argument") unless options.has_key? :url
       raise ArgumentError.new("Need at least 2 inputs") if inputs.count < 2
-      raise ArgumentError.new("Iterations can't be < 3") if iterations < 3
+      super(options: options)
       @attacks = inputs.map { |input| TestCase.new(input: input, options: @options) }
     end
 

data/lib/timing_attack/test_case.rb

@@ -1,7 +1,6 @@
 require 'uri'
 module TimingAttack
   class TestCase
-    INPUT_FLAG = "INPUT"
 
     attr_reader :input
     def initialize(input: , options: {})
@@ -16,20 +15,36 @@ module TimingAttack
       )
       @params = params_from(options.fetch :params, {})
       @body = params_from(options.fetch :body, {})
+      @basic_auth_username = params_from(
+        options.fetch(:basic_auth_username, "")
+      )
+      @basic_auth_password = params_from(
+        options.fetch(:basic_auth_password, "")
+      )
     end
 
     def generate_hydra_request!
-      req = Typhoeus::Request.new(
-        url,
-        method: options.fetch(:method),
-        followlocation: true,
-        params: params,
-        body: body
-      )
+      req = Typhoeus::Request.new(url, **typhoeus_opts)
       @hydra_requests.push req
       req
     end
 
+    def typhoeus_opts
+      {
+        method: options.fetch(:method),
+        followlocation: true,
+      }.tap do |h|
+        h[:params] = params unless params.empty?
+        h[:body] = body unless body.empty?
+        h[:userpwd] = typhoeus_basic_auth unless typhoeus_basic_auth.empty?
+      end
+    end
+
+    def typhoeus_basic_auth
+      return "" if basic_auth_username.empty? && basic_auth_password.empty?
+      "#{basic_auth_username}:#{basic_auth_password}"
+    end
+
     def process!
       @hydra_requests.each do |request|
         response = request.response
@@ -70,5 +85,6 @@ module TimingAttack
     end
 
     attr_reader :times, :options, :percentiles, :url, :params, :body
+    attr_reader :basic_auth_username, :basic_auth_password
   end
 end

data/lib/timing_attack/version.rb

@@ -1,3 +1,3 @@
 module TimingAttack
-  VERSION = "0.4.1"
+  VERSION = "0.5.0"
 end

data/lib/timing_attack.rb

@@ -12,4 +12,5 @@ require "timing_attack/test_case"
 require "timing_attack/enumerator"
 
 module TimingAttack
+  INPUT_FLAG = "INPUT"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: timing_attack
 version: !ruby/object:Gem::Version
-  version: 0.4.1
+  version: 0.5.0
 platform: ruby
 authors:
 - Forrest Fleming
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2017-02-05 00:00:00.000000000 Z
+date: 2017-02-06 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: ruby-progressbar