warding 0.2.6 → 0.2.7

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 6c34288feb935d5458a0a3edad7b09638861d8122d0d6675c45eff07e3e6c283
-  data.tar.gz: 50f8b7a2c1a5e04d50c9841427445e2c9bc0c1197fa7e4127fa241776e600cf1
+  metadata.gz: 80f1a448f9e2dca165d0ae31d4d745b2bd6641a768d2455d64086bb04132a098
+  data.tar.gz: d6afdd80c3497c2a6fd39dda60ebdcedb63d02483116c8ee68b0861f079f93a1
 SHA512:
-  metadata.gz: 4e48333eae63a98dc386e9d9160d7647121c9272be000e8a1c7fbe1c62f15fedf789e5dd4e395e55c681678edeba01c22edadd89a69410816622c6906c691fcf
-  data.tar.gz: 8657a758c6a956cfca4e4b13732215ea3460e2d6dd0c4528f5502f01652c3c460c65e544805f2a5e5ea43a1d7ca6340776bec6b4659a7f33ef47c22b68534a27
+  metadata.gz: 3baef4c001d534fc9dcb595fb10b4b222121e2a161980c153856bee1365db895055b29b644f14739bba69b59535b9cf84359c7c3df69f52be676f8648916b10f
+  data.tar.gz: 5acd8f21a504566276ad9e54a6407307bca3ea3b9e16f7d2001dadc8f80b60f62615f7fc4fac49f77caec34c6f1cf9c8563d13c80b1d0caed57e8f7301f7f22c

data/.github/workflows/default.yml

@@ -0,0 +1,35 @@
+name: Ruby Gem
+on:
+  release:
+    types: [created]
+jobs:
+  build:
+    name: Build/Publish
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v2
+    - name: Set up Ruby 2.6
+      uses: actions/setup-ruby@v1
+      with:
+        ruby-version: 2.6.x
+    - name: Publish to GPR
+      run: |
+        mkdir -p $HOME/.gem
+        touch $HOME/.gem/credentials
+        chmod 0600 $HOME/.gem/credentials
+        printf -- "---\n:github: ${GEM_HOST_API_KEY}\n" > $HOME/.gem/credentials
+        gem build *.gemspec
+        gem push --KEY github --host https://rubygems.pkg.github.com/${OWNER} *.gem
+      env:
+        GEM_HOST_API_KEY: "Bearer ${{secrets.GITHUB_TOKEN}}"
+        OWNER: ${{ github.repository_owner }}
+    - name: Publish to RubyGems
+      run: |
+        mkdir -p $HOME/.gem
+        touch $HOME/.gem/credentials
+        chmod 0600 $HOME/.gem/credentials
+        printf -- "---\n:rubygems_api_key: ${GEM_HOST_API_KEY}\n" > $HOME/.gem/credentials
+        gem build *.gemspec
+        gem push *.gem
+      env:
+        GEM_HOST_API_KEY: "Bearer ${{secrets.RUBYGEMS_AUTH_TOKEN}}"

data/README.md

@@ -1,38 +1,38 @@
-# Warding [![Gem Version](https://badge.fury.io/rb/warding.svg)](https://badge.fury.io/rb/warding)
-
-> Custom Arch Linux installer designed for security assessments and pentesting.
-
-## Installation
-
-Install warding by using the `gem install` command.
-
-```bash
-gem install warding
-```
-
-## Usage
-
-1. Download Arch Linux.
-2. Boot from the live ISO.
-3. Install warding (Ruby may also be required).
-4. Run the binary executable `warding` and fill in the prompts.
-5. Enjoy.
-
-## Tasklist
-
-* Fix steps that contain pipes.
-* Add default smb conf.
-* Add AUR support.
-* Add `NetworkManager` support.
-* Code missing features.
-* Add extra checks.
-* Add GitHub actions.
-* Publish gem/package on GitHub.
-
-## Contributing
-
-Bug reports and pull requests are welcome on GitHub at https://github.com/marlospomin/warding.
-
-## License
-
-The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).
+# Warding [![Gem Version](https://badge.fury.io/rb/warding.svg)](https://badge.fury.io/rb/warding)
+
+> Custom Arch Linux installer designed for security assessments and pentesting.
+
+## Installation
+
+Install warding by using the `gem install` command.
+
+```bash
+gem install warding
+```
+
+## Usage
+
+1. Download Arch Linux.
+2. Boot from the live ISO.
+3. Install warding (Ruby may also be required).
+4. Run the binary executable `warding` and fill in the prompts.
+5. Enjoy.
+
+## Tasklist
+
+* Add sddm and gdm extra confs.
+* Refactor.
+* Suppress outputs.
+* Add AUR support.
+* Code missing features.
+* Add extra checks.
+* Add GitHub actions.
+* Publish gem/package on GitHub.
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at https://github.com/marlospomin/warding.
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).

data/lib/warding.rb

@@ -38,7 +38,7 @@ module Warding
     end
 
     def gather
-      locales_list = %w[en-US es-ES pt-BR ru-RU fr-FR it-IT de-DE ja-JP ko-KR zh-CN]
+      locales_list = %w[en_US es_ES pt_BR ru_RU fr_FR it_IT de_DE ja_JP ko_KR zh_CN]
       keymaps_list = %w[us uk br en fr de zh ru it es]
 
       parsed_input = @@prompt.collect do
@@ -81,7 +81,7 @@ module Warding
           end
         end
 
-        key(:extra_settings).multi_select("Select extra options:", %w[desktop-environment hacking-tools crons])
+        key(:desktop_environment).select("Select your desktop environment:", %w[plasma gnome none])
       end
 
       parsed_input
@@ -93,13 +93,16 @@ module Warding
         @@prompt.say("Installing, please wait...")
 
         def setup_mirrors
+          # update mirrorlist
           `reflector --latest 25 --sort rate --save /etc/pacman.d/mirrorlist`
         end
 
         setup_mirrors if data[:update_mirrors]
 
         def setup_timezone(timezone = false)
+          # set clock
           `timedatectl set-ntp true`
+          # set timezone
           if timezone
             `timedatectl set-timezone #{timezone}`
           else
@@ -110,6 +113,7 @@ module Warding
         data[:update_timezone] ? setup_timezone(data[:update_timezone]) : setup_timezone
 
         def setup_partitions(boot_size)
+          # create partitions
           `parted -s -a optimal /dev/sda \
             mklabel gpt \
             mkpart primary fat32 0% #{boot_size}Mib \
@@ -122,26 +126,33 @@ module Warding
         setup_partitions(data[:system_settings][:boot_size])
 
         def setup_lvm(scheme, swap_size, home_size = false)
+          # create physical volume
           `pvcreate /dev/sda2`
+          # create virtual group
           `vgcreate vg0 /dev/sda2`
+          # create logical volumes
           `lvcreate -L #{swap_size}Mib vg0 -n swap`
           if scheme == "/boot, /root and /home"
             `lvcreate -L #{home_size}Mib vg0 -n home`
           end
           `lvcreate -l 100%FREE vg0 -n root`
-
+          # make and mount root fs
           `mkfs.ext4 /dev/vg0/root`
           `mount /dev/vg0/root /mnt`
-
+          # make and mount home folder
           if scheme == "/boot, /root and /home"
             `mkfs.ext4 /dev/vg0/home`
             `mount /dev/vg0/home /mnt/home`
           end
-
+          # make and mount boot partition
           `mkfs.fat -F32 /dev/sda1`
           `mkdir /mnt/boot`
-          `mount /dev/sda1 /mnt/boot`
-
+          if data[:system_settings][:bootloader] == "systemd-boot"
+            `mount /dev/sda1 /mnt/boot`
+          else
+            `mount /dev/sda1 /mnt/boot/efi`
+          end
+          # setup swap
           `mkswap /dev/vg0/swap`
           `swapon /dev/vg0/swap`
         end
@@ -152,56 +163,75 @@ module Warding
           setup_lvm(data[:system_settings][:partition], data[:system_settings][:swap_size])
         end
 
-        # setup encryption
-
         def setup_packages
+          # update packages list
           `pacman -Syy`
-          `pacstrap /mnt base base-devel linux linux-firmware lvm2 mkinitcpio reflector man-db nano vi fuse wget openbsd-netcat dhcpcd samba openssh openvpn unzip vim git zsh`
+          # install base system
+          `pacstrap /mnt base base-devel linux linux-firmware lvm2 mkinitcpio dmidecode reflector networkmanager cronie man-db nano vi fuse wget openbsd-netcat dhcpcd samba openssh openvpn unzip vim git zsh`
+          # generate fstab
           `genfstab -U /mnt >> /mnt/etc/fstab`
         end
 
         setup_packages
 
         def setup_chroot(lang, keymap, password)
+          # set timezone
           `arch-chroot /mnt ln -sf /usr/share/zoneinfo/"$(curl -s https://ipapi.co/timezone)" /etc/localtime`
+          # update clock
           `arch-chroot /mnt hwclock --systohc`
-
-          `echo "#{lang}.UTF-8" > /mnt/etc/locale.gen`
+          # set locale
+          `echo "#{lang}.UTF-8 UTF-8" > /mnt/etc/locale.gen`
           `arch-chroot /mnt locale-gen`
           `echo "LANG=#{lang}.UTF-8" > /mnt/etc/locale.conf`
+          # set keymap
           `echo "KEYMAP=#{keymap}" > /mnt/etc/vconsole.conf`
+          # update hostname
           `echo "warding" > /mnt/etc/hostname`
+          # update hosts
           `echo "127.0.0.1 localhost\n::1 localhost\n127.0.1.1 warding.localdomain warding" > /mnt/etc/hosts`
-
+          # update root password
           `echo -e "#{password}\n#{password}" | arch-chroot /mnt passwd`
-
+          # update hooks
           `sed -i "/^HOOK/s/filesystems/lvm2 filesystems/" /mnt/etc/mkinitcpio.conf`
-          `arch-chroot /mnt mkinitcpio -p linux 2>/dev/null`
+          # recompile initramfs
+          `arch-chroot /mnt mkinitcpio -p linux`
+          # add intel microcode
           `arch-chroot /mnt pacman -S intel-ucode --noconfirm`
         end
 
         setup_chroot(data[:system_language], data[:keyboard_keymap], data[:root_password])
 
         def setup_bootloader(loader)
+          # setup systemd-boot
           if loader == "systemd-boot"
-            `arch-chroot /mnt bootctl install 2>/dev/null`
+            `arch-chroot /mnt bootctl install`
             `echo "title Warding Linux
             linux /vmlinuz-linux
             initrd /intel-ucode.img
             initrd /initramfs-linux.img
             options root=/dev/vg0/root rw" > /mnt/boot/loader/entries/warding.conf`
           else
-            # TODO: grub
+            # setup grub
+            `arch-chroot /mnt pacman -S grub efibootmgr --noconfirm`
+            `arch-chroot /mnt grub-install --target=x86_64-efi --efi-directory=/boot/efi --bootloader-id=GRUB`
+            `arch-chroot /mnt grub-mkconfig -o /boot/grub/grub.cfg`
           end
         end
 
         setup_bootloader(data[:system_settings][:bootloader])
 
         def setup_usability
-          `arch-chroot /mnt systemctl enable dhcpcd`
-          
-          `arch-chroot /mnt sh -c "$(curl -fsSL https://raw.githubusercontent.com/ohmyzsh/ohmyzsh/master/tools/install.sh)"`
-
+          # enable internet
+          `arch-chroot /mnt systemctl enable NetworkManager`
+          # add cron jobs
+          `echo "#!/bin/bash\nreflector --latest 25 --sort rate --save /etc/pacman.d/mirrorlist" > /mnt/etc/cron.hourly/mirrorlist; chmod +x /mnt/etc/cron.hourly/mirrorlist`
+          `echo "#!/bin/bash\npacman -Sy" > /mnt/etc/cron.weekly/pacman-sync; chmod +x /mnt/etc/cron.weekly/pacman-sync`
+          `echo "#!/bin/bash\npacman -Syu --noconfirm" > /mnt/etc/cron.monthly/system-upgrade; chmod +x /mnt/etc/cron.monthly/system-upgrade`
+          # enable cron jobs
+          `arch-chroot /mnt systemctl enable cronie`
+          # change default shell
+          `arch-chroot /mnt chsh -s $(which zsh)"`
+          # setup blackarch's keyring
           `wget -q https://blackarch.org/keyring/blackarch-keyring.pkg.tar.xz{,.sig}`
           `gpg --keyserver hkp://pgp.mit.edu --recv-keys 4345771566D76038C7FEB43863EC0ADBEA87E4E3 > /dev/null 2>&1`
           `gpg --keyserver-options no-auto-key-retrieve --with-fingerprint blackarch-keyring.pkg.tar.xz.sig > /dev/null 2>&1`
@@ -209,43 +239,44 @@ module Warding
           `pacman-key --init`
           `pacman --config /dev/null --noconfirm -U blackarch-keyring.pkg.tar.xz`
           `pacman-key --populate`
+          # update package list
           `pacman -Syy`
+          # check if on VM
+          if `dmidecode -s system-manufacturer`.include?("VMware, Inc.")
+            # install and enable VMware utils
+            `arch-chroot /mnt pacman -S openvpn-vm-tools --noconfirm`
+            `arch-chroot /mnt systemctl enable vmtoolsd`
+          end
         end
 
         setup_usability
 
-        def setup_visuals
-          `arch-chroot /mnt pacman -S xorg-server xf86-video-intel plasma konsole dolphin kmix sddm kvantum-qt5`
-          `mkdir -p /mnt/etc/sddm.conf.d`
-          `echo "[Theme]\nCurrent=breeze" > /mnt/etc/sddm.conf.d/theme.conf`
-          `echo "[Autologin]\nUser=root" > /mnt/etc/sddm.conf.d/login.conf`
-          `arch-chroot /mnt systemctl enable sddm`
-          `arch-chroot /mnt wget -qO- https://raw.githubusercontent.com/PapirusDevelopmentTeam/arc-kde/master/install.sh | sh`
-          `arch-chroot /mnt wget -qO- https://git.io/papirus-icon-theme-install | sh`
-        end
-
-        setup_visuals if data[:extra_settings].include?("desktop-emvironment")
-
-        def setup_tools
-          `arch-chroot /mnt pacman -S nmap impacket go ruby php firefox atom hashcat john jre-openjdk proxychains-ng exploitdb httpie metasploit bind-tools radare2 sqlmap wpscan xclip --noconfirm`
-          `arch-chroot /mnt mkdir -p /usr/share/wordlists`
-          `arch-chroot /mnt wget -q https://github.com/danielmiessler/SecLists/raw/master/Passwords/Leaked-Databases/rockyou.txt.tar.gz -O /usr/share/wordlists/rockyou.txt.tar.gz`
-          `arch-chroot /mnt wget -q https://github.com/danielmiessler/SecLists/raw/master/Discovery/Web-Content/common.txt -O /usr/share/wordlists/common.txt`
-        end
-
-        setup_tools if data[:extra_settings].include?("hacking-tools")
-
-        def setup_cron
-          `arch-chroot /mnt pacman -S cronie --noconfirm`
-          `arch-chroot /mnt systemctl enable cronie`
-          `echo "#!/bin/bash\nreflector --latest 25 --sort rate --save /etc/pacman.d/mirrorlist" > /mnt/etc/cron.hourly/mirrorlist; chmod +x /mnt/etc/cron.hourly/mirrorlist`
-          `echo "#!/bin/bash\npacman -Sy" > /mnt/etc/cron.weekly/pacman-sync; chmod +x /mnt/etc/cron.weekly/pacman-sync`
-          `echo "#!/bin/bash\npacman -Syu --noconfirm" > /mnt/etc/cron.monthly/system-upgrade; chmod +x /mnt/etc/cron.monthly/system-upgrade`
+        def setup_visuals(theme = "none")
+          if theme == "none"
+            break
+          elsif theme == "kde"
+            # install packages
+            `arch-chroot /mnt pacman -S xorg-server xf86-video-intel plasma konsole dolphin kmix sddm kvantum-qt5`
+            # create conf dir
+            `mkdir -p /mnt/etc/sddm.conf.d`
+            # fix theme
+            `echo "[Theme]\nCurrent=breeze" > /mnt/etc/sddm.conf.d/theme.conf`
+            # enable autologin
+            `echo "[Autologin]\nUser=root" > /mnt/etc/sddm.conf.d/login.conf`
+            # enable sddm
+            `arch-chroot /mnt systemctl enable sddm`
+          else
+            # install packages
+            `arch-chroot /mnt pacman -S xf86-video-intel gnome`
+            # enable gdm
+            `arch-chroot /mnt systemctl enable gdm`
+          end
         end
 
-        setup_cron if data[:extra_settings].include?("crons")
+        setup_visuals(data[:desktop_environment])
 
         def finish
+          # end
           `umount -R /mnt`
           `reboot`
         end

data/lib/warding/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Warding
-  VERSION = "0.2.6"
+  VERSION = "0.2.7"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: warding
 version: !ruby/object:Gem::Version
-  version: 0.2.6
+  version: 0.2.7
 platform: ruby
 authors:
 - Marlos Pomin
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2020-08-22 00:00:00.000000000 Z
+date: 2020-08-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: tty-prompt
@@ -32,6 +32,7 @@ executables:
 extensions: []
 extra_rdoc_files: []
 files:
+- ".github/workflows/default.yml"
 - ".gitignore"
 - ".rubocop.yml"
 - Gemfile