From owner-svn-ports-head@freebsd.org Mon Mar 14 21:56:07 2016 Return-Path: Delivered-To: svn-ports-head@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id A894AAD06FB; Mon, 14 Mar 2016 21:56:07 +0000 (UTC) (envelope-from feld@FreeBSD.org) Received: from repo.freebsd.org (repo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 6AF592AA; Mon, 14 Mar 2016 21:56:07 +0000 (UTC) (envelope-from feld@FreeBSD.org) Received: from repo.freebsd.org ([127.0.1.37]) by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u2ELu6Vv046144; Mon, 14 Mar 2016 21:56:06 GMT (envelope-from feld@FreeBSD.org) Received: (from feld@localhost) by repo.freebsd.org (8.15.2/8.15.2/Submit) id u2ELu5eP046136; Mon, 14 Mar 2016 21:56:05 GMT (envelope-from feld@FreeBSD.org) Message-Id: <201603142156.u2ELu5eP046136@repo.freebsd.org> X-Authentication-Warning: repo.freebsd.org: feld set sender to feld@FreeBSD.org using -f From: Mark Felder Date: Mon, 14 Mar 2016 21:56:05 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r411122 - in head/security: . cisco-torch cisco-torch/files X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-head@freebsd.org X-Mailman-Version: 2.1.21 Precedence: list List-Id: SVN commit messages for the ports tree for head List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Mar 2016 21:56:07 -0000 Author: feld Date: Mon Mar 14 21:56:05 2016 New Revision: 411122 URL: https://svnweb.freebsd.org/changeset/ports/411122 Log: Cisco-torch is a mass Cisco Vulnerability Scanner. The main feature that makes Cisco-torch different from similar tools is the extensive use of forking to launch multiple scanning processes on the background for maximum scanning efficiency. Also, it uses several methods of application layer fingerprinting simultaneously, if needed. We wanted something fast to discover remote Cisco hosts running Telnet, SSH, Web, NTP and SNMP services and launch dictionary attacks against the services discovered. WWW: http://www.hackingciscoexposed.com/?link=tools PR: 207221 Submitted by: Rihaz Jerrin Added: head/security/cisco-torch/ head/security/cisco-torch/Makefile (contents, props changed) head/security/cisco-torch/distinfo (contents, props changed) head/security/cisco-torch/files/ head/security/cisco-torch/files/patch-cisco-torch.pl (contents, props changed) head/security/cisco-torch/files/patch-include_Banner.pm (contents, props changed) head/security/cisco-torch/files/patch-torch.conf (contents, props changed) head/security/cisco-torch/pkg-descr (contents, props changed) head/security/cisco-torch/pkg-plist (contents, props changed) Modified: head/security/Makefile Modified: head/security/Makefile ============================================================================== --- head/security/Makefile Mon Mar 14 21:45:12 2016 (r411121) +++ head/security/Makefile Mon Mar 14 21:56:05 2016 (r411122) @@ -61,6 +61,7 @@ SUBDIR += chntpw SUBDIR += chroot_safe SUBDIR += chrootuid + SUBDIR += cisco-torch SUBDIR += ckpass SUBDIR += cksfv SUBDIR += cl-md5 Added: head/security/cisco-torch/Makefile ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/cisco-torch/Makefile Mon Mar 14 21:56:05 2016 (r411122) @@ -0,0 +1,47 @@ +# Created by: Rihaz Jerrin +# $FreeBSD$ + +PORTNAME= cisco-torch +PORTVERSION= 0.4 +DISTVERSIONSUFFIX= b +CATEGORIES= security +MASTER_SITES= http://www.hackingciscoexposed.com/tools/ + +MAINTAINER= rihaz.jerrin@gmail.com +COMMENT= Mass Cisco Vulnerability Scanner + +LICENSE= LGPL21 + +RUN_DEPENDS= p5-Net-Telnet>=0:${PORTSDIR}/net/p5-Net-Telnet \ + p5-Net-SSH2>=0:${PORTSDIR}/net/p5-Net-SSH2 \ + p5-Net-SNMP>=0:${PORTSDIR}/net-mgmt/p5-Net-SNMP \ + p5-Net-SSLeay>=0:${PORTSDIR}/security/p5-Net-SSLeay + +USES= perl5 shebangfix +SHEBANG_FILES= ${WRKSRC}/cisco-torch.pl + +NO_BUILD= yes +NO_ARCH= yes + +PORTDOCS= README.txt TODO CHANGELOG.txt LICENSE +FILELIST= brutefile.txt \ + community.txt \ + fingerprint.db \ + password.txt \ + tfingerprint.db \ + users.txt + +do-install: + ${INSTALL_SCRIPT} ${WRKSRC}/cisco-torch.pl ${STAGEDIR}${PREFIX}/bin/cisco-torch + ${MKDIR} ${STAGEDIR}${DATADIR}/include + ${MKDIR} ${STAGEDIR}${DATADIR}/tftproot + ${MKDIR} ${STAGEDIR}${ETCDIR} +.for i in ${FILELIST} + ${INSTALL_DATA} ${WRKSRC}/${i} ${STAGEDIR}${DATADIR} +.endfor + (cd ${WRKSRC} && ${COPYTREE_SHARE} include ${STAGEDIR}${DATADIR}) + ${MKDIR} ${STAGEDIR}${DOCSDIR} + ${INSTALL_DATA} ${WRKSRC}/torch.conf ${STAGEDIR}${ETCDIR}/torch.conf.sample + ${INSTALL_DATA} ${PORTDOCS:S|^|${WRKSRC}/|} ${STAGEDIR}${DOCSDIR} + +.include Added: head/security/cisco-torch/distinfo ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/cisco-torch/distinfo Mon Mar 14 21:56:05 2016 (r411122) @@ -0,0 +1,2 @@ +SHA256 (cisco-torch-0.4b.tar.gz) = a23b90858d17bb85164e210c46b4411e4184f9eb9229ad0dcc30655f23f1023e +SIZE (cisco-torch-0.4b.tar.gz) = 27126 Added: head/security/cisco-torch/files/patch-cisco-torch.pl ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/cisco-torch/files/patch-cisco-torch.pl Mon Mar 14 21:56:05 2016 (r411122) @@ -0,0 +1,33 @@ +--- cisco-torch.pl.orig 2016-02-15 10:53:28 UTC ++++ cisco-torch.pl +@@ -5,14 +5,14 @@ eval ("use sigtrap;");die "[error] sigtr + eval ("use Net::hostent;");die "[error] Net::hostent perl module is not installed \n" if $@; + eval ("use Getopt::Std;");die "[error] Getopt::Std perl module is not installed \n" if $@; + eval ("use Net::Telnet;");die "[error] Net::Telnet perl module is not installed \n" if $@; +-eval ("use Net::SSH::Perl;");die "[error] Net::SSH::Perl perl module is not installed \n" if $@; ++eval ("use Net::SSH2;");die "[error] Net::SSH2 perl module is not installed \n" if $@; + eval ("use Net::SSLeay qw(get_https post_https sslcat make_headers make_form);");die "[error] Net::SSLeay perl module is not installed \n" if $@; + eval ("use MIME::Base64 qw(encode_base64);");die "[error] MIME::Base64 perl module is not installed \n" if $@; + eval ("use Net::SNMP;");die "[error] Net::SNMP perl module is not installed \n" if $@; + eval ("use POSIX;");die "[error] POSIX perl is not suported \n" if $@; + + +-eval{require "torch.conf"}; ++eval{require "/usr/local/etc/cisco-torch/torch.conf"}; + + if($@) { + print "Failed to load config file:torch.conf\n"; +@@ -23,11 +23,11 @@ print "Using config file torch.conf...\n + + # Plugins + print "Loading include and plugin ...\n"; +-opendir(DIR, "include"); ++opendir(DIR, "$datadir/include"); + while($in=readdir(DIR)) { + next if ($in=~/^[.]{1,2}/); + next if !($in=~/\.pm$/); +- require "include/$in"; ++ require "$datadir/include/$in"; + } + closedir(DIR); + Added: head/security/cisco-torch/files/patch-include_Banner.pm ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/cisco-torch/files/patch-include_Banner.pm Mon Mar 14 21:56:05 2016 (r411122) @@ -0,0 +1,28 @@ +--- include/Banner.pm.orig 2016-02-13 16:02:14 UTC ++++ include/Banner.pm +@@ -1,8 +1,8 @@ + + sub usage + { +- print( " version $version\nusage: ./cisco-torch.pl \n\n"); +- print("or: ./cisco-torch.pl -F \n\n"); ++ print( " version $version\nusage: cisco-torch \n\n"); ++ print("or: cisco-torch -F \n\n"); + print("Available options:\n"); + print("-O \n"); + print("-A\t\tAll fingerprint scan types combined\n"); +@@ -21,10 +21,10 @@ sub usage + print("-c\t\tCisco Webserver with SSL support scan\n"); + print("-b\t\tPassword dictionary attack (use with -s, -u, -c, -w , -j or -t only)\n"); + print("-V\t\tPrint tool version and exit\n"); +- print("examples:\t./cisco-torch.pl -A 10.10.0.0\/16\n"); +- print("\t\t./cisco-torch.pl -s -b -F sshtocheck.txt\n"); +- print("\t\t./cisco-torch.pl -w -z 10.10.0.0\/16\n"); +- print("\t\t./cisco-torch.pl -j -b -g -F tftptocheck.txt\n"); ++ print("examples:\t cisco-torch -A 10.10.0.0\/16\n"); ++ print("\t\t cisco-torch -s -b -F sshtocheck.txt\n"); ++ print("\t\t cisco-torch -w -z 10.10.0.0\/16\n"); ++ print("\t\t cisco-torch -j -b -g -F tftptocheck.txt\n"); + } + + sub banner Added: head/security/cisco-torch/files/patch-torch.conf ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/cisco-torch/files/patch-torch.conf Mon Mar 14 21:56:05 2016 (r411122) @@ -0,0 +1,26 @@ +--- torch.conf.orig 2005-03-10 13:38:34 UTC ++++ torch.conf +@@ -1,14 +1,15 @@ ++$datadir="/usr/local/share/cisco-torch"; + $max_processes=50; #Max proces + $hosts_per_process=5; #Max host per process +-$passfile= "password.txt"; #Password word database +-$communityfile="community.txt"; #SNMP community database +-$usersfile="users.txt"; # Users word database +-$brutefile="brutefile.txt"; #TFTP file word database +-$fingerprintdb = "fingerprint.db"; #Telnet fingerprint database +-$tfingerprintdb = "tfingerprint.db"; #TFTP fingerprint database ++$passfile= "$datadir/password.txt"; #Password word database ++$communityfile="$datadir/community.txt"; #SNMP community database ++$usersfile="$datadir/users.txt"; # Users word database ++$brutefile="$datadir/brutefile.txt"; #TFTP file word database ++$fingerprintdb = "$datadir/fingerprint.db"; #Telnet fingerprint database ++$tfingerprintdb = "$datadir/tfingerprint.db"; #TFTP fingerprint database + $tftprootdir ="tftproot"; # TFT root directory + $tftpserver ="192.168.77.8"; #TFTP server hostname + $tmplogprefix = "/tmp/tmplog"; #Temp file directory + $logfile="scan.log"; #Log file filename + $llevel="cdv"; #Log level +-$port = 80; #Web service port +\ No newline at end of file ++$port = 80; #Web service port Added: head/security/cisco-torch/pkg-descr ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/cisco-torch/pkg-descr Mon Mar 14 21:56:05 2016 (r411122) @@ -0,0 +1,11 @@ +Cisco-torch is a mass Cisco Vulnerability Scanner. + +The main feature that makes Cisco-torch different from similar +tools is the extensive use of forking to launch multiple scanning +processes on the background for maximum scanning efficiency. Also, +it uses several methods of application layer fingerprinting simultaneously, +if needed. We wanted something fast to discover remote Cisco hosts running +Telnet, SSH, Web, NTP and SNMP services and launch dictionary attacks +against the services discovered. + +WWW: http://www.hackingciscoexposed.com/?link=tools Added: head/security/cisco-torch/pkg-plist ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/cisco-torch/pkg-plist Mon Mar 14 21:56:05 2016 (r411122) @@ -0,0 +1,24 @@ +bin/cisco-torch +%%DATADIR%%/include/HTTP-brute.pm +%%DATADIR%%/include/Banner.pm +%%DATADIR%%/include/SSH-finger.pm +%%DATADIR%%/include/Ntp.pm +%%DATADIR%%/include/SNMP.pm +%%DATADIR%%/include/TFTP.pm +%%DATADIR%%/include/HTTP-bugs.pm +%%DATADIR%%/include/log.pm +%%DATADIR%%/include/SSL-brute.pm +%%DATADIR%%/include/Telnet-SSH-brute.pm +%%DATADIR%%/include/HTTP-finger.pm +%%DATADIR%%/include/SNMPDOWNLOAD.pm +%%DATADIR%%/include/IPmask-utils.pm +%%DATADIR%%/include/SSL-finger.pm +%%DATADIR%%/include/Telnet-finger.pm +%%DATADIR%%/fingerprint.db +%%DATADIR%%/password.txt +%%DATADIR%%/tfingerprint.db +%%DATADIR%%/community.txt +%%DATADIR%%/brutefile.txt +%%DATADIR%%/users.txt +@dir %%DATADIR%%/tftproot +@sample %%ETCDIR%%/torch.conf.sample