Date: Mon, 14 Mar 2016 21:56:05 +0000 (UTC) From: Mark Felder <feld@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r411122 - in head/security: . cisco-torch cisco-torch/files Message-ID: <201603142156.u2ELu5eP046136@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: feld Date: Mon Mar 14 21:56:05 2016 New Revision: 411122 URL: https://svnweb.freebsd.org/changeset/ports/411122 Log: Cisco-torch is a mass Cisco Vulnerability Scanner. The main feature that makes Cisco-torch different from similar tools is the extensive use of forking to launch multiple scanning processes on the background for maximum scanning efficiency. Also, it uses several methods of application layer fingerprinting simultaneously, if needed. We wanted something fast to discover remote Cisco hosts running Telnet, SSH, Web, NTP and SNMP services and launch dictionary attacks against the services discovered. WWW: http://www.hackingciscoexposed.com/?link=tools PR: 207221 Submitted by: Rihaz Jerrin <rihaz.jerrin@gmail.com> Added: head/security/cisco-torch/ head/security/cisco-torch/Makefile (contents, props changed) head/security/cisco-torch/distinfo (contents, props changed) head/security/cisco-torch/files/ head/security/cisco-torch/files/patch-cisco-torch.pl (contents, props changed) head/security/cisco-torch/files/patch-include_Banner.pm (contents, props changed) head/security/cisco-torch/files/patch-torch.conf (contents, props changed) head/security/cisco-torch/pkg-descr (contents, props changed) head/security/cisco-torch/pkg-plist (contents, props changed) Modified: head/security/Makefile Modified: head/security/Makefile ============================================================================== --- head/security/Makefile Mon Mar 14 21:45:12 2016 (r411121) +++ head/security/Makefile Mon Mar 14 21:56:05 2016 (r411122) @@ -61,6 +61,7 @@ SUBDIR += chntpw SUBDIR += chroot_safe SUBDIR += chrootuid + SUBDIR += cisco-torch SUBDIR += ckpass SUBDIR += cksfv SUBDIR += cl-md5 Added: head/security/cisco-torch/Makefile ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/cisco-torch/Makefile Mon Mar 14 21:56:05 2016 (r411122) @@ -0,0 +1,47 @@ +# Created by: Rihaz Jerrin <rihaz.jerrin@gmail.com> +# $FreeBSD$ + +PORTNAME= cisco-torch +PORTVERSION= 0.4 +DISTVERSIONSUFFIX= b +CATEGORIES= security +MASTER_SITES= http://www.hackingciscoexposed.com/tools/ + +MAINTAINER= rihaz.jerrin@gmail.com +COMMENT= Mass Cisco Vulnerability Scanner + +LICENSE= LGPL21 + +RUN_DEPENDS= p5-Net-Telnet>=0:${PORTSDIR}/net/p5-Net-Telnet \ + p5-Net-SSH2>=0:${PORTSDIR}/net/p5-Net-SSH2 \ + p5-Net-SNMP>=0:${PORTSDIR}/net-mgmt/p5-Net-SNMP \ + p5-Net-SSLeay>=0:${PORTSDIR}/security/p5-Net-SSLeay + +USES= perl5 shebangfix +SHEBANG_FILES= ${WRKSRC}/cisco-torch.pl + +NO_BUILD= yes +NO_ARCH= yes + +PORTDOCS= README.txt TODO CHANGELOG.txt LICENSE +FILELIST= brutefile.txt \ + community.txt \ + fingerprint.db \ + password.txt \ + tfingerprint.db \ + users.txt + +do-install: + ${INSTALL_SCRIPT} ${WRKSRC}/cisco-torch.pl ${STAGEDIR}${PREFIX}/bin/cisco-torch + ${MKDIR} ${STAGEDIR}${DATADIR}/include + ${MKDIR} ${STAGEDIR}${DATADIR}/tftproot + ${MKDIR} ${STAGEDIR}${ETCDIR} +.for i in ${FILELIST} + ${INSTALL_DATA} ${WRKSRC}/${i} ${STAGEDIR}${DATADIR} +.endfor + (cd ${WRKSRC} && ${COPYTREE_SHARE} include ${STAGEDIR}${DATADIR}) + ${MKDIR} ${STAGEDIR}${DOCSDIR} + ${INSTALL_DATA} ${WRKSRC}/torch.conf ${STAGEDIR}${ETCDIR}/torch.conf.sample + ${INSTALL_DATA} ${PORTDOCS:S|^|${WRKSRC}/|} ${STAGEDIR}${DOCSDIR} + +.include <bsd.port.mk> Added: head/security/cisco-torch/distinfo ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/cisco-torch/distinfo Mon Mar 14 21:56:05 2016 (r411122) @@ -0,0 +1,2 @@ +SHA256 (cisco-torch-0.4b.tar.gz) = a23b90858d17bb85164e210c46b4411e4184f9eb9229ad0dcc30655f23f1023e +SIZE (cisco-torch-0.4b.tar.gz) = 27126 Added: head/security/cisco-torch/files/patch-cisco-torch.pl ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/cisco-torch/files/patch-cisco-torch.pl Mon Mar 14 21:56:05 2016 (r411122) @@ -0,0 +1,33 @@ +--- cisco-torch.pl.orig 2016-02-15 10:53:28 UTC ++++ cisco-torch.pl +@@ -5,14 +5,14 @@ eval ("use sigtrap;");die "[error] sigtr + eval ("use Net::hostent;");die "[error] Net::hostent perl module is not installed \n" if $@; + eval ("use Getopt::Std;");die "[error] Getopt::Std perl module is not installed \n" if $@; + eval ("use Net::Telnet;");die "[error] Net::Telnet perl module is not installed \n" if $@; +-eval ("use Net::SSH::Perl;");die "[error] Net::SSH::Perl perl module is not installed \n" if $@; ++eval ("use Net::SSH2;");die "[error] Net::SSH2 perl module is not installed \n" if $@; + eval ("use Net::SSLeay qw(get_https post_https sslcat make_headers make_form);");die "[error] Net::SSLeay perl module is not installed \n" if $@; + eval ("use MIME::Base64 qw(encode_base64);");die "[error] MIME::Base64 perl module is not installed \n" if $@; + eval ("use Net::SNMP;");die "[error] Net::SNMP perl module is not installed \n" if $@; + eval ("use POSIX;");die "[error] POSIX perl is not suported \n" if $@; + + +-eval{require "torch.conf"}; ++eval{require "/usr/local/etc/cisco-torch/torch.conf"}; + + if($@) { + print "Failed to load config file:torch.conf\n"; +@@ -23,11 +23,11 @@ print "Using config file torch.conf...\n + + # Plugins + print "Loading include and plugin ...\n"; +-opendir(DIR, "include"); ++opendir(DIR, "$datadir/include"); + while($in=readdir(DIR)) { + next if ($in=~/^[.]{1,2}/); + next if !($in=~/\.pm$/); +- require "include/$in"; ++ require "$datadir/include/$in"; + } + closedir(DIR); + Added: head/security/cisco-torch/files/patch-include_Banner.pm ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/cisco-torch/files/patch-include_Banner.pm Mon Mar 14 21:56:05 2016 (r411122) @@ -0,0 +1,28 @@ +--- include/Banner.pm.orig 2016-02-13 16:02:14 UTC ++++ include/Banner.pm +@@ -1,8 +1,8 @@ + + sub usage + { +- print( " version $version\nusage: ./cisco-torch.pl <options> <IP,hostname,network>\n\n"); +- print("or: ./cisco-torch.pl <options> -F <hostlist>\n\n"); ++ print( " version $version\nusage: cisco-torch <options> <IP,hostname,network>\n\n"); ++ print("or: cisco-torch <options> -F <hostlist>\n\n"); + print("Available options:\n"); + print("-O <output file>\n"); + print("-A\t\tAll fingerprint scan types combined\n"); +@@ -21,10 +21,10 @@ sub usage + print("-c\t\tCisco Webserver with SSL support scan\n"); + print("-b\t\tPassword dictionary attack (use with -s, -u, -c, -w , -j or -t only)\n"); + print("-V\t\tPrint tool version and exit\n"); +- print("examples:\t./cisco-torch.pl -A 10.10.0.0\/16\n"); +- print("\t\t./cisco-torch.pl -s -b -F sshtocheck.txt\n"); +- print("\t\t./cisco-torch.pl -w -z 10.10.0.0\/16\n"); +- print("\t\t./cisco-torch.pl -j -b -g -F tftptocheck.txt\n"); ++ print("examples:\t cisco-torch -A 10.10.0.0\/16\n"); ++ print("\t\t cisco-torch -s -b -F sshtocheck.txt\n"); ++ print("\t\t cisco-torch -w -z 10.10.0.0\/16\n"); ++ print("\t\t cisco-torch -j -b -g -F tftptocheck.txt\n"); + } + + sub banner Added: head/security/cisco-torch/files/patch-torch.conf ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/cisco-torch/files/patch-torch.conf Mon Mar 14 21:56:05 2016 (r411122) @@ -0,0 +1,26 @@ +--- torch.conf.orig 2005-03-10 13:38:34 UTC ++++ torch.conf +@@ -1,14 +1,15 @@ ++$datadir="/usr/local/share/cisco-torch"; + $max_processes=50; #Max proces + $hosts_per_process=5; #Max host per process +-$passfile= "password.txt"; #Password word database +-$communityfile="community.txt"; #SNMP community database +-$usersfile="users.txt"; # Users word database +-$brutefile="brutefile.txt"; #TFTP file word database +-$fingerprintdb = "fingerprint.db"; #Telnet fingerprint database +-$tfingerprintdb = "tfingerprint.db"; #TFTP fingerprint database ++$passfile= "$datadir/password.txt"; #Password word database ++$communityfile="$datadir/community.txt"; #SNMP community database ++$usersfile="$datadir/users.txt"; # Users word database ++$brutefile="$datadir/brutefile.txt"; #TFTP file word database ++$fingerprintdb = "$datadir/fingerprint.db"; #Telnet fingerprint database ++$tfingerprintdb = "$datadir/tfingerprint.db"; #TFTP fingerprint database + $tftprootdir ="tftproot"; # TFT root directory + $tftpserver ="192.168.77.8"; #TFTP server hostname + $tmplogprefix = "/tmp/tmplog"; #Temp file directory + $logfile="scan.log"; #Log file filename + $llevel="cdv"; #Log level +-$port = 80; #Web service port +\ No newline at end of file ++$port = 80; #Web service port Added: head/security/cisco-torch/pkg-descr ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/cisco-torch/pkg-descr Mon Mar 14 21:56:05 2016 (r411122) @@ -0,0 +1,11 @@ +Cisco-torch is a mass Cisco Vulnerability Scanner. + +The main feature that makes Cisco-torch different from similar +tools is the extensive use of forking to launch multiple scanning +processes on the background for maximum scanning efficiency. Also, +it uses several methods of application layer fingerprinting simultaneously, +if needed. We wanted something fast to discover remote Cisco hosts running +Telnet, SSH, Web, NTP and SNMP services and launch dictionary attacks +against the services discovered. + +WWW: http://www.hackingciscoexposed.com/?link=tools Added: head/security/cisco-torch/pkg-plist ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/security/cisco-torch/pkg-plist Mon Mar 14 21:56:05 2016 (r411122) @@ -0,0 +1,24 @@ +bin/cisco-torch +%%DATADIR%%/include/HTTP-brute.pm +%%DATADIR%%/include/Banner.pm +%%DATADIR%%/include/SSH-finger.pm +%%DATADIR%%/include/Ntp.pm +%%DATADIR%%/include/SNMP.pm +%%DATADIR%%/include/TFTP.pm +%%DATADIR%%/include/HTTP-bugs.pm +%%DATADIR%%/include/log.pm +%%DATADIR%%/include/SSL-brute.pm +%%DATADIR%%/include/Telnet-SSH-brute.pm +%%DATADIR%%/include/HTTP-finger.pm +%%DATADIR%%/include/SNMPDOWNLOAD.pm +%%DATADIR%%/include/IPmask-utils.pm +%%DATADIR%%/include/SSL-finger.pm +%%DATADIR%%/include/Telnet-finger.pm +%%DATADIR%%/fingerprint.db +%%DATADIR%%/password.txt +%%DATADIR%%/tfingerprint.db +%%DATADIR%%/community.txt +%%DATADIR%%/brutefile.txt +%%DATADIR%%/users.txt +@dir %%DATADIR%%/tftproot +@sample %%ETCDIR%%/torch.conf.sample
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201603142156.u2ELu5eP046136>