Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 14 Mar 2016 21:56:05 +0000 (UTC)
From:      Mark Felder <feld@FreeBSD.org>
To:        ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org
Subject:   svn commit: r411122 - in head/security: . cisco-torch cisco-torch/files
Message-ID:  <201603142156.u2ELu5eP046136@repo.freebsd.org>

next in thread | raw e-mail | index | archive | help
Author: feld
Date: Mon Mar 14 21:56:05 2016
New Revision: 411122
URL: https://svnweb.freebsd.org/changeset/ports/411122

Log:
  Cisco-torch is a mass Cisco Vulnerability Scanner.
  
  The main feature that makes Cisco-torch different from similar
  tools is the extensive use of forking to launch multiple scanning
  processes on the background for maximum scanning efficiency. Also,
  it uses several methods of application layer fingerprinting simultaneously,
  if needed. We wanted something fast to discover remote Cisco hosts running
  Telnet, SSH, Web, NTP and SNMP services and launch dictionary attacks
  against the services discovered.
  
  WWW: http://www.hackingciscoexposed.com/?link=tools
  
  PR:		207221
  Submitted by:	Rihaz Jerrin <rihaz.jerrin@gmail.com>

Added:
  head/security/cisco-torch/
  head/security/cisco-torch/Makefile   (contents, props changed)
  head/security/cisco-torch/distinfo   (contents, props changed)
  head/security/cisco-torch/files/
  head/security/cisco-torch/files/patch-cisco-torch.pl   (contents, props changed)
  head/security/cisco-torch/files/patch-include_Banner.pm   (contents, props changed)
  head/security/cisco-torch/files/patch-torch.conf   (contents, props changed)
  head/security/cisco-torch/pkg-descr   (contents, props changed)
  head/security/cisco-torch/pkg-plist   (contents, props changed)
Modified:
  head/security/Makefile

Modified: head/security/Makefile
==============================================================================
--- head/security/Makefile	Mon Mar 14 21:45:12 2016	(r411121)
+++ head/security/Makefile	Mon Mar 14 21:56:05 2016	(r411122)
@@ -61,6 +61,7 @@
     SUBDIR += chntpw
     SUBDIR += chroot_safe
     SUBDIR += chrootuid
+    SUBDIR += cisco-torch
     SUBDIR += ckpass
     SUBDIR += cksfv
     SUBDIR += cl-md5

Added: head/security/cisco-torch/Makefile
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ head/security/cisco-torch/Makefile	Mon Mar 14 21:56:05 2016	(r411122)
@@ -0,0 +1,47 @@
+# Created by: Rihaz Jerrin <rihaz.jerrin@gmail.com>
+# $FreeBSD$
+
+PORTNAME=	cisco-torch
+PORTVERSION=	0.4
+DISTVERSIONSUFFIX=	b
+CATEGORIES=	security
+MASTER_SITES=	http://www.hackingciscoexposed.com/tools/
+
+MAINTAINER=	rihaz.jerrin@gmail.com
+COMMENT=	Mass Cisco Vulnerability Scanner
+
+LICENSE=	LGPL21
+
+RUN_DEPENDS=	p5-Net-Telnet>=0:${PORTSDIR}/net/p5-Net-Telnet \
+		p5-Net-SSH2>=0:${PORTSDIR}/net/p5-Net-SSH2 \
+		p5-Net-SNMP>=0:${PORTSDIR}/net-mgmt/p5-Net-SNMP \
+		p5-Net-SSLeay>=0:${PORTSDIR}/security/p5-Net-SSLeay
+
+USES=		perl5 shebangfix
+SHEBANG_FILES=	${WRKSRC}/cisco-torch.pl
+
+NO_BUILD=	yes
+NO_ARCH=	yes
+
+PORTDOCS=	README.txt  TODO  CHANGELOG.txt  LICENSE
+FILELIST=	brutefile.txt \
+		community.txt \
+		fingerprint.db \
+		password.txt \
+		tfingerprint.db \
+		users.txt
+
+do-install:
+	${INSTALL_SCRIPT}   ${WRKSRC}/cisco-torch.pl ${STAGEDIR}${PREFIX}/bin/cisco-torch
+	${MKDIR} 	    ${STAGEDIR}${DATADIR}/include
+	${MKDIR} 	    ${STAGEDIR}${DATADIR}/tftproot
+	${MKDIR}            ${STAGEDIR}${ETCDIR}
+.for i in ${FILELIST}
+	${INSTALL_DATA} ${WRKSRC}/${i} ${STAGEDIR}${DATADIR}
+.endfor
+	(cd ${WRKSRC} && ${COPYTREE_SHARE} include ${STAGEDIR}${DATADIR})
+	${MKDIR}  ${STAGEDIR}${DOCSDIR}
+	${INSTALL_DATA}	${WRKSRC}/torch.conf  ${STAGEDIR}${ETCDIR}/torch.conf.sample
+	${INSTALL_DATA} ${PORTDOCS:S|^|${WRKSRC}/|} ${STAGEDIR}${DOCSDIR}
+
+.include <bsd.port.mk>

Added: head/security/cisco-torch/distinfo
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ head/security/cisco-torch/distinfo	Mon Mar 14 21:56:05 2016	(r411122)
@@ -0,0 +1,2 @@
+SHA256 (cisco-torch-0.4b.tar.gz) = a23b90858d17bb85164e210c46b4411e4184f9eb9229ad0dcc30655f23f1023e
+SIZE (cisco-torch-0.4b.tar.gz) = 27126

Added: head/security/cisco-torch/files/patch-cisco-torch.pl
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ head/security/cisco-torch/files/patch-cisco-torch.pl	Mon Mar 14 21:56:05 2016	(r411122)
@@ -0,0 +1,33 @@
+--- cisco-torch.pl.orig	2016-02-15 10:53:28 UTC
++++ cisco-torch.pl
+@@ -5,14 +5,14 @@ eval ("use sigtrap;");die "[error] sigtr
+ eval ("use Net::hostent;");die "[error] Net::hostent  perl module is not installed \n" if $@;
+ eval ("use Getopt::Std;");die "[error] Getopt::Std perl module is not installed \n" if $@;
+ eval ("use Net::Telnet;");die "[error] Net::Telnet perl module is not installed \n" if $@;
+-eval ("use Net::SSH::Perl;");die "[error] Net::SSH::Perl perl module is not installed \n" if $@;
++eval ("use  Net::SSH2;");die "[error]  Net::SSH2 perl module is not installed \n" if $@;
+ eval ("use Net::SSLeay qw(get_https post_https sslcat make_headers make_form);");die "[error] Net::SSLeay perl module is not installed \n" if $@;
+ eval ("use MIME::Base64 qw(encode_base64);");die "[error] MIME::Base64 perl module is not installed \n" if $@;
+ eval ("use Net::SNMP;");die "[error] Net::SNMP perl module is not installed \n" if $@;
+ eval ("use POSIX;");die "[error] POSIX perl  is not suported \n" if $@;
+ 
+ 
+-eval{require "torch.conf"};
++eval{require "/usr/local/etc/cisco-torch/torch.conf"};
+ 
+ if($@) {
+    print "Failed to load config file:torch.conf\n";
+@@ -23,11 +23,11 @@ print "Using config file torch.conf...\n
+ 
+ # Plugins
+ print "Loading include and plugin ...\n";
+-opendir(DIR, "include");
++opendir(DIR, "$datadir/include");
+ while($in=readdir(DIR)) {
+     next if ($in=~/^[.]{1,2}/);
+     next if !($in=~/\.pm$/);
+-    require "include/$in";
++    require "$datadir/include/$in";
+ }
+ closedir(DIR);
+ 

Added: head/security/cisco-torch/files/patch-include_Banner.pm
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ head/security/cisco-torch/files/patch-include_Banner.pm	Mon Mar 14 21:56:05 2016	(r411122)
@@ -0,0 +1,28 @@
+--- include/Banner.pm.orig	2016-02-13 16:02:14 UTC
++++ include/Banner.pm
+@@ -1,8 +1,8 @@
+ 
+ sub usage
+ {
+-	print( " version $version\nusage: ./cisco-torch.pl <options> <IP,hostname,network>\n\n");
+-	print("or: ./cisco-torch.pl <options> -F <hostlist>\n\n");
++	print( " version $version\nusage: cisco-torch <options> <IP,hostname,network>\n\n");
++	print("or: cisco-torch <options> -F <hostlist>\n\n");
+ 	print("Available options:\n");
+ 	print("-O <output file>\n");
+ 	print("-A\t\tAll fingerprint scan types combined\n");
+@@ -21,10 +21,10 @@ sub usage
+ 	print("-c\t\tCisco Webserver with SSL support scan\n");
+ 	print("-b\t\tPassword dictionary attack (use with -s, -u, -c, -w , -j or -t only)\n");
+ 	print("-V\t\tPrint tool version and exit\n");
+-	print("examples:\t./cisco-torch.pl -A 10.10.0.0\/16\n");
+-	print("\t\t./cisco-torch.pl -s -b -F sshtocheck.txt\n");
+-        print("\t\t./cisco-torch.pl -w -z 10.10.0.0\/16\n");
+-	print("\t\t./cisco-torch.pl -j -b -g -F tftptocheck.txt\n");
++	print("examples:\t cisco-torch -A 10.10.0.0\/16\n");
++	print("\t\t cisco-torch -s -b -F sshtocheck.txt\n");
++        print("\t\t cisco-torch -w -z 10.10.0.0\/16\n");
++	print("\t\t cisco-torch -j -b -g -F tftptocheck.txt\n");
+ }
+ 
+ sub banner

Added: head/security/cisco-torch/files/patch-torch.conf
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ head/security/cisco-torch/files/patch-torch.conf	Mon Mar 14 21:56:05 2016	(r411122)
@@ -0,0 +1,26 @@
+--- torch.conf.orig	2005-03-10 13:38:34 UTC
++++ torch.conf
+@@ -1,14 +1,15 @@
++$datadir="/usr/local/share/cisco-torch";
+ $max_processes=50; #Max proces 
+ $hosts_per_process=5; #Max  host per process 
+-$passfile= "password.txt"; #Password word database
+-$communityfile="community.txt"; #SNMP community database
+-$usersfile="users.txt"; # Users word database
+-$brutefile="brutefile.txt"; #TFTP file word database
+-$fingerprintdb = "fingerprint.db"; #Telnet fingerprint database 
+-$tfingerprintdb = "tfingerprint.db"; #TFTP fingerprint database 
++$passfile= "$datadir/password.txt"; #Password word database
++$communityfile="$datadir/community.txt"; #SNMP community database
++$usersfile="$datadir/users.txt"; # Users word database
++$brutefile="$datadir/brutefile.txt"; #TFTP file word database
++$fingerprintdb = "$datadir/fingerprint.db"; #Telnet fingerprint database 
++$tfingerprintdb = "$datadir/tfingerprint.db"; #TFTP fingerprint database 
+ $tftprootdir ="tftproot";   # TFT root directory
+ $tftpserver ="192.168.77.8"; #TFTP server hostname
+ $tmplogprefix = "/tmp/tmplog"; #Temp file directory
+ $logfile="scan.log"; #Log file filename 
+ $llevel="cdv"; #Log level
+-$port = 80;    #Web service port
+\ No newline at end of file
++$port = 80;    #Web service port

Added: head/security/cisco-torch/pkg-descr
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ head/security/cisco-torch/pkg-descr	Mon Mar 14 21:56:05 2016	(r411122)
@@ -0,0 +1,11 @@
+Cisco-torch is a mass Cisco Vulnerability Scanner.
+
+The main feature that makes Cisco-torch different from similar 
+tools is the extensive use of forking to launch multiple scanning 
+processes on the background for maximum scanning efficiency. Also, 
+it uses several methods of application layer fingerprinting simultaneously, 
+if needed. We wanted something fast to discover remote Cisco hosts running 
+Telnet, SSH, Web, NTP and SNMP services and launch dictionary attacks 
+against the services discovered.
+
+WWW: http://www.hackingciscoexposed.com/?link=tools

Added: head/security/cisco-torch/pkg-plist
==============================================================================
--- /dev/null	00:00:00 1970	(empty, because file is newly added)
+++ head/security/cisco-torch/pkg-plist	Mon Mar 14 21:56:05 2016	(r411122)
@@ -0,0 +1,24 @@
+bin/cisco-torch
+%%DATADIR%%/include/HTTP-brute.pm
+%%DATADIR%%/include/Banner.pm
+%%DATADIR%%/include/SSH-finger.pm
+%%DATADIR%%/include/Ntp.pm
+%%DATADIR%%/include/SNMP.pm
+%%DATADIR%%/include/TFTP.pm
+%%DATADIR%%/include/HTTP-bugs.pm
+%%DATADIR%%/include/log.pm
+%%DATADIR%%/include/SSL-brute.pm
+%%DATADIR%%/include/Telnet-SSH-brute.pm
+%%DATADIR%%/include/HTTP-finger.pm
+%%DATADIR%%/include/SNMPDOWNLOAD.pm
+%%DATADIR%%/include/IPmask-utils.pm
+%%DATADIR%%/include/SSL-finger.pm
+%%DATADIR%%/include/Telnet-finger.pm
+%%DATADIR%%/fingerprint.db
+%%DATADIR%%/password.txt
+%%DATADIR%%/tfingerprint.db
+%%DATADIR%%/community.txt
+%%DATADIR%%/brutefile.txt
+%%DATADIR%%/users.txt
+@dir  %%DATADIR%%/tftproot
+@sample %%ETCDIR%%/torch.conf.sample



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201603142156.u2ELu5eP046136>