pwn_shodan_search - intial working commit

Author: ninp0

README.md

@@ -37,7 +37,7 @@ $ rvm use ruby-3.1.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.470]:001 >>> PWN.help
+pwn[v0.4.471]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.1.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.470]:001 >>> PWN.help
+pwn[v0.4.471]:001 >>> PWN.help
 ```
 
 

bin/pwn_shodan_search

@@ -0,0 +1,76 @@
+#!/usr/bin/env ruby
+# frozen_string_literal: false
+
+require 'pwn'
+require 'optparse'
+require 'yaml'
+require 'json'
+
+opts = {}
+OptionParser.new do |options|
+  options.banner = "USAGE:
+    #{$PROGRAM_NAME} [opts]
+  "
+
+  options.on('-c', '--config-yaml', '<Required - YAML config containing api_key from Shodan.io>') do |y|
+    opts[:yaml] = y
+  end
+
+  options.on('-qFILE', '--query-file=FILE', '<Required - File containing one Shodan.io query string per line>') do |q|
+    opts[:query_file] = q
+  end
+
+  options.on('-oFILE', '--output-results-file=FILE', '<Optional - Defaults to /tmp/shodan-results-Time.now.strftime("%y-%m-%d.%H:%M:%S")>') do |o|
+    opts[:output_results_file] = o
+  end
+end.parse!
+
+if opts.empty?
+  puts `#{$PROGRAM_NAME} --help`
+  exit 1
+end
+
+begin
+  yaml_file = opts[:yaml]
+  raise "ERROR: #{yaml_file} does not exist." unless File.exist?(yaml_file)
+
+  yaml = YAML.load_file(yaml_file, symbolize_names: true)
+
+  api_key = yaml[:api_key]
+
+  query_file = opts[:query_file]
+  raise "ERROR: #{query_file} does not exist." unless File.exist?(query_file)
+
+  queries = File.readlines(query_file)
+
+  timestamp = Time.now.strftime('%Y-%m-%d.%H:%M:%S')
+  query_results_file = opts[:output_results_file]
+  query_results_file ||= "/tmp/shodan-results-#{timestamp}.txt"
+
+  raw_query_results_file = "/tmp/shodan-results-#{timestamp}-RAW.json"
+  File.open(raw_query_results_file, 'w') do |r|
+    File.open(query_results_file, 'w') do |f|
+      queries.each do |query_line|
+        query = query_line.chomp
+        print "QUERY: '#{query}'"
+        r.puts("QUERY: '#{query}'")
+        f.puts("QUERY: '#{query}'")
+        search_results = PWN::Plugins::Shodan.search(
+          api_key: api_key,
+          query: query
+        )
+        puts " >>> Matches: #{search_results[:total]}"
+        r.puts search_results.to_json
+
+        search_results[:matches].select do |m|
+          f.puts "ORG: #{m[:org]} | PUBIP: #{m[:ip_str]} #{'*' * 36}"
+          f.puts "Product: #{m[:product]}"
+          f.puts "TCP Port: #{m[:port]}"
+          f.puts "Data: #{m[:data]}\n\n\n"
+        end
+      end
+    end
+  end
+rescue SystemExit, Interrupt
+  puts "\nGoodbye."
+end

lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.4.470'
+  VERSION = '0.4.471'
 end