diff --git a/Gemfile.lock b/Gemfile.lock index 2c03101ea..6bb3ceb0c 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -5,10 +5,24 @@ GEM public_suffix (>= 2.0.2, < 4.0) ansi (1.5.0) buftok (0.2.0) + bundler-audit (0.6.0) + bundler (~> 1.2) + thor (~> 0.18) + capybara (2.18.0) + addressable + mini_mime (>= 0.1.3) + nokogiri (>= 1.3.3) + rack (>= 1.0.0) + rack-test (>= 0.5.4) + xpath (>= 2.0, < 4.0) + childprocess (0.8.0) + ffi (~> 1.0, >= 1.0.11) chunky_png (1.3.8) + curb (0.9.4) daemons (1.2.4) data_objects (0.10.17) addressable (~> 2.1) + diff-lcs (1.3) dm-core (1.2.1) addressable (~> 2.3) dm-do-adapter (1.2.0) @@ -38,6 +52,7 @@ GEM eventmachine (1.0.9.1) execjs (2.7.0) fastercsv (1.5.5) + ffi (1.9.21) filesize (0.1.1) geoip (1.6.3) http (3.0.0) @@ -49,6 +64,8 @@ GEM domain_name (~> 0.5) http-form_data (2.0.0) http_parser.rb (0.6.0) + jar_wrapper (0.1.8) + zip jsobfu (0.4.2) rkelly-remix json (1.8.6) @@ -59,6 +76,7 @@ GEM mime-types (3.1) mime-types-data (~> 3.2015) mime-types-data (3.2016.0521) + mini_mime (1.0.0) mini_portile2 (2.3.0) mojo_magick (0.5.6) msfrpc-client (1.1.1) @@ -72,6 +90,7 @@ GEM nokogiri (1.8.1) mini_portile2 (~> 2.3.0) parseconfig (1.0.8) + power_assert (1.1.1) public_suffix (3.0.0) qr4r (0.4.1) mojo_magick @@ -79,6 +98,8 @@ GEM rack (1.6.8) rack-protection (1.5.3) rack + rack-test (0.8.2) + rack (>= 1.0, < 3) rainbow (2.2.2) rake rake (12.1.0) @@ -101,6 +122,20 @@ GEM robots (0.10.1) rqrcode (0.10.1) chunky_png (~> 1.0) + rr (1.2.1) + rspec (3.7.0) + rspec-core (~> 3.7.0) + rspec-expectations (~> 3.7.0) + rspec-mocks (~> 3.7.0) + rspec-core (3.7.1) + rspec-support (~> 3.7.0) + rspec-expectations (3.7.0) + diff-lcs (>= 1.2.0, < 2.0) + rspec-support (~> 3.7.0) + rspec-mocks (3.7.0) + diff-lcs (>= 1.2.0, < 2.0) + rspec-support (~> 3.7.0) + rspec-support (3.7.1) rubydns (0.7.3) eventmachine (~> 1.0.0) rexec (~> 1.6.2) @@ -108,6 +143,12 @@ GEM rushover (0.3.0) json rest-client + selenium (0.2.11) + jar_wrapper + selenium-webdriver (2.53.4) + childprocess (~> 0.5) + rubyzip (~> 1.0) + websocket (~> 1.0) simple_oauth (0.3.1) sinatra (1.4.8) rack (~> 1.5) @@ -116,10 +157,28 @@ GEM slack-notifier (2.3.1) term-ansicolor (1.6.0) tins (~> 1.0) + test-unit (3.2.7) + power_assert + test-unit-context (0.5.1) + test-unit (>= 2.4.0) + test-unit-full (0.0.5) + test-unit + test-unit-context + test-unit-notify + test-unit-rr + test-unit-runner-tap + test-unit-notify (1.0.4) + test-unit (>= 2.4.9) + test-unit-rr (1.0.5) + rr (>= 1.1.1) + test-unit (>= 2.5.2) + test-unit-runner-tap (1.1.2) + test-unit thin (1.7.2) daemons (~> 1.0, >= 1.0.9) eventmachine (~> 1.0, >= 1.0.4) rack (>= 1, < 3) + thor (0.20.0) thread_safe (0.3.6) tilt (2.0.8) tins (1.15.0) @@ -139,12 +198,19 @@ GEM unf (0.1.4) unf_ext unf_ext (0.0.7.4) + websocket (1.2.5) + xpath (3.0.0) + nokogiri (~> 1.8) + zip (2.0.2) PLATFORMS ruby DEPENDENCIES ansi + bundler-audit + capybara + curb data_objects dm-core dm-migrations @@ -163,12 +229,19 @@ DEPENDENCIES parseconfig qr4r rack (~> 1.6.5) + rake + rest-client (>= 2.0.1) + rspec rubydns (~> 0.7.3) rubyzip (>= 1.2.1) rushover + selenium + selenium-webdriver (~> 2.53.4) sinatra slack-notifier term-ansicolor + test-unit + test-unit-full thin twitter (>= 5.0.0) uglifier diff --git a/config.yaml b/config.yaml index 2a83015f8..772313fe8 100644 --- a/config.yaml +++ b/config.yaml @@ -17,8 +17,8 @@ beef: # Credentials to authenticate in BeEF. # Used by both the RESTful API and the Admin interface credentials: - user: "beef" - passwd: "beef" + user: "beefuser" + passwd: "beefpass" # Interface / IP restrictions restrictions: diff --git a/test/common/test_constants.rb b/test/common/test_constants.rb index d5bca374c..683409519 100644 --- a/test/common/test_constants.rb +++ b/test/common/test_constants.rb @@ -12,8 +12,8 @@ ATTACK_URL = "http://" + ATTACK_DOMAIN + ":3000/ui/panel" VICTIM_URL = "http://" + VICTIM_DOMAIN + ":3000/demos/basic.html" # Credentials -BEEF_USER = "beef" -BEEF_PASSWD = "test" +BEEF_USER = "beefuser" +BEEF_PASSWD = "beefpass" # RESTful API root endpoints RESTAPI_HOOKS = "http://" + ATTACK_DOMAIN + ":3000/api/hooks"