ctf-party 2.2.0 → 2.3.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b19410e0b443bc237d10f61d2f85caff731309e95142c66d5d74897b3b296319
-  data.tar.gz: b446182ee4883bddcabb9cfa108d62712d74ab004fe9b1f4180db7ae42e4dcd9
+  metadata.gz: 41082df14f844e9d331e06352e00af3ab29af0899ad4a54f911ee6cef946258b
+  data.tar.gz: ffb31de3ffd71d581c277f10ff0be95e9eaf2e75c161df8af1f9b8d415af64fc
 SHA512:
-  metadata.gz: e38e7605cd1bf2bd7d9bcef501c93d6c5e1789a8488a6a150380e364822f24c981f265e319654527e0e804f6bcb7f3c6e2337d39abc54d081c602de43aca6056
-  data.tar.gz: 4cb5c641ec6cbdc40e35387068c8befc1b658d586bae0a52a8c13cdf5cd93068c05e250d48274810e2f276bb61681bf7be0b862da0699d672b857f47a66c50cc
+  metadata.gz: e09eff292c815cb2a5de04f8ae901a9ccc83ac30f7cd8b3a634b2b0674b32e3cd568cecfca774641afe23953afc1a9987d810655d236bf6f4fede7a2d48c62e2
+  data.tar.gz: 425e78e522566abf5a67650de204e2feea57f800d81f85dd04c87a51c0cbfea1a8096344da8eea61ab9b0a857ef2c511eacb52f97f2e92fb333274897f05b8d9

data/bin/ctf-party

@@ -2,7 +2,6 @@
 # frozen_string_literal: true
 
 # Ruby internal
-require 'pp'
 require 'shellwords' # for shellescape cmd
 # Project internal
 require 'ctf_party'
@@ -17,6 +16,10 @@ cmd_whitelist = {
   bin2str: 'Alias for from_bin',
   dec2hex: 'Encode an decimal string to a hexadecimal string',
   dec2str: 'Alias for from_dec',
+  defang_domain: 'Defang domain name',
+  defang_email: 'Defang email address',
+  defang_ip: 'Defang IP address',
+  defang_uri: 'Defang URI',
   from_b64: 'Decode the string from base64',
   from_bin: 'Decode a binary string',
   from_dec: 'Decode a decimal string (decimal to hexadecimal then hexadecimal to string)',
@@ -31,6 +34,10 @@ cmd_whitelist = {
   leet: 'Transform into leet speak (l337 5p34k)',
   md5: 'Calculate the md5 hash of the string',
   randomcase: 'Change the case of characters randomly',
+  refang_domain: 'Refang domain name',
+  refang_email: 'Refang email address',
+  refang_ip: 'Refang IP address',
+  refang_uri: 'Refang URI',
   rmd160: 'Calculate the RIPEMD-160 hash of the string',
   rot13: 'Encrypt / Decrypt the string with Caesar cipher with a shift of 13',
   sha1: 'Calculate the sha1 hash of the string',

data/lib/ctf_party/defang.rb

@@ -0,0 +1,227 @@
+# frozen_string_literal: true
+
+require 'ipaddr'
+require 'uri'
+
+class String
+  # Defang the string if it is an IP address
+  # @param opts [Hash] optional parameters
+  # @option opts [Symbol] :unvalid Default value: `false`.
+  #   If `unvalid: false`, only valid IP address will be defanged.
+  #   If `unvalid: true`, everything is defanged.
+  # @return [String] the defanged string if it is a valid IP address or itself else.
+  # @example
+  #   '1.1.1.1'.defang_ip # => 1[.]1[.]1[.]1
+  #   '2606:4700:4700::1111'.defang_ip # => '2606[:]4700[:]4700[:][:]1111'
+  def defang_ip(opts = {})
+    opts[:unvalid] ||= false
+    if ipv4?
+      gsub('.', '[.]')
+    elsif ipv6?
+      gsub(':', '[:]')
+    elsif opts[:unvalid] == true
+      gsub('.', '[.]').gsub(':', '[:]')
+    else
+      self
+    end
+  end
+
+  # Defang the string in place, if it is an IP address, as described for {String#defang_ip}.
+  # @return [nil]
+  # @example
+  #   my_str = '127.0.0.1'
+  #   my_str.defang_ip!
+  #   my_str # => 127[.]0[.]0[.]1
+  def defang_ip!(opts = {})
+    replace(defang_ip(opts))
+  end
+
+  # Refang the string if it is an IP address
+  # @param opts [Hash] optional parameters
+  # @option opts [Symbol] :unvalid Default value: `false`.
+  #   If `unvalid: false`, only valid IP address will be refanged.
+  #   If `unvalid: true`, everything is refanged.
+  # @return [String] the refanged string if it is a valid IP address or itself else.
+  # @example
+  #   '1[.]1[.]1[.]1'.refang_ip # => 1.1.1.1
+  #   '2606[:]4700[:]4700[:][:]1111'.refang_ip # => 2606:4700:4700::1111
+  def refang_ip(opts = {})
+    opts[:unvalid] ||= false
+    re_ipv4 = gsub('[.]', '.')
+    re_ipv6 = gsub('[:]', ':')
+    if re_ipv4.ipv4?
+      re_ipv4
+    elsif re_ipv6.ipv6?
+      re_ipv6
+    elsif opts[:unvalid] == true
+      gsub('[.]', '.').gsub('[:]', ':')
+    else
+      self
+    end
+  end
+
+  # Refang the string in place, if it is an IP address, as described for {String#refang_ip}.
+  # @return [nil]
+  def refang_ip!(opts = {})
+    replace(refang_ip(opts))
+  end
+
+  # Defang the string if it is an URI.
+  # Will defang dot for any scheme and defang scheme as well for supported ones.
+  # Supported schemes: HTTP, HTTPS, FTP, WS, WSS, LDAP, LDAPS, Mailto.
+  # @return [String] the defanged string if it is an URI or itself else.
+  # @example
+  #   'ftp://ftp.ruby-lang.org/pub/ruby/3.2/ruby-3.2.0.tar.xz'.defang_uri
+  #   # => fxp://ftp[.]ruby-lang[.]org/pub/ruby/3[.]2/ruby-3[.]2[.]0[.]tar[.]xz
+  def defang_uri
+    begin
+      uri = URI(self)
+    rescue URI::InvalidURIError, URI::InvalidComponentError => e
+      puts e
+      return gsub('.', '[.]')
+    end
+    case uri
+    when URI::HTTP, URI::HTTPS, URI::FTP
+      uri.scheme = uri.scheme.gsub(/t/i, 'x')
+    when URI::WS, URI::WSS
+      uri.scheme = uri.scheme.dup.insert(1, 'x')
+    when URI::LDAP, URI::LDAPS
+      uri.scheme = uri.scheme.dup.insert(2, 'x')
+    when URI::MailTo
+      uri.scheme = uri.scheme.dup.insert(4, 'x')
+      return uri.to_s.gsub('.', '[.]').gsub('@', '[@]')
+    end
+    uri.to_s.gsub('.', '[.]')
+  end
+
+  # Defang the string in place, if it is an URI, as described for {String#defang_uri}.
+  def defang_uri!
+    replace(defang_uri)
+  end
+
+  # Refang the string if it is an URI.
+  # Will refang dot for any scheme and refang scheme as well for supported ones.
+  # Supported schemes: HTTP, HTTPS, FTP, WS, WSS, LDAP, LDAPS, Mailto.
+  # @return [String] the refanged string if it is an URI or itself else.
+  # @example
+  #   'hxxp://noraj[.]neverssl[.]com/online/'.refang_uri # => http://noraj.neverssl.com/online/
+  def refang_uri
+    if %r{://}.match?(self)
+      scheme, remains = split('://', 2)
+    else
+      scheme, remains = split(':', 2)
+    end
+    case scheme
+    when /hxxps?/i, /fxp/i
+      scheme.gsub!(/x/i, 't')
+    when /wxss?/i, /ldxaps?/i
+      scheme.gsub!(/x/i, '')
+    when /mailxto/i
+      scheme.gsub!(/x/i, '')
+      remains.gsub!('[.]', '.')
+      remains.gsub!('[@]', '@')
+      return scheme.concat(":#{remains}")
+    end
+    remains.gsub!('[.]', '.')
+    if %r{://}.match?(self)
+      scheme.concat("://#{remains}")
+    else
+      scheme.concat(":#{remains}")
+    end
+  end
+
+  # Refang the string in place, if it is an URI, as described for {String#refang_uri}.
+  def refang_uri!
+    replace(refang_uri)
+  end
+
+  # Defang the string if it is a domain name
+  # @param opts [Hash] optional parameters
+  # @option opts [Symbol] :unvalid Default value: `false`.
+  #   If `unvalid: false`, only valid domain name will be defanged.
+  #   If `unvalid: true`, everything is defanged.
+  # @return [String] the defanged string if it is a valid domain name or itself else.
+  # @example
+  #   'pwn.by'.defang_domain # => pwn[.]by
+  def defang_domain(opts = {})
+    opts[:unvalid] ||= false
+    if domain? || opts[:unvalid] == true
+      gsub('.', '[.]')
+    else
+      self
+    end
+  end
+
+  # Defang the string in place, if it is a domain name, as described for {String#defang_domain}.
+  def defang_domain!(opts = {})
+    replace(defang_domain(opts))
+  end
+
+  # Refang the string if it is a domain name
+  # @param opts [Hash] optional parameters
+  # @option opts [Symbol] :unvalid Default value: `false`.
+  #   If `unvalid: false`, only valid domain name will be refanged.
+  #   If `unvalid: true`, everything is refanged.
+  # @return [String] the refanged string if it is a valid domain name or itself else.
+  # @example
+  #   'pwn[.]by'.refang_domain # => pwn.by
+  def refang_domain(opts = {})
+    opts[:unvalid] ||= false
+    re_domain = gsub('[.]', '.')
+    if re_domain.domain? || opts[:unvalid] == true
+      re_domain
+    else
+      self
+    end
+  end
+
+  # Refang the string in place, if it is a domain name, as described for {String#refang_domain}.
+  def refang_domain!(opts = {})
+    replace(refang_domain(opts))
+  end
+
+  # Defang the string if it is an email address
+  # @param opts [Hash] optional parameters
+  # @option opts [Symbol] :unvalid Default value: `false`.
+  #   If `unvalid: false`, only valid email address will be defanged.
+  #   If `unvalid: true`, everything is defanged.
+  # @return [String] the defanged string if it is an email address or itself else.
+  # @example
+  #   'noraj.rawsec@pwn.by'.defang_email # => noraj[.]rawsec[@]pwn[.]by
+  def defang_email(opts = {})
+    opts[:unvalid] ||= false
+    if email? || opts[:unvalid] == true
+      gsub('.', '[.]').gsub('@', '[@]')
+    else
+      self
+    end
+  end
+
+  # Defang the string in place, if it is a email address, as described for {String#defang_email}.
+  def defang_email!(opts = {})
+    replace(defang_email(opts))
+  end
+
+  # Refang the string if it is an email address
+  # @param opts [Hash] optional parameters
+  # @option opts [Symbol] :unvalid Default value: `false`.
+  #   If `unvalid: false`, only valid email address will be refanged.
+  #   If `unvalid: true`, everything is refanged.
+  # @return [String] the refanged string if it is a valid email address or itself else.
+  # @example
+  #   'noraj+alias[@]pwn[.]by'.refang_email # => noraj.rawsec@pwn.by
+  def refang_email(opts = {})
+    opts[:unvalid] ||= false
+    re_email = gsub('[.]', '.').gsub('[@]', '@')
+    if re_email.email? || opts[:unvalid] == true
+      re_email
+    else
+      self
+    end
+  end
+
+  # Refang the string in place, if it is a email address, as described for {String#refang_email}.
+  def refang_email!(opts = {})
+    replace(refang_email(opts))
+  end
+end

data/lib/ctf_party/network.rb

@@ -0,0 +1,130 @@
+# frozen_string_literal: true
+
+require 'ipaddr'
+require 'uri'
+
+class String
+  # Is the string an IPv4?
+  # @return [Boolean] `true` if the string is a valid IPv4, `false` else.
+  # @example
+  #   '1.1.1.1'.ipv4? # => true
+  #   '127.0.0.300'.ipv4? # => false
+  def ipv4?
+    IPAddr.new(self).ipv4?
+  rescue IPAddr::InvalidAddressError
+    false
+  end
+
+  # Is the string an IPv6?
+  # @return [Boolean] `true` if the string is a valid IPv6, `false` else.
+  # @example
+  #   '2606:4700:4700::1111'.ipv6? # => true
+  #   'fe80::fe80::fe80'.ipv6? # => false
+  def ipv6?
+    IPAddr.new(self).ipv6?
+  rescue IPAddr::InvalidAddressError
+    false
+  end
+
+  # Is the string an IP address?
+  # @return [Boolean] `true` if the string is a valid IP address, `false` else.
+  # @example
+  #   '127.0.0.1'.ip? # => true
+  #   '::1'.ip? # => true
+  def ip?
+    ipv4? || ipv6?
+  end
+
+  # Is the string a valid URI?
+  # @param opts [Hash] optional parameters
+  # @option opts [Symbol] :lax Default value: `false`.
+  #   When `lax: false`, only URI matching common protocols (ftp http https ldap ldaps mailto ws wss) are recognized,
+  #   but is still a bit lax (eg. `http://` is seen as valid).
+  #   When `lax: true`, the parser will accept more types of URI (gopher magnet matrix), but will be very lax and accept
+  #   nearly anything including `:`.
+  # @return [Boolean] `true` if the string is a valid URI, `false` else.
+  # @example
+  #   'ftp://ftp.ruby-lang.org/pub/ruby/3.2/ruby-3.2.0.tar.xz'.uri? # => true
+  #   'a:'.uri? # => false
+  #   'a:'.uri?(lax: true) # => true
+  def uri?(opts = {})
+    opts[:lax] ||= false
+    strict = URI::DEFAULT_PARSER.make_regexp(%w[ftp http https ldap ldaps mailto ws wss]).match?(self)
+    lax = URI::DEFAULT_PARSER.make_regexp.match?(self)
+    if opts[:lax] == true
+      strict || lax
+    else
+      strict
+    end
+  end
+
+  # Is the string a valid domain name?
+  # It is a bit lax, for exemple it does not validate if the TLD really exist but
+  # still performs more check than many checkers.
+  # @return [Boolean] `true` if the string is a valid domain name, `false` else.
+  # @example
+  #   'pwn.by'.domain? # => true
+  #   'a.-b.net'.domain? # => false
+  # rubocop:disable Metrics/PerceivedComplexity
+  def domain?
+    return false unless size.between?(1, 255) # max. domain length
+
+    # split each hostname into labels
+    labels = split('.')
+    return false if labels.size > 127 # max. label number
+    return false if labels.size < 2 # min. label number
+    return false if labels.first[0] == '.' # cannot start with a dot
+
+    labels.each_with_index do |label, _index|
+      return false unless label.size.between?(1, 63) # max. label length
+      return false if label[0] == '-' || label[-1] == '-' # label cannot begin or end with hyphen
+      # do not set a whitelist for allowed characters ([a-z0-9\-\_]) since there can be
+      # Unicode IDN (without punycode transcription)
+      # to not deal with punycode translation and validation, let's just do pseudo-validation
+      # by checking only for a few illegal ones (blacklist)
+      return false if /\p{C}|\p{Z}/.match?(self)
+      # skip TLD validity check since the list is large, often change and custom TLD could be used for internal usage
+    end
+    return false if /\.\./.match?(self) # cannot contain consecutive dots
+
+    # do not check for trailing dot
+    true
+  end
+  # rubocop:enable Metrics/PerceivedComplexity
+
+  # Is the string a valid email address?
+  # @param opts [Hash] optional parameters
+  # @option opts [Symbol] :mode Default value: `:rfc5322`.
+  #   Other values are `:strict` (`:rfc5322`), `:light` or `:lightwithlength`.
+  #   ``:strict` / `:rfc5322` is the closest thing to RFC 5322.
+  #   `:light` is a lighter more practical version of RFC 5322 that will be more useful in real life (omits IP
+  #   addresses, domain-specific addresses, the syntax using double quotes and square brackets).
+  #   `:lightwithlength` is the same as the light version but with length limit enforcing.
+  # @see https://stackoverflow.com/questions/22993545/ruby-email-validation-with-regex/75050279#75050279
+  # @return [Boolean] `true` if the string is a valid email address, `false` else.
+  # @example
+  #   "n#{'o' * 255}raj@pwn.by".email? # => true
+  #   "n#{'o' * 255}raj@pwn.by".email?(mode: :lightwithlength) # => false
+  #   '"valid"@domain.com'.email?(mode: :rfc5322) # => true
+  #   '"valid"@domain.com'.email?(mode: :light) # => false
+  def email?(opts = {})
+    opts[:mode] ||= :rfc5322
+    case opts[:mode]
+    when :strict, :rfc5322
+      %r{\A(?:[a-z0-9!#$%&'*+/=?^_‘{|}~-]+(?:\.[a-z0-9!#$%&'*+/=?^_‘{|}~-]+)*|
+      "(?:[\x01-\x08\x0b\x0c\x0e-\x1f\x21\x23-\x5b\x5d-\x7f]|
+      \\[\x01-\x09\x0b\x0c\x0e-\x7f])*")@(?:(?:[a-z0-9](?:[a-z0-9-]*[a-z0-9])?\.)+[a-z0-9](?:[a-z0-9-]*[a-z0-9])?|
+      \[(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?|
+      [a-z0-9-]*[a-z0-9]:(?:[\x01-\x08\x0b\x0c\x0e-\x1f\x21-\x5a\x53-\x7f]|
+      \\[\x01-\x09\x0b\x0c\x0e-\x7f])+)\])\z}ix.match?(self)
+    when :light
+      %r{\A[a-z0-9!#$%&'*+/=?^_‘{|}~-]+(?:\.[a-z0-9!#$%&'*+/=?^_‘{|}~-]+)*@
+      (?:[a-z0-9](?:[a-z0-9-]*[a-z0-9])?\.)+[a-z0-9](?:[a-z0-9-]*[a-z0-9])?\z}ix.match?(self)
+    when :lightwithlength
+      %r{\A(?=[a-z0-9@.!#$%&'*+/=?^_‘{|}~-]{6,254}\z)
+      (?=[a-z0-9.!#$%&'*+/=?^_‘{|}~-]{1,64}@)[a-z0-9!#$%&'*+/=?^_‘{|}~-]+(?:\.[a-z0-9!#$%&'*+/=?^_‘{|}~-]+)*@
+      (?:(?=[a-z0-9-]{1,63}\.)[a-z0-9](?:[a-z0-9-]*[a-z0-9])?\.)+
+      (?=[a-z0-9-]{1,63}\z)[a-z0-9](?:[a-z0-9-]*[a-z0-9])?\z}ix.match?(self)
+    end
+  end
+end

data/lib/ctf_party/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Version
-  VERSION = '2.2.0'
+  VERSION = '2.3.0'
 end

data/lib/ctf_party.rb

@@ -2,14 +2,16 @@
 
 # Project internal
 require 'ctf_party/base64'
-require 'ctf_party/rot'
+require 'ctf_party/binary'
+require 'ctf_party/case'
+require 'ctf_party/cgi'
+require 'ctf_party/dec'
+require 'ctf_party/defang'
 require 'ctf_party/digest'
 require 'ctf_party/flag'
 require 'ctf_party/hex'
-require 'ctf_party/case'
-require 'ctf_party/cgi'
-require 'ctf_party/binary'
 require 'ctf_party/leet'
-require 'ctf_party/dec'
 require 'ctf_party/misc'
+require 'ctf_party/network'
+require 'ctf_party/rot'
 require 'ctf_party/xor'

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: ctf-party
 version: !ruby/object:Gem::Version
-  version: 2.2.0
+  version: 2.3.0
 platform: ruby
 authors:
 - Alexandre ZANNI
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-07-28 00:00:00.000000000 Z
+date: 2023-01-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: docopt
@@ -46,11 +46,13 @@ files:
 - lib/ctf_party/case.rb
 - lib/ctf_party/cgi.rb
 - lib/ctf_party/dec.rb
+- lib/ctf_party/defang.rb
 - lib/ctf_party/digest.rb
 - lib/ctf_party/flag.rb
 - lib/ctf_party/hex.rb
 - lib/ctf_party/leet.rb
 - lib/ctf_party/misc.rb
+- lib/ctf_party/network.rb
 - lib/ctf_party/rot.rb
 - lib/ctf_party/version.rb
 - lib/ctf_party/xor.rb
@@ -76,14 +78,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: 2.7.0
   - - "<"
     - !ruby/object:Gem::Version
-      version: '3.2'
+      version: '3.3'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.3
+rubygems_version: 3.4.1
 signing_key:
 specification_version: 4
 summary: A CLI tool & library to enhance and speed up script/exploit writing with