ronin-app 0.1.0.rc1 → 0.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e807463567097ddf828ab12bc5c0d75fc1ea05d7c7c755d67e6550d6cd368776
-  data.tar.gz: 54f0e5ae8cbb25d1749e6896060d1345ffdc3086085ea7317d4f7fe8e56543a1
+  metadata.gz: 254cf151b2f2725f6e24fa6acb4465c86f4071448e8fefcbe662b65e0565a676
+  data.tar.gz: 97cb3bc2fbbeaf8935f04d8907d3e248e6fda3d58216e1655f6a9409952951f6
 SHA512:
-  metadata.gz: 3e7ec51601d1f88f7993157c6b9c0bf315e8cfda3b6daf8eb43da9239f4e0177fb94ce156601de05c41d2a4595a48697dc4aec96de9647dc804dd068e8e559f7
-  data.tar.gz: 6efcab13cc6137d69581a0cc4f8e9b79eb97082e5add7b1f8f68a7861646daee311ad1d3246d1478e2d683a864554167dd76f73db4a8a9ee16e91d25a4be1f9f
+  metadata.gz: '062801f6bdfe086e94d87f292ce0c87f02187289033f465ef1f016d52c9328687885ba4c9f33f570d561cba5d8f8544d358e2a34ab20ababe0a888e2b1c54bd7'
+  data.tar.gz: 62c3aadce32eb5044a218350bd5301aa058f69eb872c2a5016c7c93b20c239d7559b8a5548935f38e4690ae43394f25a22766cc24a1722de3b998af51ee32665

data/.gitignore

@@ -1,6 +1,7 @@
 /Gemfile.lock
 /coverage
 /doc
+/pkg
 /log
 /man/*.1
 /tmp

data/.ruby-version

@@ -1 +1 @@
-ruby-3.1
+ruby-3.3

data/ChangeLog.md

@@ -1,4 +1,4 @@
-### 0.1.0 / 2024-XX-XX
+### 0.1.0 / 2024-07-22
 
 * Initial release:
   * Provides a web interface to explore and search the

data/Gemfile

@@ -38,11 +38,13 @@ gem 'sidekiq', require: false
 
 group :development do
   gem 'rake', require: false
+  gem 'rack-test',        '~> 2.1', require: false
 
   gem 'rubygems-tasks',   '~> 0.2'
 
   gem 'rspec',            '~> 3.0', require: false
   gem 'simplecov',        '~> 0.20', require: false
+  gem 'capybara',         '~> 3.40', require: false
 
   gem 'kramdown',         '~> 2.0', require: false
   gem 'kramdown-man',     '~> 1.0', require: false

data/README.md

@@ -35,48 +35,48 @@ user. It provides a web interface to [ronin-support], [ronin-repos], [ronin-db],
   <tbody>
     <tr>
       <td>
-        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/add_screenshots/screenshots/ronin_app_scanning_nmap.svg" />
+        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/main/screenshots/ronin_app_scanning_nmap.svg" />
       </td>
       <td>
-        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/add_screenshots/screenshots/ronin_app_scanning_masscan.svg" />
+        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/main/screenshots/ronin_app_scanning_masscan.svg" />
       </td>
       <td>
-        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/add_screenshots/screenshots/ronin_app_scanning_recon.svg" />
+        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/main/screenshots/ronin_app_scanning_recon.svg" />
       </td>
       <td>
-        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/add_screenshots/screenshots/ronin_app_scanning_spider.svg" />
+        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/main/screenshots/ronin_app_scanning_spider.svg" />
       </td>
       <td>
-        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/add_screenshots/screenshots/ronin_app_scanning_vulns.svg" />
+        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/main/screenshots/ronin_app_scanning_vulns.svg" />
       </td>
       <td>
-        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/add_screenshots/screenshots/ronin_app_db.svg" />
+        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/main/screenshots/ronin_app_db.svg" />
       </td>
       <td>
-        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/add_screenshots/screenshots/ronin_app_db_ip_address.svg" />
+        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/main/screenshots/ronin_app_db_ip_address.svg" />
       </td>
     </tr>
     <tr>
       <td>
-        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/add_screenshots/screenshots/ronin_app_repos.svg" />
+        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/main/screenshots/ronin_app_repos.svg" />
       </td>
       <td>
-        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/add_screenshots/screenshots/ronin_app_repos_show.svg" />
+        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/main/screenshots/ronin_app_repos_show.svg" />
       </td>
       <td>
-        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/add_screenshots/screenshots/ronin_app_payloads.svg" />
+        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/main/screenshots/ronin_app_payloads.svg" />
       </td>
       <td>
-        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/add_screenshots/screenshots/ronin_app_payloads_show.svg" />
+        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/main/screenshots/ronin_app_payloads_show.svg" />
       </td>
       <td>
-        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/add_screenshots/screenshots/ronin_app_payloads_build.svg" />
+        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/main/screenshots/ronin_app_payloads_build.svg" />
       </td>
       <td>
-        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/add_screenshots/screenshots/ronin_app_exploits.svg" />
+        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/main/screenshots/ronin_app_exploits.svg" />
       </td>
       <td>
-        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/add_screenshots/screenshots/ronin_app_exploits_show.svg" />
+        <img src="https://raw.githubusercontent.com/ronin-rb/ronin-app/main/screenshots/ronin_app_exploits_show.svg" />
       </td>
     </tr>
   </tbody>

data/app.rb

@@ -39,6 +39,7 @@ require 'ronin/support/encoding'
 # param validations
 require 'ronin/app/validations/install_repo_params'
 require 'ronin/app/validations/import_params'
+require 'ronin/app/validations/http_params'
 
 # schema builders
 require 'ronin/app/schemas/payloads/encoders/encode_schema'
@@ -354,6 +355,28 @@ class App < Sinatra::Base
     erb :queue
   end
 
+  get '/network/http' do
+    erb :"network/http"
+  end
+
+  post '/network/http' do
+    result = Validations::HTTPParams.call(params)
+
+    if result.success?
+      kwargs = result.to_h
+      method = kwargs.delete(:method)
+      url    = kwargs.delete(:url)
+
+      @http_response = Ronin::Support::Network::HTTP.request(method,url,**kwargs)
+
+      erb :"network/http"
+    else
+      @params = params
+      @errors = result.errors
+      halt 400, erb(:"network/http")
+    end
+  end
+
   private
 
   #

data/gemspec.yml

@@ -1,7 +1,7 @@
 name: ronin-app
 summary: A local web interface for Ronin
 description: |
- ronin-app is a small web application that is meant to be ran locally by the
+  ronin-app is a small web application that is meant to be ran locally by the
   user. It provides a web interface to ronin-support, ronin-repos, ronin-db,
   ronin-payloads, ronin-exploits, as well as automating
   ronin-nmap, ronin-masscan, ronin-web-spider, ronin-recon, and ronin-vulns.
@@ -39,17 +39,18 @@ dependencies:
   sidekiq: ~> 7.0
   puma: ~> 6.0
   # Ronin dependencies:
-  ronin-support: ~> 1.1.0.rc1
-  ronin-core: ~> 0.2.0.rc1
-  ronin-db-activerecord: ~> 0.2.0.rc1
-  ronin-db: ~> 0.2.0.rc1
-  ronin-payloads: ~> 0.2.0.rc1
-  ronin-exploits: ~> 1.1.0.rc1
-  ronin-vulns: ~> 0.2.0.rc1
-  ronin-web-spider: ~> 0.2.0.rc1
-  ronin-nmap: ~> 0.1.0.rc1
-  ronin-masscan: ~> 0.1.0.rc1
-  ronin-recon: ~> 0.1.0.rc1
+  ronin-support: ~> 1.1
+  ronin-core: ~> 0.2
+  ronin-repos: ~> 0.2
+  ronin-db-activerecord: ~> 0.2
+  ronin-db: ~> 0.2
+  ronin-payloads: ~> 0.2
+  ronin-exploits: ~> 1.1
+  ronin-vulns: ~> 0.2
+  ronin-web-spider: ~> 0.2
+  ronin-nmap: ~> 0.1
+  ronin-masscan: ~> 0.1
+  ronin-recon: ~> 0.1
 
 development_dependencies:
   bundler: ~> 2.0

data/lib/ronin/app/validations/http_params.rb

@@ -0,0 +1,126 @@
+# frozen_string_literal: true
+#
+# ronin-app - a local web app for Ronin.
+#
+# Copyright (c) 2023-2024 Hal Brodigan (postmodern.mod3@gmail.com)
+#
+# ronin-app is free software: you can redistribute it and/or modify
+# it under the terms of the GNU Affero General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# ronin-app is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU Affero General Public License for more details.
+#
+# You should have received a copy of the GNU Affero General Public License
+# along with ronin-app.  If not, see <http://www.gnu.org/licenses/>.
+#
+
+require 'dry/validation'
+
+module Ronin
+  module App
+    module Validations
+      #
+      # Validations for the form params submitted to `POST /network/http`.
+      #
+      class HTTPParams < Dry::Validation::Contract
+
+        HTTPMethods = Types::Symbol.enum(
+          copy:      'COPY',
+          delete:    'DELETE',
+          get:       'GET',
+          head:      'HEAD',
+          lock:      'LOCK',
+          mkcol:     'MKCOL',
+          move:      'MOVE',
+          options:   'OPTIONS',
+          patch:     'PATCH',
+          post:      'POST',
+          propfind:  'PROPFIND',
+          proppatch: 'PROPPATCH',
+          put:       'PUT',
+          trace:     'TRACE',
+          unlock:    'UNLOCK'
+        )
+
+        Versions = (Types::Float | Types::Integer).enum(
+          1   => '1.0',
+          1.1 => '1.1',
+          1.2 => '1.2'
+        )
+
+        VerificationModes = Types::Symbol.enum(
+          none:                 'none',
+          peer:                 'peer',
+          fail_if_no_peer_cert: 'fail_if_no_peer_cert'
+        )
+
+        Headers = Types::Hash.constructor do |input,type|
+          if input.is_a?(String)
+            headers = {}
+
+            input.strip.each_line(chomp: true) do |line|
+              name, value = line.split(/:\s*/,2)
+
+              case (previous_value = headers[name])
+              when nil # no value yet
+                headers[name] = value
+              when String # previous value
+                headers[name] = [previous_value, value]
+              when Array # multiple previous values
+                previous_value << value
+              end
+            end
+
+            headers unless headers.empty?
+          elsif type.valid?(input)
+            input
+          else
+            type.call(input)
+          end
+        end
+
+        params do
+          required(:method).filled(HTTPMethods)
+          required(:url).filled(:string)
+
+          optional(:body).maybe(:string)
+          optional(:headers).maybe(Headers)
+
+          optional(:proxy).maybe(:string)
+          optional(:user_agent).maybe(:string)
+          optional(:user).maybe(:string)
+          optional(:password).maybe(:string)
+          optional(:cookie).maybe(:string)
+
+          optional(:ssl).hash do
+            optional(:timeout).maybe(:integer)
+            optional(:version).maybe(Versions)
+            optional(:min_version).maybe(Versions)
+            optional(:max_version).maybe(Versions)
+            optional(:verify).maybe(VerificationModes)
+            optional(:verify_depth).maybe(:integer)
+            optional(:verify_hostname).maybe(:bool)
+          end
+        end
+
+        #
+        # Initializes and calls the validation contract.
+        #
+        # @param [Hash{String => Object}] params
+        #   The HTTP params to validate.
+        #
+        # @return [Dry::Validation::Result]
+        #   The validation result.
+        #
+        def self.call(params)
+          new.call(params)
+        end
+
+      end
+    end
+  end
+end

data/lib/ronin/app/version.rb

@@ -21,6 +21,6 @@
 module Ronin
   module App
     # The ronin-app version
-    VERSION = '0.1.0.rc1'
+    VERSION = '0.1.0'
   end
 end

data/public/stylesheets/app.css

@@ -167,6 +167,10 @@ main > nav.breadcrumb a {
 	text-decoration: none;
 }
 
+.content .tabs ul li a:hover {
+	background-color: var(--fg-color);
+}
+
 .content .content-tab {
 	display: none;
 }
@@ -214,3 +218,8 @@ body.dark-mode main strong,
 body.dark-mode main a {
 	color: var(--dark-mode-fg-color);
 }
+
+body.dark-mode .content .tabs ul li a:hover {
+	color: var(--dark-mode-bg-color);
+	background-color: var(--dark-mode-fg-color);
+}

data/views/exploits/show.erb

@@ -90,6 +90,16 @@
       </td>
     </tr>
 
+    <% if defined?(Ronin::Exploits::Metadata::Shouts) &&
+          @exploit.include?(Ronin::Exploits::Metadata::Shouts) %>
+    <tr>
+      <td><strong>Shouts:</strong></td>
+      <td>
+        <p><%=h @exploit.shouts.join(', ') %></p>
+      </td>
+    </tr>
+    <% end %>
+
     <tr>
       <td><strong>Params:</strong></td>
       <td>

data/views/layout.erb

@@ -60,6 +60,14 @@
                 </div>
               </div>
 
+              <div class="navbar-item has-dropdown is-hoverable">
+                <a class="navbar-item">network</a>
+
+                <div class="navbar-dropdown">
+                  <a href="/network/http" class="navbar-item">http</a>
+                </div>
+              </div>
+
               <a href="/queue" class="navbar-item">queue</a>
               <a href="/about" class="navbar-item">about</a>
             </div>
@@ -89,7 +97,7 @@
       <div class="container">
         <div class="columns">
           <div class="column is-full">
-            <span>(c) 2023 Hal Brodigan</span>
+            <span>(c) 2023-<%= Date.today.year %> Hal Brodigan</span>
           </div>
         </div>
       </div>

data/views/network/http.erb

@@ -0,0 +1,303 @@
+<script type="text/javascript" src="/javascript/tabs.js"></script>
+<h1>HTTP</h1>
+
+<form action="/network/http" method="post">
+  <div class="field">
+    <label class="label is-required">URL</label>
+
+    <div class="control">
+      <% if @errors && @errors[:url] %>
+        <input class="input is-danger" type="text" name="url" value="<%=hattr params[:url] %>">
+
+        <% @errors[:url].each do |error| %>
+        <p class="help is-danger"><%=h error %></p>
+        <% end %>
+      <% else %>
+        <input class="input" type="text" name="url" placeholder="https://www.example.com" value="<%=hattr params[:url] %>">
+      <% end %>
+    </div>
+  </div>
+
+  <div class="field">
+    <label class="has-text-weight-semibold">HTTP Method:</label>
+
+    <% if @errors && @errors[:method] %>
+      <select class="select is-danger" name="method">
+        <option value="">
+        <option value="COPY"<%= ' selected' if params[:http_method] == 'COPY' %>>COPY</option>
+        <option value="DELETE"<%= ' selected' if params[:http_method] == 'DELETE' %>>DELETE</option>
+        <option value="GET"<%= ' selected' if params[:http_method] == 'GET' %>>GET</option>
+        <option value="HEAD"<%= ' selected' if params[:http_method] == 'HEAD' %>>HEAD</option>
+        <option value="LOCK"<%= ' selected' if params[:http_method] == 'LOCK' %>>LOCK</option>
+        <option value="MKCOL"<%= ' selected' if params[:http_method] == 'MKCOL' %>>MKCOL</option>
+        <option value="MOVE"<%= ' selected' if params[:http_method] == 'MOVE' %>>MOVE</option>
+        <option value="OPTIONS"<%= ' selected' if params[:http_method] == 'OPTIONS' %>>OPTIONS</option>
+        <option value="PATCH"<%= ' selected' if params[:http_method] == 'PATCH' %>>PATCH</option>
+        <option value="POST"<%= ' selected' if params[:http_method] == 'POST' %>>POST</option>
+        <option value="PROPFIND"<%= ' selected' if params[:http_method] == 'PROPFIND' %>>PROPFIND</option>
+        <option value="PROPPATCH"<%= ' selected' if params[:http_method] == 'PROPPATCH' %>>PROPPATCH</option>
+        <option value="PUT"<%= ' selected' if params[:http_method] == 'PUT' %>>PUT</option>
+        <option value="TRACE"<%= ' selected' if params[:http_method] == 'TRACE' %>>TRACE</option>
+        <option value="UNLOCK"<%= ' selected' if params[:http_method] == 'UNLOCK' %>>UNLOCK</option>
+      </select>
+
+      <% @errors[:method].each do |error| %>
+        <p class="help is-danger"><%=h error %></p>
+      <% end %>
+    <% else %>
+      <select class="select" name="method">
+        <option value="">
+        <option value="COPY"<%= ' selected' if params[:http_method] == 'COPY' %>>COPY</option>
+        <option value="DELETE"<%= ' selected' if params[:http_method] == 'DELETE' %>>DELETE</option>
+        <option value="GET"<%= ' selected' if params[:http_method] == 'GET' %>>GET</option>
+        <option value="HEAD"<%= ' selected' if params[:http_method] == 'HEAD' %>>HEAD</option>
+        <option value="LOCK"<%= ' selected' if params[:http_method] == 'LOCK' %>>LOCK</option>
+        <option value="MKCOL"<%= ' selected' if params[:http_method] == 'MKCOL' %>>MKCOL</option>
+        <option value="MOVE"<%= ' selected' if params[:http_method] == 'MOVE' %>>MOVE</option>
+        <option value="OPTIONS"<%= ' selected' if params[:http_method] == 'OPTIONS' %>>OPTIONS</option>
+        <option value="PATCH"<%= ' selected' if params[:http_method] == 'PATCH' %>>PATCH</option>
+        <option value="POST"<%= ' selected' if params[:http_method] == 'POST' %>>POST</option>
+        <option value="PROPFIND"<%= ' selected' if params[:http_method] == 'PROPFIND' %>>PROPFIND</option>
+        <option value="PROPPATCH"<%= ' selected' if params[:http_method] == 'PROPPATCH' %>>PROPPATCH</option>
+        <option value="PUT"<%= ' selected' if params[:http_method] == 'PUT' %>>PUT</option>
+        <option value="TRACE"<%= ' selected' if params[:http_method] == 'TRACE' %>>TRACE</option>
+        <option value="UNLOCK"<%= ' selected' if params[:http_method] == 'UNLOCK' %>>UNLOCK</option>
+      </select>
+    <% end  %>
+  </div>
+
+  <div class="field">
+    <button type="submit" class="button is-primary">Send</button>
+  </div>
+
+  <div class="tabs is-centered">
+    <ul>
+      <li class="is-active"><a data-tab-id="general">General</a></li>
+      <li><a data-tab-id="ssl">SSL</a></li>
+    </ul>
+  </div>
+
+  <div class="tabs-content">
+    <div id="general" class="content-tab is-active">
+      <div class="field">
+        <label class="has-text-weight-semibold">Proxy:</label>
+
+        <div class="control">
+          <% if @errors && @errors[:proxy] %>
+            <input class="input is-danger" type="text" name="proxy" value="<%=hattr params[:proxy] %>">
+
+            <% @errors[:proxy].each do |error| %>
+              <p class="help is-danger"><%=h error %></p>
+            <% end %>
+          <% else %>
+            <input class="input" type="text" name="proxy" value="<%=hattr params[:proxy] %>">
+          <% end %>
+        </div>
+      </div>
+
+      <div class="field">
+        <label class="has-text-weight-semibold">Headers:</label>
+
+        <div class="control">
+          <% if @errors && @errors[:headers] %>
+            <textarea class="textarea is-danger" name="headers" placeholder="Content-Type: application/x-www-form-urlencoded, Connection: keep-alive" value="<%=hattr params[:headers] %>"></textarea>
+
+            <% @errors[:headers].each do |error| %>
+              <p class="help is-danger"><%=h error %></p>
+            <% end %>
+          <% else %>
+            <textarea class="textarea" name="headers" placeholder="Content-Type: application/x-www-form-urlencoded, Connection: keep-alive" value="<%=hattr params[:headers] %>"></textarea>
+          <% end %>
+        </div>
+      </div>
+
+      <div class="field">
+        <label class="has-text-weight-semibold">User Agent:</label>
+
+        <div class="control">
+          <% if @errors && @errors[:user_agent] %>
+            <input class="input is-danger" type="text" name="user_agent" value="<%=hattr params[:user_agent] %>">
+
+            <% @errors[:user_agent].each do |error| %>
+              <p class="help is-danger"><%=h error %></p>
+            <% end %>
+          <% else %>
+            <input class="input" type="text" name="user_agent" value="<%=hattr params[:user_agent] %>">
+          <% end %>
+        </div>
+      </div>
+
+      <div class="field">
+        <label class="has-text-weight-semibold">User:</label>
+
+        <div class="control">
+          <% if @errors && @errors[:user] %>
+            <input class="input is-danger" type="text" name="user" value="<%=hattr params[:user] %>">
+
+            <% @errors[:user].each do |error| %>
+              <p class="help is-danger"><%=h error %></p>
+            <% end %>
+          <% else %>
+            <input class="input" type="text" name="user" value="<%=hattr params[:user] %>">
+          <% end %>
+        </div>
+      </div>
+
+      <div class="field">
+        <label class="has-text-weight-semibold">Password:</label>
+
+        <div class="control">
+          <% if @errors && @errors[:password] %>
+            <input class="input is-danger" type="text" name="password" value="<%=hattr params[:password] %>">
+
+            <% @errors[:password].each do |error| %>
+              <p class="help is-danger"><%=h error %></p>
+            <% end %>
+          <% else %>
+            <input class="input" type="text" name="password" value="<%=hattr params[:password] %>">
+          <% end %>
+        </div>
+      </div>
+
+      <div class="field">
+        <label class="has-text-weight-semibold">Cookie:</label>
+
+        <div class="control">
+          <% if @errors && @errors[:cookie] %>
+            <input class="input is-danger" type="text" name="cookie" value="<%=hattr params[:cookie] %>">
+
+            <% @errors[:cookie].each do |error| %>
+              <p class="help is-danger"><%=h error %></p>
+            <% end %>
+          <% else %>
+            <input class="input" type="text" name="cookie" value="<%=hattr params[:cookie] %>">
+          <% end %>
+        </div>
+      </div>
+
+      <div class="field">
+        <label class="has-text-weight-semibold">Body:</label>
+
+        <div class="control">
+          <% if @errors && @errors[:body] %>
+            <textarea class="textarea is-danger" type="text" name="body" value="<%=hattr params[:body] %>"></textarea>
+
+            <% @errors[:body].each do |error| %>
+              <p class="help is-danger"><%=h error %></p>
+            <% end %>
+          <% else %>
+            <textarea class="textarea" type="text" name="body" value="<%=hattr params[:body] %>"></textarea>
+          <% end %>
+        </div>
+      </div>
+    </div>
+
+    <div id="ssl" class="content-tab">
+      <div class="field">
+        <label class="has-text-weight-semibold">Timeout:</label>
+        
+        <div class="control">
+          <% if @errors && @errors[:ssl]&.dig(:timeout) %>
+            <input class="input is-danger" type="number" name="ssl[timeout]" value="<%=hattr params[:timeout] %>">
+
+            <% @errors[:ssl][:timeout].each do |error| %>
+              <p class="help is-danger"><%=h error %></p>
+            <% end %>
+          <% else %>
+            <input class="input" type="number" name="ssl[timeout]" value="<%=hattr params[:timeout] %>">
+          <% end %>
+        </div>
+      </div>
+
+      <div class="field">
+        <label class="has-text-weight-semibold">Version:</label>
+        <select class="select" name="ssl[version]">
+          <option value="">
+          <option value="1.0"<%= ' selected' if params[:ssl]&.dig(:version) == '1.0' %>>1.0</option>
+          <option value="1.1"<%= ' selected' if params[:ssl]&.dig(:version) == '1.1' %>>1.1</option>
+          <option value="1.2"<%= ' selected' if params[:ssl]&.dig(:version) == '1.2' %>>1.2</option>
+        </select>
+      </div>
+
+      <div class="field">
+        <label class="has-text-weight-semibold">Min Version:</label>
+        <select class="select" name="ssl[min_version]">
+          <option value="">
+          <option value="1.0"<%= ' selected' if params[:ssl]&.dig(:version) == '1.0' %>>1.0</option>
+          <option value="1.1"<%= ' selected' if params[:ssl]&.dig(:version) == '1.1' %>>1.1</option>
+          <option value="1.2"<%= ' selected' if params[:ssl]&.dig(:version) == '1.2' %>>1.2</option>
+        </select>
+      </div>
+
+      <div class="field">
+        <label class="has-text-weight-semibold">Max Version:</label>
+        <select class="select" name="ssl[max_version]">
+          <option value="">
+          <option value="1.0"<%= ' selected' if params[:ssl]&.dig(:version) == '1.0' %>>1.0</option>
+          <option value="1.1"<%= ' selected' if params[:ssl]&.dig(:version) == '1.1' %>>1.1</option>
+          <option value="1.2"<%= ' selected' if params[:ssl]&.dig(:version) == '1.2' %>>1.2</option>
+        </select>
+      </div>
+
+      <div class="field">
+        <label class="has-text-weight-semibold">Verify:</label>
+        <select class="select" name="ssl[verify]">
+          <option value="">
+          <option value="none"<%= ' selected' if params[:verify] == 'none' %>>None</option>
+          <option value="peer"<%= ' selected' if params[:verify] == 'peer' %>>Peer</option>
+          <option value="fail_if_no_peer_cert"<%= ' selected' if params[:verify] == 'fail_if_no_peer_cert' %>>Fail if no peer cert</option>
+        </select>
+      </div>
+
+      <div class="field">
+        <label class="has-text-weight-semibold">Verify Depth:</label>
+
+        <div class="control">
+          <% if @errors && @errors[:ssl]&.dig(:verify_depth) %>
+            <input class="input is-danger" type="number" name="ssl[verify_depth]" value="<%=hattr params[:verify_depth] %>">
+
+            <% @errors[:ssl][:verify_depth].each do |error| %>
+              <p class="help is-danger"><%=h error %></p>
+            <% end %>
+          <% else %>
+            <input class="input" type="number" name="ssl[verify_depth]" value="<%=hattr params[:verify_depth] %>">
+          <% end %>
+        </div>
+      </div>
+
+      <div class="field">
+        <label class="has-text-weight-semibold">Verify Hostname:</label>
+
+        <div class="control">
+          <% if @errors && @errors[:ssl]&.dig(:verify_hostname) %>
+            <input class="checkbox is-danger" type="checkbox" name="ssl[verify_hostname]" value="<%=hattr params[:verify_hostname] %>">
+
+            <% @errors[:ssl][:verify_hostname].each do |error| %>
+              <p class="help is-danger"><%=h error %></p>
+            <% end %>
+          <% else %>
+            <input class="checkbox is-danger" type="checkbox" name="ssl[verify_hostname]" value="<%=hattr params[:verify_hostname] %>">
+          <% end %>
+        </div>
+      </div>
+    </div>
+  </div>
+</div>
+
+<% if @http_response %>
+  <div>
+    <pre>
+      <%=h @http_response.code %> <%= @http_response.message %>
+    </pre>
+
+    <pre>
+      <% @http_response.each_capitalized do |name, value| %>
+        <%=h name%>: <%=h value %>
+      <% end %>
+    </pre>
+
+    <pre>
+      <%=h @http_response.body %>
+    </pre>
+  </div>
+<% end %>

data/views/payloads/show.erb

@@ -1,4 +1,7 @@
-<h1>Payload: <%=h @payload.id %></h1>
+<div class="is-flex is-justify-content-space-between">
+  <h1>Payload: <%=h @payload.id %></h1>
+  <a href="/payloads/build/<%=hattr @payload.id %>" class="button is-primary">Build</a>
+</div>
 
 <table class="table">
   <tbody>

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: ronin-app
 version: !ruby/object:Gem::Version
-  version: 0.1.0.rc1
+  version: 0.1.0
 platform: ruby
 authors:
 - Postmodern
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-06-23 00:00:00.000000000 Z
+date: 2024-07-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dry-schema
@@ -170,154 +170,168 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.1.0.rc1
+        version: '1.1'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.1.0.rc1
+        version: '1.1'
 - !ruby/object:Gem::Dependency
   name: ronin-core
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0.rc1
+        version: '0.2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0.rc1
+        version: '0.2'
+- !ruby/object:Gem::Dependency
+  name: ronin-repos
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.2'
 - !ruby/object:Gem::Dependency
   name: ronin-db-activerecord
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0.rc1
+        version: '0.2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0.rc1
+        version: '0.2'
 - !ruby/object:Gem::Dependency
   name: ronin-db
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0.rc1
+        version: '0.2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0.rc1
+        version: '0.2'
 - !ruby/object:Gem::Dependency
   name: ronin-payloads
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0.rc1
+        version: '0.2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0.rc1
+        version: '0.2'
 - !ruby/object:Gem::Dependency
   name: ronin-exploits
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.1.0.rc1
+        version: '1.1'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 1.1.0.rc1
+        version: '1.1'
 - !ruby/object:Gem::Dependency
   name: ronin-vulns
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0.rc1
+        version: '0.2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0.rc1
+        version: '0.2'
 - !ruby/object:Gem::Dependency
   name: ronin-web-spider
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0.rc1
+        version: '0.2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0.rc1
+        version: '0.2'
 - !ruby/object:Gem::Dependency
   name: ronin-nmap
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.1.0.rc1
+        version: '0.1'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.1.0.rc1
+        version: '0.1'
 - !ruby/object:Gem::Dependency
   name: ronin-masscan
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.1.0.rc1
+        version: '0.1'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.1.0.rc1
+        version: '0.1'
 - !ruby/object:Gem::Dependency
   name: ronin-recon
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.1.0.rc1
+        version: '0.1'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.1.0.rc1
+        version: '0.1'
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
@@ -334,9 +348,9 @@ dependencies:
         version: '2.0'
 description: |
   ronin-app is a small web application that is meant to be ran locally by the
-   user. It provides a web interface to ronin-support, ronin-repos, ronin-db,
-   ronin-payloads, ronin-exploits, as well as automating
-   ronin-nmap, ronin-masscan, ronin-web-spider, ronin-recon, and ronin-vulns.
+  user. It provides a web interface to ronin-support, ronin-repos, ronin-db,
+  ronin-payloads, ronin-exploits, as well as automating
+  ronin-nmap, ronin-masscan, ronin-web-spider, ronin-recon, and ronin-vulns.
 email: postmodern.mod3@gmail.com
 executables:
 - ronin-app
@@ -392,6 +406,7 @@ files:
 - lib/ronin/app/types/nmap.rb
 - lib/ronin/app/types/spider.rb
 - lib/ronin/app/types/vulns.rb
+- lib/ronin/app/validations/http_params.rb
 - lib/ronin/app/validations/import_params.rb
 - lib/ronin/app/validations/install_repo_params.rb
 - lib/ronin/app/validations/masscan_params.rb
@@ -482,6 +497,7 @@ files:
 - views/index.erb
 - views/layout.erb
 - views/masscan.erb
+- views/network/http.erb
 - views/nmap.erb
 - views/payloads/build.erb
 - views/payloads/encoders/encode.erb
@@ -531,7 +547,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.27
+rubygems_version: 3.5.11
 signing_key:
 specification_version: 4
 summary: A local web interface for Ronin