ronin-app 0.1.0.rc1

data/lib/ronin/app/validations/nmap_params.rb

@@ -0,0 +1,183 @@
+# frozen_string_literal: true
+#
+# ronin-app - a local web app for Ronin.
+#
+# Copyright (c) 2023-2024 Hal Brodigan (postmodern.mod3@gmail.com)
+#
+# ronin-app is free software: you can redistribute it and/or modify
+# it under the terms of the GNU Affero General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# ronin-app is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU Affero General Public License for more details.
+#
+# You should have received a copy of the GNU Affero General Public License
+# along with ronin-app.  If not, see <http://www.gnu.org/licenses/>.
+#
+
+require 'dry/validation'
+require 'ronin/app/types'
+require 'ronin/app/types/nmap'
+
+require 'nmap/command'
+
+module Ronin
+  module App
+    module Validations
+      #
+      # Validations for the form params submitted to `POST /nmap`.
+      #
+      class NmapParams < Dry::Validation::Contract
+
+        params do
+          required(:targets).filled(Types::Args).each(:filled?)
+          optional(:ports).maybe(Types::Nmap::PortRangeList)
+
+          # TARGET SPECIFICATIONS:
+          optional(:target_file).maybe(:string)
+          optional(:random_targets).maybe(:integer)
+          optional(:exclude).maybe(Types::List)
+          optional(:exclude_file).maybe(:string)
+
+          # HOST DISCOVERY:
+          optional(:ping).maybe(:bool)
+          optional(:skip_discovery).maybe(:bool)
+          optional(:syn_discovery).maybe(Types::Bool | Types::Nmap::PortRangeList)
+          optional(:ack_discovery).maybe(Types::Bool | Types::Nmap::PortRangeList)
+          optional(:udp_discovery).maybe(Types::Bool | Types::Nmap::PortRangeList)
+          optional(:sctp_init_ping).maybe(Types::Bool | Types::Nmap::PortRangeList)
+          optional(:icmp_echo_discovery).maybe(:bool)
+          optional(:icmp_timestamp_discovery).maybe(:bool)
+          optional(:icmp_netmask_discovery).maybe(:bool)
+          optional(:ip_ping).maybe(Types::Bool | Types::Nmap::ProtocolList)
+          optional(:arp_ping).maybe(:bool)
+          optional(:traceroute).maybe(:bool)
+          optional(:disable_dns).maybe(:bool)
+          optional(:enable_dns).maybe(:bool)
+          optional(:resolve_all).maybe(:bool)
+          optional(:unique).maybe(:bool)
+          optional(:dns_servers).maybe(Types::List)
+          optional(:system_dns).maybe(:bool)
+
+          # PORT SCANNING TECHNIQUES:
+          optional(:syn_scan).maybe(:bool)
+          optional(:connect_scan).maybe(:bool)
+          optional(:udp_scan).maybe(:bool)
+          optional(:sctp_init_scan).maybe(:bool)
+          optional(:null_scan).maybe(:bool)
+          optional(:fin_scan).maybe(:bool)
+          optional(:xmas_scan).maybe(:bool)
+          optional(:ack_scan).maybe(:bool)
+          optional(:window_scan).maybe(:bool)
+          optional(:maimon_scan).maybe(:bool)
+          optional(:scan_flags).maybe(Types::Nmap::ScanFlags)
+          optional(:sctp_cookie_echo_scan).maybe(:bool)
+          optional(:idle_scan).maybe(:string)
+          optional(:ip_scan).maybe(:bool)
+          optional(:ftp_bounce_scan).maybe(:string)
+
+          # PORT SPECIFICATION AND SCAN ORDER:
+          optional(:ports).maybe(Types::Nmap::PortRangeList)
+          optional(:exclude_ports).maybe(Types::Nmap::PortRangeList)
+          optional(:fast).maybe(:bool)
+          optional(:consecutively).maybe(:bool)
+          optional(:top_ports).maybe(:integer)
+          optional(:port_ratio).maybe(:float)
+
+          # SERVICE/VERSION DETECTION:
+          optional(:service_scan).maybe(:bool)
+          optional(:all_ports).maybe(:bool)
+          optional(:version_intensity).maybe(:integer)
+          optional(:version_light).maybe(:bool)
+          optional(:version_all).maybe(:bool)
+          optional(:version_trace).maybe(:bool)
+
+          # OS DETECTION:
+          optional(:os_fingerprint).maybe(:bool)
+          optional(:limit_os_scan).maybe(:bool)
+          optional(:max_os_scan).maybe(:bool)
+          optional(:max_os_tries).maybe(:bool)
+
+          # TIMING AND PERFORMANCE:
+          optional(:min_host_group).maybe(:integer)
+          optional(:max_host_group).maybe(:integer)
+          optional(:min_parallelism).maybe(:integer)
+          optional(:max_parallelism).maybe(:integer)
+          optional(:min_rtt_timeout).maybe(Types::Nmap::Time)
+          optional(:max_rtt_timeout).maybe(Types::Nmap::Time)
+          optional(:initial_rtt_timeout).maybe(Types::Nmap::Time)
+          optional(:max_retries).maybe(:integer)
+          optional(:host_timeout).maybe(Types::Nmap::Time)
+          optional(:script_timeout).maybe(Types::Nmap::Time)
+          optional(:scan_delay).maybe(Types::Nmap::Time)
+          optional(:max_scan_delay).maybe(Types::Nmap::Time)
+          optional(:min_rate).maybe(:integer)
+          optional(:max_rate).maybe(:integer)
+          optional(:defeat_rst_ratelimit).maybe(:bool)
+          optional(:defeat_icmp_ratelimit).maybe(:bool)
+          optional(:nsock_engine).maybe(Types::Nmap::NsockEngine)
+          optional(:timing_template).maybe(Types::Nmap::TimingTemplate)
+
+          # FIREWALL/IDS EVASION AND SPOOFING:
+          optional(:packet_fragments).maybe(:bool)
+          optional(:mtu).maybe(Types::Bool | Types::Integer)
+          optional(:decoys).maybe(Types::List)
+          optional(:spoof).maybe(:string)
+          optional(:interface).maybe(:string)
+          optional(:source_port).maybe(Types::Nmap::Port)
+          optional(:proxies).maybe(Types::List)
+          optional(:data).maybe(Types::Nmap::HexString)
+          optional(:data_string).maybe(:string)
+          optional(:data_length).maybe(:integer)
+          optional(:ip_options).maybe(:string)
+          optional(:ttl).maybe(:integer)
+          optional(:randomize_hosts).maybe(:bool)
+          optional(:spoof_mac).maybe(:string)
+          optional(:bad_checksum).maybe(:bool)
+          optional(:sctp_adler32).maybe(:bool)
+
+          # MISC:
+          optional(:ipv6).maybe(:bool)
+          optional(:all).maybe(:bool)
+          optional(:nmap_datadir).maybe(:string)
+          optional(:servicedb).maybe(:string)
+          optional(:versiondb).maybe(:string)
+          optional(:send_eth).maybe(:bool)
+          optional(:send_ip).maybe(:bool)
+          optional(:privileged).maybe(:bool)
+          optional(:unprivileged).maybe(:bool)
+          optional(:release_memory).maybe(:bool)
+        end
+
+        rule(:port_ratio) do
+          if (value && !(value >= 0.0 && value <= 1.0))
+            key.failure('value must be between 0.0 and 1.0')
+          end
+        end
+
+        rule(:version_intensity) do
+          if (value && !(value >= 0 && value <= 9))
+            key.failure('value must be between 0 and 9')
+          end
+        end
+
+        #
+        # Initializes and calls the validation contract.
+        #
+        # @param [Hash{String => Object}] params
+        #   The HTTP params to validate.
+        #
+        # @return [Dry::Validation::Result]
+        #   The validation result.
+        #
+        def self.call(params)
+          new.call(params)
+        end
+
+      end
+    end
+  end
+end

data/lib/ronin/app/validations/recon_params.rb

@@ -0,0 +1,86 @@
+# frozen_string_literal: true
+#
+# ronin-app - a local web app for Ronin.
+#
+# Copyright (c) 2023-2024 Hal Brodigan (postmodern.mod3@gmail.com)
+#
+# ronin-app is free software: you can redistribute it and/or modify
+# it under the terms of the GNU Affero General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# ronin-app is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU Affero General Public License for more details.
+#
+# You should have received a copy of the GNU Affero General Public License
+# along with ronin-app.  If not, see <http://www.gnu.org/licenses/>.
+#
+
+require 'dry/validation'
+require 'ronin/app/types'
+
+require 'ronin/recon/value/parser'
+
+module Ronin
+  module App
+    module Validations
+      #
+      # Validations for the form params submitted to `POST /recon`.
+      #
+      class ReconParams < Dry::Validation::Contract
+
+        include Ronin::Recon::Value::Parser
+
+        # Regex to match a value string.
+        VALUE_REGEX = /#{IP_RANGE_REGEX}|#{IP_REGEX}|#{WEBSITE_REGEX}|#{WILDCARD_REGEX}|#{HOSTNAME_REGEX}|#{DOMAIN_REGEX}/
+
+        params do
+          required(:scope).filled(Types::Args).each(:filled?)
+
+          optional(:ignore).maybe(Types::Args)
+          optional(:max_depth).maybe(:integer)
+        end
+
+        rule(:scope) do
+          bad_values = value.grep_v(VALUE_REGEX)
+
+          unless bad_values.empty?
+            key.failure("value must be an IP address, CIDR IP range, domain, sub-domain, wildcard hostname, or website base URL: #{bad_values.join(', ')}")
+          end
+        end
+
+        rule(:ignore) do
+          if value
+            bad_values = value.grep_v(VALUE_REGEX)
+
+            unless bad_values.empty?
+              key.failure("ignore value must be an IP address, CIDR IP range, domain, sub-domain, wildcard hostname, or website base URL: #{bad_values.join(', ')}")
+            end
+          end
+        end
+
+        rule(:max_depth) do
+          if value && value < 2
+            key.failure("max_depth must be greater than 1")
+          end
+        end
+
+        #
+        # Initializes and calls the validation contract.
+        #
+        # @param [Hash{String => Object}] params
+        #   The HTTP params to validate.
+        #
+        # @return [Dry::Validation::Result]
+        #   The validation result.
+        #
+        def self.call(params)
+          new.call(params)
+        end
+
+      end
+    end
+  end
+end

data/lib/ronin/app/validations/spider_params.rb

@@ -0,0 +1,103 @@
+# frozen_string_literal: true
+#
+# ronin-app - a local web app for Ronin.
+#
+# Copyright (c) 2023-2024 Hal Brodigan (postmodern.mod3@gmail.com)
+#
+# ronin-app is free software: you can redistribute it and/or modify
+# it under the terms of the GNU Affero General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# ronin-app is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU Affero General Public License for more details.
+#
+# You should have received a copy of the GNU Affero General Public License
+# along with ronin-app.  If not, see <http://www.gnu.org/licenses/>.
+#
+
+require 'dry/validation'
+require 'ronin/app/types/spider'
+
+module Ronin
+  module App
+    module Validations
+      #
+      # Validations for form params submitted to `POST /web/spider`.
+      #
+      class SpiderParams < Dry::Validation::Contract
+
+        # Regular expression to loosely validate any hostname (local or DNS).
+        HOST_NAME_REGEX = /\A[A-Za-z0-9\._-]+\z/
+
+        params do
+          required(:type).filled(Types::Spider::TargetType)
+          required(:target).filled(:string)
+
+          optional(:host_header).maybe(:string)
+          # optional(:host_headers)
+          # optional(:default_headers)
+          optional(:user_agent).maybe(:string)
+          optional(:referer).maybe(:string)
+          optional(:open_timeout).maybe(:integer)
+          optional(:read_timeout).maybe(:integer)
+          optional(:ssl_timeout).maybe(:integer)
+          optional(:continue_timeout).maybe(:integer)
+          optional(:keep_alive_timeout).maybe(:integer)
+          optional(:proxy).maybe(:string)
+          optional(:delay).maybe(:integer)
+          optional(:limit).maybe(:integer)
+          optional(:max_depth).maybe(:integer)
+          optional(:strip_fragments).maybe(:bool)
+          optional(:strip_query).maybe(:bool)
+          optional(:hosts).maybe(Types::Spider::HostList)
+          optional(:ignore_hosts).maybe(Types::Spider::HostList)
+          optional(:ports).maybe(Types::Spider::PortList)
+          optional(:ignore_ports).maybe(Types::Spider::PortList)
+          optional(:urls).maybe(Types::Spider::URLList)
+          optional(:ignore_urls).maybe(Types::Spider::URLList)
+          optional(:exts).maybe(Types::Spider::ExtList)
+          optional(:ignore_exts).maybe(Types::Spider::ExtList)
+          optional(:robots).maybe(:bool)
+
+          before(:value_coercer) do |result|
+            result.to_h.reject { |key,value| value.empty? }
+          end
+        end
+
+        rule(:target) do
+          case values[:type]
+          when 'host'
+            unless values[:target] =~ HOST_NAME_REGEX
+              key.failure('host must be a valid host name')
+            end
+          when 'domain'
+            unless values[:target] =~ HOST_NAME_REGEX
+              key.failure('domain must be a valid host name')
+            end
+          when 'site'
+            unless values[:target] =~ %r{\Ahttp(?:s)?://.+\z}
+              key.failure('site must be a valid http:// or https:// URI')
+            end
+          end
+        end
+
+        #
+        # Initializes and calls the validation contract.
+        #
+        # @param [Hash{String => Object}] params
+        #   The HTTP params to validate.
+        #
+        # @return [Dry::Validation::Result]
+        #   The validation result.
+        #
+        def self.call(params)
+          new.call(params)
+        end
+
+      end
+    end
+  end
+end

data/lib/ronin/app/validations/vulns_params.rb

@@ -0,0 +1,83 @@
+# frozen_string_literal: true
+#
+# ronin-app - a local web app for Ronin.
+#
+# Copyright (c) 2023-2024 Hal Brodigan (postmodern.mod3@gmail.com)
+#
+# ronin-app is free software: you can redistribute it and/or modify
+# it under the terms of the GNU Affero General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# ronin-app is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU Affero General Public License for more details.
+#
+# You should have received a copy of the GNU Affero General Public License
+# along with ronin-app.  If not, see <http://www.gnu.org/licenses/>.
+#
+
+require 'dry/validation'
+require 'ronin/app/types/vulns'
+
+module Ronin
+  module App
+    module Validations
+      #
+      # Validations for form params submitted to `POST /vulns`.
+      #
+      class VulnsParams < Dry::Validation::Contract
+
+        params do
+          required(:url).filled(:string)
+
+          optional(:lfi).hash do
+            optional(:os).maybe(Types::Vulns::LFI::OSType)
+            optional(:depth).maybe(:integer)
+            optional(:filter_bypass).maybe(Types::Vulns::LFI::FilterBypassType)
+          end
+
+          optional(:rfi).hash do
+            optional(:filter_bypass).maybe(Types::Vulns::RFI::FilterBypassType)
+            optional(:test_script_url).maybe(:string)
+          end
+
+          optional(:sqli).hash do
+            optional(:escape_quote).maybe(:bool)
+            optional(:escape_parens).maybe(:bool)
+            optional(:terminate).maybe(:bool)
+          end
+
+          optional(:ssti).hash do
+            optional(:escape).maybe(Types::Vulns::SSTI::EscapeType)
+          end
+
+          optional(:command_injection).hash do
+            optional(:escape_quote).maybe(:string)
+            optional(:escape_operator).maybe(:string)
+            optional(:terminate).maybe(:string)
+          end
+
+          optional(:open_redirect).hash do
+            optional(:test_url).maybe(:string)
+          end
+        end
+
+        #
+        # Initializes and calls the validation contract.
+        #
+        # @param [Hash{String => Object}] params
+        #   The HTTP params to validate.
+        #
+        # @return [Dry::Validation::Result]
+        #   The validation result.
+        #
+        def self.call(params)
+          new.call(params)
+        end
+
+      end
+    end
+  end
+end

data/lib/ronin/app/version.rb

@@ -0,0 +1,26 @@
+# frozen_string_literal: true
+#
+# ronin-app - a local web app for Ronin.
+#
+# Copyright (c) 2023-2024 Hal Brodigan (postmodern.mod3@gmail.com)
+#
+# ronin-app is free software: you can redistribute it and/or modify
+# it under the terms of the GNU Affero General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# ronin-app is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU Affero General Public License for more details.
+#
+# You should have received a copy of the GNU Affero General Public License
+# along with ronin-app.  If not, see <http://www.gnu.org/licenses/>.
+#
+
+module Ronin
+  module App
+    # The ronin-app version
+    VERSION = '0.1.0.rc1'
+  end
+end

data/man/ronin-app.1

@@ -0,0 +1,63 @@
+.\" Generated by kramdown-man 1.0.1
+.\" https://github.com/postmodern/kramdown-man#readme
+.TH ronin-app 1 "2023-08-30" Ronin App "User Manuals"
+.SH NAME
+.PP
+ronin\-app \- A local web interface for Ronin
+.SH SYNOPSIS
+.PP
+\fBronin\-app\fR \[lB]\fIoptions\fP\[rB] \[lB]\fICOMMAND\fP\[rB]
+.SH DESCRIPTION
+.PP
+Starts the local Ronin web application\.
+.SH OPTIONS
+.TP
+\fB\-H\fR, \fB\-\-host\fR \fIIP\fP
+The IP address to listen on\. Defaults to \fBlocalhost\fR if not specified\.
+.TP
+\fB\-p\fR, \fB\-\-port\fR \fIPORT\fP
+The port to listen on\. Defaults to \fB1337\fR if not specified\.
+.TP
+\fB\-\-db\fR \fINAME\fP
+Specifies the \fBronin\-db\fR database name for the app to connect to\.
+.TP
+\fB\-\-db\-uri\fR \fIURI\fP
+Specifies a database URI for the app to connect to\.
+.RS
+.RS
+.IP \(bu 2
+\fBsqlite3\fP: \fBsqlite3:relative\[sl]path\.db\fR or \fBsqlite3:\[sl]\[sl]\[sl]absolute\[sl]path\.db\fR
+.IP \(bu 2
+\fBmysql\fP: \fBmysql:\[sl]\[sl]user:password\[at]host\[sl]database\fR
+.IP \(bu 2
+\fBpostgres\fP: \fBpostgres:\[sl]\[sl]user:password\[at]host\[sl]database\fR
+.RE
+.RE
+.TP
+\fB\-V\fR, \fB\-\-version\fR
+Prints the \fBronin\-app\fR version\.
+.TP
+\fB\-h\fR, \fB\-\-help\fR
+Prints help information\.
+.SH ENVIRONMENT
+.TP
+\fIHOME\fP
+Alternate location for the user\[cq]s home directory\.
+.TP
+\fIXDG\[ru]CONFIG\[ru]HOME\fP
+Alternate location for the \fB\[ti]\[sl]\.config\fR directory\.
+.TP
+\fIXDG\[ru]DATA\[ru]HOME\fP
+Alternate location for the \fB\[ti]\[sl]\.local\[sl]share\fR directory\.
+.SH FILES
+.TP
+\fB\[ti]\[sl]\.local\[sl]share\[sl]ronin\-db\[sl]database\.sqlite3\fR
+The default sqlite3 database file\.
+.TP
+\fB\[ti]\[sl]\.config\[sl]ronin\-db\[sl]database\.yml\fR
+Optional database configuration\.
+.SH AUTHOR
+.PP
+Postmodern 
+.MT postmodern\.mod3\[at]gmail\.com
+.ME

data/man/ronin-app.1.md

@@ -0,0 +1,61 @@
+# ronin-app 1 "2023-08-30" Ronin App "User Manuals"
+
+## NAME
+
+ronin-app - A local web interface for Ronin
+
+## SYNOPSIS
+
+`ronin-app` [*options*] [*COMMAND*]
+
+## DESCRIPTION
+
+Starts the local Ronin web application.
+
+## OPTIONS
+
+`-H`, `--host` *IP*
+: The IP address to listen on. Defaults to `localhost` if not specified.
+
+`-p`, `--port` *PORT*
+: The port to listen on. Defaults to `1337` if not specified.
+
+`--db` *NAME*
+: Specifies the `ronin-db` database name for the app to connect to.
+
+`--db-uri` *URI*
+: Specifies a database URI for the app to connect to.
+
+  * **sqlite3**: `sqlite3:relative/path.db` or `sqlite3:///absolute/path.db`
+  * **mysql**: `mysql://user:password@host/database`
+  * **postgres**: `postgres://user:password@host/database`
+
+`-V`, `--version`
+: Prints the `ronin-app` version.
+
+`-h`, `--help`
+: Prints help information.
+
+## ENVIRONMENT
+
+*HOME*
+: Alternate location for the user's home directory.
+
+*XDG_CONFIG_HOME*
+: Alternate location for the `~/.config` directory.
+
+*XDG_DATA_HOME*
+: Alternate location for the `~/.local/share` directory.
+
+## FILES
+
+`~/.local/share/ronin-db/database.sqlite3`
+: The default sqlite3 database file.
+
+`~/.config/ronin-db/database.yml`
+: Optional database configuration.
+
+## AUTHOR
+
+Postmodern <postmodern.mod3@gmail.com>
+

data/public/images/favicon.svg

@@ -0,0 +1,78 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<!-- Created with Inkscape (http://www.inkscape.org/) -->
+
+<svg
+   width="32"
+   height="32"
+   viewBox="0 0 8.4666662 8.4666662"
+   version="1.1"
+   id="svg324"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg"
+   xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
+   xmlns:cc="http://creativecommons.org/ns#"
+   xmlns:dc="http://purl.org/dc/elements/1.1/">
+  <title
+     id="title447">Ronin</title>
+  <style>
+  path { fill: #000000; }
+  @media (prefers-color-scheme: dark) {
+    path { fill: #ffffff; }
+  }
+  </style>
+  <defs
+     id="defs321" />
+  <g
+     id="layer1">
+    <g
+       id="g6932"
+       transform="matrix(0.0208635,0,0,0.0208635,-2.4801773,-3.1118599)"
+       style="display:inline">
+      <g
+         id="g350">
+        <path
+           style="font-variation-settings:'wght' 700;display:inline;fill:none;stroke:#000000;stroke-width:3;stroke-linecap:square;stroke-linejoin:miter;stroke-miterlimit:7;stroke-dasharray:none;stroke-opacity:0.991918"
+           d="M 10.556199,32.237999 35.277035,27.91055 72.742093,32.490384 66.652961,55.405256 45.288701,61.015098 62.972493,89.246954 35.726284,66.293348 10.397131,101.36149 32.991476,34.955974 Z"
+           id="path904"
+           class="UnoptimicedTransforms"
+           transform="matrix(4.8235651,0,0,4.8235651,141.024,21.83731)" />
+        <path
+           style="font-variation-settings:'wght' 700;display:inline;fill:none;stroke:#ffffff;stroke-width:14.4707;stroke-linecap:square;stroke-miterlimit:7;stroke-dasharray:none;stroke-opacity:0.991918"
+           d="m 342.21527,195.81028 103.34653,12.69086 -14.06653,51.18699 -119.65288,25.46828 z"
+           id="path1799" />
+        <path
+           style="font-variation-settings:'wght' 700;fill:#000000;stroke:#000000;stroke-width:15.8166;stroke-linecap:square;stroke-miterlimit:7.5;stroke-opacity:0.991918"
+           d="m 311.14109,159.64411 c -20.21344,4.23648 -41.28571,5.48348 -60.90879,12.03137 -6.32158,3.74656 0.0386,10.9274 5.6154,9.96607 16.13661,2.5686 32.40244,4.20214 48.6157,6.19567 -30.90135,89.9687 -61.49081,180.04724 -91.66838,270.2606 -1.46878,6.80489 8.4863,8.002 10.3885,1.87713 30.44717,-40.08696 59.20005,-81.51916 89.06101,-121.95603 33.50724,24.95491 63.86279,53.93701 97.17414,79.14896 6.64432,2.19405 6.72304,-6.25505 3.04054,-9.50025 -18.55988,-31.49151 -38.53903,-62.11618 -57.41306,-93.41711 34.38372,-9.34933 68.99526,-17.88434 103.27156,-27.6099 6.14812,-7.55269 5.69051,-18.86028 9.24056,-27.83752 6.31539,-24.65117 13.25336,-49.19081 18.77258,-74.02001 -2.92843,-7.20626 -13.42398,-3.74059 -19.58309,-6.03564 -51.84339,-6.53554 -103.71905,-13.08667 -155.60667,-19.10334 z m 29.28551,33.71021 c 36.31995,3.48281 72.47493,7.76831 108.59243,12.76147 -4.56709,18.76009 -9.57555,37.22359 -15.51316,55.49496 -41.84395,10.46883 -84.24342,18.37316 -126.37794,27.70801 11.14562,-31.90735 21.37954,-64.58812 33.29867,-95.96444 z"
+           id="path6851" />
+      </g>
+    </g>
+  </g>
+  <metadata
+     id="metadata445">
+    <rdf:RDF>
+      <cc:Work
+         rdf:about="">
+        <dc:title>Ronin</dc:title>
+        <dc:date>2023-01-31</dc:date>
+        <dc:creator>
+          <cc:Agent>
+            <dc:title>Hal Brodigan</dc:title>
+          </cc:Agent>
+        </dc:creator>
+        <cc:license
+           rdf:resource="http://creativecommons.org/licenses/by-nd/4.0/" />
+      </cc:Work>
+      <cc:License
+         rdf:about="http://creativecommons.org/licenses/by-nd/4.0/">
+        <cc:permits
+           rdf:resource="http://creativecommons.org/ns#Reproduction" />
+        <cc:permits
+           rdf:resource="http://creativecommons.org/ns#Distribution" />
+        <cc:requires
+           rdf:resource="http://creativecommons.org/ns#Notice" />
+        <cc:requires
+           rdf:resource="http://creativecommons.org/ns#Attribution" />
+      </cc:License>
+    </rdf:RDF>
+  </metadata>
+</svg>