ronin-exploits 0.3.1 → 1.0.0.beta1

data/lib/ronin/exploits/remote.rb

@@ -1,40 +0,0 @@
-#
-# Ronin Exploits - A Ruby library for Ronin that provides exploitation and
-# payload crafting functionality.
-#
-# Copyright (c) 2007-2009 Hal Brodigan (postmodern.mod3 at gmail.com)
-#
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
-#
-
-require 'ronin/exploits/exploit'
-
-module Ronin
-  module Exploits
-    class Remote < Exploit
-
-      #
-      # Creates a new Ronin::Exploits::Remote object using the given
-      # _block_.
-      #
-      #   ronin_remote_exploit do
-      #     ...
-      #   end
-      #
-      contextify :ronin_remote_exploit
-
-    end
-  end
-end

data/lib/ronin/exploits/remote_tcp.rb

@@ -1,87 +0,0 @@
-#
-# Ronin Exploits - A Ruby library for Ronin that provides exploitation and
-# payload crafting functionality.
-#
-# Copyright (c) 2007-2009 Hal Brodigan (postmodern.mod3 at gmail.com)
-#
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
-#
-
-require 'ronin/exploits/remote'
-require 'ronin/model/has_default_port'
-require 'ronin/network/helpers/tcp'
-
-module Ronin
-  module Exploits
-    class RemoteTCP < Remote
-
-      include Model::HasDefaultPort
-      include Network::Helpers::TCP
-
-      #
-      # Creates a new Ronin::Exploits::RemoteTCP object using the given
-      # _block_.
-      #
-      #   ronin_remote_tcp_exploit do
-      #     ...
-      #   end
-      #
-      contextify :ronin_remote_tcp_exploit
-
-      # Remote host to connect to
-      parameter :host, :description => 'TCP remote host'
-
-      # Remote port to connect to
-      parameter :port, :description => 'TCP remote port'
-
-      # Local host to bind to
-      parameter :local_host, :description => 'TCP local host'
-
-      # Local port to bind to
-      parameter :local_port, :description => 'TCP local port'
-
-      #
-      # Verifies the TCP remote exploit is ready to be deployed.
-      #
-      def verify!
-        require_params :host, :port
-
-        return super
-      end
-
-      #
-      # Verifies and deploys the TCP remote exploit.
-      #
-      # @yield [exploit]
-      #   If a block is given, it will be passed the deployed exploit.
-      #
-      # @yieldparam [RemoteTCP] exploit
-      #   The deployed exploit.
-      #
-      # @return [RemoteTCP]
-      #   The deployed exploit.
-      #
-      # @raise [ExploitNotBuilt]
-      #   The exploit has not been built, and cannot be deployed.
-      #
-      def deploy!(&block)
-        @port ||= self.default_port
-
-        super(&block)
-      end
-
-    end
-  end
-end

data/lib/ronin/exploits/remote_udp.rb

@@ -1,87 +0,0 @@
-#
-# Ronin Exploits - A Ruby library for Ronin that provides exploitation and
-# payload crafting functionality.
-#
-# Copyright (c) 2007-2009 Hal Brodigan (postmodern.mod3 at gmail.com)
-#
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
-#
-
-require 'ronin/exploits/remote'
-require 'ronin/model/has_default_port'
-require 'ronin/network/helpers/udp'
-
-module Ronin
-  module Exploits
-    class RemoteUDP < Remote
-
-      include Model::HasDefaultPort
-      include Network::Helpers::UDP
-
-      #
-      # Creates a new Ronin::Exploits::RemoteUDP object using the given
-      # _block_.
-      #
-      #   ronin_remote_udp_exploit do
-      #     ...
-      #   end
-      #
-      contextify :ronin_remote_udp_exploit
-
-      # Remote host to connect to
-      parameter :host, :description => 'UDP remote host'
-
-      # Remote port to connect to
-      parameter :port, :description => 'UDP remote port'
-
-      # Local host to bind to
-      parameter :local_host, :description => 'UDP local host'
-
-      # Local port to bind to
-      parameter :local_port, :description => 'UDP local port'
-
-      #
-      # Verifies the UDP remote exploit is ready to be deployed.
-      #
-      def verify!
-        require_params :host, :port
-
-        return super
-      end
-
-      #
-      # Verifies and deploys the UDP remote exploit.
-      #
-      # @yield [exploit]
-      #   If a block is given, it will be passed the deployed exploit.
-      #
-      # @yieldparam [RemoteUDP] exploit
-      #   The deployed exploit.
-      #
-      # @return [RemoteUDP]
-      #   The deployed exploit.
-      #
-      # @raise [ExploitNotBuilt]
-      #   The exploit has not been built, and cannot be deployed.
-      #
-      def deploy!(&block)
-        @port ||= self.default_port
-
-        super(&block)
-      end
-
-    end
-  end
-end

data/lib/ronin/exploits/targets/buffer_overflow.rb

@@ -1,46 +0,0 @@
-#
-# Ronin Exploits - A Ruby library for Ronin that provides exploitation and
-# payload crafting functionality.
-#
-# Copyright (c) 2007-2009 Hal Brodigan (postmodern.mod3 at gmail.com)
-#
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
-#
-
-require 'ronin/exploits/target'
-
-module Ronin
-  module Exploits
-    module Targets
-      class BufferOverflow < Target
-
-        # Buffer Length
-        property :buffer_length, Integer, :default => 0
-
-        # Stack Base Pointer
-        property :bp, Integer
-
-        # Instruction Pointer
-        property :ip, Integer
-
-        # Repeat stack frames n times
-        property :frame_repeat, Integer, :default => 1
-
-        validates_present :ip
-
-      end
-    end
-  end
-end

data/lib/ronin/exploits/targets/format_string.rb

@@ -1,43 +0,0 @@
-#
-# Ronin Exploits - A Ruby library for Ronin that provides exploitation and
-# payload crafting functionality.
-#
-# Copyright (c) 2007-2009 Hal Brodigan (postmodern.mod3 at gmail.com)
-#
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
-#
-
-require 'ronin/exploits/target'
-
-module Ronin
-  module Exploits
-    module Targets
-      class FormatString < Target
-
-        # Overwrite
-        property :overwrite, Integer
-
-        # Address
-        property :address, Integer
-
-        # Length in bytes to pop
-        property :pop_length, Integer
-
-        validates_present :arch_id, :overwrite, :address, :pop_length
-
-      end
-    end
-  end
-end

data/lib/ronin/exploits/targets.rb

@@ -1,27 +0,0 @@
-#
-# Ronin Exploits - A Ruby library for Ronin that provides exploitation and
-# payload crafting functionality.
-#
-# Copyright (c) 2007-2009 Hal Brodigan (postmodern.mod3 at gmail.com)
-#
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
-#
-
-require 'ronin/exploits/targets/buffer_overflow'
-require 'ronin/exploits/targets/format_string'
-
-require 'reverse_require'
-
-require_for 'ronin-exploits', 'ronin/exploits/targets'

data/lib/ronin/exploits/verifiers.rb

@@ -1,121 +0,0 @@
-#
-# Ronin Exploits - A Ruby library for Ronin that provides exploitation and
-# payload crafting functionality.
-#
-# Copyright (c) 2007-2009 Hal Brodigan (postmodern.mod3 at gmail.com)
-#
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
-#
-
-module Ronin
-  module Exploits
-    module Verifiers
-      #
-      # Verifies that a target has been selected.
-      #
-      # @return [true]
-      #   Specifies that a target has been selected.
-      #
-      # @raise [TargetUnspecified]
-      #   No suitable target was provided.
-      #
-      def verify_target!
-        if target.nil?
-          raise(TargetUnspecified,"no suitable target provided",caller)
-        end
-
-        return true
-      end
-
-      #
-      # Verifies that the selected target has an arch property.
-      #
-      # @return [true]
-      #   Specifies that an architecture is being targeted by the currently
-      #   selected target.
-      #
-      # @raise [TargetDataMissing]
-      #   A valid Arch was expected from the current target.
-      #
-      def verify_arch!
-        if arch.nil?
-          raise(TargetDataMissing,"no suitable arch was provided",caller)
-        end
-
-        return true
-      end
-
-      #
-      # Verifies that the selected target has an os property.
-      #
-      # @return [true]
-      #   Specifies that an OS is being targeted by the currently selected
-      #   target.
-      #
-      # @raise [TargetDataMissing]
-      #   A valid OS was expected from the current target.
-      #
-      def verify_os!
-        if os.nil?
-          raise(TargetDataMissing,"no suitable os was provided",caller)
-        end
-
-        return true
-      end
-
-      #
-      # Verifies that the selected target has an product property.
-      #
-      # @return [true]
-      #   Specifies that a product is being targeted by the currently
-      #   selected target.
-      #
-      # @raise [TargetDataMissing]
-      #   A valid product was expected from the current target.
-      #
-      def verify_product!
-        if product.nil?
-          raise(TargetDataMissing,"no suitable product was provided",caller)
-        end
-
-        return true
-      end
-
-      #
-      # Reviews text for restricted characters.
-      #
-      # @param [String] text
-      #   The text to review for restricted characters.
-      #
-      # @return [true]
-      #   Specifies that the text does not contain restricted characters.
-      #
-      # @raise [RestrictedChar]
-      #   A restricted character was found in the specified text.
-      #
-      def verify_restricted!(text)
-        found = @restricted_chars.select { |char|
-          text.include?(char)
-        }.map { |char| char.dump }
-
-        unless found.empty?
-          raise(RestrictedChar,"restricted characters #{found.join(', ')} was detected in #{text.dump}",caller)
-        end
-
-        return true
-      end
-    end
-  end
-end

data/lib/ronin/generators/exploits/exploit.rb

@@ -1,70 +0,0 @@
-#
-# Ronin Exploits - A Ruby library for Ronin that provides exploitation and
-# payload crafting functionality.
-#
-# Copyright (c) 2007-2009 Hal Brodigan (postmodern.mod3 at gmail.com)
-#
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
-#
-
-require 'ronin/generators/exploits/static'
-require 'ronin/generators/generator'
-
-require 'ronin/author'
-
-module Ronin
-  module Generators
-    module Exploits
-      class Exploit < Generator
-
-        # Default name to give the exploit
-        DEFAULT_NAME = 'Exploit'
-
-        # Default description to give the exploit
-        DEFAULT_DESCRIPTION = %{This is an exploit.}
-
-        # Default status to give the exploit
-        DEFAULT_STATUS = :potential
-
-        # Default authors of the exploit
-        DEFAULT_AUTHORS = [Author::ANONYMOUSE]
-
-        # Default disclosure information to give the exploit
-        DEFAULT_DISCLOSURE = [:in_wild]
-
-        class_option :helpers, :type => :array, :default => []
-        class_option :name, :type => :string, :default => DEFAULT_NAME
-        class_option :description, :type => :string, :default => DEFAULT_DESCRIPTION
-        class_option :status, :type => :string, :default => DEFAULT_STATUS
-        class_option :disclosure, :type => :array, :default => DEFAULT_DISCLOSURE
-        class_option :authors, :type => :array, :default => DEFAULT_AUTHORS
-        class_option :controls, :type => :array, :default => []
-
-        argument :path, :type => :string, :require => true
-
-        #
-        # Generate a basic exploit.
-        #
-        # @since 0.3.0
-        #
-        def generate
-          template File.join('ronin','generators','exploits','exploit.erb'),
-                   self.path
-        end
-
-      end
-    end
-  end
-end

data/lib/ronin/generators/exploits/ftp.rb

@@ -1,42 +0,0 @@
-#
-# Ronin Exploits - A Ruby library for Ronin that provides exploitation and
-# payload crafting functionality.
-#
-# Copyright (c) 2007-2009 Hal Brodigan (postmodern.mod3 at gmail.com)
-#
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
-#
-
-require 'ronin/generators/exploits/remote_tcp'
-
-module Ronin
-  module Generators
-    module Exploits
-      class FTP < RemoteTCP
-
-        #
-        # Generate a FTP exploit.
-        #
-        # @since 0.3.0
-        #
-        def generate
-          template File.join('ronin','generators','exploits','ftp.erb'),
-                   self.path
-        end
-
-      end
-    end
-  end
-end

data/lib/ronin/generators/exploits/http.rb

@@ -1,42 +0,0 @@
-#
-# Ronin Exploits - A Ruby library for Ronin that provides exploitation and
-# payload crafting functionality.
-#
-# Copyright (c) 2007-2009 Hal Brodigan (postmodern.mod3 at gmail.com)
-#
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
-#
-
-require 'ronin/generators/exploits/remote_tcp'
-
-module Ronin
-  module Generators
-    module Exploits
-      class HTTP < RemoteTCP
-
-        #
-        # Generate a HTTP exploit.
-        #
-        # @since 0.3.0
-        #
-        def generate
-          template File.join('ronin','generators','exploits','http.erb'),
-                   self.path
-        end
-
-      end
-    end
-  end
-end

data/lib/ronin/generators/exploits/local.rb

@@ -1,42 +0,0 @@
-#
-# Ronin Exploits - A Ruby library for Ronin that provides exploitation and
-# payload crafting functionality.
-#
-# Copyright (c) 2007-2009 Hal Brodigan (postmodern.mod3 at gmail.com)
-#
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
-#
-
-require 'ronin/generators/exploits/exploit'
-
-module Ronin
-  module Generators
-    module Exploits
-      class Local < Exploit
-
-        #
-        # Generate a remote exploit.
-        #
-        # @since 0.3.0
-        #
-        def generate
-          template File.join('ronin','generators','exploits','local.erb'),
-                   self.path
-        end
-
-      end
-    end
-  end
-end

data/lib/ronin/generators/exploits/remote.rb

@@ -1,42 +0,0 @@
-#
-# Ronin Exploits - A Ruby library for Ronin that provides exploitation and
-# payload crafting functionality.
-#
-# Copyright (c) 2007-2009 Hal Brodigan (postmodern.mod3 at gmail.com)
-#
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2 of the License, or
-# (at your option) any later version.
-#
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-# GNU General Public License for more details.
-#
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
-#
-
-require 'ronin/generators/exploits/exploit'
-
-module Ronin
-  module Generators
-    module Exploits
-      class Remote < Exploit
-
-        #
-        # Generate a remote exploit.
-        #
-        # @since 0.3.0
-        #
-        def generate
-          template File.join('ronin','generators','exploits','remote.erb'),
-                   self.path
-        end
-
-      end
-    end
-  end
-end