ronin-exploits 1.0.6 → 1.1.0.rc2
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.gitignore +1 -0
- data/ChangeLog.md +18 -0
- data/Gemfile +6 -4
- data/README.md +32 -6
- data/Rakefile +10 -0
- data/data/completions/ronin-exploits +111 -0
- data/data/completions/ronin-exploits.yml +12 -0
- data/gemspec.yml +3 -1
- data/lib/ronin/exploits/advisory.rb +1 -1
- data/lib/ronin/exploits/cli/command.rb +1 -1
- data/lib/ronin/exploits/cli/commands/completion.rb +64 -0
- data/lib/ronin/exploits/cli/commands/irb.rb +1 -1
- data/lib/ronin/exploits/cli/commands/list.rb +1 -1
- data/lib/ronin/exploits/cli/commands/new.rb +14 -9
- data/lib/ronin/exploits/cli/commands/run.rb +33 -7
- data/lib/ronin/exploits/cli/commands/show.rb +44 -1
- data/lib/ronin/exploits/cli/exploit_command.rb +1 -1
- data/lib/ronin/exploits/cli/exploit_methods.rb +1 -1
- data/lib/ronin/exploits/cli/ruby_shell.rb +1 -1
- data/lib/ronin/exploits/cli.rb +3 -1
- data/lib/ronin/exploits/client_side_web_vuln.rb +1 -1
- data/lib/ronin/exploits/command_injection.rb +78 -0
- data/lib/ronin/exploits/exceptions.rb +1 -1
- data/lib/ronin/exploits/exploit.rb +4 -3
- data/lib/ronin/exploits/heap_overflow.rb +1 -1
- data/lib/ronin/exploits/lfi.rb +1 -1
- data/lib/ronin/exploits/loot/file.rb +1 -1
- data/lib/ronin/exploits/loot.rb +1 -1
- data/lib/ronin/exploits/memory_corruption.rb +1 -1
- data/lib/ronin/exploits/metadata/arch.rb +1 -1
- data/lib/ronin/exploits/metadata/cookie_param.rb +1 -1
- data/lib/ronin/exploits/metadata/default_filename.rb +1 -1
- data/lib/ronin/exploits/metadata/default_port.rb +1 -1
- data/lib/ronin/exploits/metadata/header_name.rb +1 -1
- data/lib/ronin/exploits/metadata/os.rb +1 -1
- data/lib/ronin/exploits/metadata/shouts.rb +1 -1
- data/lib/ronin/exploits/metadata/url_path.rb +1 -1
- data/lib/ronin/exploits/metadata/url_query_param.rb +1 -1
- data/lib/ronin/exploits/mixins/binary.rb +1 -1
- data/lib/ronin/exploits/mixins/build_dir.rb +1 -1
- data/lib/ronin/exploits/mixins/file_builder.rb +1 -1
- data/lib/ronin/exploits/mixins/format_string.rb +1 -1
- data/lib/ronin/exploits/mixins/has_payload.rb +1 -1
- data/lib/ronin/exploits/mixins/has_targets.rb +1 -1
- data/lib/ronin/exploits/mixins/html.rb +1 -1
- data/lib/ronin/exploits/mixins/http.rb +3 -3
- data/lib/ronin/exploits/mixins/loot.rb +1 -1
- data/lib/ronin/exploits/mixins/nops.rb +1 -1
- data/lib/ronin/exploits/mixins/remote_tcp.rb +1 -1
- data/lib/ronin/exploits/mixins/remote_udp.rb +1 -1
- data/lib/ronin/exploits/mixins/seh.rb +1 -1
- data/lib/ronin/exploits/mixins/stack_overflow.rb +1 -1
- data/lib/ronin/exploits/mixins/text.rb +1 -1
- data/lib/ronin/exploits/mixins.rb +1 -1
- data/lib/ronin/exploits/open_redirect.rb +1 -1
- data/lib/ronin/exploits/params/base_url.rb +1 -1
- data/lib/ronin/exploits/params/bind_host.rb +1 -1
- data/lib/ronin/exploits/params/bind_port.rb +1 -1
- data/lib/ronin/exploits/params/filename.rb +1 -1
- data/lib/ronin/exploits/params/host.rb +1 -1
- data/lib/ronin/exploits/params/port.rb +1 -1
- data/lib/ronin/exploits/registry.rb +1 -1
- data/lib/ronin/exploits/rfi.rb +1 -1
- data/lib/ronin/exploits/root.rb +1 -1
- data/lib/ronin/exploits/seh_overflow.rb +1 -1
- data/lib/ronin/exploits/sqli.rb +1 -1
- data/lib/ronin/exploits/ssti.rb +1 -1
- data/lib/ronin/exploits/stack_overflow.rb +1 -1
- data/lib/ronin/exploits/target.rb +1 -1
- data/lib/ronin/exploits/test_result.rb +1 -1
- data/lib/ronin/exploits/use_after_free.rb +1 -1
- data/lib/ronin/exploits/version.rb +2 -2
- data/lib/ronin/exploits/web.rb +1 -1
- data/lib/ronin/exploits/web_vuln.rb +1 -1
- data/lib/ronin/exploits/xss.rb +1 -1
- data/lib/ronin/exploits.rb +2 -1
- data/man/ronin-exploits-completion.1 +76 -0
- data/man/ronin-exploits-completion.1.md +78 -0
- data/man/ronin-exploits-irb.1 +10 -15
- data/man/ronin-exploits-irb.1.md +6 -2
- data/man/ronin-exploits-list.1 +8 -16
- data/man/ronin-exploits-list.1.md +7 -3
- data/man/ronin-exploits-new.1 +23 -46
- data/man/ronin-exploits-new.1.md +24 -20
- data/man/ronin-exploits-run.1 +32 -56
- data/man/ronin-exploits-run.1.md +30 -23
- data/man/ronin-exploits-show.1 +10 -20
- data/man/ronin-exploits-show.1.md +9 -5
- data/man/ronin-exploits.1 +11 -23
- data/man/ronin-exploits.1.md +11 -7
- data/scripts/setup +58 -0
- metadata +10 -3
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
data/lib/ronin/exploits/cli.rb
CHANGED
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -20,6 +20,7 @@
|
|
|
20
20
|
#
|
|
21
21
|
|
|
22
22
|
require 'ronin/exploits/version'
|
|
23
|
+
require 'ronin/core/cli/help/banner'
|
|
23
24
|
|
|
24
25
|
require 'command_kit/commands'
|
|
25
26
|
require 'command_kit/commands/auto_load'
|
|
@@ -40,6 +41,7 @@ module Ronin
|
|
|
40
41
|
namespace: "#{self}::Commands"
|
|
41
42
|
)
|
|
42
43
|
include CommandKit::Options::Version
|
|
44
|
+
include Core::CLI::Help::Banner
|
|
43
45
|
|
|
44
46
|
command_name 'ronin-exploits'
|
|
45
47
|
version Ronin::Exploits::VERSION
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -0,0 +1,78 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
#
|
|
3
|
+
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
|
+
# payload crafting functionality.
|
|
5
|
+
#
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
|
+
#
|
|
8
|
+
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
|
+
# it under the terms of the GNU Lesser General Public License as published
|
|
10
|
+
# by the Free Software Foundation, either version 3 of the License, or
|
|
11
|
+
# (at your option) any later version.
|
|
12
|
+
#
|
|
13
|
+
# ronin-exploits is distributed in the hope that it will be useful,
|
|
14
|
+
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
15
|
+
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
16
|
+
# GNU Lesser General Public License for more details.
|
|
17
|
+
#
|
|
18
|
+
# You should have received a copy of the GNU Lesser General Public License
|
|
19
|
+
# along with ronin-exploits. If not, see <https://www.gnu.org/licenses/>.
|
|
20
|
+
#
|
|
21
|
+
|
|
22
|
+
require 'ronin/exploits/exploit'
|
|
23
|
+
require 'ronin/exploits/mixins/has_payload'
|
|
24
|
+
require 'ronin/payloads/command_payload'
|
|
25
|
+
|
|
26
|
+
module Ronin
|
|
27
|
+
module Exploits
|
|
28
|
+
#
|
|
29
|
+
# Represents a command injection exploit.
|
|
30
|
+
#
|
|
31
|
+
# ## Example
|
|
32
|
+
#
|
|
33
|
+
# require 'ronin/exploits/command_injection'
|
|
34
|
+
# require 'ronin/exploits/mixins/http'
|
|
35
|
+
#
|
|
36
|
+
# module Ronin
|
|
37
|
+
# module Exploits
|
|
38
|
+
# class MyExploit < CommandInjection
|
|
39
|
+
#
|
|
40
|
+
# register 'my_exploit'
|
|
41
|
+
#
|
|
42
|
+
# include Mixins::HTTP
|
|
43
|
+
#
|
|
44
|
+
# def launch
|
|
45
|
+
# http_post '/form.php', post_data: {var: "';#{payload}#"}
|
|
46
|
+
# end
|
|
47
|
+
#
|
|
48
|
+
# end
|
|
49
|
+
# end
|
|
50
|
+
# end
|
|
51
|
+
#
|
|
52
|
+
# @api public
|
|
53
|
+
#
|
|
54
|
+
# @since 1.1.0
|
|
55
|
+
#
|
|
56
|
+
class CommandInjection < Exploit
|
|
57
|
+
|
|
58
|
+
include Mixins::HasPayload
|
|
59
|
+
|
|
60
|
+
payload_class Payloads::CommandPayload
|
|
61
|
+
|
|
62
|
+
#
|
|
63
|
+
# Returns the type or kind of exploit.
|
|
64
|
+
#
|
|
65
|
+
# @return [Symbol]
|
|
66
|
+
#
|
|
67
|
+
# @note
|
|
68
|
+
# This is used internally to map an exploit class to a printable type.
|
|
69
|
+
#
|
|
70
|
+
# @api private
|
|
71
|
+
#
|
|
72
|
+
def self.exploit_type
|
|
73
|
+
:command_injection
|
|
74
|
+
end
|
|
75
|
+
|
|
76
|
+
end
|
|
77
|
+
end
|
|
78
|
+
end
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -125,6 +125,7 @@ module Ronin
|
|
|
125
125
|
#
|
|
126
126
|
# Defines the quality level of the exploit. Accepted values are:
|
|
127
127
|
#
|
|
128
|
+
# * `:untested`
|
|
128
129
|
# * `:testing`
|
|
129
130
|
# * `:poc`
|
|
130
131
|
# * `:weaponized`
|
|
@@ -289,10 +290,10 @@ module Ronin
|
|
|
289
290
|
#
|
|
290
291
|
# Gets or sets the quality of the exploit.
|
|
291
292
|
#
|
|
292
|
-
# @param [:testing, :poc, :weaponized, nil] new_quality
|
|
293
|
+
# @param [:untested, :testing, :poc, :weaponized, nil] new_quality
|
|
293
294
|
# The optional new quality to set.
|
|
294
295
|
#
|
|
295
|
-
# @return [:testing, :poc, :weaponized, nil]
|
|
296
|
+
# @return [:untested, :testing, :poc, :weaponized, nil]
|
|
296
297
|
# The exploit's quality.
|
|
297
298
|
#
|
|
298
299
|
# @api public
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
data/lib/ronin/exploits/lfi.rb
CHANGED
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
data/lib/ronin/exploits/loot.rb
CHANGED
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -68,7 +68,7 @@ module Ronin
|
|
|
68
68
|
|
|
69
69
|
exploit.param :user_agent, Core::Params::Types::Enum.new(HTTP_USER_AGENT_ALIASES), desc: 'The HTTP User-Agent to select'
|
|
70
70
|
|
|
71
|
-
exploit.param :
|
|
71
|
+
exploit.param :user_agent_string, desc: 'The raw HTTP User-Agent string to use'
|
|
72
72
|
|
|
73
73
|
exploit.param :http_cookie, desc: 'The raw HTTP Cookie to use'
|
|
74
74
|
end
|
|
@@ -126,7 +126,7 @@ module Ronin
|
|
|
126
126
|
# @api private
|
|
127
127
|
#
|
|
128
128
|
def http_user_agent
|
|
129
|
-
params[:
|
|
129
|
+
params[:user_agent_string] || params[:user_agent]
|
|
130
130
|
end
|
|
131
131
|
|
|
132
132
|
#
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
data/lib/ronin/exploits/rfi.rb
CHANGED
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
data/lib/ronin/exploits/root.rb
CHANGED
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|
data/lib/ronin/exploits/sqli.rb
CHANGED
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# ronin-exploits - A Ruby library for ronin-rb that provides exploitation and
|
|
4
4
|
# payload crafting functionality.
|
|
5
5
|
#
|
|
6
|
-
# Copyright (c) 2007-
|
|
6
|
+
# Copyright (c) 2007-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
7
7
|
#
|
|
8
8
|
# ronin-exploits is free software: you can redistribute it and/or modify
|
|
9
9
|
# it under the terms of the GNU Lesser General Public License as published
|