ronin-sql 0.1.0

data/lib/ronin/sql/extensions.rb

@@ -0,0 +1,24 @@
+#
+#--
+# Ronin SQL - A Ronin library providing support for SQL related security
+# tasks.
+#
+# Copyright (c) 2007-2008 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+#++
+#
+
+require 'ronin/sql/extensions/uri'

data/lib/ronin/sql/extensions/uri.rb

@@ -0,0 +1,24 @@
+#
+#--
+# Ronin SQL - A Ronin library providing support for SQL related security
+# tasks.
+#
+# Copyright (c) 2007-2008 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+#++
+#
+
+require 'ronin/sql/extensions/uri/http'

data/lib/ronin/sql/extensions/uri/http.rb

@@ -0,0 +1,69 @@
+#
+#--
+# Ronin SQL - A Ronin library providing support for SQL related security
+# tasks.
+#
+# Copyright (c) 2007-2008 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+#++
+#
+
+require 'ronin/sql/sql'
+require 'ronin/network/http'
+
+require 'uri'
+
+module URI
+  class HTTP < Generic
+
+    #
+    # Tests the +query_params+ of the HTTP URL with the given _options_ for
+    # SQL errors.
+    #
+    # _options_ may contain the following keys:
+    # <tt>:injection</tt>:: The SQL injection to use. Defaults to
+    #                       <tt>"'"</tt>.
+    # <tt>:types</tt>:: A list of error types to test for. If not specified
+    #                   all the error patterns in ERROR_PATTERNS will be
+    #                   tested.
+    #
+    def sql_errors(options={})
+      injection = (options[:injection] || "'")
+
+      return test_query_params(injection,options) do |injection_url|
+        body = Net.http_get_body(options.merge(:url => injection_url))
+
+        Ronin::SQL.error(body,options)
+      end
+    end
+
+    #
+    # Tests each +query_params+ of the HTTP URI with the given _options_ for
+    # SQL errors.
+    #
+    # _options_ may contain the following keys:
+    # <tt>:injection</tt>:: The SQL injection to use. Defaults to
+    #                       <tt>"'"</tt>.
+    # <tt>:types</tt>:: A list of error types to test for. If not specified
+    #                   all the error patterns in ERROR_PATTERNS will be
+    #                   tested.
+    #
+    def has_sql_errors?(options={})
+      !(sql_errors(options).empty?)
+    end
+
+  end
+end

data/lib/ronin/sql/sql.rb

@@ -0,0 +1,83 @@
+#
+#--
+# Ronin SQL - A Ronin library providing support for SQL related security
+# tasks.
+#
+# Copyright (c) 2007-2008 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+#++
+#
+
+require 'ronin/sql/error'
+require 'ronin/extensions/uri'
+
+module Ronin
+  module SQL
+
+    # SQL error patterns
+    ERROR_PATTERNS = {
+      # sourced from sqid (http://sqid.rubyforge.org/).
+      :ms_sql => /Microsoft OLE DB Provider for (SQL Server|ODBC Drivers.*\[Microsoft\]\[ODBC (SQL Server|Access) Driver\])/,
+      :ms_access => /\[Microsoft\]\[ODBC Microsoft Access Driver\] Syntax error/,
+      :ms_jetdb => /Microsoft JET Database Engine/,
+      :ms_adodb => /ADODB.Command.*error/,
+      :asp_net => /Server Error.*System\.Data\.OleDb\.OleDbException/,
+      :mysql => /(Warning.*(supplied argument is not a valid MySQL result|mysql_.*\(\))|You have an error in your SQL syntax.*(on|at) line)/,
+      :php => /(Warning.*failed to open stream|Fatal Error.*(on|at) line)/,
+      :oracle => /ORA-[0-9][0-9][0-9][0-9]/,
+      :jdbc => /Invalid SQL statement or JDBC/,
+      :java_servlet => /javax\.servlet\.ServletException/,
+      :apache_tomcat => /org\.apache\.jasper\.JasperException/,
+      :vb_runtime => /Microsoft VBScript runtime/,
+      :vb_asp => /Type mismatch/
+    }
+
+    #
+    # Tests whether the _body_ contains an SQL error message using the
+    # given _options_.
+    #
+    # _options_ may contain the following keys:
+    # <tt>:types</tt>:: A list of error types to test for. If not specified
+    #                   all the error patterns in ERROR_PATTERNS will be
+    #                   tested.
+    #
+    def SQL.error(body,options={})
+      patterns = (options[:types] || ERROR_PATTERNS.keys)
+
+      patterns.each do |type|
+        match = ERROR_PATTERNS[type].match(body)
+
+        return Error.new(type,match[0].strip_html) if match
+      end
+
+      return nil
+    end
+
+    #
+    # Returns +true+ if the specified _body_ using the given _options_
+    # contains an SQL error, returns +false+ otherwise.
+    #
+    # _options_ may contain the following keys:
+    # <tt>:types</tt>:: A list of error types to test for. If not specified
+    #                   all the error patterns in ERROR_PATTERNS will be
+    #                   tested.
+    #
+    def SQL.has_error?(body,options={})
+      !(SQL.error(body,options).nil?)
+    end
+
+  end
+end

data/lib/ronin/sql/version.rb

@@ -0,0 +1,29 @@
+#
+#--
+# Ronin SQL - A Ronin library providing support for SQL related security
+# tasks.
+#
+# Copyright (c) 2007-2008 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+#++
+#
+
+module Ronin
+  module SQL
+    # Ronin SQL version
+    VERSION = '0.1.0'
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,5 @@
+require 'rubygems'
+gem 'rspec', '>=1.1.3'
+require 'spec'
+
+include Ronin

data/tasks/spec.rb

@@ -0,0 +1,7 @@
+require 'spec/rake/spectask'
+
+desc "Run all specifications"
+Spec::Rake::SpecTask.new(:spec) do |t|
+  t.libs += ['lib', 'spec']
+  t.spec_opts = ['--colour', '--format', 'specdoc']
+end

metadata

@@ -0,0 +1,121 @@
+--- !ruby/object:Gem::Specification 
+name: ronin-sql
+version: !ruby/object:Gem::Version 
+  version: 0.1.0
+platform: ruby
+authors: 
+- Postmodern Modulus III
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2008-08-20 00:00:00 -07:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: ronin
+  type: :runtime
+  version_requirement: 
+  version_requirements: !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        version: 0.0.9
+    version: 
+- !ruby/object:Gem::Dependency 
+  name: hoe
+  type: :development
+  version_requirement: 
+  version_requirements: !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        version: 1.7.0
+    version: 
+description: Ronin SQL is a Ruby library for Ronin that provids support for SQL related security tasks.  Ronin is a Ruby platform designed for information security and data exploration tasks. Ronin allows for the rapid development and distribution of code over many of the common Source-Code-Management (SCM) systems.
+email: 
+- postmodern.mod3@gmail.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- History.txt
+- COPYING.txt
+- Manifest.txt
+- README.txt
+files: 
+- History.txt
+- COPYING.txt
+- Manifest.txt
+- README.txt
+- Rakefile
+- lib/ronin/code/sql.rb
+- lib/ronin/code/sql/between.rb
+- lib/ronin/code/sql/binary_expr.rb
+- lib/ronin/code/sql/builder.rb
+- lib/ronin/code/sql/code.rb
+- lib/ronin/code/sql/common_dialect.rb
+- lib/ronin/code/sql/create_index.rb
+- lib/ronin/code/sql/create_table.rb
+- lib/ronin/code/sql/create_view.rb
+- lib/ronin/code/sql/delete.rb
+- lib/ronin/code/sql/dialect.rb
+- lib/ronin/code/sql/drop_table.rb
+- lib/ronin/code/sql/exceptions.rb
+- lib/ronin/code/sql/exceptions/unknown_dialect.rb
+- lib/ronin/code/sql/expr.rb
+- lib/ronin/code/sql/field.rb
+- lib/ronin/code/sql/function.rb
+- lib/ronin/code/sql/in.rb
+- lib/ronin/code/sql/injection.rb
+- lib/ronin/code/sql/injection_builder.rb
+- lib/ronin/code/sql/injection_style.rb
+- lib/ronin/code/sql/insert.rb
+- lib/ronin/code/sql/keyword.rb
+- lib/ronin/code/sql/like_expr.rb
+- lib/ronin/code/sql/program.rb
+- lib/ronin/code/sql/replace.rb
+- lib/ronin/code/sql/select.rb
+- lib/ronin/code/sql/statement.rb
+- lib/ronin/code/sql/style.rb
+- lib/ronin/code/sql/unary_expr.rb
+- lib/ronin/code/sql/update.rb
+- lib/ronin/sql/extensions.rb
+- lib/ronin/sql/extensions/uri.rb
+- lib/ronin/sql/extensions/uri/http.rb
+- lib/ronin/sql/error.rb
+- lib/ronin/sql/sql.rb
+- lib/ronin/sql/version.rb
+- lib/ronin/sql.rb
+- tasks/spec.rb
+- spec/spec_helper.rb
+has_rdoc: true
+homepage: http://ronin.rubyforge.org/sql/
+post_install_message: 
+rdoc_options: 
+- --main
+- README.txt
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+  version: 
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+  version: 
+requirements: []
+
+rubyforge_project: ronin
+rubygems_version: 1.2.0
+signing_key: 
+specification_version: 2
+summary: Ronin SQL is a Ruby library for Ronin that provids support for SQL related security tasks
+test_files: []
+