ronin-vulns 0.1.4 → 0.2.0.rc1

data/man/ronin-vulns-completion.1.md

@@ -0,0 +1,78 @@
+# ronin-vulns-completion 1 "2024-01-01" Ronin Vulns "User Manuals"
+
+## NAME
+
+ronin-vulns-completion - Manages shell completion rules for `ronin-vulns`
+
+## SYNOPSIS
+
+`ronin-vulns completion` [*options*]
+
+## DESCRIPTION
+
+The `ronin-vulns completion` command can print, install, or uninstall shell
+completion rules for the `ronin-vulns` command.
+
+Supports installing completion rules for Bash or Zsh shells.
+Completion rules for the Fish shell is currently not supported.
+
+### ZSH SUPPORT
+
+Zsh users will have to add the following lines to their `~/.zshrc` file in
+order to enable Zsh's Bash completion compatibility layer:
+
+    autoload -Uz +X compinit && compinit
+    autoload -Uz +X bashcompinit && bashcompinit
+
+## OPTIONS
+
+`--print`
+: Prints the shell completion file.
+
+`--install`
+: Installs the shell completion file.
+
+`--uninstall`
+: Uninstalls the shell completion file.
+
+`-h`, `--help`
+: Prints help information.
+
+## ENVIRONMENT
+
+*PREFIX*
+: Specifies the root prefix for the file system.
+
+*HOME*
+: Specifies the home directory of the user. Ronin will search for the
+  `~/.cache/ronin-vulns` cache directory within the home directory.
+
+*XDG_DATA_HOME*
+: Specifies the data directory to use. Defaults to `$HOME/.local/share`.
+
+## FILES
+
+`~/.local/share/bash-completion/completions/`
+: The user-local installation directory for Bash completion files.
+
+`/usr/local/share/bash-completion/completions/`
+: The system-wide installation directory for Bash completions files.
+
+`/usr/local/share/zsh/site-functions/`
+: The installation directory for Zsh completion files.
+
+## EXAMPLES
+
+`ronin-vulns completion --print`
+: Prints the shell completion rules instead of installing them.
+
+`ronin-vulns completion --install`
+: Installs the shell completion rules for `ronin-vulns`.
+
+`ronin-vulns completion --uninstall`
+: Uninstalls the shell completion rules for `ronin-vulns`.
+
+## AUTHOR
+
+Postmodern <postmodern.mod3@gmail.com>
+

data/man/ronin-vulns-irb.1

@@ -0,0 +1,27 @@
+.\" Generated by kramdown-man 1.0.1
+.\" https://github.com/postmodern/kramdown-man#readme
+.TH ronin-vulns-irb 1 "2023-02-01" Ronin Vulns "User Manuals"
+.SH NAME
+.PP
+ronin\-vulns\-irb \- Starts an interactive Ruby shell with ronin\-vulns loaded
+.SH SYNOPSIS
+.PP
+\fBronin\-vulns irb\fR \[lB]\fIoptions\fP\[rB]
+.SH DESCRIPTION
+.PP
+Starts an interactive Ruby shell with \fBronin\[sl]vulns\fR loaded\.
+.SH OPTIONS
+.TP
+\fB\-h\fR, \fB\-\-help\fR
+Print help information
+.SH AUTHOR
+.PP
+Postmodern 
+.MT postmodern\.mod3\[at]gmail\.com
+.ME
+.SH SEE ALSO
+.PP
+.BR ronin\-vulns\-workers (1)
+.BR ronin\-vulns\-worker (1)
+.BR ronin\-vulns\-run (1)
+.BR ronin\-vulns\-test (1)

data/man/ronin-vulns-irb.1.md

@@ -0,0 +1,26 @@
+# ronin-vulns-irb 1 "2023-02-01" Ronin Vulns "User Manuals"
+
+## NAME
+
+ronin-vulns-irb - Starts an interactive Ruby shell with ronin-vulns loaded
+
+## SYNOPSIS
+
+`ronin-vulns irb` [*options*]
+
+## DESCRIPTION
+
+Starts an interactive Ruby shell with `ronin/vulns` loaded.
+
+## OPTIONS
+
+`-h`, `--help`
+: Print help information
+
+## AUTHOR
+
+Postmodern <postmodern.mod3@gmail.com>
+
+## SEE ALSO
+
+[ronin-vulns-workers](ronin-vulns-workers.1.md) [ronin-vulns-worker](ronin-vulns-worker.1.md) [ronin-vulns-run](ronin-vulns-run.1.md) [ronin-vulns-test](ronin-vulns-test.1.md)

data/man/ronin-vulns-lfi.1

@@ -1,107 +1,110 @@
-.\" Generated by kramdown-man 0.1.8
+.\" Generated by kramdown-man 1.0.1
 .\" https://github.com/postmodern/kramdown-man#readme
 .TH ronin-vulns-lfi 1 "May 2022" Ronin "User Manuals"
-.LP
+.SH NAME
+.PP
+ronin\-vulns\-lfi \- Scans URL(s) for Local File Inclusion (LFI) vulnerabilities
 .SH SYNOPSIS
-.LP
-.HP
-\fBronin-vulns lfi\fR \[lB]\fIoptions\fP\[rB] \[lC]\fIURL\fP \.\.\. \[or] \fB--input\fR \fIFILE\fP\[rC]
-.LP
+.PP
+\fBronin\-vulns lfi\fR \[lB]\fIoptions\fP\[rB] \[lC]\fIURL\fP \.\.\. \[or] \fB\-\-input\fR \fIFILE\fP\[rC]
 .SH DESCRIPTION
-.LP
 .PP
 Scans URL(s) for Local File Inclusion (LFI) vulnerabilities\. The URLs to scan
-can be given as additional arguments or read from a file using the \fB--input\fR
+can be given as additional arguments or read from a file using the \fB\-\-input\fR
 option\.
-.LP
 .SH ARGUMENTS
-.LP
 .TP
 \fIURL\fP
 A URL to scan\.
-.LP
 .SH OPTIONS
-.LP
 .TP
-\fB--first\fR
+\fB\-\-db\fR \fINAME\fP
+The database name to connect to\. Defaults to \fBdefault\fR if not given\.
+.TP
+\fB\-\-db\-uri\fR \fIURI\fP
+The database URI to connect to
+(ex: \fBpostgres:\[sl]\[sl]user:password\[at]host\[sl]db\fR)\.
+.TP
+\fB\-\-db\-file\fR \fIPATH\fP
+The sqlite3 database file to use\.
+.TP
+\fB\-\-import\fR
+Imports discovered vulnerabilities into the database\.
+.TP
+\fB\-\-first\fR
 Only find the first vulnerability for each URL\.
-.LP
 .TP
-\fB-A\fR, \fB--all\fR
+\fB\-A\fR, \fB\-\-all\fR
 Find all vulnerabilities for each URL\.
-.LP
 .TP
-\fB-H\fR, \fB--header\fR \[lq]\fIName\fP: \fIvalue\fP\[rq]
+\fB\-\-print\-curl\fR
+Also prints an example \fBcurl\fR command for each vulnerability\.
+.TP
+\fB\-\-print\-http\fR
+Also prints an example HTTP request for each vulnerability\.
+.TP
+\fB\-M\fR, \fB\-\-request\-method\fR \fBCOPY\fR\[or]\fBDELETE\fR\[or]\fBGET\fR\[or]\fBHEAD\fR\[or]\fBLOCK\fR\[or]\fBMKCOL\fR\[or]\fBMOVE\fR\[or]\fBOPTIONS\fR\[or]\fBPATCH\fR\[or]\fBPOST\fR\[or]\fBPROPFIND\fR\[or]\fBPROPPATCH\fR\[or]\fBPUT\fR\[or]\fBTRACE\fR\[or]\fBUNLOCK\fR
+Sets the HTTP request method to use\.
+.TP
+\fB\-H\fR, \fB\-\-header\fR \[lq]\fIName\fP: \fIvalue\fP\[rq]
 Sets an additional header using the given \fIName\fP and \fIvalue\fP\.
-.LP
 .TP
-\fB-C\fR, \fB--cookie\fR \fICOOKIE\fP
+\fB\-U\fR, \fB\-\-user\-agent\-string\fR \fISTRING\fP
+Sets the \fBUser\-Agent\fR header string\.
+.TP
+\fB\-u\fR, \fB\-\-user\-agent\fR \fBchrome\-linux\fR\[or]\fBchrome\-macos\fR\[or]\fBchrome\-windows\fR\[or]\fBchrome\-iphone\fR\[or]\fBchrome\-ipad\fR\[or]\fBchrome\-android\fR\[or]\fBfirefox\-linux\fR\[or]\fBfirefox\-macos\fR\[or]\fBfirefox\-windows\fR\[or]\fBfirefox\-iphone\fR\[or]\fBfirefox\-ipad\fR\[or]\fBfirefox\-android\fR\[or]\fBsafari\-macos\fR\[or]\fBsafari\-iphone\fR\[or]\fBsafari\-ipad\fR\[or]\fBedge\fR
+Sets the \fBUser\-Agent\fR header\.
+.TP
+\fB\-C\fR, \fB\-\-cookie\fR \fICOOKIE\fP
 Sets the raw \fBCookie\fR header\.
-.LP
 .TP
-\fB-c\fR, \fB--cookie-param\fR \fINAME\fP\fB=\fR\fIVALUE\fP
+\fB\-c\fR, \fB\-\-cookie\-param\fR \fINAME\fP\fB\[eq]\fR\fIVALUE\fP
 Sets an additional \fBCookie\fR param using the given \fINAME\fP and \fIVALUE\fP\.
-.LP
 .TP
-\fB-R\fR, \fB--referer\fR \fIURL\fP
+\fB\-R\fR, \fB\-\-referer\fR \fIURL\fP
 Sets the \fBReferer\fR header\.
-.LP
 .TP
-\fB-F\fR, \fB--form-param\fR \fINAME\fP\fB=\fR\fIVALUE\fP
+\fB\-F\fR, \fB\-\-form\-param\fR \fINAME\fP\fB\[eq]\fR\fIVALUE\fP
 Sets an additional form param using the given \fINAME\fP and \fIVALUE\fP\.
-.LP
 .TP
-\fB--test-query-param\fR \fINAME\fP
+\fB\-\-test\-query\-param\fR \fINAME\fP
 Tests the URL query param name\.
-.LP
 .TP
-\fB--test-all-query-params\fR
+\fB\-\-test\-all\-query\-params\fR
 Test all URL query param names\.
-.LP
 .TP
-\fB--test-header-name\fR \fINAME\fP
+\fB\-\-test\-header\-name\fR \fINAME\fP
 Tests the HTTP Header name\.
-.LP
 .TP
-\fB--test-cookie-param\fR \fINAME\fP
+\fB\-\-test\-cookie\-param\fR \fINAME\fP
 Tests the HTTP Cookie name\.
-.LP
 .TP
-\fB--test-all-cookie-params\fR
+\fB\-\-test\-all\-cookie\-params\fR
 Test all Cookie param names\.
-.LP
 .TP
-\fB--test-form-param\fR \fINAME\fP
+\fB\-\-test\-form\-param\fR \fINAME\fP
 Tests the form param name\.
-.LP
 .TP
-\fB-i\fR, \fB--input\fR \fIFILE\fP
+\fB\-i\fR, \fB\-\-input\fR \fIFILE\fP
 Reads URLs from the given \fIFILE\fP\.
-.LP
 .TP
-\fB-O\fR, \fB--os\fR \fBunix\fR\[or]\fBwindows\fR
+\fB\-O\fR, \fB\-\-os\fR \fBunix\fR\[or]\fBwindows\fR
 Sets the OS to test for\.
-.LP
 .TP
-\fB-D\fR, \fB--depth\fR \fICOUNT\fP
+\fB\-D\fR, \fB\-\-depth\fR \fICOUNT\fP
 Sets the directory depth to escape up\.
-.LP
 .TP
-\fB-B\fR, \fB--filter-bypass\fR \fBnull_byte\fR\[or]\fBdouble_escape\fR\[or]\fBbase64\fR\[or]\fBrot13\fR\[or]\fBzlib\fR
+\fB\-B\fR, \fB\-\-filter\-bypass\fR \fBnull\[ru]byte\fR\[or]\fBdouble\[ru]escape\fR\[or]\fBbase64\fR\[or]\fBrot13\fR\[or]\fBzlib\fR
 Sets the filter bypass strategy to use\.
-.LP
 .TP
-\fB-h\fR, \fB--help\fR
+\fB\-h\fR, \fB\-\-help\fR
 Print help information\.
-.LP
 .SH AUTHOR
-.LP
 .PP
 Postmodern 
 .MT postmodern\.mod3\[at]gmail\.com
 .ME
-.LP
 .SH SEE ALSO
-.LP
 .PP
-ronin\-vulns\-rfi(1) ronin\-vulns\-scan(1)
+.BR ronin\-vulns\-rfi (1)
+.BR ronin\-vulns\-scan (1)

data/man/ronin-vulns-lfi.1.md

@@ -1,5 +1,9 @@
 # ronin-vulns-lfi 1 "May 2022" Ronin "User Manuals"
 
+## NAME
+
+ronin-vulns-lfi - Scans URL(s) for Local File Inclusion (LFI) vulnerabilities
+
 ## SYNOPSIS
 
 `ronin-vulns lfi` [*options*] {*URL* ... \| `--input` *FILE*}
@@ -13,63 +17,91 @@ option.
 ## ARGUMENTS
 
 *URL*
-  A URL to scan.
+: A URL to scan.
 
 ## OPTIONS
 
+`--db` *NAME*
+: The database name to connect to. Defaults to `default` if not given.
+
+`--db-uri` *URI*
+: The database URI to connect to
+  (ex: `postgres://user:password@host/db`).
+
+`--db-file` *PATH*
+: The sqlite3 database file to use.
+
+`--import`
+: Imports discovered vulnerabilities into the database.
+
 `--first`
-  Only find the first vulnerability for each URL.
+: Only find the first vulnerability for each URL.
 
 `-A`, `--all`
-  Find all vulnerabilities for each URL.
+: Find all vulnerabilities for each URL.
+
+`--print-curl`
+: Also prints an example `curl` command for each vulnerability.
+
+`--print-http`
+: Also prints an example HTTP request for each vulnerability.
+
+`-M`, `--request-method` `COPY`|`DELETE`|`GET`|`HEAD`|`LOCK`|`MKCOL`|`MOVE`|`OPTIONS`|`PATCH`|`POST`|`PROPFIND`|`PROPPATCH`|`PUT`|`TRACE`|`UNLOCK`
+: Sets the HTTP request method to use.
 
 `-H`, `--header` "*Name*: *value*"
-  Sets an additional header using the given *Name* and *value*.
+: Sets an additional header using the given *Name* and *value*.
+
+`-U`, `--user-agent-string` *STRING*
+: Sets the `User-Agent` header string.
+
+`-u`, `--user-agent` `chrome-linux`\|`chrome-macos`\|`chrome-windows`\|`chrome-iphone`\|`chrome-ipad`\|`chrome-android`\|`firefox-linux`\|`firefox-macos`\|`firefox-windows`\|`firefox-iphone`\|`firefox-ipad`\|`firefox-android`\|`safari-macos`\|`safari-iphone`\|`safari-ipad`\|`edge`
+: Sets the `User-Agent` header.
 
 `-C`, `--cookie` *COOKIE*
-  Sets the raw `Cookie` header.
+: Sets the raw `Cookie` header.
 
 `-c`, `--cookie-param` *NAME*`=`*VALUE*
-  Sets an additional `Cookie` param using the given *NAME* and *VALUE*.
+: Sets an additional `Cookie` param using the given *NAME* and *VALUE*.
 
 `-R`, `--referer` *URL*
-  Sets the `Referer` header.
+: Sets the `Referer` header.
 
 `-F`, `--form-param` *NAME*`=`*VALUE*
-  Sets an additional form param using the given *NAME* and *VALUE*.
+: Sets an additional form param using the given *NAME* and *VALUE*.
 
 `--test-query-param` *NAME*
-  Tests the URL query param name.
+: Tests the URL query param name.
 
 `--test-all-query-params`
-  Test all URL query param names.
+: Test all URL query param names.
 
 `--test-header-name` *NAME*
-  Tests the HTTP Header name.
+: Tests the HTTP Header name.
 
 `--test-cookie-param` *NAME*
-  Tests the HTTP Cookie name.
+: Tests the HTTP Cookie name.
 
 `--test-all-cookie-params`
-  Test all Cookie param names.
+: Test all Cookie param names.
 
 `--test-form-param` *NAME*
-  Tests the form param name.
+: Tests the form param name.
 
 `-i`, `--input` *FILE*
-  Reads URLs from the given *FILE*.
+: Reads URLs from the given *FILE*.
 
 `-O`, `--os` `unix`|`windows`
-  Sets the OS to test for.
+: Sets the OS to test for.
 
 `-D`, `--depth` *COUNT*
-  Sets the directory depth to escape up.
+: Sets the directory depth to escape up.
 
 `-B`, `--filter-bypass` `null_byte`\|`double_escape`\|`base64`\|`rot13`\|`zlib`
-  Sets the filter bypass strategy to use.
+: Sets the filter bypass strategy to use.
 
 `-h`, `--help`
-  Print help information.
+: Print help information.
 
 ## AUTHOR
 
@@ -77,4 +109,4 @@ Postmodern <postmodern.mod3@gmail.com>
 
 ## SEE ALSO
 
-ronin-vulns-rfi(1) ronin-vulns-scan(1)
+[ronin-vulns-rfi](ronin-vulns-rfi.1.md) [ronin-vulns-scan](ronin-vulns-scan.1.md)

data/man/ronin-vulns-open-redirect.1

@@ -1,98 +1,102 @@
-.\" Generated by kramdown-man 0.1.8
+.\" Generated by kramdown-man 1.0.1
 .\" https://github.com/postmodern/kramdown-man#readme
 .TH ronin-vulns-open-redirect 1 "May 2022" Ronin "User Manuals"
-.LP
+.SH NAME
+.PP
+ronin\-vulns\-open\-redirect \- Scans URL(s) for Open Redirect vulnerabilities
 .SH SYNOPSIS
-.LP
-.HP
-\fBronin-vulns open-redirect\fR \[lB]\fIoptions\fP\[rB] \[lC]\fIURL\fP \.\.\. \[or] \fB--input\fR \fIFILE\fP\[rC]
-.LP
+.PP
+\fBronin\-vulns open\-redirect\fR \[lB]\fIoptions\fP\[rB] \[lC]\fIURL\fP \.\.\. \[or] \fB\-\-input\fR \fIFILE\fP\[rC]
 .SH DESCRIPTION
-.LP
 .PP
 Scans URL(s) for Open Redirect vulnerabilities\. The URLs to scan can be given
-as additional arguments or read from a file using the \fB--input\fR option\.
-.LP
+as additional arguments or read from a file using the \fB\-\-input\fR option\.
 .SH ARGUMENTS
-.LP
 .TP
 \fIURL\fP
 A URL to scan\.
-.LP
 .SH OPTIONS
-.LP
 .TP
-\fB--first\fR
+\fB\-\-db\fR \fINAME\fP
+The database name to connect to\. Defaults to \fBdefault\fR if not given\.
+.TP
+\fB\-\-db\-uri\fR \fIURI\fP
+The database URI to connect to
+(ex: \fBpostgres:\[sl]\[sl]user:password\[at]host\[sl]db\fR)\.
+.TP
+\fB\-\-db\-file\fR \fIPATH\fP
+The sqlite3 database file to use\.
+.TP
+\fB\-\-import\fR
+Imports discovered vulnerabilities into the database\.
+.TP
+\fB\-\-first\fR
 Only find the first vulnerability for each URL\.
-.LP
 .TP
-\fB-A\fR, \fB--all\fR
+\fB\-A\fR, \fB\-\-all\fR
 Find all vulnerabilities for each URL\.
-.LP
 .TP
-\fB-H\fR, \fB--header\fR \[lq]\fIName\fP: \fIvalue\fP\[rq]
+\fB\-\-print\-curl\fR
+Also prints an example \fBcurl\fR command for each vulnerability\.
+.TP
+\fB\-\-print\-http\fR
+Also prints an example HTTP request for each vulnerability\.
+.TP
+\fB\-M\fR, \fB\-\-request\-method\fR \fBCOPY\fR\[or]\fBDELETE\fR\[or]\fBGET\fR\[or]\fBHEAD\fR\[or]\fBLOCK\fR\[or]\fBMKCOL\fR\[or]\fBMOVE\fR\[or]\fBOPTIONS\fR\[or]\fBPATCH\fR\[or]\fBPOST\fR\[or]\fBPROPFIND\fR\[or]\fBPROPPATCH\fR\[or]\fBPUT\fR\[or]\fBTRACE\fR\[or]\fBUNLOCK\fR
+Sets the HTTP request method to use\.
+.TP
+\fB\-H\fR, \fB\-\-header\fR \[lq]\fIName\fP: \fIvalue\fP\[rq]
 Sets an additional header using the given \fIName\fP and \fIvalue\fP\.
-.LP
 .TP
-\fB-C\fR, \fB--cookie\fR \fICOOKIE\fP
+\fB\-U\fR, \fB\-\-user\-agent\-string\fR \fISTRING\fP
+Sets the \fBUser\-Agent\fR header string\.
+.TP
+\fB\-u\fR, \fB\-\-user\-agent\fR \fBchrome\-linux\fR\[or]\fBchrome\-macos\fR\[or]\fBchrome\-windows\fR\[or]\fBchrome\-iphone\fR\[or]\fBchrome\-ipad\fR\[or]\fBchrome\-android\fR\[or]\fBfirefox\-linux\fR\[or]\fBfirefox\-macos\fR\[or]\fBfirefox\-windows\fR\[or]\fBfirefox\-iphone\fR\[or]\fBfirefox\-ipad\fR\[or]\fBfirefox\-android\fR\[or]\fBsafari\-macos\fR\[or]\fBsafari\-iphone\fR\[or]\fBsafari\-ipad\fR\[or]\fBedge\fR
+Sets the \fBUser\-Agent\fR header\.
+.TP
+\fB\-C\fR, \fB\-\-cookie\fR \fICOOKIE\fP
 Sets the raw \fBCookie\fR header\.
-.LP
 .TP
-\fB-c\fR, \fB--cookie-param\fR \fINAME\fP\fB=\fR\fIVALUE\fP
+\fB\-c\fR, \fB\-\-cookie\-param\fR \fINAME\fP\fB\[eq]\fR\fIVALUE\fP
 Sets an additional \fBCookie\fR param using the given \fINAME\fP and \fIVALUE\fP\.
-.LP
 .TP
-\fB-R\fR, \fB--referer\fR \fIURL\fP
+\fB\-R\fR, \fB\-\-referer\fR \fIURL\fP
 Sets the \fBReferer\fR header\.
-.LP
 .TP
-\fB-F\fR, \fB--form-param\fR \fINAME\fP\fB=\fR\fIVALUE\fP
+\fB\-F\fR, \fB\-\-form\-param\fR \fINAME\fP\fB\[eq]\fR\fIVALUE\fP
 Sets an additional form param using the given \fINAME\fP and \fIVALUE\fP\.
-.LP
 .TP
-\fB--test-query-param\fR \fINAME\fP
+\fB\-\-test\-query\-param\fR \fINAME\fP
 Tests the URL query param name\.
-.LP
 .TP
-\fB--test-all-query-params\fR
+\fB\-\-test\-all\-query\-params\fR
 Test all URL query param names\.
-.LP
 .TP
-\fB--test-header-name\fR \fINAME\fP
+\fB\-\-test\-header\-name\fR \fINAME\fP
 Tests the HTTP Header name\.
-.LP
 .TP
-\fB--test-cookie-param\fR \fINAME\fP
+\fB\-\-test\-cookie\-param\fR \fINAME\fP
 Tests the HTTP Cookie name\.
-.LP
 .TP
-\fB--test-all-cookie-params\fR
+\fB\-\-test\-all\-cookie\-params\fR
 Test all Cookie param names\.
-.LP
 .TP
-\fB--test-form-param\fR \fINAME\fP
+\fB\-\-test\-form\-param\fR \fINAME\fP
 Tests the form param name\.
-.LP
 .TP
-\fB-i\fR, \fB--input\fR \fIFILE\fP
+\fB\-i\fR, \fB\-\-input\fR \fIFILE\fP
 Reads URLs from the given \fIFILE\fP\.
-.LP
 .TP
-\fB-T\fR, \fB--test-url\fR \fIURL\fP
+\fB\-T\fR, \fB\-\-test\-url\fR \fIURL\fP
 Optional test \fIURL\fP to try to redirect to\.
-.LP
 .TP
-\fB-h\fR, \fB--help\fR
+\fB\-h\fR, \fB\-\-help\fR
 Print help information\.
-.LP
 .SH AUTHOR
-.LP
 .PP
 Postmodern 
 .MT postmodern\.mod3\[at]gmail\.com
 .ME
-.LP
 .SH SEE ALSO
-.LP
 .PP
-ronin\-vulns\-scan(1)
+.BR ronin\-vulns\-scan (1)

data/man/ronin-vulns-open-redirect.1.md

@@ -1,5 +1,9 @@
 # ronin-vulns-open-redirect 1 "May 2022" Ronin "User Manuals"
 
+## NAME
+
+ronin-vulns-open-redirect - Scans URL(s) for Open Redirect vulnerabilities
+
 ## SYNOPSIS
 
 `ronin-vulns open-redirect` [*options*] {*URL* ... \| `--input` *FILE*}
@@ -12,57 +16,85 @@ as additional arguments or read from a file using the `--input` option.
 ## ARGUMENTS
 
 *URL*
-  A URL to scan.
+: A URL to scan.
 
 ## OPTIONS
 
+`--db` *NAME*
+: The database name to connect to. Defaults to `default` if not given.
+
+`--db-uri` *URI*
+: The database URI to connect to
+  (ex: `postgres://user:password@host/db`).
+
+`--db-file` *PATH*
+: The sqlite3 database file to use.
+
+`--import`
+: Imports discovered vulnerabilities into the database.
+
 `--first`
-  Only find the first vulnerability for each URL.
+: Only find the first vulnerability for each URL.
 
 `-A`, `--all`
-  Find all vulnerabilities for each URL.
+: Find all vulnerabilities for each URL.
+
+`--print-curl`
+: Also prints an example `curl` command for each vulnerability.
+
+`--print-http`
+: Also prints an example HTTP request for each vulnerability.
+
+`-M`, `--request-method` `COPY`|`DELETE`|`GET`|`HEAD`|`LOCK`|`MKCOL`|`MOVE`|`OPTIONS`|`PATCH`|`POST`|`PROPFIND`|`PROPPATCH`|`PUT`|`TRACE`|`UNLOCK`
+: Sets the HTTP request method to use.
 
 `-H`, `--header` "*Name*: *value*"
-  Sets an additional header using the given *Name* and *value*.
+: Sets an additional header using the given *Name* and *value*.
+
+`-U`, `--user-agent-string` *STRING*
+: Sets the `User-Agent` header string.
+
+`-u`, `--user-agent` `chrome-linux`\|`chrome-macos`\|`chrome-windows`\|`chrome-iphone`\|`chrome-ipad`\|`chrome-android`\|`firefox-linux`\|`firefox-macos`\|`firefox-windows`\|`firefox-iphone`\|`firefox-ipad`\|`firefox-android`\|`safari-macos`\|`safari-iphone`\|`safari-ipad`\|`edge`
+: Sets the `User-Agent` header.
 
 `-C`, `--cookie` *COOKIE*
-  Sets the raw `Cookie` header.
+: Sets the raw `Cookie` header.
 
 `-c`, `--cookie-param` *NAME*`=`*VALUE*
-  Sets an additional `Cookie` param using the given *NAME* and *VALUE*.
+: Sets an additional `Cookie` param using the given *NAME* and *VALUE*.
 
 `-R`, `--referer` *URL*
-  Sets the `Referer` header.
+: Sets the `Referer` header.
 
 `-F`, `--form-param` *NAME*`=`*VALUE*
-  Sets an additional form param using the given *NAME* and *VALUE*.
+: Sets an additional form param using the given *NAME* and *VALUE*.
 
 `--test-query-param` *NAME*
-  Tests the URL query param name.
+: Tests the URL query param name.
 
 `--test-all-query-params`
-  Test all URL query param names.
+: Test all URL query param names.
 
 `--test-header-name` *NAME*
-  Tests the HTTP Header name.
+: Tests the HTTP Header name.
 
 `--test-cookie-param` *NAME*
-  Tests the HTTP Cookie name.
+: Tests the HTTP Cookie name.
 
 `--test-all-cookie-params`
-  Test all Cookie param names.
+: Test all Cookie param names.
 
 `--test-form-param` *NAME*
-  Tests the form param name.
+: Tests the form param name.
 
 `-i`, `--input` *FILE*
-  Reads URLs from the given *FILE*.
+: Reads URLs from the given *FILE*.
 
 `-T`, `--test-url` *URL*
-  Optional test *URL* to try to redirect to.
+: Optional test *URL* to try to redirect to.
 
 `-h`, `--help`
-  Print help information.
+: Print help information.
 
 ## AUTHOR
 
@@ -70,4 +102,4 @@ Postmodern <postmodern.mod3@gmail.com>
 
 ## SEE ALSO
 
-ronin-vulns-scan(1)
+[ronin-vulns-scan](ronin-vulns-scan.1.md)