ronin-vulns 0.1.5 → 0.2.0.rc1

data/man/ronin-vulns-scan.1

@@ -1,138 +1,137 @@
-.\" Generated by kramdown-man 0.1.9
+.\" Generated by kramdown-man 1.0.1
 .\" https://github.com/postmodern/kramdown-man#readme
 .TH ronin-vulns-scan 1 "May 2022" Ronin "User Manuals"
-.LP
+.SH NAME
+.PP
+ronin\-vulns\-scan \- Scans URL(s) for web vulnerabilities
 .SH SYNOPSIS
-.LP
 .PP
-\fBronin-vulns scan\fR \[lB]\fIoptions\fP\[rB] \[lC]\fIURL\fP \.\.\. \[or] \fB--input\fR \fIFILE\fP\[rC]
-.LP
+\fBronin\-vulns scan\fR \[lB]\fIoptions\fP\[rB] \[lC]\fIURL\fP \.\.\. \[or] \fB\-\-input\fR \fIFILE\fP\[rC]
 .SH DESCRIPTION
-.LP
 .PP
 Scans URL(s) for web vulnerabilities\. The URLs to scan can be given as
-additional arguments or read from a file using the \fB--input\fR option\.
-.LP
+additional arguments or read from a file using the \fB\-\-input\fR option\.
 .SH ARGUMENTS
-.LP
 .TP
 \fIURL\fP
 A URL to scan\.
-.LP
 .SH OPTIONS
-.LP
 .TP
-\fB--first\fR
+\fB\-\-db\fR \fINAME\fP
+The database name to connect to\. Defaults to \fBdefault\fR if not given\.
+.TP
+\fB\-\-db\-uri\fR \fIURI\fP
+The database URI to connect to
+(ex: \fBpostgres:\[sl]\[sl]user:password\[at]host\[sl]db\fR)\.
+.TP
+\fB\-\-db\-file\fR \fIPATH\fP
+The sqlite3 database file to use\.
+.TP
+\fB\-\-import\fR
+Imports discovered vulnerabilities into the database\.
+.TP
+\fB\-\-first\fR
 Only find the first vulnerability for each URL\.
-.LP
 .TP
-\fB-A\fR, \fB--all\fR
+\fB\-A\fR, \fB\-\-all\fR
 Find all vulnerabilities for each URL\.
-.LP
 .TP
-\fB-H\fR, \fB--header\fR \[lq]\fIName\fP: \fIvalue\fP\[rq]
+\fB\-\-print\-curl\fR
+Also prints an example \fBcurl\fR command for each vulnerability\.
+.TP
+\fB\-\-print\-http\fR
+Also prints an example HTTP request for each vulnerability\.
+.TP
+\fB\-M\fR, \fB\-\-request\-method\fR \fBCOPY\fR\[or]\fBDELETE\fR\[or]\fBGET\fR\[or]\fBHEAD\fR\[or]\fBLOCK\fR\[or]\fBMKCOL\fR\[or]\fBMOVE\fR\[or]\fBOPTIONS\fR\[or]\fBPATCH\fR\[or]\fBPOST\fR\[or]\fBPROPFIND\fR\[or]\fBPROPPATCH\fR\[or]\fBPUT\fR\[or]\fBTRACE\fR\[or]\fBUNLOCK\fR
+Sets the HTTP request method to use\.
+.TP
+\fB\-H\fR, \fB\-\-header\fR \[lq]\fIName\fP: \fIvalue\fP\[rq]
 Sets an additional header using the given \fIName\fP and \fIvalue\fP\.
-.LP
 .TP
-\fB-C\fR, \fB--cookie\fR \fICOOKIE\fP
+\fB\-U\fR, \fB\-\-user\-agent\-string\fR \fISTRING\fP
+Sets the \fBUser\-Agent\fR header string\.
+.TP
+\fB\-u\fR, \fB\-\-user\-agent\fR \fBchrome\-linux\fR\[or]\fBchrome\-macos\fR\[or]\fBchrome\-windows\fR\[or]\fBchrome\-iphone\fR\[or]\fBchrome\-ipad\fR\[or]\fBchrome\-android\fR\[or]\fBfirefox\-linux\fR\[or]\fBfirefox\-macos\fR\[or]\fBfirefox\-windows\fR\[or]\fBfirefox\-iphone\fR\[or]\fBfirefox\-ipad\fR\[or]\fBfirefox\-android\fR\[or]\fBsafari\-macos\fR\[or]\fBsafari\-iphone\fR\[or]\fBsafari\-ipad\fR\[or]\fBedge\fR
+Sets the \fBUser\-Agent\fR header\.
+.TP
+\fB\-C\fR, \fB\-\-cookie\fR \fICOOKIE\fP
 Sets the raw \fBCookie\fR header\.
-.LP
 .TP
-\fB-c\fR, \fB--cookie-param\fR \fINAME\fP\fB=\fR\fIVALUE\fP
+\fB\-c\fR, \fB\-\-cookie\-param\fR \fINAME\fP\fB\[eq]\fR\fIVALUE\fP
 Sets an additional \fBCookie\fR param using the given \fINAME\fP and \fIVALUE\fP\.
-.LP
 .TP
-\fB-R\fR, \fB--referer\fR \fIURL\fP
+\fB\-R\fR, \fB\-\-referer\fR \fIURL\fP
 Sets the \fBReferer\fR header\.
-.LP
 .TP
-\fB-F\fR, \fB--form-param\fR \fINAME\fP\fB=\fR\fIVALUE\fP
+\fB\-F\fR, \fB\-\-form\-param\fR \fINAME\fP\fB\[eq]\fR\fIVALUE\fP
 Sets an additional form param using the given \fINAME\fP and \fIVALUE\fP\.
-.LP
 .TP
-\fB--test-query-param\fR \fINAME\fP
+\fB\-\-test\-query\-param\fR \fINAME\fP
 Tests the URL query param name\.
-.LP
 .TP
-\fB--test-all-query-params\fR
+\fB\-\-test\-all\-query\-params\fR
 Test all URL query param names\.
-.LP
 .TP
-\fB--test-header-name\fR \fINAME\fP
+\fB\-\-test\-header\-name\fR \fINAME\fP
 Tests the HTTP Header name\.
-.LP
 .TP
-\fB--test-cookie-param\fR \fINAME\fP
+\fB\-\-test\-cookie\-param\fR \fINAME\fP
 Tests the HTTP Cookie name\.
-.LP
 .TP
-\fB--test-all-cookie-params\fR
+\fB\-\-test\-all\-cookie\-params\fR
 Test all Cookie param names\.
-.LP
 .TP
-\fB--test-form-param\fR \fINAME\fP
+\fB\-\-test\-form\-param\fR \fINAME\fP
 Tests the form param name\.
-.LP
 .TP
-\fB-i\fR, \fB--input\fR \fIFILE\fP
+\fB\-i\fR, \fB\-\-input\fR \fIFILE\fP
 Reads URLs from the given \fIFILE\fP\.
-.LP
 .TP
-\fB--lfi-os\fR \fBunix\fR\[or]\fBwindows\fR
+\fB\-\-lfi\-os\fR \fBunix\fR\[or]\fBwindows\fR
 Sets the OS to test for\.
-.LP
 .TP
-\fB--lfi-depth\fR \fINUM\fP
+\fB\-\-lfi\-depth\fR \fINUM\fP
 Sets the directory depth to escape up\.
-.LP
 .TP
-\fB--lfi-filter-bypass\fR \fBnull_byte\fR\[or]\fBdouble_escape\fR\[or]\fBbase64\fR\[or]\fBrot13\fR\[or]\fBzlib\fR
+\fB\-\-lfi\-filter\-bypass\fR \fBnull\-byte\fR\[or]\fBdouble\-escape\fR\[or]\fBbase64\fR\[or]\fBrot13\fR\[or]\fBzlib\fR
 Sets the filter bypass strategy to use\.
-.LP
 .TP
-\fB--rfi-filter-bypass\fR \fBdouble-encode\fR\[or]\fBsuffix-escape\fR\[or]\fBnull-byte\fR
+\fB\-\-rfi\-filter\-bypass\fR \fBdouble\-encode\fR\[or]\fBsuffix\-escape\fR\[or]\fBnull\-byte\fR
 Optional filter\-bypass strategy to use\.
-.LP
 .TP
-\fB--rfi-script-lang\fR \fBasp\fR\[or]\fBasp.net\fR\[or]\fBcoldfusion\fR\[or]\fBjsp\fR\[or]\fBphp\fR\[or]\fBperl\fR
+\fB\-\-rfi\-script\-lang\fR \fBasp\fR\[or]\fBasp\.net\fR\[or]\fBcoldfusion\fR\[or]\fBjsp\fR\[or]\fBphp\fR\[or]\fBperl\fR
 Explicitly specify the scripting language to test for\.
-.LP
 .TP
-\fB--rfi-test-script-url\fR \fIURL\fP
+\fB\-\-rfi\-test\-script\-url\fR \fIURL\fP
 Use an alternative test script URL\.
-.LP
 .TP
-\fB--sqli-escape-quote\fR
+\fB\-\-sqli\-escape\-quote\fR
 Escapes quotation marks\.
-.LP
 .TP
-\fB--sqli-escape-parens\fR
+\fB\-\-sqli\-escape\-parens\fR
 Escapes parenthesis\.
-.LP
 .TP
-\fB--sqli-terminate\fR
-Terminates the SQL expression with a \fB--\fR\.
-.LP
-.PP
-\fB--ssti-test-expr\fR \[lC]\fIX\fP*\fIY\fP \[or] \fIX\fP\[sl]\fIZ\fP \[or] \fIX\fP\[pl]\fIY\fP \[or] \fIX\fP\-\fIY\fP\[rC]
+\fB\-\-sqli\-terminate\fR
+Terminates the SQL expression with a \fB\-\-\fR\.
+.TP
+\fB\-\-ssti\-test\-expr\fR \[lC]\fIX\fP*\fIY\fP \[or] \fIX\fP\[sl]\fIZ\fP \[or] \fIX\fP\[pl]\fIY\fP \[or] \fIX\fP\-\fIY\fP\[rC]
 Optional numeric test to use\.
-.LP
 .TP
-\fB--open-redirect-url\fR \fIURL\fP
+\fB\-\-open\-redirect\-url\fR \fIURL\fP
 Optional test URL to try to redirect to\.
-.LP
 .TP
-\fB-h\fR, \fB--help\fR
+\fB\-h\fR, \fB\-\-help\fR
 Print help information\.
-.LP
 .SH AUTHOR
-.LP
 .PP
 Postmodern 
 .MT postmodern\.mod3\[at]gmail\.com
 .ME
-.LP
 .SH SEE ALSO
-.LP
 .PP
-ronin\-vulns\-lfi(1) ronin\-vulns\-rfi(1) ronin\-vulns\-sqli(1) ronin\-vulns\-ssti(1) ronin\-vulns\-open\-redirect(1) ronin\-vulns\-reflected\-xss(1)
+.BR ronin\-vulns\-lfi (1)
+.BR ronin\-vulns\-rfi (1)
+.BR ronin\-vulns\-sqli (1)
+.BR ronin\-vulns\-ssti (1)
+.BR ronin\-vulns\-open\-redirect (1)
+.BR ronin\-vulns\-reflected\-xss (1)

data/man/ronin-vulns-scan.1.md

@@ -1,5 +1,9 @@
 # ronin-vulns-scan 1 "May 2022" Ronin "User Manuals"
 
+## NAME
+
+ronin-vulns-scan - Scans URL(s) for web vulnerabilities
+
 ## SYNOPSIS
 
 `ronin-vulns scan` [*options*] {*URL* ... \| `--input` *FILE*}
@@ -12,87 +16,115 @@ additional arguments or read from a file using the `--input` option.
 ## ARGUMENTS
 
 *URL*
-  A URL to scan.
+: A URL to scan.
 
 ## OPTIONS
 
+`--db` *NAME*
+: The database name to connect to. Defaults to `default` if not given.
+
+`--db-uri` *URI*
+: The database URI to connect to
+  (ex: `postgres://user:password@host/db`).
+
+`--db-file` *PATH*
+: The sqlite3 database file to use.
+
+`--import`
+: Imports discovered vulnerabilities into the database.
+
 `--first`
-  Only find the first vulnerability for each URL.
+: Only find the first vulnerability for each URL.
 
 `-A`, `--all`
-  Find all vulnerabilities for each URL.
+: Find all vulnerabilities for each URL.
+
+`--print-curl`
+: Also prints an example `curl` command for each vulnerability.
+
+`--print-http`
+: Also prints an example HTTP request for each vulnerability.
+
+`-M`, `--request-method` `COPY`|`DELETE`|`GET`|`HEAD`|`LOCK`|`MKCOL`|`MOVE`|`OPTIONS`|`PATCH`|`POST`|`PROPFIND`|`PROPPATCH`|`PUT`|`TRACE`|`UNLOCK`
+: Sets the HTTP request method to use.
 
 `-H`, `--header` "*Name*: *value*"
-  Sets an additional header using the given *Name* and *value*.
+: Sets an additional header using the given *Name* and *value*.
+
+`-U`, `--user-agent-string` *STRING*
+: Sets the `User-Agent` header string.
+
+`-u`, `--user-agent` `chrome-linux`\|`chrome-macos`\|`chrome-windows`\|`chrome-iphone`\|`chrome-ipad`\|`chrome-android`\|`firefox-linux`\|`firefox-macos`\|`firefox-windows`\|`firefox-iphone`\|`firefox-ipad`\|`firefox-android`\|`safari-macos`\|`safari-iphone`\|`safari-ipad`\|`edge`
+: Sets the `User-Agent` header.
 
 `-C`, `--cookie` *COOKIE*
-  Sets the raw `Cookie` header.
+: Sets the raw `Cookie` header.
 
 `-c`, `--cookie-param` *NAME*`=`*VALUE*
-  Sets an additional `Cookie` param using the given *NAME* and *VALUE*.
+: Sets an additional `Cookie` param using the given *NAME* and *VALUE*.
 
 `-R`, `--referer` *URL*
-  Sets the `Referer` header.
+: Sets the `Referer` header.
 
 `-F`, `--form-param` *NAME*`=`*VALUE*
-  Sets an additional form param using the given *NAME* and *VALUE*.
+: Sets an additional form param using the given *NAME* and *VALUE*.
 
 `--test-query-param` *NAME*
-  Tests the URL query param name.
+: Tests the URL query param name.
 
 `--test-all-query-params`
-  Test all URL query param names.
+: Test all URL query param names.
 
 `--test-header-name` *NAME*
-  Tests the HTTP Header name.
+: Tests the HTTP Header name.
 
 `--test-cookie-param` *NAME*
-  Tests the HTTP Cookie name.
+: Tests the HTTP Cookie name.
 
 `--test-all-cookie-params`
-  Test all Cookie param names.
+: Test all Cookie param names.
 
 `--test-form-param` *NAME*
-  Tests the form param name.
+: Tests the form param name.
 
 `-i`, `--input` *FILE*
-  Reads URLs from the given *FILE*.
+: Reads URLs from the given *FILE*.
 
 `--lfi-os` `unix`\|`windows`
-  Sets the OS to test for.
+: Sets the OS to test for.
 
 `--lfi-depth` *NUM*
-  Sets the directory depth to escape up.
+: Sets the directory depth to escape up.
 
-`--lfi-filter-bypass` `null_byte`\|`double_escape`\|`base64`\|`rot13`\|`zlib`
-  Sets the filter bypass strategy to use.
+`--lfi-filter-bypass` `null-byte`\|`double-escape`\|`base64`\|`rot13`\|`zlib`
+: Sets the filter bypass strategy to use.
 
 `--rfi-filter-bypass` `double-encode`\|`suffix-escape`\|`null-byte`
-  Optional filter-bypass strategy to use.
+: Optional filter-bypass strategy to use.
 
 `--rfi-script-lang` `asp`\|`asp.net`\|`coldfusion`\|`jsp`\|`php`\|`perl`
-  Explicitly specify the scripting language to test for.
+: Explicitly specify the scripting language to test for.
 
 `--rfi-test-script-url` *URL*
-  Use an alternative test script URL.
+: Use an alternative test script URL.
 
 `--sqli-escape-quote`
-  Escapes quotation marks.
+: Escapes quotation marks.
 
 `--sqli-escape-parens`
-  Escapes parenthesis.
+: Escapes parenthesis.
 
 `--sqli-terminate`
-  Terminates the SQL expression with a `--`.
+: Terminates the SQL expression with a `--`.
 
 `--ssti-test-expr` {*X*\**Y* \| *X*/*Z* \| *X*+*Y* \| *X*-*Y*}
-  Optional numeric test to use.
+: Optional numeric test to use.
 
 `--open-redirect-url` *URL*
-  Optional test URL to try to redirect to.
+: Optional test URL to try to redirect to.
 
 `-h`, `--help`
-  Print help information.
+: Print help information.
 
 ## AUTHOR
 
@@ -100,4 +132,4 @@ Postmodern <postmodern.mod3@gmail.com>
 
 ## SEE ALSO
 
-ronin-vulns-lfi(1) ronin-vulns-rfi(1) ronin-vulns-sqli(1) ronin-vulns-ssti(1) ronin-vulns-open-redirect(1) ronin-vulns-reflected-xss(1)
+[ronin-vulns-lfi](ronin-vulns-lfi.1.md) [ronin-vulns-rfi](ronin-vulns-rfi.1.md) [ronin-vulns-sqli](ronin-vulns-sqli.1.md) [ronin-vulns-ssti](ronin-vulns-ssti.1.md) [ronin-vulns-open-redirect](ronin-vulns-open-redirect.1.md) [ronin-vulns-reflected-xss](ronin-vulns-reflected-xss.1.md)

data/man/ronin-vulns-sqli.1

@@ -1,107 +1,109 @@
-.\" Generated by kramdown-man 0.1.9
+.\" Generated by kramdown-man 1.0.1
 .\" https://github.com/postmodern/kramdown-man#readme
 .TH ronin-vulns-sqli 1 "May 2022" Ronin "User Manuals"
-.LP
+.SH NAME
+.PP
+ronin\-vulns\-sqli \- Scans URL(s) for SQL injection (SQLi) vulnerabilities
 .SH SYNOPSIS
-.LP
 .PP
-\fBronin-vulns sqli\fR \[lB]\fIoptions\fP\[rB] \[lC]\fIURL\fP \.\.\. \[or] \fB--input\fR \fIFILE\fP\[rC]
-.LP
+\fBronin\-vulns sqli\fR \[lB]\fIoptions\fP\[rB] \[lC]\fIURL\fP \.\.\. \[or] \fB\-\-input\fR \fIFILE\fP\[rC]
 .SH DESCRIPTION
-.LP
 .PP
 Scans URL(s) for SQL injection (SQLi) vulnerabilities\. The URLs to scan
-can be given as additional arguments or read from a file using the \fB--input\fR
+can be given as additional arguments or read from a file using the \fB\-\-input\fR
 option\.
-.LP
 .SH ARGUMENTS
-.LP
 .TP
 \fIURL\fP
 A URL to scan\.
-.LP
 .SH OPTIONS
-.LP
 .TP
-\fB--first\fR
+\fB\-\-db\fR \fINAME\fP
+The database name to connect to\. Defaults to \fBdefault\fR if not given\.
+.TP
+\fB\-\-db\-uri\fR \fIURI\fP
+The database URI to connect to
+(ex: \fBpostgres:\[sl]\[sl]user:password\[at]host\[sl]db\fR)\.
+.TP
+\fB\-\-db\-file\fR \fIPATH\fP
+The sqlite3 database file to use\.
+.TP
+\fB\-\-import\fR
+Imports discovered vulnerabilities into the database\.
+.TP
+\fB\-\-first\fR
 Only find the first vulnerability for each URL\.
-.LP
 .TP
-\fB-A\fR, \fB--all\fR
+\fB\-A\fR, \fB\-\-all\fR
 Find all vulnerabilities for each URL\.
-.LP
 .TP
-\fB-H\fR, \fB--header\fR \[lq]\fIName\fP: \fIvalue\fP\[rq]
+\fB\-\-print\-curl\fR
+Also prints an example \fBcurl\fR command for each vulnerability\.
+.TP
+\fB\-\-print\-http\fR
+Also prints an example HTTP request for each vulnerability\.
+.TP
+\fB\-M\fR, \fB\-\-request\-method\fR \fBCOPY\fR\[or]\fBDELETE\fR\[or]\fBGET\fR\[or]\fBHEAD\fR\[or]\fBLOCK\fR\[or]\fBMKCOL\fR\[or]\fBMOVE\fR\[or]\fBOPTIONS\fR\[or]\fBPATCH\fR\[or]\fBPOST\fR\[or]\fBPROPFIND\fR\[or]\fBPROPPATCH\fR\[or]\fBPUT\fR\[or]\fBTRACE\fR\[or]\fBUNLOCK\fR
+Sets the HTTP request method to use\.
+.TP
+\fB\-H\fR, \fB\-\-header\fR \[lq]\fIName\fP: \fIvalue\fP\[rq]
 Sets an additional header using the given \fIName\fP and \fIvalue\fP\.
-.LP
 .TP
-\fB-C\fR, \fB--cookie\fR \fICOOKIE\fP
+\fB\-U\fR, \fB\-\-user\-agent\-string\fR \fISTRING\fP
+Sets the \fBUser\-Agent\fR header string\.
+.TP
+\fB\-u\fR, \fB\-\-user\-agent\fR \fBchrome\-linux\fR\[or]\fBchrome\-macos\fR\[or]\fBchrome\-windows\fR\[or]\fBchrome\-iphone\fR\[or]\fBchrome\-ipad\fR\[or]\fBchrome\-android\fR\[or]\fBfirefox\-linux\fR\[or]\fBfirefox\-macos\fR\[or]\fBfirefox\-windows\fR\[or]\fBfirefox\-iphone\fR\[or]\fBfirefox\-ipad\fR\[or]\fBfirefox\-android\fR\[or]\fBsafari\-macos\fR\[or]\fBsafari\-iphone\fR\[or]\fBsafari\-ipad\fR\[or]\fBedge\fR
+Sets the \fBUser\-Agent\fR header\.
+.TP
+\fB\-C\fR, \fB\-\-cookie\fR \fICOOKIE\fP
 Sets the raw \fBCookie\fR header\.
-.LP
 .TP
-\fB-c\fR, \fB--cookie-param\fR \fINAME\fP\fB=\fR\fIVALUE\fP
+\fB\-c\fR, \fB\-\-cookie\-param\fR \fINAME\fP\fB\[eq]\fR\fIVALUE\fP
 Sets an additional \fBCookie\fR param using the given \fINAME\fP and \fIVALUE\fP\.
-.LP
 .TP
-\fB-R\fR, \fB--referer\fR \fIURL\fP
+\fB\-R\fR, \fB\-\-referer\fR \fIURL\fP
 Sets the \fBReferer\fR header\.
-.LP
 .TP
-\fB-F\fR, \fB--form-param\fR \fINAME\fP\fB=\fR\fIVALUE\fP
+\fB\-F\fR, \fB\-\-form\-param\fR \fINAME\fP\fB\[eq]\fR\fIVALUE\fP
 Sets an additional form param using the given \fINAME\fP and \fIVALUE\fP\.
-.LP
 .TP
-\fB--test-query-param\fR \fINAME\fP
+\fB\-\-test\-query\-param\fR \fINAME\fP
 Tests the URL query param name\.
-.LP
 .TP
-\fB--test-all-query-params\fR
+\fB\-\-test\-all\-query\-params\fR
 Test all URL query param names\.
-.LP
 .TP
-\fB--test-header-name\fR \fINAME\fP
+\fB\-\-test\-header\-name\fR \fINAME\fP
 Tests the HTTP Header name\.
-.LP
 .TP
-\fB--test-cookie-param\fR \fINAME\fP
+\fB\-\-test\-cookie\-param\fR \fINAME\fP
 Tests the HTTP Cookie name\.
-.LP
 .TP
-\fB--test-all-cookie-params\fR
+\fB\-\-test\-all\-cookie\-params\fR
 Test all Cookie param names\.
-.LP
 .TP
-\fB--test-form-param\fR \fINAME\fP
+\fB\-\-test\-form\-param\fR \fINAME\fP
 Tests the form param name\.
-.LP
 .TP
-\fB-i\fR, \fB--input\fR \fIFILE\fP
+\fB\-i\fR, \fB\-\-input\fR \fIFILE\fP
 Reads URLs from the given \fIFILE\fP\.
-.LP
 .TP
-\fB-Q\fR, \fB--escape-quote\fR
+\fB\-Q\fR, \fB\-\-escape\-quote\fR
 Escapes quotation marks\.
-.LP
 .TP
-\fB-P\fR, \fB--escape-parens\fR
+\fB\-P\fR, \fB\-\-escape\-parens\fR
 Escapes parenthesis\.
-.LP
 .TP
-\fB-T\fR, \fB--terminate\fR
-Terminates the SQL expression with a \fB--\fR\.
-.LP
+\fB\-T\fR, \fB\-\-terminate\fR
+Terminates the SQL expression with a \fB\-\-\fR\.
 .TP
-\fB-h\fR, \fB--help\fR
+\fB\-h\fR, \fB\-\-help\fR
 Print help information\.
-.LP
 .SH AUTHOR
-.LP
 .PP
 Postmodern 
 .MT postmodern\.mod3\[at]gmail\.com
 .ME
-.LP
 .SH SEE ALSO
-.LP
 .PP
-ronin\-vulns\-scan(1)
+.BR ronin\-vulns\-scan (1)

data/man/ronin-vulns-sqli.1.md

@@ -1,5 +1,9 @@
 # ronin-vulns-sqli 1 "May 2022" Ronin "User Manuals"
 
+## NAME
+
+ronin-vulns-sqli - Scans URL(s) for SQL injection (SQLi) vulnerabilities
+
 ## SYNOPSIS
 
 `ronin-vulns sqli` [*options*] {*URL* ... \| `--input` *FILE*}
@@ -13,63 +17,91 @@ option.
 ## ARGUMENTS
 
 *URL*
-  A URL to scan.
+: A URL to scan.
 
 ## OPTIONS
 
+`--db` *NAME*
+: The database name to connect to. Defaults to `default` if not given.
+
+`--db-uri` *URI*
+: The database URI to connect to
+  (ex: `postgres://user:password@host/db`).
+
+`--db-file` *PATH*
+: The sqlite3 database file to use.
+
+`--import`
+: Imports discovered vulnerabilities into the database.
+
 `--first`
-  Only find the first vulnerability for each URL.
+: Only find the first vulnerability for each URL.
 
 `-A`, `--all`
-  Find all vulnerabilities for each URL.
+: Find all vulnerabilities for each URL.
+
+`--print-curl`
+: Also prints an example `curl` command for each vulnerability.
+
+`--print-http`
+: Also prints an example HTTP request for each vulnerability.
+
+`-M`, `--request-method` `COPY`|`DELETE`|`GET`|`HEAD`|`LOCK`|`MKCOL`|`MOVE`|`OPTIONS`|`PATCH`|`POST`|`PROPFIND`|`PROPPATCH`|`PUT`|`TRACE`|`UNLOCK`
+: Sets the HTTP request method to use.
 
 `-H`, `--header` "*Name*: *value*"
-  Sets an additional header using the given *Name* and *value*.
+: Sets an additional header using the given *Name* and *value*.
+
+`-U`, `--user-agent-string` *STRING*
+: Sets the `User-Agent` header string.
+
+`-u`, `--user-agent` `chrome-linux`\|`chrome-macos`\|`chrome-windows`\|`chrome-iphone`\|`chrome-ipad`\|`chrome-android`\|`firefox-linux`\|`firefox-macos`\|`firefox-windows`\|`firefox-iphone`\|`firefox-ipad`\|`firefox-android`\|`safari-macos`\|`safari-iphone`\|`safari-ipad`\|`edge`
+: Sets the `User-Agent` header.
 
 `-C`, `--cookie` *COOKIE*
-  Sets the raw `Cookie` header.
+: Sets the raw `Cookie` header.
 
 `-c`, `--cookie-param` *NAME*`=`*VALUE*
-  Sets an additional `Cookie` param using the given *NAME* and *VALUE*.
+: Sets an additional `Cookie` param using the given *NAME* and *VALUE*.
 
 `-R`, `--referer` *URL*
-  Sets the `Referer` header.
+: Sets the `Referer` header.
 
 `-F`, `--form-param` *NAME*`=`*VALUE*
-  Sets an additional form param using the given *NAME* and *VALUE*.
+: Sets an additional form param using the given *NAME* and *VALUE*.
 
 `--test-query-param` *NAME*
-  Tests the URL query param name.
+: Tests the URL query param name.
 
 `--test-all-query-params`
-  Test all URL query param names.
+: Test all URL query param names.
 
 `--test-header-name` *NAME*
-  Tests the HTTP Header name.
+: Tests the HTTP Header name.
 
 `--test-cookie-param` *NAME*
-  Tests the HTTP Cookie name.
+: Tests the HTTP Cookie name.
 
 `--test-all-cookie-params`
-  Test all Cookie param names.
+: Test all Cookie param names.
 
 `--test-form-param` *NAME*
-  Tests the form param name.
+: Tests the form param name.
 
 `-i`, `--input` *FILE*
-  Reads URLs from the given *FILE*.
+: Reads URLs from the given *FILE*.
 
 `-Q`, `--escape-quote`
-  Escapes quotation marks.
+: Escapes quotation marks.
 
 `-P`, `--escape-parens`
-  Escapes parenthesis.
+: Escapes parenthesis.
 
 `-T`, `--terminate`
-  Terminates the SQL expression with a `--`.
+: Terminates the SQL expression with a `--`.
 
 `-h`, `--help`
-  Print help information.
+: Print help information.
 
 ## AUTHOR
 
@@ -77,4 +109,4 @@ Postmodern <postmodern.mod3@gmail.com>
 
 ## SEE ALSO
 
-ronin-vulns-scan(1)
+[ronin-vulns-scan](ronin-vulns-scan.1.md)