ronin-vulns 0.2.0.rc1 → 0.2.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/.github/workflows/ruby.yml +1 -0
- data/.ruby-version +1 -1
- data/ChangeLog.md +13 -1
- data/README.md +7 -5
- data/data/completions/ronin-vulns +70 -38
- data/gemspec.yml +5 -3
- data/lib/ronin/vulns/cli/command.rb +3 -2
- data/lib/ronin/vulns/cli/commands/command_injection.rb +3 -3
- data/lib/ronin/vulns/cli/commands/completion.rb +3 -2
- data/lib/ronin/vulns/cli/commands/irb.rb +3 -3
- data/lib/ronin/vulns/cli/commands/lfi.rb +3 -3
- data/lib/ronin/vulns/cli/commands/open_redirect.rb +3 -3
- data/lib/ronin/vulns/cli/commands/reflected_xss.rb +3 -3
- data/lib/ronin/vulns/cli/commands/rfi.rb +3 -3
- data/lib/ronin/vulns/cli/commands/scan.rb +3 -3
- data/lib/ronin/vulns/cli/commands/sqli.rb +3 -3
- data/lib/ronin/vulns/cli/commands/ssti.rb +3 -3
- data/lib/ronin/vulns/cli/importable.rb +4 -3
- data/lib/ronin/vulns/cli/printing.rb +1 -1
- data/lib/ronin/vulns/cli/ruby_shell.rb +1 -1
- data/lib/ronin/vulns/cli/web_vuln_command.rb +4 -4
- data/lib/ronin/vulns/cli.rb +5 -2
- data/lib/ronin/vulns/command_injection.rb +3 -3
- data/lib/ronin/vulns/importer.rb +1 -1
- data/lib/ronin/vulns/lfi/test_file.rb +2 -2
- data/lib/ronin/vulns/lfi.rb +4 -3
- data/lib/ronin/vulns/open_redirect.rb +2 -2
- data/lib/ronin/vulns/reflected_xss/context.rb +2 -2
- data/lib/ronin/vulns/reflected_xss/test_string.rb +2 -2
- data/lib/ronin/vulns/reflected_xss.rb +4 -4
- data/lib/ronin/vulns/rfi.rb +3 -3
- data/lib/ronin/vulns/root.rb +1 -1
- data/lib/ronin/vulns/sqli/error_pattern.rb +2 -2
- data/lib/ronin/vulns/sqli.rb +3 -3
- data/lib/ronin/vulns/ssti/test_expression.rb +2 -2
- data/lib/ronin/vulns/ssti.rb +3 -3
- data/lib/ronin/vulns/url_scanner.rb +8 -8
- data/lib/ronin/vulns/version.rb +2 -2
- data/lib/ronin/vulns/vuln.rb +1 -1
- data/lib/ronin/vulns/web_vuln/http_request.rb +3 -2
- data/lib/ronin/vulns/web_vuln.rb +4 -4
- data/lib/ronin/vulns.rb +32 -0
- metadata +23 -8
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 35653f9125d0af1492343dc82a17c6d7e645fa2649b75ee828647ea13e256676
|
|
4
|
+
data.tar.gz: dbe4ada050f9dbcedea4eb8197a59217affec0276205e49ec5708b4d73865e23
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 8573bc7cbb8f8da72c27d453bdd904457ad0076723700171f89aafa82ad499dd1d0a206426858e148261196e387eb3a8d18395cff9feebd65b0783320b38b760
|
|
7
|
+
data.tar.gz: e647b631bd189433fe527ac88f8411ed0f1a40690711449ebc8596c3e55a43671a05318f71f1166ed9071a7bfd2243dea2162fba772921b39b3ea0be92ef1da9
|
data/.github/workflows/ruby.yml
CHANGED
data/.ruby-version
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
ruby-3.
|
|
1
|
+
ruby-3.3
|
data/ChangeLog.md
CHANGED
|
@@ -1,4 +1,16 @@
|
|
|
1
|
-
### 0.2.
|
|
1
|
+
### 0.2.1 / 2025-02-14
|
|
2
|
+
|
|
3
|
+
* Added the `base64` gem as a dependency for Bundler and Ruby 3.4.0.
|
|
4
|
+
* Added missing `ronin/vulns` Ruby file.
|
|
5
|
+
* Use `require_relative` to improve load times.
|
|
6
|
+
* Documentation fixes.
|
|
7
|
+
|
|
8
|
+
#### CLI
|
|
9
|
+
|
|
10
|
+
* Fixed a bug in the `ronin-vulns irb` command where the `ronin/vulns` Ruby file
|
|
11
|
+
was missing.
|
|
12
|
+
|
|
13
|
+
### 0.2.0 / 2024-07-22
|
|
2
14
|
|
|
3
15
|
* Require [ronin-db] ~> 0.2
|
|
4
16
|
* Added {Ronin::Vulns::Importer}.
|
data/README.md
CHANGED
|
@@ -89,7 +89,7 @@ $ ronin-vulns lfi "http://www.example.com/page.php?lang=en"
|
|
|
89
89
|
Test a URL for SQL injection (SQLi):
|
|
90
90
|
|
|
91
91
|
```shell
|
|
92
|
-
$ ronin-vulns sqli "http://
|
|
92
|
+
$ ronin-vulns sqli "http://testphp.vulnweb.com/listproducts.php?cat=1"
|
|
93
93
|
```
|
|
94
94
|
|
|
95
95
|
Test a URL for Server Side Template Injection (SSTI):
|
|
@@ -185,17 +185,17 @@ Test a URL for SQL Injection (SQLi):
|
|
|
185
185
|
```ruby
|
|
186
186
|
require 'ronin/vulns/sqli'
|
|
187
187
|
|
|
188
|
-
vuln = Ronin::Vulns::SQLI.test('http://
|
|
188
|
+
vuln = Ronin::Vulns::SQLI.test('http://testphp.vulnweb.com/listproducts.php?cat=1')
|
|
189
189
|
# => #<Ronin::Vulns::SQLI: ...>
|
|
190
190
|
```
|
|
191
191
|
|
|
192
192
|
Finds all Server Side Template Injection (SQLI) vulnerabilities for a given URL:
|
|
193
193
|
|
|
194
194
|
```ruby
|
|
195
|
-
vulns = Ronin::Vulns::SQLI.scan('http://
|
|
195
|
+
vulns = Ronin::Vulns::SQLI.scan('http://testphp.vulnweb.com/listproducts.php?cat=1')
|
|
196
196
|
# => [#<Ronin::Vulns::SQLI: ...>, ...]
|
|
197
197
|
|
|
198
|
-
vulns = Ronin::Vulns::SQLI.scan('http://
|
|
198
|
+
vulns = Ronin::Vulns::SQLI.scan('http://testphp.vulnweb.com/listproducts.php?cat=1') do |vuln|
|
|
199
199
|
puts "Found SQLi on #{vuln.url} query param #{vuln.query_param}"
|
|
200
200
|
end
|
|
201
201
|
# => [#<Ronin::Vulns::SQLI: ...>, ...]
|
|
@@ -274,6 +274,7 @@ end
|
|
|
274
274
|
## Requirements
|
|
275
275
|
|
|
276
276
|
* [Ruby] >= 3.0.0
|
|
277
|
+
* [base64] ~> 0.1
|
|
277
278
|
* [ronin-support] ~> 1.0
|
|
278
279
|
* [ronin-core] ~> 0.2
|
|
279
280
|
* [ronin-db] ~> 0.2
|
|
@@ -309,7 +310,7 @@ gem.add_dependency 'ronin-vulns', '~> 0.1'
|
|
|
309
310
|
|
|
310
311
|
## License
|
|
311
312
|
|
|
312
|
-
Copyright (c) 2022-
|
|
313
|
+
Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
313
314
|
|
|
314
315
|
ronin-vulns is free software: you can redistribute it and/or modify
|
|
315
316
|
it under the terms of the GNU Lesser General Public License as published
|
|
@@ -327,6 +328,7 @@ along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
|
327
328
|
[Ruby]: https://www.ruby-lang.org
|
|
328
329
|
[ronin-rb]: https://ronin-rb.dev
|
|
329
330
|
|
|
331
|
+
[base64]: https://github.com/ruby/base64#readme
|
|
330
332
|
[ronin-support]: https://github.com/ronin-rb/ronin-support#readme
|
|
331
333
|
[ronin-core]: https://github.com/ronin-rb/ronin-core#readme
|
|
332
334
|
[ronin-db]: https://github.com/ronin-rb/ronin-db#readme
|
|
@@ -11,7 +11,7 @@ _ronin-vulns_completions_filter() {
|
|
|
11
11
|
|
|
12
12
|
if [[ "${cur:0:1}" == "-" ]]; then
|
|
13
13
|
echo "$words"
|
|
14
|
-
|
|
14
|
+
|
|
15
15
|
else
|
|
16
16
|
for word in $words; do
|
|
17
17
|
[[ "${word:0:1}" != "-" ]] && result+=("$word")
|
|
@@ -28,112 +28,144 @@ _ronin-vulns_completions() {
|
|
|
28
28
|
local compline="${compwords[*]}"
|
|
29
29
|
|
|
30
30
|
case "$compline" in
|
|
31
|
+
'command_injection'*'--db-file')
|
|
32
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -A directory -- "$cur")
|
|
33
|
+
;;
|
|
34
|
+
|
|
31
35
|
'command_injection'*'--input')
|
|
32
|
-
while read -r; do COMPREPLY+=(
|
|
36
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
33
37
|
;;
|
|
34
38
|
|
|
35
|
-
'
|
|
36
|
-
while read -r; do COMPREPLY+=(
|
|
39
|
+
'reflected_xss'*'--db-file')
|
|
40
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -A directory -- "$cur")
|
|
41
|
+
;;
|
|
42
|
+
|
|
43
|
+
'open_redirect'*'--db-file')
|
|
44
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -A directory -- "$cur")
|
|
37
45
|
;;
|
|
38
46
|
|
|
39
47
|
'reflected_xss'*'--input')
|
|
40
|
-
while read -r; do COMPREPLY+=(
|
|
48
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
49
|
+
;;
|
|
50
|
+
|
|
51
|
+
'open_redirect'*'--input')
|
|
52
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
41
53
|
;;
|
|
42
54
|
|
|
43
55
|
'command_injection'*'-i')
|
|
44
|
-
while read -r; do COMPREPLY+=(
|
|
56
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
45
57
|
;;
|
|
46
58
|
|
|
47
59
|
'command_injection'*)
|
|
48
|
-
while read -r; do COMPREPLY+=(
|
|
60
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -W "$(_ronin-vulns_completions_filter "--db --db-uri --db-file --import --first -F --all -A --print-curl --print-http --request-method -M --header -H --user-agent-string -U --user-agent -u --cookie -C --cookie-param -c --referer -R --form-param -F --test-query-param --test-all-query-params --test-header-name --test-cookie-param --test-all-cookie-params --test-form-param --test-all-form-params --input -i --escape-quote -Q --escape-operator -O --terminator -T")" -- "$cur")
|
|
61
|
+
;;
|
|
62
|
+
|
|
63
|
+
'reflected_xss'*'-i')
|
|
64
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
49
65
|
;;
|
|
50
66
|
|
|
51
67
|
'open_redirect'*'-i')
|
|
52
|
-
while read -r; do COMPREPLY+=(
|
|
68
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
53
69
|
;;
|
|
54
70
|
|
|
55
|
-
'
|
|
56
|
-
while read -r; do COMPREPLY+=(
|
|
71
|
+
'scan'*'--db-file')
|
|
72
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -A directory -- "$cur")
|
|
73
|
+
;;
|
|
74
|
+
|
|
75
|
+
'sqli'*'--db-file')
|
|
76
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -A directory -- "$cur")
|
|
77
|
+
;;
|
|
78
|
+
|
|
79
|
+
'ssti'*'--db-file')
|
|
80
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -A directory -- "$cur")
|
|
57
81
|
;;
|
|
58
82
|
|
|
59
83
|
'open_redirect'*)
|
|
60
|
-
while read -r; do COMPREPLY+=(
|
|
84
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -W "$(_ronin-vulns_completions_filter "--db --db-uri --db-file --import --first -F --all -A --print-curl --print-http --request-method -M --header -H --user-agent-string -U --user-agent -u --cookie -C --cookie-param -c --referer -R --form-param -F --test-query-param --test-all-query-params --test-header-name --test-cookie-param --test-all-cookie-params --test-form-param --test-all-form-params --input -i --test-url -T")" -- "$cur")
|
|
61
85
|
;;
|
|
62
86
|
|
|
63
87
|
'reflected_xss'*)
|
|
64
|
-
while read -r; do COMPREPLY+=(
|
|
88
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -W "$(_ronin-vulns_completions_filter "--db --db-uri --db-file --import --first -F --all -A --print-curl --print-http --request-method -M --header -H --user-agent-string -U --user-agent -u --cookie -C --cookie-param -c --referer -R --form-param -F --test-query-param --test-all-query-params --test-header-name --test-cookie-param --test-all-cookie-params --test-form-param --test-all-form-params --input -i")" -- "$cur")
|
|
65
89
|
;;
|
|
66
90
|
|
|
67
|
-
'
|
|
68
|
-
while read -r; do COMPREPLY+=(
|
|
91
|
+
'lfi'*'--db-file')
|
|
92
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -A directory -- "$cur")
|
|
69
93
|
;;
|
|
70
94
|
|
|
71
|
-
'
|
|
72
|
-
while read -r; do COMPREPLY+=(
|
|
95
|
+
'rfi'*'--db-file')
|
|
96
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -A directory -- "$cur")
|
|
73
97
|
;;
|
|
74
98
|
|
|
75
99
|
'ssti'*'--input')
|
|
76
|
-
while read -r; do COMPREPLY+=(
|
|
100
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
101
|
+
;;
|
|
102
|
+
|
|
103
|
+
'scan'*'--input')
|
|
104
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
105
|
+
;;
|
|
106
|
+
|
|
107
|
+
'sqli'*'--input')
|
|
108
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
77
109
|
;;
|
|
78
110
|
|
|
79
111
|
'lfi'*'--input')
|
|
80
|
-
while read -r; do COMPREPLY+=(
|
|
112
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
81
113
|
;;
|
|
82
114
|
|
|
83
115
|
'rfi'*'--input')
|
|
84
|
-
while read -r; do COMPREPLY+=(
|
|
116
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
85
117
|
;;
|
|
86
118
|
|
|
87
119
|
'completion'*)
|
|
88
|
-
while read -r; do COMPREPLY+=(
|
|
120
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -W "$(_ronin-vulns_completions_filter "--print --install --uninstall")" -- "$cur")
|
|
89
121
|
;;
|
|
90
122
|
|
|
91
123
|
'scan'*'-i')
|
|
92
|
-
while read -r; do COMPREPLY+=(
|
|
124
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
93
125
|
;;
|
|
94
126
|
|
|
95
127
|
'sqli'*'-i')
|
|
96
|
-
while read -r; do COMPREPLY+=(
|
|
128
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
97
129
|
;;
|
|
98
130
|
|
|
99
131
|
'ssti'*'-i')
|
|
100
|
-
while read -r; do COMPREPLY+=(
|
|
101
|
-
;;
|
|
102
|
-
|
|
103
|
-
'lfi'*'-i')
|
|
104
|
-
while read -r; do COMPREPLY+=( "$REPLY" ); done < <( compgen -A file -- "$cur" )
|
|
132
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
105
133
|
;;
|
|
106
134
|
|
|
107
135
|
'rfi'*'-i')
|
|
108
|
-
while read -r; do COMPREPLY+=(
|
|
136
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
109
137
|
;;
|
|
110
138
|
|
|
111
|
-
'
|
|
112
|
-
while read -r; do COMPREPLY+=(
|
|
139
|
+
'lfi'*'-i')
|
|
140
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -A file -- "$cur")
|
|
113
141
|
;;
|
|
114
142
|
|
|
115
143
|
'sqli'*)
|
|
116
|
-
while read -r; do COMPREPLY+=(
|
|
144
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -W "$(_ronin-vulns_completions_filter "--db --db-uri --db-file --import --first -F --all -A --print-curl --print-http --request-method -M --header -H --user-agent-string -U --user-agent -u --cookie -C --cookie-param -c --referer -R --form-param -F --test-query-param --test-all-query-params --test-header-name --test-cookie-param --test-all-cookie-params --test-form-param --test-all-form-params --input -i --escape-quote -Q --escape-parens -P --terminate -T")" -- "$cur")
|
|
117
145
|
;;
|
|
118
146
|
|
|
119
|
-
'
|
|
120
|
-
while read -r; do COMPREPLY+=(
|
|
147
|
+
'scan'*)
|
|
148
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -W "$(_ronin-vulns_completions_filter "--db --db-uri --db-file --import --first -F --all -A --print-curl --print-http --request-method -M --header -H --user-agent-string -U --user-agent -u --cookie -C --cookie-param -c --referer -R --form-param -F --test-query-param --test-all-query-params --test-header-name --test-cookie-param --test-all-cookie-params --test-form-param --test-all-form-params --input -i --lfi-os --lfi-depth --lfi-filter-bypass --rfi-filter-bypass --rfi-script-lang --rfi-test-script-url --sqli-escape-quote --sqli-escape-parens --sqli-terminate --ssti-test-expr --open-redirect-url")" -- "$cur")
|
|
121
149
|
;;
|
|
122
150
|
|
|
123
|
-
'
|
|
124
|
-
while read -r; do COMPREPLY+=(
|
|
151
|
+
'ssti'*)
|
|
152
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -W "$(_ronin-vulns_completions_filter "--db --db-uri --db-file --import --first -F --all -A --print-curl --print-http --request-method -M --header -H --user-agent-string -U --user-agent -u --cookie -C --cookie-param -c --referer -R --form-param -F --test-query-param --test-all-query-params --test-header-name --test-cookie-param --test-all-cookie-params --test-form-param --test-all-form-params --input -i --test-expr -T")" -- "$cur")
|
|
125
153
|
;;
|
|
126
154
|
|
|
127
155
|
'rfi'*)
|
|
128
|
-
while read -r; do COMPREPLY+=(
|
|
156
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -W "$(_ronin-vulns_completions_filter "--db --db-uri --db-file --import --first -F --all -A --print-curl --print-http --request-method -M --header -H --user-agent-string -U --user-agent -u --cookie -C --cookie-param -c --referer -R --form-param -F --test-query-param --test-all-query-params --test-header-name --test-cookie-param --test-all-cookie-params --test-form-param --test-all-form-params --input -i --filter-bypass -B --script-lang -S --test-script-url -T")" -- "$cur")
|
|
157
|
+
;;
|
|
158
|
+
|
|
159
|
+
'lfi'*)
|
|
160
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -W "$(_ronin-vulns_completions_filter "--db --db-uri --db-file --import --first -F --all -A --print-curl --print-http --request-method -M --header -H --user-agent-string -U --user-agent -u --cookie -C --cookie-param -c --referer -R --form-param -F --test-query-param --test-all-query-params --test-header-name --test-cookie-param --test-all-cookie-params --test-form-param --test-all-form-params --input -i --os -O --depth -D --filter-bypass -B")" -- "$cur")
|
|
129
161
|
;;
|
|
130
162
|
|
|
131
163
|
*)
|
|
132
|
-
while read -r; do COMPREPLY+=(
|
|
164
|
+
while read -r; do COMPREPLY+=("$REPLY"); done < <(compgen -W "$(_ronin-vulns_completions_filter "--version -V help command-injection completion irb lfi open-redirect reflected-xss rfi scan sqli ssti xss cmdi")" -- "$cur")
|
|
133
165
|
;;
|
|
134
166
|
|
|
135
167
|
esac
|
|
136
168
|
} &&
|
|
137
|
-
complete -F _ronin-vulns_completions ronin-vulns
|
|
169
|
+
complete -F _ronin-vulns_completions ronin-vulns
|
|
138
170
|
|
|
139
171
|
# ex: filetype=sh
|
data/gemspec.yml
CHANGED
|
@@ -9,7 +9,7 @@ description: |
|
|
|
9
9
|
Remote File Inclusion (RFI), SQL injection (SQLi), reflective Cross Site
|
|
10
10
|
Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.
|
|
11
11
|
|
|
12
|
-
license: LGPL-3.0
|
|
12
|
+
license: LGPL-3.0-or-later
|
|
13
13
|
authors: Postmodern
|
|
14
14
|
email: postmodern.mod3@gmail.com
|
|
15
15
|
homepage: https://ronin-rb.dev/
|
|
@@ -39,9 +39,11 @@ generated_files:
|
|
|
39
39
|
- man/ronin-vulns-scan.1
|
|
40
40
|
|
|
41
41
|
dependencies:
|
|
42
|
+
base64: ~> 0.1
|
|
43
|
+
# Ronin dependencies:
|
|
42
44
|
ronin-support: ~> 1.0, >= 1.0.1
|
|
43
|
-
ronin-core: ~> 0.2
|
|
44
|
-
ronin-db: ~> 0.2
|
|
45
|
+
ronin-core: ~> 0.2
|
|
46
|
+
ronin-db: ~> 0.2
|
|
45
47
|
|
|
46
48
|
development_dependencies:
|
|
47
49
|
bundler: ~> 2.0
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,9 +18,10 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
require 'ronin/vulns/root'
|
|
22
21
|
require 'ronin/core/cli/command'
|
|
23
22
|
|
|
23
|
+
require_relative '../root'
|
|
24
|
+
|
|
24
25
|
module Ronin
|
|
25
26
|
module Vulns
|
|
26
27
|
class CLI
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,8 +18,8 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
21
|
+
require_relative '../web_vuln_command'
|
|
22
|
+
require_relative '../../command_injection'
|
|
23
23
|
|
|
24
24
|
module Ronin
|
|
25
25
|
module Vulns
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,9 +18,10 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
require 'ronin/vulns/root'
|
|
22
21
|
require 'ronin/core/cli/completion_command'
|
|
23
22
|
|
|
23
|
+
require_relative '../../root'
|
|
24
|
+
|
|
24
25
|
module Ronin
|
|
25
26
|
module Vulns
|
|
26
27
|
class CLI
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,8 +18,8 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
21
|
+
require_relative '../command'
|
|
22
|
+
require_relative '../ruby_shell'
|
|
23
23
|
|
|
24
24
|
module Ronin
|
|
25
25
|
module Vulns
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,8 +18,8 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
21
|
+
require_relative '../web_vuln_command'
|
|
22
|
+
require_relative '../../lfi'
|
|
23
23
|
|
|
24
24
|
module Ronin
|
|
25
25
|
module Vulns
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,8 +18,8 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
21
|
+
require_relative '../web_vuln_command'
|
|
22
|
+
require_relative '../../open_redirect'
|
|
23
23
|
|
|
24
24
|
module Ronin
|
|
25
25
|
module Vulns
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,8 +18,8 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
21
|
+
require_relative '../web_vuln_command'
|
|
22
|
+
require_relative '../../reflected_xss'
|
|
23
23
|
|
|
24
24
|
module Ronin
|
|
25
25
|
module Vulns
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,8 +18,8 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
21
|
+
require_relative '../web_vuln_command'
|
|
22
|
+
require_relative '../../rfi'
|
|
23
23
|
|
|
24
24
|
module Ronin
|
|
25
25
|
module Vulns
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,8 +18,8 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
21
|
+
require_relative '../web_vuln_command'
|
|
22
|
+
require_relative '../../url_scanner'
|
|
23
23
|
|
|
24
24
|
module Ronin
|
|
25
25
|
module Vulns
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,8 +18,8 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
21
|
+
require_relative '../web_vuln_command'
|
|
22
|
+
require_relative '../../sqli'
|
|
23
23
|
|
|
24
24
|
module Ronin
|
|
25
25
|
module Vulns
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,8 +18,8 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
21
|
+
require_relative '../web_vuln_command'
|
|
22
|
+
require_relative '../../ssti'
|
|
23
23
|
|
|
24
24
|
module Ronin
|
|
25
25
|
module Vulns
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,8 +18,9 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
21
|
+
require_relative 'printing'
|
|
22
|
+
require_relative '../importer'
|
|
23
|
+
|
|
23
24
|
require 'ronin/db/cli/database_options'
|
|
24
25
|
require 'ronin/db/cli/printing'
|
|
25
26
|
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,9 +18,9 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
|
|
21
|
+
require_relative 'command'
|
|
22
|
+
require_relative 'importable'
|
|
23
|
+
require_relative 'printing'
|
|
24
24
|
|
|
25
25
|
require 'ronin/support/network/http/cookie'
|
|
26
26
|
require 'ronin/support/network/http/user_agents'
|
data/lib/ronin/vulns/cli.rb
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,12 +18,14 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
require 'ronin/
|
|
21
|
+
require 'ronin/core/cli/help/banner'
|
|
22
22
|
|
|
23
23
|
require 'command_kit/commands'
|
|
24
24
|
require 'command_kit/commands/auto_load'
|
|
25
25
|
require 'command_kit/options/version'
|
|
26
26
|
|
|
27
|
+
require_relative 'version'
|
|
28
|
+
|
|
27
29
|
module Ronin
|
|
28
30
|
module Vulns
|
|
29
31
|
#
|
|
@@ -39,6 +41,7 @@ module Ronin
|
|
|
39
41
|
namespace: "#{self}::Commands"
|
|
40
42
|
)
|
|
41
43
|
include CommandKit::Options::Version
|
|
44
|
+
include Core::CLI::Help::Banner
|
|
42
45
|
|
|
43
46
|
command_name 'ronin-vulns'
|
|
44
47
|
version Ronin::Vulns::VERSION
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,7 +18,7 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
21
|
+
require_relative 'web_vuln'
|
|
22
22
|
|
|
23
23
|
require 'time'
|
|
24
24
|
|
|
@@ -114,7 +114,7 @@ module Ronin
|
|
|
114
114
|
# @param [Array<String, nil>, String, nil] escape_operator
|
|
115
115
|
# The optional escape operator character(s) to test.
|
|
116
116
|
#
|
|
117
|
-
# @param [Array<String, nil>,
|
|
117
|
+
# @param [Array<String, nil>, String, nil] terminator
|
|
118
118
|
# The optional command termination character(s) to test.
|
|
119
119
|
#
|
|
120
120
|
# @param [Ronin::Support::Network::HTTP, nil] http
|
data/lib/ronin/vulns/importer.rb
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library to blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,7 +18,7 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
21
|
+
require_relative '../web_vuln'
|
|
22
22
|
|
|
23
23
|
module Ronin
|
|
24
24
|
module Vulns
|
data/lib/ronin/vulns/lfi.rb
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,12 +18,13 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
21
|
+
require_relative 'web_vuln'
|
|
22
|
+
require_relative 'lfi/test_file'
|
|
23
23
|
|
|
24
24
|
require 'ronin/support/text/patterns'
|
|
25
25
|
require 'ronin/support/crypto'
|
|
26
26
|
require 'ronin/support/compression'
|
|
27
|
+
|
|
27
28
|
require 'uri/query_params'
|
|
28
29
|
require 'base64'
|
|
29
30
|
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,7 +18,7 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
21
|
+
require_relative 'web_vuln'
|
|
22
22
|
|
|
23
23
|
require 'chars'
|
|
24
24
|
require 'cgi'
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,7 +18,7 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
21
|
+
require_relative '../web_vuln'
|
|
22
22
|
|
|
23
23
|
module Ronin
|
|
24
24
|
module Vulns
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,7 +18,7 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
21
|
+
require_relative '../web_vuln'
|
|
22
22
|
|
|
23
23
|
module Ronin
|
|
24
24
|
module Vulns
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,9 +18,9 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
|
|
21
|
+
require_relative 'web_vuln'
|
|
22
|
+
require_relative 'reflected_xss/test_string'
|
|
23
|
+
require_relative 'reflected_xss/context'
|
|
24
24
|
|
|
25
25
|
require 'set'
|
|
26
26
|
|
data/lib/ronin/vulns/rfi.rb
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,8 +18,8 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
21
|
+
require_relative 'web_vuln'
|
|
22
|
+
require_relative 'version'
|
|
23
23
|
|
|
24
24
|
require 'ronin/support/network/http'
|
|
25
25
|
require 'uri/query_params'
|
data/lib/ronin/vulns/root.rb
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,7 +18,7 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
21
|
+
require_relative '../web_vuln'
|
|
22
22
|
|
|
23
23
|
module Ronin
|
|
24
24
|
module Vulns
|
data/lib/ronin/vulns/sqli.rb
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,8 +18,8 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
21
|
+
require_relative 'web_vuln'
|
|
22
|
+
require_relative 'sqli/error_pattern'
|
|
23
23
|
|
|
24
24
|
require 'time'
|
|
25
25
|
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,7 +18,7 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
21
|
+
require_relative '../web_vuln'
|
|
22
22
|
|
|
23
23
|
module Ronin
|
|
24
24
|
module Vulns
|
data/lib/ronin/vulns/ssti.rb
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,8 +18,8 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
21
|
+
require_relative 'web_vuln'
|
|
22
|
+
require_relative 'ssti/test_expression'
|
|
23
23
|
|
|
24
24
|
module Ronin
|
|
25
25
|
module Vulns
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,13 +18,13 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
|
|
21
|
+
require_relative 'lfi'
|
|
22
|
+
require_relative 'rfi'
|
|
23
|
+
require_relative 'sqli'
|
|
24
|
+
require_relative 'ssti'
|
|
25
|
+
require_relative 'reflected_xss'
|
|
26
|
+
require_relative 'open_redirect'
|
|
27
|
+
require_relative 'command_injection'
|
|
28
28
|
|
|
29
29
|
module Ronin
|
|
30
30
|
module Vulns
|
data/lib/ronin/vulns/version.rb
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -21,6 +21,6 @@
|
|
|
21
21
|
module Ronin
|
|
22
22
|
module Vulns
|
|
23
23
|
# The ronin-vulns version
|
|
24
|
-
VERSION = '0.2.
|
|
24
|
+
VERSION = '0.2.1'
|
|
25
25
|
end
|
|
26
26
|
end
|
data/lib/ronin/vulns/vuln.rb
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,7 +18,8 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
21
|
+
require_relative '../vuln'
|
|
22
|
+
|
|
22
23
|
require 'ronin/support/network/http/cookie'
|
|
23
24
|
require 'ronin/support/network/http/user_agents'
|
|
24
25
|
|
data/lib/ronin/vulns/web_vuln.rb
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
#
|
|
3
3
|
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
4
|
#
|
|
5
|
-
# Copyright (c) 2022-
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
6
|
#
|
|
7
7
|
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
8
|
# it under the terms of the GNU Lesser General Public License as published
|
|
@@ -18,10 +18,10 @@
|
|
|
18
18
|
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
19
|
#
|
|
20
20
|
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
require 'ronin/support/network/http'
|
|
21
|
+
require_relative 'vuln'
|
|
22
|
+
require_relative 'web_vuln/http_request'
|
|
24
23
|
|
|
24
|
+
require 'ronin/support/network/http'
|
|
25
25
|
require 'chars'
|
|
26
26
|
|
|
27
27
|
module Ronin
|
data/lib/ronin/vulns.rb
ADDED
|
@@ -0,0 +1,32 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
#
|
|
3
|
+
# ronin-vulns - A Ruby library for blind vulnerability testing.
|
|
4
|
+
#
|
|
5
|
+
# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
|
|
6
|
+
#
|
|
7
|
+
# ronin-vulns is free software: you can redistribute it and/or modify
|
|
8
|
+
# it under the terms of the GNU Lesser General Public License as published
|
|
9
|
+
# by the Free Software Foundation, either version 3 of the License, or
|
|
10
|
+
# (at your option) any later version.
|
|
11
|
+
#
|
|
12
|
+
# ronin-vulns is distributed in the hope that it will be useful,
|
|
13
|
+
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
14
|
+
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
15
|
+
# GNU Lesser General Public License for more details.
|
|
16
|
+
#
|
|
17
|
+
# You should have received a copy of the GNU Lesser General Public License
|
|
18
|
+
# along with ronin-vulns. If not, see <https://www.gnu.org/licenses/>.
|
|
19
|
+
#
|
|
20
|
+
|
|
21
|
+
require_relative 'vulns/vuln'
|
|
22
|
+
require_relative 'vulns/web_vuln'
|
|
23
|
+
require_relative 'vulns/lfi'
|
|
24
|
+
require_relative 'vulns/rfi'
|
|
25
|
+
require_relative 'vulns/sqli'
|
|
26
|
+
require_relative 'vulns/ssti'
|
|
27
|
+
require_relative 'vulns/command_injection'
|
|
28
|
+
require_relative 'vulns/open_redirect'
|
|
29
|
+
require_relative 'vulns/reflected_xss'
|
|
30
|
+
require_relative 'vulns/url_scanner'
|
|
31
|
+
require_relative 'vulns/importer'
|
|
32
|
+
require_relative 'vulns/version'
|
metadata
CHANGED
|
@@ -1,15 +1,29 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: ronin-vulns
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.2.
|
|
4
|
+
version: 0.2.1
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Postmodern
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2025-02-15 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
|
+
- !ruby/object:Gem::Dependency
|
|
14
|
+
name: base64
|
|
15
|
+
requirement: !ruby/object:Gem::Requirement
|
|
16
|
+
requirements:
|
|
17
|
+
- - "~>"
|
|
18
|
+
- !ruby/object:Gem::Version
|
|
19
|
+
version: '0.1'
|
|
20
|
+
type: :runtime
|
|
21
|
+
prerelease: false
|
|
22
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
23
|
+
requirements:
|
|
24
|
+
- - "~>"
|
|
25
|
+
- !ruby/object:Gem::Version
|
|
26
|
+
version: '0.1'
|
|
13
27
|
- !ruby/object:Gem::Dependency
|
|
14
28
|
name: ronin-support
|
|
15
29
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -36,28 +50,28 @@ dependencies:
|
|
|
36
50
|
requirements:
|
|
37
51
|
- - "~>"
|
|
38
52
|
- !ruby/object:Gem::Version
|
|
39
|
-
version: 0.2
|
|
53
|
+
version: '0.2'
|
|
40
54
|
type: :runtime
|
|
41
55
|
prerelease: false
|
|
42
56
|
version_requirements: !ruby/object:Gem::Requirement
|
|
43
57
|
requirements:
|
|
44
58
|
- - "~>"
|
|
45
59
|
- !ruby/object:Gem::Version
|
|
46
|
-
version: 0.2
|
|
60
|
+
version: '0.2'
|
|
47
61
|
- !ruby/object:Gem::Dependency
|
|
48
62
|
name: ronin-db
|
|
49
63
|
requirement: !ruby/object:Gem::Requirement
|
|
50
64
|
requirements:
|
|
51
65
|
- - "~>"
|
|
52
66
|
- !ruby/object:Gem::Version
|
|
53
|
-
version: 0.2
|
|
67
|
+
version: '0.2'
|
|
54
68
|
type: :runtime
|
|
55
69
|
prerelease: false
|
|
56
70
|
version_requirements: !ruby/object:Gem::Requirement
|
|
57
71
|
requirements:
|
|
58
72
|
- - "~>"
|
|
59
73
|
- !ruby/object:Gem::Version
|
|
60
|
-
version: 0.2
|
|
74
|
+
version: '0.2'
|
|
61
75
|
- !ruby/object:Gem::Dependency
|
|
62
76
|
name: bundler
|
|
63
77
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -107,6 +121,7 @@ files:
|
|
|
107
121
|
- data/rfi_test.php
|
|
108
122
|
- data/rfi_test.pl
|
|
109
123
|
- gemspec.yml
|
|
124
|
+
- lib/ronin/vulns.rb
|
|
110
125
|
- lib/ronin/vulns/cli.rb
|
|
111
126
|
- lib/ronin/vulns/cli/command.rb
|
|
112
127
|
- lib/ronin/vulns/cli/commands/command_injection.rb
|
|
@@ -168,7 +183,7 @@ files:
|
|
|
168
183
|
- scripts/setup
|
|
169
184
|
homepage: https://ronin-rb.dev/
|
|
170
185
|
licenses:
|
|
171
|
-
- LGPL-3.0
|
|
186
|
+
- LGPL-3.0-or-later
|
|
172
187
|
metadata:
|
|
173
188
|
documentation_uri: https://ronin-rb.dev/docs/ronin-vulns
|
|
174
189
|
source_code_uri: https://github.com/ronin-rb/ronin-vulns
|
|
@@ -190,7 +205,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
190
205
|
- !ruby/object:Gem::Version
|
|
191
206
|
version: '0'
|
|
192
207
|
requirements: []
|
|
193
|
-
rubygems_version: 3.
|
|
208
|
+
rubygems_version: 3.5.22
|
|
194
209
|
signing_key:
|
|
195
210
|
specification_version: 4
|
|
196
211
|
summary: Tests URLs for Local File Inclusion (LFI), Remove File Inclusion (RFI), SQL
|