RubyGems - ronin-web - Versions diffs - 0.3.0.rc1 → 1.0.0.beta1 - Mend

ronin-web 0.3.0.rc1 → 1.0.0.beta1

Files changed (148) hide show

checksums.yaml +7 -0
data/.editorconfig +11 -0
data/.github/workflows/ruby.yml +31 -0
data/.gitignore +13 -0
data/.mailmap +1 -0
data/.ruby-version +1 -0
data/COPYING.txt +3 -3
data/ChangeLog.md +115 -70
data/Gemfile +42 -37
data/README.md +159 -145
data/Rakefile +12 -3
data/bin/ronin-web +9 -17
data/data/new/nokogiri.rb.erb +12 -0
data/data/new/server.rb.erb +22 -0
data/data/new/spider.rb.erb +26 -0
data/data/new/webapp/.gitignore +15 -0
data/data/new/webapp/.ruby-version.erb +1 -0
data/data/new/webapp/Dockerfile.erb +11 -0
data/data/new/webapp/Gemfile +6 -0
data/data/new/webapp/app.rb.erb +15 -0
data/data/new/webapp/config.ru +4 -0
data/data/new/webapp/docker-compose.yml.erb +9 -0
data/gemspec.yml +32 -14
data/lib/ronin/web/cli/command.rb +36 -0
data/lib/ronin/web/cli/commands/diff.rb +106 -0
data/lib/ronin/web/cli/commands/html.rb +174 -0
data/lib/ronin/web/cli/commands/irb.rb +56 -0
data/lib/ronin/web/cli/commands/new/nokogiri.rb +85 -0
data/lib/ronin/web/cli/commands/new/server.rb +96 -0
data/lib/ronin/web/cli/commands/new/spider.rb +315 -0
data/lib/ronin/web/cli/commands/new/webapp.rb +123 -0
data/lib/ronin/web/cli/commands/new.rb +64 -0
data/lib/ronin/web/cli/commands/reverse_proxy.rb +215 -0
data/lib/ronin/web/cli/commands/server.rb +155 -0
data/lib/ronin/web/cli/commands/spider.rb +822 -0
data/lib/ronin/web/cli/ruby_shell.rb +50 -0
data/lib/ronin/web/cli.rb +44 -0
data/lib/ronin/web/html.rb +85 -0
data/lib/ronin/web/mechanize.rb +34 -36
data/lib/ronin/web/root.rb +27 -0
data/lib/ronin/web/version.rb +7 -10
data/lib/ronin/web/xml.rb +85 -0
data/lib/ronin/web.rb +372 -13
data/man/ronin-web-diff.1 +41 -0
data/man/ronin-web-diff.1.md +30 -0
data/man/ronin-web-html.1 +89 -0
data/man/ronin-web-html.1.md +66 -0
data/man/ronin-web-irb.1 +31 -0
data/man/ronin-web-irb.1.md +22 -0
data/man/ronin-web-new-nokogiri.1 +41 -0
data/man/ronin-web-new-nokogiri.1.md +30 -0
data/man/ronin-web-new-server.1 +45 -0
data/man/ronin-web-new-server.1.md +33 -0
data/man/ronin-web-new-spider.1 +173 -0
data/man/ronin-web-new-spider.1.md +129 -0
data/man/ronin-web-new-webapp.1 +53 -0
data/man/ronin-web-new-webapp.1.md +39 -0
data/man/ronin-web-new.1 +59 -0
data/man/ronin-web-new.1.md +44 -0
data/man/ronin-web-reverse-proxy.1 +63 -0
data/man/ronin-web-reverse-proxy.1.md +47 -0
data/man/ronin-web-server.1 +59 -0
data/man/ronin-web-server.1.md +43 -0
data/man/ronin-web-spider.1 +225 -0
data/man/ronin-web-spider.1.md +168 -0
data/man/ronin-web.1 +41 -0
data/man/ronin-web.1.md +30 -0
data/ronin-web.gemspec +39 -109
data/spec/cli/ruby_shell_spec.rb +14 -0
data/spec/html_spec.rb +43 -0
data/spec/mechanize_spec.rb +72 -0
data/spec/spec_helper.rb +5 -3
data/spec/web_spec.rb +97 -0
data/spec/xml_spec.rb +42 -0
metadata +236 -224
data/.gemtest +0 -0
data/data/ronin/web/user_agents.yml +0 -247
data/lib/ronin/network/mixins/web.rb +0 -258
data/lib/ronin/web/config.rb +0 -34
data/lib/ronin/web/extensions/nokogiri/xml/attr.rb +0 -47
data/lib/ronin/web/extensions/nokogiri/xml/document.rb +0 -48
data/lib/ronin/web/extensions/nokogiri/xml/element.rb +0 -57
data/lib/ronin/web/extensions/nokogiri/xml/node.rb +0 -86
data/lib/ronin/web/extensions/nokogiri/xml/text.rb +0 -47
data/lib/ronin/web/extensions/nokogiri/xml.rb +0 -27
data/lib/ronin/web/extensions/nokogiri.rb +0 -23
data/lib/ronin/web/extensions.rb +0 -23
data/lib/ronin/web/middleware/base.rb +0 -144
data/lib/ronin/web/middleware/directories.rb +0 -179
data/lib/ronin/web/middleware/files.rb +0 -144
data/lib/ronin/web/middleware/filters/campaign_filter.rb +0 -77
data/lib/ronin/web/middleware/filters/ip_filter.rb +0 -73
data/lib/ronin/web/middleware/filters/path_filter.rb +0 -73
data/lib/ronin/web/middleware/filters/referer_filter.rb +0 -71
data/lib/ronin/web/middleware/filters/user_agent_filter.rb +0 -71
data/lib/ronin/web/middleware/filters/vhost_filter.rb +0 -71
data/lib/ronin/web/middleware/filters.rb +0 -28
data/lib/ronin/web/middleware/helpers.rb +0 -145
data/lib/ronin/web/middleware/proxy.rb +0 -265
data/lib/ronin/web/middleware/proxy_request.rb +0 -262
data/lib/ronin/web/middleware/request.rb +0 -79
data/lib/ronin/web/middleware/response.rb +0 -33
data/lib/ronin/web/middleware/router.rb +0 -167
data/lib/ronin/web/middleware/rule.rb +0 -103
data/lib/ronin/web/middleware.rb +0 -27
data/lib/ronin/web/proxy/app.rb +0 -32
data/lib/ronin/web/proxy/base.rb +0 -46
data/lib/ronin/web/proxy/web.rb +0 -46
data/lib/ronin/web/proxy.rb +0 -25
data/lib/ronin/web/server/app.rb +0 -32
data/lib/ronin/web/server/base.rb +0 -461
data/lib/ronin/web/server/web.rb +0 -66
data/lib/ronin/web/server.rb +0 -25
data/lib/ronin/web/spider.rb +0 -120
data/lib/ronin/web/user_agents.rb +0 -196
data/lib/ronin/web/web.rb +0 -560
data/spec/helpers/output.rb +0 -3
data/spec/web/extensions/nokogiri_spec.rb +0 -38
data/spec/web/helpers/rack_app.rb +0 -24
data/spec/web/helpers/root/test1/index.html +0 -1
data/spec/web/helpers/root/test1/test1.txt +0 -1
data/spec/web/helpers/root/test1.txt +0 -1
data/spec/web/helpers/root/test2/test2.txt +0 -1
data/spec/web/helpers/root/test2.txt +0 -1
data/spec/web/helpers/root/test3/test3.txt +0 -1
data/spec/web/helpers/root/test3.txt +0 -1
data/spec/web/helpers/root.rb +0 -15
data/spec/web/mechanize_spec.rb +0 -62
data/spec/web/middleware/directories_spec.rb +0 -86
data/spec/web/middleware/files_spec.rb +0 -57
data/spec/web/middleware/filters/campaign_filter_spec.rb +0 -30
data/spec/web/middleware/filters/ip_filter_spec.rb +0 -25
data/spec/web/middleware/filters/path_filter_spec.rb +0 -29
data/spec/web/middleware/filters/referer_filter_spec.rb +0 -25
data/spec/web/middleware/filters/user_agent_filter_spec.rb +0 -25
data/spec/web/middleware/filters/vhost_filter_spec.rb +0 -23
data/spec/web/middleware/proxy_spec.rb +0 -67
data/spec/web/middleware/response_spec.rb +0 -20
data/spec/web/middleware/router_spec.rb +0 -65
data/spec/web/middleware/rule_spec.rb +0 -37
data/spec/web/proxy/base_spec.rb +0 -8
data/spec/web/server/base_spec.rb +0 -77
data/spec/web/server/classes/public1/static1.txt +0 -1
data/spec/web/server/classes/public2/static2.txt +0 -1
data/spec/web/server/classes/sub_app.rb +0 -13
data/spec/web/server/classes/test_app.rb +0 -20
data/spec/web/user_agents_spec.rb +0 -56
data/spec/web/web_spec.rb +0 -101

data/lib/ronin/web/cli/commands/reverse_proxy.rb ADDED Viewed

@@ -0,0 +1,215 @@
+#
+# ronin-web - A collection of useful web helper methods and commands.
+#
+# Copyright (c) 2006-2022 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# ronin-web is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# ronin-web is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with ronin-web.  If not, see <https://www.gnu.org/licenses/>.
+#
+require 'ronin/web/cli/command'
+require 'ronin/core/cli/logging'
+require 'ronin/web/server/reverse_proxy'
+module Ronin
+  module Web
+    class CLI
+      module Commands
+        #
+        # Starts a HTTP proxy server.
+        #
+        # ## Usage
+        #
+        #     ronin-web reverse-proxy [options] [--host HOST] [--port PORT]
+        #
+        # ## Options
+        #
+        #     -H, --host HOST                  Host to listen on (Default: localhost)
+        #     -p, --port PORT                  Port to listen on (Default: 8080)
+        #     -b, --show-body                  Print the request and response bodies
+        #         --rewrite-requests /REGEXP/:REPLACE
+        #                                      Rewrite request bodies
+        #         --rewrite-responses /REGEXP/:REPLACE
+        #                                      Rewrite response bodies
+        #     -h, --help                       Print help information
+        #
+        # @api private
+        #
+        class Proxy < Command
+          include Core::CLI::Logging
+          command_name 'reverse-proxy'
+          usage '[options] [--host HOST] [--port PORT]'
+          option :host, short: '-H',
+                        value: {
+                          type:    String,
+                          usage:   'HOST',
+                          default: 'localhost'
+                        },
+                        desc: 'Host to listen on'
+          option :port, short: '-p',
+                        value: {
+                          type:   Integer,
+                          usage:  'PORT',
+                          default: 8080
+                        },
+                        desc: 'Port to listen on'
+          option :show_body, short: '-b',
+                             desc: 'Print the request and response bodies'
+          option :rewrite_requests, value: {
+                                      type: String,
+                                      usage: '/REGEXP/:REPLACE'
+                                    },
+                                    desc: 'Rewrite request bodies' do |str|
+                                      @rewrite_requests << parse_rewrite_rule(str)
+                                    end
+          option :rewrite_responses, value: {
+                                       type: String,
+                                       usage: '/REGEXP/:REPLACE'
+                                     },
+                                     desc: 'Rewrite response bodies' do |str|
+                                       @rewrite_responses << parse_rewrite_rule(str)
+                                     end
+          description 'Starts a HTTP proxy server'
+          man_page 'ronin-web-reverse-proxy.1'
+          #
+          # Initializes the `reverse-proxy` command.
+          #
+          # @param [Hash{Symbol => Object}] kwargs
+          #   Additional keyword arguments.
+          #
+          def initialize(**kwargs)
+            super(**kwargs)
+            @rewrite_requests  = []
+            @rewrite_responses = []
+          end
+          #
+          # Runs the `ronin-web reverse-proxy` command.
+          #
+          def run
+            proxy = Ronin::Web::Server::ReverseProxy.new do |proxy|
+              proxy.on_request do |request|
+                puts "[#{request.ip} -> #{request.host_with_port}] #{request.request_method} #{request.url}"
+                request.headers.each do |name,value|
+                  puts "> #{name}: #{value}"
+                end
+                puts
+                unless @rewrite_requests.empty?
+                  request.body = rewrite_body(request.body,@rewrite_requests)
+                end
+                print_body(request.body) if options[:show_body]
+              end
+              proxy.on_response do |response|
+                puts "< HTTP/1.1 #{response.status}"
+                response.headers.each do |name,value|
+                  puts "< #{name}: #{value}"
+                end
+                puts
+                unless @rewrite_responses.empty?
+                  response.body = rewrite_body(response.body,@rewrite_responses)
+                end
+                print_body(response.body) if options[:show_body]
+              end
+            end
+            log_info "Starting proxy server on #{options[:host]}:#{options[:port]} ..."
+            proxy.run!(host: options[:host], port: options[:port])
+            log_info "shutting down ..."
+          end
+          #
+          # Prints a request or response body.
+          #
+          # @param [IO, StringIO, Array<String>, String] body
+          #   The request/response body to print. May be a IO/StringIO object,
+          #   an Array of Strings, or a String.
+          #
+          def print_body(body)
+            case body
+            when StringIO, IO
+              body.each_line do |line|
+                puts line
+              end
+              body.rewind
+            else
+              puts body
+            end
+          end
+          #
+          # Parses a rewrite rule.
+          #
+          # @param [String] value
+          #
+          # @return [(Regexp, String), (String, String)]
+          #
+          def parse_rewrite_rule(value)
+            if (index = value.rindex('/:'))
+              regexp  = Regexp.new(value[1...index])
+              replace = value[index+2..]
+              return [regexp, replace]
+            elsif (index = value.rindex(':'))
+              string  = value[0...index]
+              replace = value[(index+1)..]
+              return [string, replace]
+            end
+          end
+          #
+          # Rewrites a request or response body.
+          #
+          # @param [IO, StringIO, Array<String>, String] body
+          #
+          # @return [String]
+          #
+          def rewrite_body(body,rules)
+            body = case body
+                   when StringIO, IO then body.read
+                   when Array        then body.join
+                   else                   body.to_s
+                   end
+            rules.each do |(pattern,replace)|
+              body.gsub!(pattern,replace)
+            end
+            return body
+          end
+        end
+      end
+    end
+  end
+end

data/lib/ronin/web/cli/commands/server.rb ADDED Viewed

@@ -0,0 +1,155 @@
+#
+# ronin-web - A collection of useful web helper methods and commands.
+#
+# Copyright (c) 2006-2022 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# ronin-web is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# ronin-web is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with ronin-web.  If not, see <https://www.gnu.org/licenses/>.
+#
+require 'ronin/web/cli/command'
+require 'ronin/core/cli/logging'
+require 'ronin/web/server'
+module Ronin
+  module Web
+    class CLI
+      module Commands
+        #
+        # Starts a web server.
+        #
+        # ## Usage
+        #
+        #     ronin-web server [options]
+        #
+        # ## Options
+        #
+        #    -H, --host HOST                  Host name or IP to bind to (Default: localhost)
+        #    -p, --port PORT                  Port number to listen on (Default: 8000)
+        #    -A, --basic-auth USER:PASSWORD   Sets up Basic-Authentication
+        #    -d, --dir /PATH:DIR              Mounts a directory to the given PATH
+        #    -f, --file /PATH:FILE            Mounts a file to the given PATH
+        #    -r, --root DIR                   Root directory to serve
+        #    -R, --redirect /PATH:URL         Registers a 302 Found redirect at the given PATH
+        #    -h, --help                       Print help information
+        #
+        class Server < Command
+          include Core::CLI::Logging
+          class App < Ronin::Web::Server::Base
+          end
+          option :host, short: '-H',
+                        value: {
+                          type:    String,
+                          usage:   'HOST',
+                          default: 'localhost'
+                        },
+                        desc: 'Host name or IP to bind to' do |host|
+                          App.host = host
+                        end
+          option :port, short: '-p',
+                        value: {
+                          type:    Integer,
+                          usage:   'PORT',
+                          default: App.port
+                        },
+                        desc: 'Port number to listen on' do |port|
+                          App.port = port
+                        end
+          option :basic_auth, short: '-A',
+                              value: {
+                                type: String,
+                                usage: 'USER:PASSWORD'
+                              },
+                              desc: 'Sets up Basic-Authentication' do |str|
+                                auth_user, auth_password = str.split(':',2)
+                                App.basic_auth(auth_user,auth_password)
+                              end
+          option :dir, short: '-d',
+                       value: {
+                         type:  String,
+                         usage: '/PATH:DIR'
+                       },
+                       desc: 'Mounts a directory to the given PATH' do |str|
+                         url_path, dir = str.split(':',2)
+                         App.directory(url_path,dir)
+                       end
+          option :file, short: '-f',
+                        value: {
+                          type: String,
+                          usage: '/PATH:FILE'
+                        },
+                        desc: 'Mounts a file to the given PATH' do |str|
+                          url_path, file = str.split(':',2)
+                          App.file(url_path,file)
+                        end
+          option :root, short: '-r',
+                        value: {
+                          type: String,
+                          usage: 'DIR'
+                        },
+                        desc: 'Root directory to serve'
+          option :redirect, short: '-R',
+                            value: {
+                              type:  String,
+                              usage: '/PATH:URL'
+                            },
+                            desc: 'Registers a 302 Found redirect at the given PATH' do |str|
+                              route, url = str.split(':',2)
+                              App.redirect(route,url)
+                            end
+          description 'Starts a web server'
+          man_page 'ronin-web-server.1'
+          #
+          # Runs the `ronin-web server` command.
+          #
+          def run
+            if options[:root]
+              App.public_dir = options[:root]
+            else
+              App.any('*') do
+                puts "#{request.request_method} #{request.path}"
+                request.headers.each do |name,value|
+                  puts "#{name}: #{value}"
+                end
+                puts request.body.read
+              end
+            end
+            log_info "Starting web server listening on #{App.host}:#{App.port} ..."
+            App.run!
+            log_info "Shutting down ..."
+          end
+        end
+      end
+    end
+  end
+end