ronin 2.0.5 → 2.1.0.rc1

data/data/templates/dns_proxy.rb.erb

@@ -0,0 +1,35 @@
+#!/usr/bin/env ruby
+
+require 'ronin/dns/proxy'
+
+Ronin::DNS::Proxy.run(<%= @host.inspect %>, <%= @port.inspect %>) do |server|
+  # server.add_rule :A, 'example.com', '10.0.0.1'
+  # server.add_rule :AAAA, 'example.com', 'dead:beef::1'
+
+  # return multiple values:
+  #
+  # server.add_rule :A, 'ftp.example.com', ['10.0.0.42', '10.0.0.43']
+
+  # match a query using a regex:
+  #
+  # server.add_rule :TXT, /^spf\./, "v=spf1 include:10.0.0.1 ~all"
+
+  # return an error for a valid hostname:
+  #
+  # server.add_rule :A, 'updates.example.com', :ServFail
+
+  # define a dynamic rule:
+  #
+  # server.add_rule :CNAME, /^www\./, do |type,name,transaction|
+  #   # append '.hax' to the domain name
+  #   names = name.split('.').push('hax')
+  #
+  #   transaction.respond!(names)
+  # end
+
+  # return MX records:
+  #
+  # server.add_rule :MX, 'example.com', do |type,name,transaction|
+  #   transaction.respond!(10, Resolv::DNS::Name.create('email.evil.com' ))
+  # end
+end

data/gemspec.yml

@@ -2,12 +2,12 @@ name: ronin
 summary: A Ruby toolkit for security research and development.
 description:
   Ronin is a free and Open Source Ruby toolkit for security research and
-  development.Ronin contains many different CLI commands and Ruby libraries for
+  development. Ronin contains many different CLI commands and Ruby libraries for
   a variety of security tasks, such as encoding/decoding data, filter
   IPs/hosts/URLs, querying ASNs, querying DNS, HTTP, scanning for web
   vulnerabilities, spidering websites, install 3rd party repositories of
   exploits and/or payloads, run exploits, generating new exploits, managing
-  local databases, fuzzing data, and much more.
+  local databases, fuzzing data, perform recon, and much more.
 
 license: GPL-3.0
 authors: Postmodern
@@ -37,16 +37,20 @@ metadata:
   rubygems_mfa_required: 'true'
 
 generated_files:
+ - data/completions/ronin
  - man/ronin.1
  - man/ronin-asn.1
  - man/ronin-banner-grab.1
  - man/ronin-bitflip.1
+ - man/ronin-bitsquat.1
  - man/ronin-cert-dump.1
  - man/ronin-cert-gen.1
  - man/ronin-cert-grab.1
+ - man/ronin-completion.1
  - man/ronin-decode.1
  - man/ronin-decrypt.1
  - man/ronin-dns.1
+ - man/ronin-dns-proxy.1
  - man/ronin-email-addr.1
  - man/ronin-encrypt.1
  - man/ronin-encode.1
@@ -67,8 +71,10 @@ generated_files:
  - man/ronin-md5.1
  - man/ronin-netcat.1
  - man/ronin-new.1
+ - man/ronin-new-dns-proxy.1
  - man/ronin-new-project.1
  - man/ronin-new-script.1
+ - man/ronin-pack.1
  - man/ronin-proxy.1
  - man/ronin-public-suffix-list.1
  - man/ronin-quote.1
@@ -83,30 +89,38 @@ generated_files:
  - man/ronin-typosquat.1
  - man/ronin-unescape.1
  - man/ronin-unhexdump.1
+ - man/ronin-unpack.1
  - man/ronin-unquote.1
  - man/ronin-url.1
  - man/ronin-xor.1
 
-required_ruby_version: ">= 3.0.0"
+required_ruby_version: ">= 3.1.0"
 
 dependencies:
   # Library dependencies:
   open_namespace: ~> 0.4
   rouge: ~> 3.0
   async-io: ~> 1.0
-  wordlist: ~> 1.0, >= 1.0.3
+  wordlist: ~> 1.1
   # Ronin dependencies:
-  ronin-support: ~> 1.0, >= 1.0.3
-  ronin-core: ~> 0.1, >= 0.1.2
-  ronin-repos: ~> 0.1
-  ronin-db: ~> 0.1
-  ronin-fuzzer: ~> 0.1
-  ronin-web: ~> 1.0, >= 1.0.1
+  ronin-support: ~> 1.1.0.rc1
+  ronin-dns-proxy: ~> 0.1.0.rc1
+  ronin-core: ~> 0.2.0.rc1
+  ronin-repos: ~> 0.2.0.rc1
+  ronin-wordlists: ~> 0.1.0.rc1
+  ronin-db: ~> 0.2.0.rc1
+  ronin-listener: ~> 0.1.0.rc1
+  ronin-nmap: ~> 0.1.0.rc1
+  ronin-masscan: ~> 0.1.0.rc1
+  ronin-recon: ~> 0.1.0.rc1
+  ronin-fuzzer: ~> 0.2.0.rc1
+  ronin-web: ~> 2.0.0.rc1
   ronin-code-asm: ~> 1.0
   ronin-code-sql: ~> 2.0
-  ronin-payloads: ~> 0.1, >= 0.1.1
-  ronin-exploits: ~> 1.0, >= 1.0.1
-  ronin-vulns: ~> 0.1, >= 0.1.2
+  ronin-payloads: ~> 0.2.0.rc1
+  ronin-exploits: ~> 1.1.0.rc1
+  ronin-vulns: ~> 0.2.0.rc1
+  ronin-app: ~> 0.1.0.rc1
 
 development_dependencies:
   bundler: ~> 2.0

data/lib/ronin/cli/binary_template.rb

@@ -0,0 +1,124 @@
+# frozen_string_literal: true
+#
+# Copyright (c) 2006-2023 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# Ronin is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# Ronin is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with Ronin.  If not, see <https://www.gnu.org/licenses/>.
+#
+
+require 'ronin/support/binary/template'
+
+module Ronin
+  class CLI
+    #
+    # Module for commands that uses [Ronin::Support::Binary::Template].
+    #
+    # [Ronin::Support::Binary::Template]: https://ronin-rb.dev/docs/ronin-support/Ronin/Support/Binary/Template.html
+    #
+    # @since 2.1.0
+    #
+    module BinaryTemplate
+      #
+      # Adds the `--endian`, `--arch`, and `--os` options to the command
+      # class including {BinaryTemplate}.
+      #
+      # @param [Class<Command>] command
+      #   The command class including {BinaryTemplate}.
+      #
+      def self.included(command)
+        command.option :endian, short: '-E',
+                                value: {
+                                  type: [:little, :big, :net]
+                                },
+                                desc: 'Sets the endianness'
+
+        command.option :arch, short: '-A',
+                              value: {
+                                type: [
+                                  :x86, :x86_64,
+                                  :ppc, :ppc64,
+                                  :mips, :mips_le, :mips_be,
+                                  :mips64, :mips64_le, :mips64_be,
+                                  :arm, :arm_le, :arm_be,
+                                  :arm64, :arm64_le, :arm64_be
+                                ]
+                              },
+                              desc: 'Sets the architecture'
+
+        command.option :os, short: '-O',
+                            value: {
+                              type: [
+                                :linux,
+                                :macos,
+                                :windows,
+                                :android,
+                                :apple_ios,
+                                :bsd,
+                                :freebsd,
+                                :openbsd,
+                                :netbsd
+                              ]
+                            },
+                            desc: 'Sets the OS'
+      end
+
+      #
+      # Parses a type string.
+      #
+      # @param [String] string
+      #   The raw type signature to parse.
+      #
+      # @return [Symbol, (Symbol, Integer)]
+      #   The parsed type signature.
+      #
+      def parse_type(string)
+        unless (match = string.match(/\A(?<type>[a-z0-9_]+)(?:\[(?<array_size>\d*)\])?\z/))
+          print_error "invalid type: #{string}"
+          exit(-1)
+        end
+
+        type       = match[:type].to_sym
+        array_size = match[:array_size]
+
+        if array_size && array_size.empty?
+          # unbounded array
+          type = (type..)
+        elsif array_size
+          # sized array
+          type = [type, array_size.to_i]
+        end
+
+        return type
+      end
+
+      #
+      # Builds a binary template for the given types and for the optional
+      # `--endian`, `--arch`, and `--os` options.
+      #
+      # @param [Array<Symbol, (Symbol, Integer)>] types
+      #   The types for each field in the binary template.
+      #
+      # @return [Ronin::Support::Binary::Template]
+      #   The binary template.
+      #
+      def build_template(types)
+        Support::Binary::Template.new(types, endian: options[:endian],
+                                             arch:   options[:arch],
+                                             os:     options[:os])
+      rescue ArgumentError => error
+        print_error(error.message)
+        exit(1)
+      end
+    end
+  end
+end

data/lib/ronin/cli/commands/archive.rb

@@ -0,0 +1,104 @@
+# frozen_string_literal: true
+#
+# Copyright (c) 2006-2024 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# Ronin is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# Ronin is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with Ronin.  If not, see <https://www.gnu.org/licenses/>.
+#
+
+require 'ronin/cli/file_processor_command'
+require 'ronin/support/archive'
+
+module Ronin
+  class CLI
+    module Commands
+      #
+      # Archive the files.
+      #
+      # ## Usage
+      #
+      #     ronin archive [option] [FILE ...]
+      #
+      # ## Options
+      #
+      #     -f, --format tar|zip             Archive format
+      #     -o, --output PATH                Archived file path
+      #
+      # ## Arguments
+      #
+      #     FILE ...                         Optional file(s) to archive
+      #
+      # @since 2.1.0
+      #
+      class Archive < FileProcessorCommand
+
+        usage '[options] [FILE ...]'
+
+        option :format, short: '-f',
+                        value: {
+                          type: [:tar, :zip]
+                        },
+                        desc: 'Archive format'
+
+        option :output, short: '-o',
+                        value: {
+                          type: String,
+                          usage: 'PATH'
+                        },
+                        desc: 'Archived file path'
+
+        description 'Archive the data'
+
+        man_page 'ronin-archive.1'
+
+        # Mapping of archive file extensions and their formats.
+        ARCHIVE_FORMATS = {
+          '.tar' => :tar,
+          '.zip' => :zip
+        }
+
+        #
+        # Runs the `archive` sub-command.
+        #
+        # @param [Array<String>] files
+        #   File arguments.
+        #
+        def run(*files)
+          unless (output = options[:output])
+            print_error "must specify the --output option"
+            exit(-1)
+          end
+
+          format = options.fetch(:format) do
+                     ARCHIVE_FORMATS.fetch(File.extname(output)) do
+                       print_error "must either specify --format or a .tar or .zip output file"
+                       exit(1)
+                     end
+                   end
+
+          unless files.empty?
+            Ronin::Support::Archive.send(format,output) do |archive|
+              files.each do |file|
+                archive.add_file(file) do |io|
+                  File.open(file, 'rb') do |opened_file|
+                    io.write(opened_file.readpartial(4096)) until opened_file.eof?
+                  end
+                end
+              end
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/ronin/cli/commands/banner_grab.rb

@@ -45,6 +45,8 @@ module Ronin
 
         include HostAndPort
 
+        command_name 'banner-grab'
+
         usage '[options] {HOST:PORT} ...'
 
         option :with_host_port, desc: 'Print the service with the banner'

data/lib/ronin/cli/commands/bitflip.rb

@@ -18,7 +18,7 @@
 
 require 'ronin/cli/value_processor_command'
 require 'ronin/cli/char_set_options'
-require 'ronin/support/binary/core_ext/string'
+require 'ronin/support/binary/bit_flip/core_ext/string'
 require 'ronin/support/encoding/hex'
 
 require 'chars'

data/lib/ronin/cli/commands/bitsquat.rb

@@ -0,0 +1,119 @@
+# frozen_string_literal: true
+#
+# Copyright (c) 2006-2023 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# Ronin is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# Ronin is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with Ronin.  If not, see <https://www.gnu.org/licenses/>.
+#
+
+require 'ronin/cli/value_processor_command'
+
+require 'ronin/support/binary/bit_flip/core_ext/string'
+require 'ronin/support/text/patterns/network'
+require 'ronin/support/network/host'
+
+module Ronin
+  class CLI
+    module Commands
+      #
+      # Finds bit-flips of a domain.
+      #
+      # ## Usage
+      #
+      #     ronin bitsquat [options] [DOMAIN ...]
+      #
+      # ## Options
+      #
+      #     -f, --file FILE                  Optional file to read values from
+      #         --has-addresses              Print bitsquat domains with addresses
+      #         --registered                 Print bitsquat domains that are already registered
+      #         --unregistered               Print bitsquat domains that can be registered
+      #     -h, --help                       Print help information
+      #
+      # ## Arguments
+      #
+      #     [DOMAIN ...]                     The domain to bit-flip
+      #
+      class Bitsquat < ValueProcessorCommand
+
+        usage '[options] [DOMAIN ...]'
+
+        option :has_addresses, desc: 'Print bitsquat domains with addresses'
+
+        option :registered, desc: 'Print bitsquat domains that are already registered'
+
+        option :unregistered, desc: 'Print bitsquat domains that can be registered'
+
+        argument :domain, required: false,
+                          repeats:  true,
+                          desc:     'The domain to bit-flip'
+
+        description "Finds bit-flips of a domain"
+
+        man_page 'ronin-bitsquat.1'
+
+        # Regular expression for a valid host name.
+        VALID_HOST_NAME = /\A#{Support::Text::Patterns::HOST_NAME}\z/
+
+        #
+        # Queries the bit-flips of a domain.
+        #
+        # @param [String] domain
+        #   The string to bit-flip and query.
+        #
+        def process_value(domain)
+          if options[:has_addresses]
+            each_bit_squat(domain) do |host|
+              puts host if host.has_addresses?
+            end
+          elsif options[:registered]
+            each_bit_squat(domain) do |host|
+              puts host if host.registered?
+            end
+          elsif options[:unregistered]
+            each_bit_squat(domain) do |host|
+              puts host if host.unregistered?
+            end
+          else
+            each_bit_squat(domain) do |host|
+              puts host
+            end
+          end
+        end
+
+        #
+        # Enumerates over each bitsquat of the domain.
+        #
+        # @param [String] domain
+        #   The domain to check for bitsquats.
+        #
+        # @yield [bitsquat_host]
+        #   The given block will be passed each bitsquatted domain variant.
+        #
+        # @yieldparam [Ronin::Support::Network::Host] bitsquat_host
+        #   A host object for the bitsquatted domain variant.
+        #
+        def each_bit_squat(domain)
+          domain.each_bit_flip do |bit_flipped|
+            bit_flipped.force_encoding(Encoding::UTF_8)
+
+            if bit_flipped.valid_encoding? && bit_flipped =~ VALID_HOST_NAME
+              yield Support::Network::Host.new(bit_flipped)
+            end
+          end
+        end
+
+      end
+    end
+  end
+end

data/lib/ronin/cli/commands/cert_dump.rb

@@ -19,7 +19,7 @@
 require 'ronin/cli/value_processor_command'
 require 'ronin/cli/host_and_port'
 require 'ronin/support/crypto/cert'
-require 'ronin/support/network/ssl/mixin'
+require 'ronin/support/network/ssl'
 
 require 'command_kit/printing/indent'
 require 'command_kit/printing/fields'
@@ -59,12 +59,13 @@ module Ronin
       #
       class CertDump < ValueProcessorCommand
 
-        include Support::Network::SSL::Mixin
         include CommandKit::Printing::Indent
         include CommandKit::Printing::Fields
         include CommandKit::Printing::Lists
         include HostAndPort
 
+        command_name 'cert-dump'
+
         usage '[options] {HOST:PORT | URL | FILE} ...'
 
         option :common_name, short: '-C',
@@ -104,11 +105,11 @@ module Ronin
           when /\A[^:]+:\d+\z/
             host, port = host_and_port(value)
 
-            print_cert(ssl_cert(host,port))
+            grab_cert(host,port)
           when /\Ahttps:/
             host, port = host_and_port_from_url(value)
 
-            print_cert(ssl_cert(host,port))
+            grab_cert(host,port)
           else
             unless File.file?(value)
               print_error "no such file or directory: #{value}"
@@ -121,6 +122,21 @@ module Ronin
           end
         end
 
+        #
+        # Gets the certs from the host and port, and then print it.
+        #
+        # @param [String] host
+        #
+        # @param [Integer] port
+        #
+        # @since 2.1.0
+        #
+        def grab_cert(host,port)
+          cert = Support::Network::SSL.get_cert(host,port)
+
+          print_cert(cert)
+        end
+
         #
         # Prints the certificate.
         #

data/lib/ronin/cli/commands/cert_gen.rb

@@ -18,7 +18,9 @@
 
 require 'ronin/cli/command'
 require 'ronin/support/crypto/cert'
+require 'ronin/support/crypto/key'
 require 'ronin/support/crypto/key/rsa'
+require 'ronin/support/crypto/key/dsa'
 require 'ronin/support/crypto/key/ec'
 require 'ronin/support/text/patterns'
 
@@ -47,7 +49,7 @@ module Ronin
       #     -L, --locality NAME              The locality for the certificate
       #     -S, --state XX                   The two-letter State (ST) code for the certificate
       #     -C, --country XX                 The two-letter Country (C) code for the certificate
-      #     -t, --key-type rsa|ec            The signing key type
+      #     -t, --key-type rsa|dsa|ec        The signing key type
       #         --generate-key PATH          Generates and saves a random key (Default: key.pem)
       #     -k, --key-file FILE              Loads the signing key from the FILE
       #     -H sha256|sha1|md5,              The hash algorithm to use for signing (Default: sha256)
@@ -70,6 +72,8 @@ module Ronin
 
         include Core::CLI::Logging
 
+        command_name 'cert-gen'
+
         option :version, value: {
                            type:    Integer,
                            usage:   'NUM',
@@ -149,7 +153,7 @@ module Ronin
 
         option :key_type, short: '-t',
                           value: {
-                            type: [:rsa, :ec]
+                            type: [:rsa, :dsa, :ec]
                           },
                           desc: 'The signing key type'
 
@@ -245,6 +249,7 @@ module Ronin
               state:               options[:state],
               country:             options[:country]
             },
+            ca:         options[:ca],
             extensions: extensions
           )
 
@@ -287,11 +292,13 @@ module Ronin
         # The `--key-type` key class.
         #
         # @return [Class<Ronin::Support::Key::RSA>,
+        #          Class<Ronin::Support::Key::DSA>,
         #          Class<Ronin::Support::Key::EC>, nil]
         #
         def key_class
           case options[:key_type]
           when :rsa then Support::Crypto::Key::RSA
+          when :dsa then Support::Crypto::Key::DSA
           when :ec  then Support::Crypto::Key::EC
           end
         end
@@ -348,10 +355,6 @@ module Ronin
         def extensions
           exts = {}
 
-          if (ext = basic_constraints_ext)
-            exts['basicConstraints'] = ext
-          end
-
           if (ext = subject_alt_name_ext)
             exts['subjectAltName'] = ext
           end
@@ -359,19 +362,6 @@ module Ronin
           exts unless exts.empty?
         end
 
-        #
-        # Builds the `basicConstraints` extension.
-        #
-        # @return [(String, Boolean), nil]
-        #
-        def basic_constraints_ext
-          if options[:ca]
-            ['CA:TRUE', true]
-          elsif options[:ca_key] || options[:ca_cert]
-            ['CA:FALSE', true]
-          end
-        end
-
         IP_REGEXP = Support::Text::Patterns::IP
 
         #

data/lib/ronin/cli/commands/cert_grab.rb

@@ -18,7 +18,7 @@
 
 require 'ronin/cli/value_processor_command'
 require 'ronin/cli/host_and_port'
-require 'ronin/support/network/ssl/mixin'
+require 'ronin/support/network/ssl'
 
 require 'uri'
 
@@ -51,7 +51,8 @@ module Ronin
       class CertGrab < ValueProcessorCommand
 
         include HostAndPort
-        include Support::Network::SSL::Mixin
+
+        command_name 'cert-grab'
 
         usage '[options] {HOST:PORT | URL} ...'
 
@@ -116,7 +117,7 @@ module Ronin
         #   The port to connect to.
         #
         def grab_cert(host,port)
-          cert = ssl_cert(host,port)
+          cert = Support::Network::SSL.get_cert(host,port)
 
           cert.save(cert_file_for(host,port))
         end