ronin v2.0 releases: Ruby platform for vulnerability research and exploit development
ronin
Ronin is a Ruby platform for vulnerability research and exploit development. Ronin allows for the rapid development and distribution of code, Exploits, Payloads, Scanners, etc, via Repositories.
Features
- Supports installing/updating/uninstalling of Repositories.
- Supports installing Repositories from various media types:
- Provides a Database using DataMapper with:
- {Ronin::Author}
- {Ronin::License}
- {Ronin::Arch}
- {Ronin::OS}
- {Ronin::Software}
- {Ronin::Vendor}
- {Ronin::Address}
- {Ronin::MACAddress}
- {Ronin::IPAddress}
- {Ronin::HostName}
- {Ronin::Port}
- {Ronin::TCPPort}
- {Ronin::UDPPort}
- {Ronin::Service}
- {Ronin::OpenPort}
- {Ronin::OSGuess}
- {Ronin::UserName}
- {Ronin::URL}
- {Ronin::EmailAddress}
- {Ronin::Credential}
- {Ronin::ServiceCredential}
- {Ronin::WebCredential}
- {Ronin::Organization}
- {Ronin::Campaign}
- {Ronin::Target}
- Caches exploits, payloads, scanners, etc stored within Repositories into the Database.
- Convenience methods provided by ronin-support.
- Provides a customized Ruby Console using Ripl with:
- Syntax highlighting.
- Tab completion.
- Auto indentation.
- Pretty Printing (pp).
- print_info, print_error, print_warning, and print_debug output helper methods with color-output.
- Inline commands (!nmap -v -sT victim.com)
- Provides an extensible command-line interface.
Console
It provides users with a powerful Ruby Console, pre-loaded with powerful convenience methods. In the Console, one can work with data and automate complex tasks, with greater ease than the command-line.
>> File.read('data').base64_decode
Database
It ships with a preconfigured Database, that one can interact with from Ruby, without having to write any SQL.
>> HostName.tld('eu').urls.with_query_param('id')
Repositories
It provides a Repository system, allowing users to organize and share miscellaneous Data, Code, Exploits, Payloads, Scanners, etc.
$ ronin install git://github.com/user/myexploits.git
Libraries
It provides libraries with additional functionality, such as Exploitation and Scanning:
$ gem install ronin-exploits
Changelog v2.0
- Require
ruby
>= 3.0.0. - Require rouge ~> 3.0
- Require async-io ~> 1.0
- Require wordlist ~> 1.0
- Require ronin-support ~> 1.0.0.
- Require ronin-core ~> 0.1.
- Require ronin-repos ~> 0.1.
- Require ronin-db ~> 0.1.
- Require ronin-fuzzer ~> 0.1.
- Require ronin-web ~> 1.0.
- Require ronin-code-asm ~> 1.0.
- Require ronin-code-sql ~> 2.0.
- Require ronin-payloads ~> 0.1.
- Require ronin-exploits ~> 1.0.
- Require ronin-vulns ~> 0.1.
- Added new sub-commands to the
ronin
command:asn
banner-grab
bitflip
cert-dump
cert-gen
cert-grab
decode, dec
decrypt
dns
email-addr
encode, enc
encrypt
entropy
escape
extract
grep
help
hexdump
highlight
hmac
homoglyph
host
http
ip
iprange
irb
md5
netcat
/nc
new
proxy
public-suffix-list
quote
rot
sha1
sha256
sha512
string
strings
tips
tld-list
typo
typosquat
unescape
unhexdump
unquote
url
url-edit
xor
ronin help <subcommand>
will now display a man page for that sub-command.- Renamed the
ronin console
command toronin irb
. - Moved and refactored all database code out into ronin-db and [ronin-db-activerecord].
- Replaced all repository management related code with ronin-repos.
- Replaced the CLI code with [command_kit] and ronin-core.
- Refactored the
ronin
gem to only provide a top-level CLI with sub-commands and require the otherronin-
gems.
Install
$ gem install ronin
Use
Copyright (c) 2006-2021 Hal Brodigan (postmodern.mod3 at gmail.com)