ronin v2.0 releases: Ruby platform for vulnerability research and exploit development

ronin

Ronin is a Ruby platform for vulnerability research and exploit development. Ronin allows for the rapid development and distribution of code, Exploits, Payloads, Scanners, etc, via Repositories.

Features

• Supports installing/updating/uninstalling of Repositories.
  • Supports installing Repositories from various media types:
    • Subversion (SVN)
    • Mercurial (Hg)
    • Git
    • Rsync
• Provides a Database using DataMapper with:
  • {Ronin::Author}
  • {Ronin::License}
  • {Ronin::Arch}
  • {Ronin::OS}
  • {Ronin::Software}
  • {Ronin::Vendor}
  • {Ronin::Address}
    • {Ronin::MACAddress}
    • {Ronin::IPAddress}
    • {Ronin::HostName}
  • {Ronin::Port}
    • {Ronin::TCPPort}
    • {Ronin::UDPPort}
  • {Ronin::Service}
  • {Ronin::OpenPort}
  • {Ronin::OSGuess}
  • {Ronin::UserName}
  • {Ronin::URL}
  • {Ronin::EmailAddress}
  • {Ronin::Credential}
    • {Ronin::ServiceCredential}
    • {Ronin::WebCredential}
  • {Ronin::Organization}
  • {Ronin::Campaign}
  • {Ronin::Target}
• Caches exploits, payloads, scanners, etc stored within Repositories into the Database.
• Convenience methods provided by ronin-support.
• Provides a customized Ruby Console using Ripl with:
  • Syntax highlighting.
  • Tab completion.
  • Auto indentation.
  • Pretty Printing (pp).
  • print_info, print_error, print_warning, and print_debug output helper methods with color-output.
  • Inline commands (!nmap -v -sT victim.com)
• Provides an extensible command-line interface.

Console

It provides users with a powerful Ruby Console, pre-loaded with powerful convenience methods. In the Console, one can work with data and automate complex tasks, with greater ease than the command-line.

>> File.read('data').base64_decode

Database

It ships with a preconfigured Database, that one can interact with from Ruby, without having to write any SQL.

>> HostName.tld('eu').urls.with_query_param('id')

Repositories

It provides a Repository system, allowing users to organize and share miscellaneous Data, Code, Exploits, Payloads, Scanners, etc.

$ ronin install git://github.com/user/myexploits.git

Libraries

It provides libraries with additional functionality, such as Exploitation and Scanning:

$ gem install ronin-exploits

Changelog v2.0

• Require ruby >= 3.0.0.
• Require rouge ~> 3.0
• Require async-io ~> 1.0
• Require wordlist ~> 1.0
• Require ronin-support ~> 1.0.0.
• Require ronin-core ~> 0.1.
• Require ronin-repos ~> 0.1.
• Require ronin-db ~> 0.1.
• Require ronin-fuzzer ~> 0.1.
• Require ronin-web ~> 1.0.
• Require ronin-code-asm ~> 1.0.
• Require ronin-code-sql ~> 2.0.
• Require ronin-payloads ~> 0.1.
• Require ronin-exploits ~> 1.0.
• Require ronin-vulns ~> 0.1.
• Added new sub-commands to the ronin command:
  • asn
  • banner-grab
  • bitflip
  • cert-dump
  • cert-gen
  • cert-grab
  • decode, dec
  • decrypt
  • dns
  • email-addr
  • encode, enc
  • encrypt
  • entropy
  • escape
  • extract
  • grep
  • help
  • hexdump
  • highlight
  • hmac
  • homoglyph
  • host
  • http
  • ip
  • iprange
  • irb
  • md5
  • netcat / nc
  • new
  • proxy
  • public-suffix-list
  • quote
  • rot
  • sha1
  • sha256
  • sha512
  • string
  • strings
  • tips
  • tld-list
  • typo
  • typosquat
  • unescape
  • unhexdump
  • unquote
  • url
  • url-edit
  • xor
• ronin help <subcommand> will now display a man page for that sub-command.
• Renamed the ronin console command to ronin irb.
• Moved and refactored all database code out into ronin-db and [ronin-db-activerecord].
• Replaced all repository management related code with ronin-repos.
• Replaced the CLI code with [command_kit] and ronin-core.
• Refactored the ronin gem to only provide a top-level CLI with sub-commands and require the other ronin- gems.

Install

$ gem install ronin

Use

Copyright (c) 2006-2021 Hal Brodigan (postmodern.mod3 at gmail.com)