ronin-rb ronin-vulns issues

ronin-rb / ronin-vulns

Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.

https://ronin-rb.dev

GNU Lesser General Public License v3.0

68 stars 16 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Release 0.3.0

#90 postmodern opened 3 months ago
0
Add a `URI::HTTP#vulns/has_vulns?` core-ext methods

#89 AI-Mozi closed 3 months ago
1
Release 0.2.1

#88 postmodern opened 3 months ago
0
Switch to using `require_relative` for local files

#87 postmodern closed 3 months ago
0
Add `Ronin::Vulns::XXE`

#86 postmodern opened 4 months ago
0
Add a `URI::HTTP#vulns` and `#has_vulns?` core-ext methods

#85 postmodern closed 3 months ago
3
Release 0.2.0-rc1

#83 postmodern closed 5 months ago
0
Release 0.2.0

#82 postmodern closed 4 months ago
0
Add support for testing SSRFs

#81 postmodern opened 5 months ago
0
Add support for testing JSON payloads

#80 postmodern opened 5 months ago
0
Test for when an open redirect has a `http://` or `https://` prefix always added to the injected URL

#79 postmodern opened 6 months ago
0
Test for `...@example.com/...`, `http://example.com/?...`, and `http://example.com/#` URLs in `OpenRedirect`

#78 postmodern opened 6 months ago
0
Improve `OpenRedirect#vulnerable?` regexs to detect when an additional string is appended to the test URL

#77 postmodern closed 6 months ago
1
Release 0.1.5

#76 postmodern closed 5 months ago
0
Enhance `meta` redirect regex in `Ronin::Vulns::OpenRedirect` to match when additional data is appended to the URL

#75 postmodern closed 6 months ago
1
Fix `meta` redirect regexp in `Ronin::Vulns::OpenRedirect`

#74 postmodern closed 6 months ago
2
Use `.each_value` instead of `.each`

#73 AI-Mozi closed 6 months ago
0
Add `--test-all-form-params` option

#72 AI-Mozi closed 6 months ago
1
Add support for testing for `$(...)` command injection

#71 postmodern opened 7 months ago
0
Refactor `Ronin::Vulns::CLI::Logging` to be `Ronin::Vulns::CLI::Printing`

#70 postmodern closed 7 months ago
1
Add a `WebVuln.test_param` method

#69 postmodern closed 7 months ago
1
Add missing `ronin-vulns irb` command

#68 postmodern closed 11 months ago
1
Add shell completions for `ronin-vulns`

#67 postmodern closed 11 months ago
1
Add missing `man/ronin-vulns.1.md` man page file

#66 postmodern closed 11 months ago
1
Add `NAME` sections to all man pages

#65 postmodern closed 12 months ago
1
Update to kramdown-man 1.0.0

#64 postmodern closed 12 months ago
1
Add a `Ronin::Vulns::CLI::Importable` module

#63 postmodern closed 1 year ago
1
Probably handle when `Ronin::Vulns::RFI.scan` is given a URL with no path extension

#62 postmodern closed 1 year ago
1
Add missing `--test-all-form-params` option

#61 postmodern closed 6 months ago
1
Add missing `--request-method` option to `Ronin::Vulns::CLI::WebVulnCommand`

#60 postmodern closed 1 year ago
1
Fix typo in documentation

#59 AI-Mozi closed 1 year ago
0
Add an `--import` option to `Ronin::Vulns::CLI::WebVulnCommand`

#58 postmodern closed 1 year ago
1
Add `Ronin::Vulns::Importer`

#57 postmodern closed 1 year ago
1
Add `ronin-db` as a dependency

#56 postmodern closed 1 year ago
1
Change `Ronin::Vulns::SSTI::ESCAPES` to be a `Hash`

#55 postmodern closed 1 year ago
5
Add missing spec for `CLI::WebVulnCommand#log_vuln`

#54 postmodern closed 6 months ago
1
Add `--user-agent` and `--user-agent-string` options to `WebVulnCommand`

#53 postmodern closed 1 year ago
1
Add `WebVuln#user_agent` and a `user_agent:` keyword argument to `WebVuln`

#52 postmodern closed 1 year ago
1
Add a `--print-http` option to `CLI::WebVulnCommand`

#51 postmodern closed 1 year ago
1
Add a `--print-curl` option to `CLI::WebVulnCommand`

#50 postmodern closed 1 year ago
1
Improve performance of `ronin-vulns` commands by only creating `scan_kwargs` once

#49 postmodern closed 1 year ago
0
Release 0.1.4

#48 postmodern closed 1 year ago
0
Allow `--cookie-param NAME=VALUE` and `--cookie "..."` to be used together

#47 postmodern closed 1 year ago
1
Allow `--cookie "..."` to be repeated multiple times

#46 postmodern closed 1 year ago
1
Add additional SQLi sleep tests

#45 mohghezal opened 1 year ago
4
Release 0.1.3

#44 postmodern closed 1 year ago
1
Detect XSS inside or after HTML comments

#43 quadule closed 1 year ago
4
Add a `ronin-vulns command-injection` command

#42 postmodern closed 1 year ago
1
Add `Ronin::Vulns::CommandInjection`

#41 postmodern closed 1 year ago
2
Add `Ronin::Vulns::SSRF`

#40 postmodern opened 1 year ago
0