From 4b9708c276bc8911c93b1713887be139242a5ddb Mon Sep 17 00:00:00 2001 From: AI-Mozi Date: Mon, 25 Nov 2024 08:51:16 +0100 Subject: [PATCH] Add `ronin defang` command --- README.md | 8 +++ gemspec.yml | 1 + lib/ronin/cli/commands/defang.rb | 84 ++++++++++++++++++++++++++++++++ man/ronin-defang.1.md | 59 ++++++++++++++++++++++ spec/cli/commands/defang_spec.rb | 42 ++++++++++++++++ spec/cli/commands/refang_spec.rb | 2 +- 6 files changed, 195 insertions(+), 1 deletion(-) create mode 100644 lib/ronin/cli/commands/defang.rb create mode 100644 man/ronin-defang.1.md create mode 100644 spec/cli/commands/defang_spec.rb diff --git a/README.md b/README.md index 820d85d9a..d62100895 100644 --- a/README.md +++ b/README.md @@ -110,6 +110,7 @@ Commands: public-suffix-list quote refang + defang rot sha1 sha256 @@ -508,6 +509,13 @@ $ ronin refang hxxps://www[.]evil[.]com/foo/bar/baz https://www.evil.com/foo/bar/baz ``` +De-fangs a URL: + +```shell +$ ronin defang https://www.evil.com/foo/bar/baz +hxxps://www[.]evil[.]com/foo/bar/baz +``` + Query the ASN of an IP address: ```shell diff --git a/gemspec.yml b/gemspec.yml index 191ff9002..c0ab1ea58 100644 --- a/gemspec.yml +++ b/gemspec.yml @@ -79,6 +79,7 @@ generated_files: - man/ronin-public-suffix-list.1 - man/ronin-quote.1 - man/ronin-refang.1 + - man/ronin-defang.1 - man/ronin-rot.1 - man/ronin-sha1.1 - man/ronin-sha256.1 diff --git a/lib/ronin/cli/commands/defang.rb b/lib/ronin/cli/commands/defang.rb new file mode 100644 index 000000000..bc3271230 --- /dev/null +++ b/lib/ronin/cli/commands/defang.rb @@ -0,0 +1,84 @@ +# frozen_string_literal: true +# +# Copyright (c) 2006-2023 Hal Brodigan (postmodern.mod3 at gmail.com) +# +# Ronin is free software: you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation, either version 3 of the License, or +# (at your option) any later version. +# +# Ronin is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with Ronin. If not, see . +# + +require_relative '../value_processor_command' + +require 'ronin/support/network/defang' + +module Ronin + class CLI + module Commands + # + # De-fangs a URL, hostname, or IP address. + # + # ## Usage + # + # ronin defang [options] [{URL | HOST | IP} ...] + # + # ## Options + # + # -f, --file FILE Optional file to read values from + # -h, --help Print help information + # + # ## Arguments + # + # [URL | HOST | IP ...] A URL, hostname, or IP address + # + # ## Examples + # + # ronin defang https://www.evil.com/foo/bar/baz + # ronin defang www.example.com + # ronin defang 192.168.1.1 + # ronin defang --file urls.txt + # + # @since 2.2.0 + # + class Defang < ValueProcessorCommand + + usage '[options] [{URL | HOST | IP} ...]' + + argument :value, required: false, + repeats: true, + usage: 'URL | HOST | IP', + desc: 'A refanged URL, hostname, or IP address' + + examples [ + 'https://www.evil.com/foo/bar/baz', + 'www.example.com', + '192.168.1.1', + '--file urls.txt' + ] + + description 'Defangs a URLs, hostnames, or IP addresses' + + man_page 'ronin-defang.1' + + # + # Defangs a URL, hostname, or IP address. + # + # @param [String] value + # The value to defang. + # + def process_value(value) + puts Support::Network::Defang.defang(value) + end + + end + end + end +end diff --git a/man/ronin-defang.1.md b/man/ronin-defang.1.md new file mode 100644 index 000000000..f9370e6d6 --- /dev/null +++ b/man/ronin-defang.1.md @@ -0,0 +1,59 @@ +# ronin-defang 1 "2025-01-01" Ronin "User Manuals" + +## NAME + +ronin-defang - Defangs a URLs, hostnames, or IP addresses + +## SYNOPSIS + +`ronin defang` [*options*] [{*URL* \| *HOST* \| *IP*} ...] + +## DESCRIPTION + +De-fangs URL(s), hostname(s), or IP address(es). + +## ARGUMENTS + +*URL* +: A URL argument to defang + (ex: `https://www.evil.com/foo/bar/baz`). + +*HOST* +: A hostname argument to defang (ex: `www.example.com`). + +*IP* +: A IP address argument to defang (ex: `192.168.1.1`). + +## OPTIONS + +`-f`, `--file` *FILE* +: The optional file to read values from. + +`-h`, `--help` +: Print help information. + +## EXAMPLES + +De-fangs a URL: + + ronin defang https://www.evil.com/foo/bar/baz + +De-fangs a hostname: + + ronin defang www.example.com + +De-fangs a IP address: + + ronin defang 192.168.1.1 + +De-fangs a file of URLs, hostnames, or IP addresses: + + ronin defang --file urls.txt + +## AUTHOR + +Postmodern + +## SEE ALSO + +[ronin-refang](ronin-refang.1.md) diff --git a/spec/cli/commands/defang_spec.rb b/spec/cli/commands/defang_spec.rb new file mode 100644 index 000000000..54e5a2b14 --- /dev/null +++ b/spec/cli/commands/defang_spec.rb @@ -0,0 +1,42 @@ +require 'spec_helper' +require 'ronin/cli/commands/defang' +require_relative 'man_page_example' + +describe Ronin::CLI::Commands::Defang do + include_examples "man_page" + + describe "#process_value" do + context "when given a refanged URL value" do + let(:refanged) { 'https://www.evil.com/foo/bar/baz' } + let(:defanged) { 'hxxps[://]www[.]evil[.]com/foo/bar/baz' } + + it "must print the de-fanged URL" do + expect { + subject.process_value(refanged) + }.to output("#{defanged}#{$/}").to_stdout + end + end + + context "when given a refanged hostname value" do + let(:refanged) { 'www.example.com' } + let(:defanged) { 'www[.]example[.]com' } + + it "must print the de-fanged hostname" do + expect { + subject.process_value(refanged) + }.to output("#{defanged}#{$/}").to_stdout + end + end + + context "when given a refanged IP address value" do + let(:refanged) { '192.168.1.1' } + let(:defanged) { '192[.]168[.]1[.]1' } + + it "must print the de-fanged IP address" do + expect { + subject.process_value(refanged) + }.to output("#{defanged}#{$/}").to_stdout + end + end + end +end diff --git a/spec/cli/commands/refang_spec.rb b/spec/cli/commands/refang_spec.rb index 7d3f3bc1f..d234a131b 100644 --- a/spec/cli/commands/refang_spec.rb +++ b/spec/cli/commands/refang_spec.rb @@ -7,7 +7,7 @@ describe "#process_value" do context "when given a defanged URL value" do - let(:defanged) { 'hxxps://www[.]evil[.]com/foo/bar/baz' } + let(:defanged) { 'hxxps[://]www[.]evil[.]com/foo/bar/baz' } let(:refanged) { 'https://www.evil.com/foo/bar/baz' } it "must print the re-fanged URL" do