ronin: Ruby platform for vulnerability research and exploit development

by ddos ·

ronin

Ronin is a free and Open Source Ruby toolkit for security research and development. Ronin contains many different CLI commands and Ruby libraries for a variety of security tasks, such as encoding/decoding data, filter IPs/hosts/URLs, querying ASNs, querying DNS, HTTP, scanning for web vulnerabilitiesspidering websitesinstalling 3rd-party repositories of exploits and/or payloadsrunning exploitsdeveloping new exploitsmanaging local databasesfuzzing dataperforming recon, and much more.

Who is Ronin for?

 

  • CTF players
  • Bug bounty hunters
  • Security Researchers
  • Security Engineers
  • Developers
  • Students

What does Ronin provide?

 

  • A toolkit of useful commands.
  • A fully-loaded Ruby REPL.
  • An ecosystem of high-quality security related Ruby libraries, APIs, and commands.
  • A lightweight local web UI.

What can you do with Ronin?

 

  • Quickly process and query various data using the ronin commands.
  • Efficiently work with code and data in the ronin irb Ruby REPL.
  • Rapidly prototype Ruby scripts using ronin-support and other ronin libraries.
  • Install 3rd-party git repositories of exploits, payloads, or other code, using ronin-repos.
  • Import and query data using the ronin-db database.
  • Fuzz data using ronin-fuzzer.
  • Perform recon using ronin-recon.
  • Use common payloads or write your own using ronin-payloads.
  • Write/run exploits using ronin-exploits.
  • Scan for web vulnerabilities using ronin-vulns.
  • Performs scans and browse the database in your browser using ronin-app.

Install

$ gem install ronin

Use

Copyright (c) 2006-2021 Hal Brodigan (postmodern.mod3 at gmail.com)

Tags: Ruby exploit development