OWASP Kyiv 27-05-2017 chapter meeting talk. Video: https://www.youtube.com/watch?v=QtZy5wvAVAA

1. RUBY FOR PENTESTERS
by Roman Rott

2. RUBY FOR
PENTESTERS
PENTESTING
FOR RUBYISTS
VS

3. RUBY HAS ABILITIES AND TRICKS FOR DEALING WITH ALL STRINGS SCENARIOS
➤ Convert String/Binary to Hex;
➤ Convert Hex to String/Binary;
➤ Encode/Decode String;
➤ Regular Expressions;
➤ String extraction;
➤ Parsing HTML, XML, JSON, etc;
➤ Cryptography libs, MD5, SHA1,2
hash. Generating MySQL/
PostgreSQL, Windows Password
Hashes, etc

4. TOOLS
http://ronin-ruby.github.io/
Ronin
Ronin is a Ruby platform for
vulnerability research and
exploit development.
Ronin allows for the rapid
development and distribution
of code, Exploits, Payloads,
Scanners, etc, via Repositories.

5. TOOLS
https://wpscan.org/
WPScan
WordPress vulnerability
scanner.

6. TOOLS
https://www.morningstarsecurity.com/research/whatweb
WhatWeb
Recognizes web technologies
including CMS,
blogging platforms,
statistic/analytics packages,
JavaScript libraries,
web servers, etc

7. TOOLS
https://github.com/rubysec/bundler-audit
bundle-audit
Patch-level verification for
Bundler

8. TOOLS
https://github.com/presidentbeef/brakeman
brakeman
Static analysis tool which
checks Ruby on Rails
applications for security
vulnerabilities.

9. FRAMEWORKS
http://www.arachni-scanner.com/
Arachni
Ruby framework aimed towards helping
penetration testers and administrators
evaluate the security of modern
web applications.

10. FRAMEWORKS
BeEF
http://beefproject.com/
The Browser Exploitation
Framework.
It is a penetration testing tool
that focuses on the web browser.

11. FRAMEWORKS
Metasploit

12. HELPERS
https://github.com/iridakos/duckrails
DuckRails
Allows to quickly mock API endpoints,
Setting response headers,
Setting some advanced configuration (delays,
dynamic headers, content type & status), etc.

13. HELPERS
➤ Oga - XML/HTML parser - https://github.com/YorickPeterse/oga
➤ html-pipeline - GitHub HTML processing filters and utilities. This module includes a
small framework for defining DOM based content filters and applying them to user
provided content. - https://github.com/jch/html-pipeline
➤ Happymapper allows you to parse XML data and convert it quickly and easily into
ruby data structures. - https://github.com/dam5s/happymapper
➤ nokogiri - is a Rubygem providing HTML, XML, SAX, and Reader parsers with
XPath and CSS selector support. - https://github.com/sparklemotion/nokogiri

14. BROWSER MANIPULATION
Selenium
Watir
webdrivers

15. AUTOMATIZATION
https://github.com/sophsec/ruby-nmap
ruby-nmap

16. AUTOMATIZATION
➤ net-ping gem
➤ ruby-nmap gem
➤ etc.

17. AUTOMATIZATION
Puppet
https://puppet.com/
Chef
Vagrant
https://www.chef.io/chef/
https://www.vagrantup.com/
Docker
https://www.docker.com/
+

18. COMMAND EXECUTION
➤ Kernel#` (back-ticks)
➤ Kernel#exec
➤ Kernel#system
➤ IO#popen
➤ Process#spawn
➤ %x"", %x[], %x{}, %x$’'$
➤ Rake#sh

19. PACKAGING
➤ One-Click Ruby
Application(OCRA) Builder
➤ Traveling-ruby
➤ RubyEncoder

20. EXTEND BURP SUITE USING JRUBY
Jruby
JRuby is a fully threaded
Java implementation of the Ruby

21. The end.