Class: String

Inherits:

Object

• Object
• String

Defined in:

lib/ronin/extensions/string.rb,
lib/ronin/fuzzing/extensions/string.rb,
lib/ronin/formatting/extensions/sql/string.rb,
lib/ronin/formatting/extensions/html/string.rb,
lib/ronin/formatting/extensions/http/string.rb,
lib/ronin/formatting/extensions/text/string.rb,
lib/ronin/formatting/extensions/binary/string.rb,
lib/ronin/formatting/extensions/digest/string.rb

Overview

Copyright (c) 2006-2021 Hal Brodigan (postmodern.mod3 at gmail.com)

This file is part of ronin-support.

ronin-support is free software: you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

ronin-support is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.

You should have received a copy of the GNU Lesser General Public License along with ronin-support. If not, see https://www.gnu.org/licenses/.

Constant Summary

ESCAPE_BYTES =

Special ASCII bytes and their escaped character forms

Hash.new do |escape,byte|
  escape[byte] = if (byte >= 0x20 && byte <= 0x7e)
                   byte.chr
                 else
                   "\\x%.2X" % byte
                 end
end

JS_BACKSLASHED_CHARS =

JavaScript characters that must be back-slashed.

{
  "\\b"  => "\b",
  "\\t"  => "\t",
  "\\n"  => "\n",
  "\\f"  => "\f",
  "\\r"  => "\r",
  "\\\"" => "\"",
  "\\\\" => "\\"
}

UNESCAPE_CHARS =

Common escaped characters.

Hash.new do |hash,char|
  if char[0,1] == '\\'
    char[1,1]
  else
    char
  end
end

Class Method Summary

• .generate(*fields) {|string| ... } ⇒ Enumerator

  Generate permutations of Strings from a format template.

Instance Method Summary

• #base64_decode(mode = nil) ⇒ String

  Base64 decodes a string.

• #base64_encode(mode = nil) ⇒ String

  Base64 encodes a string.

• #common_postfix(other) ⇒ Object deprecated Deprecated.

  Deprecates as of 0.2.0, and will be removed in 1.0.0. Please use #common_suffix instead.

• #common_prefix(other) ⇒ String

  The common prefix of the string and the specified other string.

• #common_suffix(other) ⇒ String

  Finds the common suffix of the string and the specified other string.

• #depack(arch, address_length = nil) ⇒ Integer deprecated Deprecated.

  Deprecated as of 0.5.0, use #unpack instead.

• #dump ⇒ String (also: #inspect, #escape)

  Dumps the string as a C-style string.

• #each_substring(min = 1) {|substring, (index)| ... } ⇒ String

  Enumerates over every sub-string within the string.

• #each_unique_substring(min = 1) {|substring, (index)| ... } ⇒ String

  Enumerates over the unique sub-strings contained in the string.

• #format_bytes(options = {}) {|byte| ... } ⇒ String

  Creates a new String by formatting each byte.

• #format_chars(options = {}) {|char| ... } ⇒ String

  Creates a new String by formatting each character.

• #format_html(options = {}) ⇒ String

  Formats the chars in the String for HTML.

• #format_http(options = {}) ⇒ String

  Formats the bytes of the String.

• #format_js(options = {}) ⇒ String

  Escapes a String for JavaScript.

• #fuzz(substitutions = {}) {|fuzz| ... } ⇒ Enumerator

  Incrementally fuzzes the String.

• #hex_escape(options = {}) ⇒ String

  Hex-escapes characters in the String.

• #html_escape ⇒ String

  HTML escapes the String.

• #html_unescape ⇒ String

  Unescapes the HTML encoded String.

• #insert_after(pattern, data) ⇒ String

  Inserts data after the occurrence of a pattern.

• #insert_before(pattern, data) ⇒ String

  Inserts data before the occurrence of a pattern.

• #js_escape(options = {}) ⇒ String

  Escapes a String for JavaScript.

• #js_unescape ⇒ String

  Unescapes a JavaScript escaped String.

• #md5 ⇒ String

  The MD5 checksum of the String.

• #mutate(mutations = {}) {|mutant| ... } ⇒ Enumerator

  Permutes over every possible mutation of the String.

• #pad(padding, max_length = length) ⇒ String

  Creates a new String by padding the String with repeating text, out to a specified length.

• #random_case(options = {}) ⇒ Object

  Creates a new String by randomizing the case of each character in the String.

• #repeating(lengths) {|repeated| ... } ⇒ Enumerator

  Repeats the String.

• #sha1 ⇒ String (also: #sha128)

  The SHA1 checksum of the String.

• #sha256 ⇒ String (also: #sha2)

  The SHA2 checksum of the String.

• #sha512 ⇒ String

  The SHA512 checksum of the String.

• #sql_decode ⇒ Object

  Returns the SQL decoded form of the String.

• #sql_encode ⇒ Object

  Returns the SQL hex-string encoded form of the String.

• #sql_escape(quotes = :single) ⇒ String

  Escapes an String for SQL.

• #sql_inject ⇒ String

  Prepares the String for injection into a SQL expression.

• #uncommon_substring(other) ⇒ String

  Finds the uncommon sub-string within the specified other string, which does not occur within the string.

• #unescape ⇒ String (also: #hex_unescape)

  Unescapes the escaped String.

• #unhexdump(options = {}) ⇒ String

  Converts a multitude of hexdump formats back into raw-data.

• #unpack(*arguments) ⇒ Array

  Unpacks the String.

• #unpack_original ⇒ Object
• #uri_decode ⇒ String

  URI decodes the String.

• #uri_encode ⇒ String

  URI encodes the String.

• #uri_escape ⇒ String

  URI escapes the String.

• #uri_unescape ⇒ String

  URI unescapes the String.

• #xor(key) ⇒ String

  XOR encodes the String.

• #zlib_deflate ⇒ String

  Zlib deflate a string.

• #zlib_inflate ⇒ String

  Zlib inflate a string.

Class Method Details

.generate(*fields) {|string| ... } ⇒ Enumerator

Generate permutations of Strings from a format template.

Examples:

Generate Strings with ranges of repeating sub-strings:

Generate Strings with three alpha chars and one numeric chars:

String.generate([:alpha, 3], :numeric) do |password|
  puts password
end

Generate Strings with two to four alpha chars:

String.generate([:alpha, 2..4]) do |password|
  puts password
end

Generate Strings using alpha and punctuation chars:

String.generate([Chars.alpha + Chars.punctuation, 4]) do |password|
  puts password
end

Generate Strings from a custom char set:

String.generate([['a', 'b', 'c'], 3], [['1', '2', '3'], 3]) do |password|
  puts password
end

Generate Strings containing known Strings:

String.generate("rock", [:numeric, 4]) do |password|
  puts password
end

Generate Strings with ranges of repeating sub-strings:

String.generate(['/AA', (1..100).step(5)]) do |path|
  puts path
end

Parameters:

• fields (Array(<String,Symbol,Enumerable>, <Integer,Array,Range>)) —

  The fields which defines the string or character sets which will make up parts of the String.

Yields:

• (string) —

  The given block will be passed each unique String.

Yield Parameters:

• string (String) —

  A newly generated String.

Returns:

• (Enumerator) —

  If no block is given, an Enumerator will be returned.

Raises:

• (ArgumentError) —

  A given character set name was unknown.

• (TypeError) —

  A given string set was not a String, Symbol or Enumerable. A given string set length was not an Integer or Enumerable.

Since:

• 0.3.0

# File 'lib/ronin/fuzzing/extensions/string.rb', line 88

def self.generate(*fields,&block)
  Ronin::Fuzzing::Template.new(fields).each(&block)
end

Instance Method Details

#base64_decode(mode = nil) ⇒ String

Note:

mode argument is only available on Ruby >= 1.9.

Base64 decodes a string.

Examples:

"aGVsbG8=\n".base64_decode
# => "hello"

Parameters:

• mode (Symbol, nil) (defaults to: nil) —

  The base64 mode to use. May be either:

  • nil
  • :strict
  • :url / :urlsafe

Returns:

• (String) —

  The base64 decoded form of the string.

# File 'lib/ronin/formatting/extensions/binary/string.rb', line 255

def base64_decode(mode=nil)
  case mode
  when :strict        then Base64.strict_decode64(self)
  when :url, :urlsafe then Base64.urlsafe_decode64(self)
  else                     Base64.decode64(self)
  end
end

#base64_encode(mode = nil) ⇒ String

Base64 encodes a string.

Examples:

"hello".base64_encode
# => "aGVsbG8=\n"

Parameters:

• mode (Symbol, nil) (defaults to: nil) —

  The base64 mode to use. May be either:

  • :normal
  • :strict
  • :url / :urlsafe

Returns:

• (String) —

  The base64 encoded form of the string.

# File 'lib/ronin/formatting/extensions/binary/string.rb', line 225

def base64_encode(mode=nil)
  case mode
  when :strict        then Base64.strict_encode64(self)
  when :url, :urlsafe then Base64.urlsafe_encode64(self)
  else                     Base64.encode64(self)
  end
end

#common_postfix(other) ⇒ Object

Deprecated.

Deprecates as of 0.2.0, and will be removed in 1.0.0. Please use #common_suffix instead.

# File 'lib/ronin/extensions/string.rb', line 170

def common_postfix(other)
  warn 'DEPRECATED: String#common_postfix was deprecated in 0.2.0.'
  warn 'DEPRECATED: Please use String#common_suffix instead.'

  common_suffix(other)
end

#common_prefix(other) ⇒ String

The common prefix of the string and the specified other string.

Parameters:

• other (String) —

  The other String to compare against.

Returns:

• (String) —

  The common prefix between the two Strings.

# File 'lib/ronin/extensions/string.rb', line 125

def common_prefix(other)
  min_length = [length, other.length].min

  min_length.times do |i|
    if self[i] != other[i]
      return self[0,i]
    end
  end

  return self[0,min_length]
end

#common_suffix(other) ⇒ String

Finds the common suffix of the string and the specified other string.

Parameters:

• other (String) —

  The other String to compare against.

Returns:

• (String) —

  The common suffix of the two Strings.

Since:

• 0.2.0

# File 'lib/ronin/extensions/string.rb', line 150

def common_suffix(other)
  min_length = [length, other.length].min

  (min_length - 1).times do |i|
    index       = (length - i - 1)
    other_index = (other.length - i - 1)

    if self[index] != other[other_index]
      return self[(index + 1)..-1]
    end
  end

  return ''
end

#depack(arch, address_length = nil) ⇒ Integer

Deprecated.

Deprecated as of 0.5.0, use #unpack instead.

Unpacks the String into an Integer.

Examples:

using archs other than Ronin::Arch:

arch = OpenStruct.new(:endian => :little, :address_length => 4)

"A\0\0\0".depack(arch)
# => 65

using a Ronin::Arch arch:

"A\0\0\0".depack(Arch.i386)
# => 65

specifying a custom address-length:

"A\0".depack(Arch.ppc,2)
# => 65

using a String#unpack template:

"A\0\0\0".depack('V')
# => 65

Parameters:

• arch (Ronin::Arch, #endian, #address_length, String) —

  The architecture that the Integer was originally packed with.

• address_length (Integer) (defaults to: nil) —

  The number of bytes to depack.

Returns:

• (Integer) —

  The depacked Integer.

Raises:

• (ArgumentError) —

  The given arch does not respond to the endian or address_length methods.

# File 'lib/ronin/formatting/extensions/binary/string.rb', line 110

def depack(arch,address_length=nil)
  if arch.kind_of?(String)
    return unpack(arch)
  end

  unless arch.respond_to?(:address_length)
    raise(ArgumentError,"first argument to Ineger#pack must respond to address_length")
  end

  unless arch.respond_to?(:endian)
    raise(ArgumentError,"first argument to Ineger#pack must respond to endian")
  end

  endian           = arch.endian.to_sym
  address_length ||= arch.address_length

  integer    = 0x0
  byte_index = 0

  case endian
  when :little
    mask = lambda { |b| b << (byte_index * 8) }
  when :big
    mask = lambda { |b|
      b << ((address_length - byte_index - 1) * 8)
    }
  else
    raise(ArgumentError,"invalid endian #{arch.endian.inspect}")
  end

  each_byte do |b|
    break if byte_index >= address_length

    integer |= mask.call(b)
    byte_index += 1
  end

  return integer
end

#dump ⇒ String Also known as: inspect, escape

Note:

This method is only defined on Ruby 1.8.x.

Dumps the string as a C-style string.

Examples:

"hello\x00\073\x90\r\n".dump
# => "hello\0;\x90\r\n"

Returns:

• (String) —

  The C-style encoded version of the String.

# File 'lib/ronin/extensions/string.rb', line 230

def dump
  dumped_string = ''

  each_byte { |b| dumped_string << ESCAPE_BYTES[b] }
  return "\"#{dumped_string}\""
end

#each_substring(min = 1) {|substring, (index)| ... } ⇒ String

Enumerates over every sub-string within the string.

Examples:

"hello".each_substring(3).to_a
# => ["hel", "hell", "hello", "ell", "ello", "llo"]

Parameters:

• min (Integer) (defaults to: 1) —

  Minimum length of each sub-string.

Yields:

• (substring, (index)) —

  The given block will receive every sub-string contained within the string. If the block accepts two arguments, then the index of the sub-string will also be passed in.

Yield Parameters:

• substring (String) —

  A sub-string from the string.

• index (Integer) —

  The optional index of the sub-string.

Returns:

• (String) —

  The original string

# File 'lib/ronin/extensions/string.rb', line 48

def each_substring(min=1,&block)
  return enum_for(__method__,min) unless block

  (0..(length - min)).each do |i|
    ((i + min)..length).each do |j|
      sub_string = self[i...j]

      if block.arity == 2
        block.call(sub_string,i)
      else
        block.call(sub_string)
      end
    end
  end

  return self
end

#each_unique_substring(min = 1) {|substring, (index)| ... } ⇒ String

Enumerates over the unique sub-strings contained in the string.

Examples:

"xoxo".each_unique_substring(2).to_a
# => ["xo", "xox", "xoxo", "ox", "oxo"]

Parameters:

• min (Integer) (defaults to: 1) —

  Minimum length of each unique sub-string.

Yields:

• (substring, (index)) —

  The given block will receive every unique sub-string contained within the string. If the block accepts two arguments, then the index of the unique sub-string will also be passed in.

Yield Parameters:

• substring (String) —

  A unique sub-string from the string.

• index (Integer) —

  The optional index of the unique sub-string.

Returns:

• (String) —

  The original string

See Also:

• #each_substring

# File 'lib/ronin/extensions/string.rb', line 94

def each_unique_substring(min=1,&block)
  return enum_for(__method__,min) unless block

  unique_strings = {}

  each_substring(min) do |sub_string,index|
    unless unique_strings.has_key?(sub_string)
      unique_strings[sub_string] = index

      if block.arity == 2
        block.call(sub_string,index)
      else
        block.call(sub_string)
      end
    end
  end

  return self
end

#format_bytes(options = {}) {|byte| ... } ⇒ String

Creates a new String by formatting each byte.

Examples:

"hello".format_bytes { |b| "%x" % b }
# => "68656c6c6f"

Parameters:

• options (Hash) (defaults to: {}) —

  Additional options.

Options Hash (options):

• :include (#include?) — default: 0x00..0xff —

  The bytes to format.

• :exclude (#include?) —

  The bytes not to format.

Yields:

• (byte) —

  The block which will return the formatted version of each byte within the String.

Yield Parameters:

• byte (Integer) —

  The byte to format.

Returns:

• (String) —

  The formatted version of the String.

# File 'lib/ronin/formatting/extensions/text/string.rb', line 52

def format_bytes(options={})
  included  = (options[:include] || (0x00..0xff))
  excluded  = (options[:exclude] || Set[])
  formatted = ''

  each_byte do |b|
    formatted << if (included.include?(b) && !excluded.include?(b))
                   yield(b)
                 else
                   b
                 end
  end

  return formatted
end

#format_chars(options = {}) {|char| ... } ⇒ String

Creates a new String by formatting each character.

Examples:

"hello".format_chars { |c| c * 3 }
# => "hhheeellllllooo"

Parameters:

• options (Hash) (defaults to: {}) —

  Additional options.

Options Hash (options):

• :include (#include?, Regexp) — default: /./m —

  The bytes to format.

• :exclude (#include?, Regexp) —

  The bytes not to format.

Yields:

• (char) —

  The block which will return the formatted version of each character within the String.

Yield Parameters:

• char (String) —

  The character to format.

Returns:

• (String) —

  The formatted version of the String.

# File 'lib/ronin/formatting/extensions/text/string.rb', line 96

def format_chars(options={})
  included  = (options[:include] || /./m)
  excluded  = (options[:exclude] || Set[])
  formatted = ''

  matches = lambda { |filter,c|
    if    filter.respond_to?(:include?) then filter.include?(c)
    elsif filter.kind_of?(Regexp)       then c =~ filter
    end
  }

  each_char do |c|
    formatted << if (matches[included,c] && !matches[excluded,c])
                   yield(c)
                 else
                   c
                 end
  end

  return formatted
end

#format_html(options = {}) ⇒ String

Formats the chars in the String for HTML.

Examples:

"abc".format_html
# => "abc"

Parameters:

• options (Hash) (defaults to: {}) —

  Additional options for #format_chars.

Returns:

• (String) —

  The formatted HTML String.

See Also:

• Integer#format_html

Since:

• 0.2.0

# File 'lib/ronin/formatting/extensions/html/string.rb', line 97

def format_html(options={})
  # String#ord was not backported to Ruby 1.8.7
  formatter = if RUBY_VERSION < '1.9.' then lambda { |c| c[0].format_html  }
              else                          lambda { |c| c.ord.format_html }
              end

  format_chars(options,&formatter)
end

#format_http(options = {}) ⇒ String

Formats the bytes of the String.

Examples:

"hello".format_http
# => "%68%65%6c%6c%6f"

Returns:

• (String) —

  The HTTP hexadecimal encoded form of the String.

See Also:

• #format_bytes

# File 'lib/ronin/formatting/extensions/http/string.rb', line 106

def format_http(options={})
  format_bytes(options) { |b| b.format_http }
end

#format_js(options = {}) ⇒ String

Escapes a String for JavaScript.

Examples:

"hello".js_escape
# => "\\u0068\\u0065\\u006C\\u006C\\u006F"

Parameters:

• options (Hash) (defaults to: {}) —

  Additional options for #format_chars.

Returns:

• (String) —

  The JavaScript escaped String.

See Also:

• Integer#js_escape

Since:

• 0.2.0

# File 'lib/ronin/formatting/extensions/html/string.rb', line 185

def format_js(options={})
  # String#ord was not backported to Rub 1.8.7
  formatter = if RUBY_VERSION < '1.9.' then lambda { |c| c[0].format_js  }
              else                          lambda { |c| c.ord.format_js }
              end

  format_chars(options,&formatter)
end

#fuzz(substitutions = {}) {|fuzz| ... } ⇒ Enumerator

Incrementally fuzzes the String.

Examples:

Replace every e, i, o, u with (, 100 As and a \0:

"the quick brown fox".fuzz(/[eiou]/ => ['(', ('A' * 100), "\0"]) do |str|
  p str
end

generate with #fuzz:

"GET /".fuzz('/' => String.generate(['A', 1..100])) do |str|
  p str
end

Replace a Regexp::UNIX_PATH with Ronin::Fuzzing#format_strings:

"GET /downloads/".fuzz(:unix_path => :format_string)

Parameters:

• substitutions (Hash{Regexp,String,Symbol => Enumerable,Symbol}) (defaults to: {}) —

  Patterns and their substitutions.

Yields:

• (fuzz) —

  The given block will be passed every fuzzed String.

Yield Parameters:

• fuzz (String) —

  A fuzzed String.

Returns:

• (Enumerator) —

  If no block is given, an Enumerator will be returned.

Since:

• 0.3.0

# File 'lib/ronin/fuzzing/extensions/string.rb', line 173

def fuzz(substitutions={},&block)
  Ronin::Fuzzing::Fuzzer.new(substitutions).each(self,&block)
end

#hex_escape(options = {}) ⇒ String

Hex-escapes characters in the String.

Examples:

"hello".hex_escape
# => "\\x68\\x65\\x6c\\x6c\\x6f"

Returns:

• (String) —

  The hex escaped version of the String.

See Also:

• #format_bytes

# File 'lib/ronin/formatting/extensions/binary/string.rb', line 164

def hex_escape(options={})
  format_bytes(options) { |b| b.hex_escape }
end

#html_escape ⇒ String

HTML escapes the String.

Examples:

"one & two".html_escape
# => "one & two"

Returns:

• (String) —

  The HTML escaped String.

See Also:

• https://rubydoc.info/stdlib/cgi/1.9.2/CGI.escapeHTML

Since:

• 0.2.0

# File 'lib/ronin/formatting/extensions/html/string.rb', line 54

def html_escape
  CGI.escapeHTML(self)
end

#html_unescape ⇒ String

Unescapes the HTML encoded String.

Examples:

"<p>one <span>two</span></p>".html_unescape
# => "<p>one <span>two</span></p>"

Returns:

• (String) —

  The unescaped String.

See Also:

• https://rubydoc.info/stdlib/cgi/1.9.2/CGI.unescapeHTML

Since:

• 0.2.0

# File 'lib/ronin/formatting/extensions/html/string.rb', line 74

def html_unescape
  CGI.unescapeHTML(self)
end

#insert_after(pattern, data) ⇒ String

Inserts data after the occurrence of a pattern.

Parameters:

• pattern (String, Regexp) —

  The pattern to search for.

• data (String) —

  The data to insert after the pattern.

Returns:

• (String) —

  The new modified String.

# File 'lib/ronin/formatting/extensions/text/string.rb', line 186

def insert_after(pattern,data)
  string = dup
  match  = string.match(pattern)

  if match
    index = match.end(match.length - 1)

    string.insert(index,data)
  end

  return string
end

#insert_before(pattern, data) ⇒ String

Inserts data before the occurrence of a pattern.

Parameters:

• pattern (String, Regexp) —

  The pattern to search for.

• data (String) —

  The data to insert before the pattern.

Returns:

• (String) —

  The new modified String.

# File 'lib/ronin/formatting/extensions/text/string.rb', line 164

def insert_before(pattern,data)
  string = dup
  index  = string.index(pattern)

  string.insert(index,data) if index
  return string
end

#js_escape(options = {}) ⇒ String

Escapes a String for JavaScript.

Examples:

"hello\nworld\n".js_escape
# => "hello\\nworld\\n"

Parameters:

• options (Hash) (defaults to: {}) —

  Additional options for #format_chars.

Returns:

• (String) —

  The JavaScript escaped String.

See Also:

• Integer#js_escape

Since:

• 0.2.0

# File 'lib/ronin/formatting/extensions/html/string.rb', line 125

def js_escape(options={})
  # String#ord was not backported to Rub 1.8.7
  formatter = if RUBY_VERSION < '1.9.' then lambda { |c| c[0].js_escape  }
              else                          lambda { |c| c.ord.js_escape }
              end

  format_chars(options,&formatter)
end

#js_unescape ⇒ String

Unescapes a JavaScript escaped String.

Examples:

"\\u0068\\u0065\\u006C\\u006C\\u006F world".js_unescape
# => "hello world"

Returns:

• (String) —

  The unescaped JavaScript String.

Since:

• 0.2.0

# File 'lib/ronin/formatting/extensions/html/string.rb', line 148

def js_unescape
  unescaped = ''

  scan(/[\\%]u[0-9a-fA-F]{1,4}|[\\%][0-9a-fA-F]{1,2}|\\[btnfr"\\]|./) do |c|
    unescaped << JS_BACKSLASHED_CHARS.fetch(c) do
      if (c.start_with?("\\u") || c.start_with?("%u"))
        c[2..-1].to_i(16)
      elsif (c.start_with?("\\") || c.start_with?("%"))
        c[1..-1].to_i(16)
      else
        c
      end
    end
  end

  return unescaped
end

#md5 ⇒ String

Returns The MD5 checksum of the String.

Examples:

"hello".md5
# => "5d41402abc4b2a76b9719d911017c592"

Returns:

• (String) —

  The MD5 checksum of the String.

# File 'lib/ronin/formatting/extensions/digest/string.rb', line 36

def md5
  Digest::MD5.hexdigest(self)
end

#mutate(mutations = {}) {|mutant| ... } ⇒ Enumerator

Permutes over every possible mutation of the String.

Examples:

"hello old dog".mutate('e' => ['3'], 'l' => ['1'], 'o' => ['0']) do |str|
  puts str
end

Parameters:

• mutations (Hash{Regexp,String,Symbol => Enumerable,Symbol}) (defaults to: {}) —

  The patterns and substitutions to mutate the String with.

Yields:

• (mutant) —

  The given block will be yielded every possible mutant String.

Yield Parameters:

• mutant (String) —

  A mutated String.

Returns:

• (Enumerator) —

  If no block is given, an Enumerator will be returned.

Raises:

• (TypeError) —

  A mutation pattern was not a Regexp, String or Symbol. A mutation substitution was not a Symbol or Enumerable.

Since:

• 0.4.0

# File 'lib/ronin/fuzzing/extensions/string.rb', line 205

def mutate(mutations={},&block)
  Ronin::Fuzzing::Mutator.new(mutations).each(self,&block)
end

#pad(padding, max_length = length) ⇒ String

Creates a new String by padding the String with repeating text, out to a specified length.

Examples:

"hello".pad('A',50)
# => "helloAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"

Parameters:

• padding (String) —

  The text to pad the new String with.

• max_length (String) (defaults to: length) —

  The maximum length to pad the new String out to.

Returns:

• (String) —

  The padded version of the String.

# File 'lib/ronin/formatting/extensions/text/string.rb', line 218

def pad(padding,max_length=length)
  padding = padding.to_s

  if max_length > length
    max_length -= length
  else
    max_length = 0
  end

  padded = self + (padding * (max_length / padding.length))

  unless (remaining = (max_length % padding.length)) == 0
    padded << padding[0,remaining]
  end

  return padded
end

#random_case(options = {}) ⇒ Object

Creates a new String by randomizing the case of each character in the String.

Examples:

"get out your checkbook".random_case
# => "gEt Out YOur CHEckbook"

Parameters:

• options (Hash) (defaults to: {}) —

  Additional options.

Options Hash (options):

• :include (Array, Range) — default: 0x00..0xff —

  The bytes to format.

• :exclude (Array, Range) —

  The bytes not to format.

• :probability (Float) — default: 0.5 —

  The probability that a character will have it’s case changed.

# File 'lib/ronin/formatting/extensions/text/string.rb', line 140

def random_case(options={})
  prob = (options[:probability] || 0.5)

  format_chars(options) do |c|
    if rand <= prob then c.swapcase 
    else                 c
    end
  end
end

#repeating(lengths) {|repeated| ... } ⇒ Enumerator

Repeats the String.

Examples:

'A'.repeating(100)
# => "AAAAAAAAAAAAA..."

Generates 100 upto 700 As, increasing by 100 at a time:

'A'.repeating((100..700).step(100)) do |str|
  # ...
end

Generates 128, 1024, 65536 As:

'A'.repeating([128, 1024, 65536]) do |str|
  # ...
end

Parameters:

• lengths (Enumerable<Integer>, Integer) —

  The number of times to repeat the String.

Yields:

• (repeated) —

  The given block will be passed every repeated String.

Yield Parameters:

• repeated (String) —

  A repeated version of the String.

Returns:

• (Enumerator) —

  If no block is given, an Enumerator will be returned.

Raises:

• (TypeError) —

  n must either be Enumerable or an Integer.

Since:

• 0.4.0

# File 'lib/ronin/fuzzing/extensions/string.rb', line 128

def repeating(lengths,&block)
  case lengths
  when Integer
    # if lengths is an Integer, simply multiply the String and return
    repeated = (self * lengths)

    yield repeated if block_given?
    return repeated
  else
    return Ronin::Fuzzing::Repeater.new(lengths).each(self,&block)
  end
end

#sha1 ⇒ String Also known as: sha128

Returns The SHA1 checksum of the String.

Examples:

"hello".sha1
# => "aaf4c61ddcc5e8a2dabede0f3b482cd9aea9434d"

Returns:

• (String) —

  The SHA1 checksum of the String.

# File 'lib/ronin/formatting/extensions/digest/string.rb', line 50

def sha1
  Digest::SHA1.hexdigest(self)
end

#sha256 ⇒ String Also known as: sha2

Returns The SHA2 checksum of the String.

Examples:

"hello".sha2
# => "2cf24dba5fb0a30e26e83b2ac5b9e29e1b161e5c1fa7425e73043362938b9824"

Returns:

• (String) —

  The SHA2 checksum of the String.

# File 'lib/ronin/formatting/extensions/digest/string.rb', line 66

def sha256
  Digest::SHA256.hexdigest(self)
end

#sha512 ⇒ String

Returns The SHA512 checksum of the String.

Examples:

"hello".sha512
# => "9b71d224bd62f3785d96d46ad3ea3d73319bfbc2890caadae2dff72519673ca72323c3d99ba5c11d7c7acc6e14b8c5da0c4663475c2e5c3adef46f73bcdec043"

Returns:

• (String) —

  The SHA512 checksum of the String.

# File 'lib/ronin/formatting/extensions/digest/string.rb', line 82

def sha512
  Digest::SHA512.hexdigest(self)
end

#sql_decode ⇒ Object

Returns the SQL decoded form of the String.

Examples:

"'Conan O''Brian'".sql_decode
# => "Conan O'Brian"

"0x2f6574632f706173737764".sql_decode
# => "/etc/passwd"

# File 'lib/ronin/formatting/extensions/sql/string.rb', line 82

def sql_decode
  if (start_with?('0x') && (length % 2 == 0))
    raw = ''

    self[2..-1].scan(/../) do |hex_char|
      raw << hex_char.to_i(16).chr
    end

    return raw
  elsif (start_with?("'") && end_with?("'"))
    self[1..-2].gsub(/\\'|''/,"'")
  else
    return self
  end
end

#sql_encode ⇒ Object

Returns the SQL hex-string encoded form of the String.

Examples:

"/etc/passwd".sql_encode
# => "0x2f6574632f706173737764"

# File 'lib/ronin/formatting/extensions/sql/string.rb', line 59

def sql_encode
  return '' if empty?

  hex_string = '0x'

  each_byte do |b|
    hex_string << ('%.2x' % b)
  end

  return hex_string
end

#sql_escape(quotes = :single) ⇒ String

Escapes an String for SQL.

Examples:

"O'Brian".sql_escape
# => "'O''Brian'"

Parameters:

• quotes (:single, :double, :tick) (defaults to: :single) —

  (:single) Specifies whether to create a single or double quoted string.

Returns:

• (String) —

  The escaped String.

Raises:

• (ArgumentError) —

  The quotes argument was neither :single nor :double.

Since:

• 0.3.0

# File 'lib/ronin/formatting/extensions/sql/string.rb', line 40

def sql_escape(quotes=:single)
  char = case quotes
         when :single then "'"
         when :double then '"'
         when :tick   then '`'
         else
           raise(ArgumentError,"invalid quoting style #{quotes.inspect}")
         end

  return char + gsub(char,char * 2) + char
end

#sql_inject ⇒ String

Prepares the String for injection into a SQL expression.

Examples:

"'1' OR '1'='1'".sql_inject
# => "1' OR '1'='1"

"'1' OR 1=1".sql_inject
# => "1' OR 1=1 OR '"

"'1' OR 1=1".sql_inject(:terminate => true)
# => "1' OR 1=1 --"

Returns:

• (String) —

  The SQL injection ready String.

Since:

• 0.4.0

# File 'lib/ronin/formatting/extensions/sql/string.rb', line 120

def sql_inject
  if (start_with?("'") || start_with?('"') || start_with?('`'))
    if self[0,1] == self[-1,1] then self[1..-2]
    else                            "#{self[1..-1]}--"
    end
  else
    self
  end
end

#uncommon_substring(other) ⇒ String

Finds the uncommon sub-string within the specified other string, which does not occur within the string.

Parameters:

• other (String) —

  The other String to compare against.

Returns:

• (String) —

  The uncommon sub-string between the two Strings.

# File 'lib/ronin/extensions/string.rb', line 189

def uncommon_substring(other)
  prefix  = common_prefix(other)
  postfix = self[prefix.length..-1].common_suffix(other[prefix.length..-1])

  return self[prefix.length...(length - postfix.length)]
end

#unescape ⇒ String Also known as: hex_unescape

Unescapes the escaped String.

Examples:

"\\x68\\x65\\x6c\\x6c\\x6f".unescape
# => "hello"

Returns:

• (String) —

  The unescaped version of the hex escaped String.

Since:

• 0.5.0

# File 'lib/ronin/formatting/extensions/text/string.rb', line 269

def unescape
  buffer     = ''
  hex_index  = 0
  hex_length = length

  while (hex_index < hex_length)
    hex_substring = self[hex_index..-1]

    if hex_substring =~ /^\\[0-7]{3}/
      buffer    << hex_substring[0,4].to_i(8)
      hex_index += 3
    elsif hex_substring =~ /^\\x[0-9a-fA-F]{1,2}/
      hex_substring[2..-1].scan(/^[0-9a-fA-F]{1,2}/) do |hex_byte|
        buffer    << hex_byte.to_i(16)
        hex_index += (2 + hex_byte.length)
      end
    elsif hex_substring =~ /^\\./
      buffer    << UNESCAPE_CHARS[hex_substring[0,2]]
      hex_index += 2
    else
      buffer    << hex_substring[0,1]
      hex_index += 1
    end
  end

  return buffer
end

#unhexdump(options = {}) ⇒ String

Converts a multitude of hexdump formats back into raw-data.

Parameters:

• options (Hash) (defaults to: {}) —

  Additional options.

Options Hash (options):

• :format (Symbol) —

  The expected format of the hexdump. Must be either :od or :hexdump.

• :encoding (Symbol) —

  Denotes the encoding used for the bytes within the hexdump. Must be one of the following:

  • :binary
  • :octal
  • :octal_bytes
  • :octal_shorts
  • :octal_ints
  • :octal_quads (Ruby 1.9 only)
  • :decimal
  • :decimal_bytes
  • :decimal_shorts
  • :decimal_ints
  • :decimal_quads (Ruby 1.9 only)
  • :hex
  • :hex_chars
  • :hex_bytes
  • :hex_shorts
  • :hex_ints
  • :hex_quads
  • :named_chars (Ruby 1.9 only)
  • :floats
  • :doubles
• :endian (:little, :big, :network) — default: :little —

  The endianness of the words.

• :segment (Integer) — default: 16 —

  The length in bytes of each segment in the hexdump.

Returns:

• (String) —

  The raw-data from the hexdump.

# File 'lib/ronin/formatting/extensions/binary/string.rb', line 341

def unhexdump(options={})
  Ronin::Binary::Hexdump::Parser.new(options).parse(self)
end

#unpack(*arguments) ⇒ Array

Unpacks the String.

Examples:

using Ronin::Binary::Template types:

"A\0\0\0hello\0".unpack(:uint32_le, :string)
# => [10, "hello"]

using a String#unpack template:

"A\0\0\0".unpack('V')
# => 65

Parameters:

• arguments (String, Array<Symbol, (Symbol, Integer)>) —

  The String#unpack template or a list of Ronin::Binary::Template types.

Returns:

• (Array) —

  The values unpacked from the String.

Raises:

• (ArgumentError) —

  One of the arguments was not a known Ronin::Binary::Template type.

See Also:

• https://rubydoc.info/stdlib/core/String:unpack
• Ronin::Binary::Template

Since:

• 0.5.0

# File 'lib/ronin/formatting/extensions/binary/string.rb', line 63

def unpack(*arguments)
  if (arguments.length == 1 && arguments.first.kind_of?(String))
    unpack_original(arguments.first)
  else
    unpack_original(Ronin::Binary::Template.compile(arguments))
  end
end

#unpack_original ⇒ Object

# File 'lib/ronin/formatting/extensions/binary/string.rb', line 34

alias unpack_original unpack

#uri_decode ⇒ String

URI decodes the String.

Examples:

"genre%3f".uri_decode
# => "genre?"

Returns:

• (String) —

  The decoded URI form of the String.

# File 'lib/ronin/formatting/extensions/http/string.rb', line 56

def uri_decode
  URI::DEFAULT_PARSER.unescape(self)
end

#uri_encode ⇒ String

URI encodes the String.

Examples:

"art is graffiti".uri_encode
# => "art%20is%20graffiti"

Returns:

• (String) —

  The URI encoded form of the String.

# File 'lib/ronin/formatting/extensions/http/string.rb', line 40

def uri_encode
  URI::DEFAULT_PARSER.escape(self)
end

#uri_escape ⇒ String

URI escapes the String.

Examples:

"x > y".uri_escape
# => "x+%3E+y"

Returns:

• (String) —

  The URI escaped form of the String.

# File 'lib/ronin/formatting/extensions/http/string.rb', line 72

def uri_escape
  CGI.escape(self)
end

#uri_unescape ⇒ String

URI unescapes the String.

Examples:

"sweet+%26+sour".uri_unescape
# => "sweet & sour"

Returns:

• (String) —

  The unescaped URI form of the String.

# File 'lib/ronin/formatting/extensions/http/string.rb', line 88

def uri_unescape
  CGI.unescape(self)
end

#xor(key) ⇒ String

XOR encodes the String.

Examples:

"hello".xor(0x41)
# => ")$--."

"hello again".xor([0x55, 0x41, 0xe1])
# => "=$\x8d9.\xc14&\x80</"

Parameters:

• key (Enumerable, Integer) —

  The byte to XOR against each byte in the String.

Returns:

• (String) —

  The XOR encoded String.

# File 'lib/ronin/formatting/extensions/binary/string.rb', line 189

def xor(key)
  key = case key
        when Integer then [key]
        when String  then key.bytes
        else              key
        end

  key    = key.cycle
  result = ''

  bytes.each do |b|
    result << (b ^ key.next).chr
  end

  return result
end

#zlib_deflate ⇒ String

Zlib deflate a string.

Examples:

"hello".zlib_deflate
# => "x\x9C\xCBH\xCD\xC9\xC9\a\x00\x06,\x02\x15"

Returns:

• (String) —

  The Zlib deflated form of the string.

# File 'lib/ronin/formatting/extensions/binary/string.rb', line 291

def zlib_deflate
  Zlib::Deflate.deflate(self)
end

#zlib_inflate ⇒ String

Zlib inflate a string.

Examples:

"x\x9C\xCBH\xCD\xC9\xC9\a\x00\x06,\x02\x15".zlib_inflate
# => "hello"

Returns:

• (String) —

  The Zlib inflated form of the string.

# File 'lib/ronin/formatting/extensions/binary/string.rb', line 275

def zlib_inflate
  Zlib::Inflate.inflate(self)
end