0.2.0 / 2024-07-22

Payloads

  • Added the php/download_exec payload.
  • Added the cmd/netcat/bindshell payload.
  • Added the cmd/ping payload.
  • Added the cmd/touch payload.
  • Added the test/cmd payload.
  • Added the test/url payload.
  • Added the groovy/reverse_shell payload.
  • Added the cmd/windows/download payload.
  • Added the cmd/zsh/reverse_shell payload.
  • Added the bin/windows/reverse_shell payload.
  • Added the bin/unix/reverse_shell payload.
  • Added the js/nashorn/reverse_shell payload.
  • Added the js/node/reverse_shell payload.

CLI

  • Added the ronin-payloads completion command to install shell completion files for all ronin-payloads commands for Bash and Zsh shells.
  • The ronin-payloads show command can now display an example ronin-payloads build command for the given payload.
  • Renamed the -e option flag to -E in ronin-payloads build.

0.1.6 / 2024-07-01

Payloads

  • Fixed incompatible character encodings: UTF-8 and ASCII-8BIT exceptions when building shellcode payloads with certain IP addresses or port numbers.

0.1.5 / 2024-06-19

Payloads

CLI

  • Automatically create the parent directory of the new payload file, if it doesn't exist, when running ronin-payloads new path/to/new_payload.rb.
  • Fixed typo in ronin-payloads encode man-page for the -E,--encoder option.

0.1.4 / 2023-09-19

CLI

  • All newly generated payload files using ronin-payloads new should have a summary and a description.
  • Fixed a bug where the ronin-payloads new options --author, --author-email, or --summary were not properly escaping given values.

0.1.3 / 2023-06-12

CLI

  • Fixed a bug where ronin-payloads new --type command wasn't being accepted as a valid payload type.

0.1.2 / 2023-06-09

CLI

  • Fixed the placeholder references URLs in the ronin-payloads new template.
  • Fixed --format html and --format xml to encode every character.

0.1.1 / 2023-03-01

CLI

  • Fixed multiple bugs in the --param option of the ronin-payloads encode comand.
  • Fixed multiple bugs in the --encoder-param option of the ronin-payloads build command.

0.1.0 / 2023-02-01

  • Initial release:
    • Require ruby >= 3.0.0.
    • Provides a succinct syntax and API for writing payloads in as few lines as possible.
    • Supports defining Payloads as plain old Ruby classes.
    • Provides base classes for a variety of languages and payload types (ASM, Shellcode, C, Go, Rust, Java, JSP, PHP, Python, Ruby, NodeJS, Shell, PowerShell, SQL, XML, HTML, URL).
    • Provides built-in common payloads:
    • Command-line reverse shells:
      • Awk
      • Bash
      • Lua
      • NodeJS
      • OpenSSL
      • Perl
      • PHP
      • PowerShell
      • Python
      • Ruby
    • Java
      • Reverse shell
    • PHP
      • Command exec.
    • Shellcode:
      • execve(/bin/sh):
      • Linux (ARM, MIPS, PPC, x86, x86-64)
      • FreeBSD (x86, x86-64)
      • macOS (x86-64)
      • NetBSD (x86)
      • OpenBSD (x86)
      • bind shell:
      • Linux (ARM, MIPS, x86, x86-64)
      • FreeBSD (x86)
      • OpenBSD (x86)
      • reverse shell:
      • Linux (ARM, MIPS, PPC, x86, x86-64)
      • macOS (x86-64)
      • FreeBSD (x86)
      • NetBSD (x86)
    • Supports adding additional encoders to payloads for further obfuscation.
    • Integrates with the Ronin Post-Exploitation library.
    • Provides a simple CLI for building, encoding, launching, and generating new payloads.