Extracted CLI::Text from CLI::Printing (closes #92).

postmodern · postmodern · commit 00b3f4156f68 · 2025-02-11T01:28:57.000-08:00
diff --git a/lib/ronin/vulns/cli/printing.rb b/lib/ronin/vulns/cli/printing.rb
@@ -18,8 +18,9 @@
 # along with ronin-vulns.  If not, see <https://www.gnu.org/licenses/>.
 #
 
-require 'ronin/core/cli/logging'
+require_relative 'text'
 
+require 'ronin/core/cli/logging'
 require 'command_kit/printing/indent'
 
 module Ronin
@@ -32,62 +33,10 @@ class CLI
       # @since 0.2.0
       #
       module Printing
+        include Text
         include Core::CLI::Logging
         include CommandKit::Printing::Indent
 
-        # Known vulnerability types and their printable names.
-        VULN_TYPES = {
-          command_injection: 'Command Injection',
-          open_redirect:     'Open Redirect',
-          reflected_xss:     'reflected XSS',
-
-          lfi:  'LFI',
-          rfi:  'RFI',
-          sqli: 'SQLi',
-          ssti: 'SSTI'
-        }
-
-        #
-        # Returns the printable vulnerability type for the vulnerability object.
-        #
-        # @param [Vuln] vuln
-        #
-        # @return [String]
-        #
-        def vuln_type(vuln)
-          VULN_TYPES.fetch(vuln.class.vuln_type)
-        end
-
-        #
-        # Determines the param type that the web vulnerability occurs in.
-        #
-        # @param [WebVuln] vuln
-        #
-        # @return [String, nil]
-        #
-        def vuln_param_type(vuln)
-          if    vuln.query_param  then 'query param'
-          elsif vuln.header_name  then 'Header'
-          elsif vuln.cookie_param then 'Cookie param'
-          elsif vuln.form_param   then 'form param'
-          end
-        end
-
-        #
-        # Determines the param name that the web vulnerability occurs in.
-        #
-        # @param [WebVuln] vuln
-        #
-        # @return [String, nil]
-        #
-        def vuln_param_name(vuln)
-          if    vuln.query_param  then vuln.query_param
-          elsif vuln.header_name  then vuln.header_name
-          elsif vuln.cookie_param then vuln.cookie_param
-          elsif vuln.form_param   then vuln.form_param
-          end
-        end
-
         #
         # Prints a log message about a newly discovered web vulnerability.
         #
diff --git a/lib/ronin/vulns/cli/text.rb b/lib/ronin/vulns/cli/text.rb
@@ -0,0 +1,87 @@
+# frozen_string_literal: true
+#
+# ronin-vulns - A Ruby library for blind vulnerability testing.
+#
+# Copyright (c) 2022-2025 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# ronin-vulns is free software: you can redistribute it and/or modify
+# it under the terms of the GNU Lesser General Public License as published
+# by the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+#
+# ronin-vulns is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU Lesser General Public License for more details.
+#
+# You should have received a copy of the GNU Lesser General Public License
+# along with ronin-vulns.  If not, see <https://www.gnu.org/licenses/>.
+#
+
+module Ronin
+  module Vulns
+    class CLI
+      #
+      # Methods for generating displayable text.
+      #
+      # @since 0.3.0
+      #
+      module Text
+        # Known vulnerability types and their display names.
+        VULN_TYPES = {
+          command_injection: 'Command Injection',
+          open_redirect:     'Open Redirect',
+          reflected_xss:     'reflected XSS',
+
+          lfi:  'LFI',
+          rfi:  'RFI',
+          sqli: 'SQLi',
+          ssti: 'SSTI'
+        }
+
+        #
+        # Returns the vulnerability type display name for the vulnerability
+        # object.
+        #
+        # @param [Vuln] vuln
+        #
+        # @return [String]
+        #
+        def vuln_type(vuln)
+          VULN_TYPES.fetch(vuln.class.vuln_type)
+        end
+
+        #
+        # Determines the param type display name that the web vulnerability
+        # occurs in.
+        #
+        # @param [WebVuln] vuln
+        #
+        # @return [String, nil]
+        #
+        def vuln_param_type(vuln)
+          if    vuln.query_param  then 'query param'
+          elsif vuln.header_name  then 'Header'
+          elsif vuln.cookie_param then 'Cookie param'
+          elsif vuln.form_param   then 'form param'
+          end
+        end
+
+        #
+        # Determines the param name that the web vulnerability occurs in.
+        #
+        # @param [WebVuln] vuln
+        #
+        # @return [String, nil]
+        #
+        def vuln_param_name(vuln)
+          if    vuln.query_param  then vuln.query_param
+          elsif vuln.header_name  then vuln.header_name
+          elsif vuln.cookie_param then vuln.cookie_param
+          elsif vuln.form_param   then vuln.form_param
+          end
+        end
+      end
+    end
+  end
+end
diff --git a/spec/cli/printing_spec.rb b/spec/cli/printing_spec.rb
@@ -23,132 +23,6 @@ class TestCommand < Ronin::Vulns::CLI::Command
   let(:command_class) { TestCLIPrinting::TestCommand }
   subject { command_class.new }
 
-  describe "#vuln_type" do
-    context "when given a Ronin::Vulns::LFI object" do
-      let(:vuln) { Ronin::Vulns::LFI.new(url) }
-
-      it "must return 'LFI'" do
-        expect(subject.vuln_type(vuln)).to eq('LFI')
-      end
-    end
-
-    context "when given a Ronin::Vulns::RFI object" do
-      let(:vuln) { Ronin::Vulns::RFI.new(url) }
-
-      it "must return 'RFI'" do
-        expect(subject.vuln_type(vuln)).to eq('RFI')
-      end
-    end
-
-    context "when given a Ronin::Vulns::SQLI object" do
-      let(:vuln) { Ronin::Vulns::SQLI.new(url) }
-
-      it "must return 'SQLi'" do
-        expect(subject.vuln_type(vuln)).to eq('SQLi')
-      end
-    end
-
-    context "when given a Ronin::Vulns::SSTI object" do
-      let(:vuln) { Ronin::Vulns::SSTI.new(url) }
-
-      it "must return 'SSTI'" do
-        expect(subject.vuln_type(vuln)).to eq('SSTI')
-      end
-    end
-
-    context "when given a Ronin::Vulns::OpenRedirect object" do
-      let(:vuln) { Ronin::Vulns::OpenRedirect.new(url) }
-
-      it "must return 'Open Redirect'" do
-        expect(subject.vuln_type(vuln)).to eq('Open Redirect')
-      end
-    end
-
-    context "when given a Ronin::Vulns::ReflectedXSS object" do
-      let(:vuln) { Ronin::Vulns::ReflectedXSS.new(url) }
-
-      it "must return 'reflected XSS'" do
-        expect(subject.vuln_type(vuln)).to eq('reflected XSS')
-      end
-    end
-  end
-
-  describe "#vuln_param_type" do
-    context "and the #query_param attribute is set" do
-      let(:query_param) { 'id' }
-      let(:vuln) { Ronin::Vulns::WebVuln.new(url, query_param: query_param) }
-
-      it "must return 'query param''" do
-        expect(subject.vuln_param_type(vuln)).to eq("query param")
-      end
-    end
-
-    context "and the #header_name attribute is set" do
-      let(:header_name) { 'X-Foo' }
-      let(:vuln) { Ronin::Vulns::LFI.new(url, header_name: header_name) }
-
-      it "must return 'Header'" do
-        expect(subject.vuln_param_type(vuln)).to eq("Header")
-      end
-    end
-
-    context "and the #cookie_param attribute is set" do
-      let(:cookie_param) { 'X-Foo' }
-      let(:vuln) { Ronin::Vulns::LFI.new(url, cookie_param: cookie_param) }
-
-      it "must return 'Cookie param'" do
-        expect(subject.vuln_param_type(vuln)).to eq("Cookie param")
-      end
-    end
-
-    context "and the #form_param attribute is set" do
-      let(:form_param) { 'X-Foo' }
-      let(:vuln) { Ronin::Vulns::LFI.new(url, form_param: form_param) }
-
-      it "must return 'form param'" do
-        expect(subject.vuln_param_type(vuln)).to eq("form param")
-      end
-    end
-  end
-
-  describe "#vuln_param_name" do
-    context "and the #query_param attribute is set" do
-      let(:query_param) { 'id' }
-      let(:vuln) { Ronin::Vulns::WebVuln.new(url, query_param: query_param) }
-
-      it "must return the vuln's #query_param" do
-        expect(subject.vuln_param_name(vuln)).to eq(query_param)
-      end
-    end
-
-    context "and the #header_name attribute is set" do
-      let(:header_name) { 'X-Foo' }
-      let(:vuln) { Ronin::Vulns::LFI.new(url, header_name: header_name) }
-
-      it "must return the vuln's #header_name" do
-        expect(subject.vuln_param_name(vuln)).to eq(header_name)
-      end
-    end
-
-    context "and the #cookie_param attribute is set" do
-      let(:cookie_param) { 'X-Foo' }
-      let(:vuln) { Ronin::Vulns::LFI.new(url, cookie_param: cookie_param) }
-
-      it "must return the vuln's #cookie_param" do
-        expect(subject.vuln_param_name(vuln)).to eq(cookie_param)
-      end
-    end
-
-    context "and the #form_param attribute is set" do
-      let(:form_param) { 'X-Foo' }
-      let(:vuln) { Ronin::Vulns::LFI.new(url, form_param: form_param) }
-
-      it "must return the vuln's #form_param" do
-        expect(subject.vuln_param_name(vuln)).to eq(form_param)
-      end
-    end
-  end
-
   describe "#log_vuln" do
     context "when given a Ronin::Vulns::LFI object" do
       context "and the #query_param attribute is set" do
