Ragnar is a powerful, multi-platform network scanning and offensive security tool for Raspberry Pi, headless servers, and WiFi Pineapple Pager. It targets security professionals and researchers, automating network discovery, vulnerability assessment, and threat intelligence fusion, with advanced AI-driven capabilities on higher-spec hardware.

How It Works

A fork of the Bjorn project, Ragnar integrates multi-source threat intelligence (CISA KEV, NVD CVE, etc.) with network scanning (Nmap). Its core novelty lies in GPT-5 Nano integration for AI-powered security summaries, prioritization, and remediation. Advanced features like real-time traffic analysis and deep vulnerability scanning (Nuclei, Nikto, SQLMap, ZAP) are unlocked on systems with 8GB+ RAM, offering a scalable security analysis platform.

Quick Start & Requirements

• Primary install: Execute the auto-detecting script:

  wget https://raw.githubusercontent.com/PierreGode/Ragnar/main/install_ragnar.sh
  sudo chmod +x install_ragnar.sh && sudo ./install_ragnar.sh
  

  The installer auto-detects the platform and configures Ragnar. A reboot is recommended upon completion.
• Prerequisites:
  • Raspberry Pi: 64-bit Raspberry Pi OS (kernel 6.12+), username/hostname 'ragnar', 2.13-inch e-Paper HAT (for display mode).
  • Server/Headless: Debian 11+ or Ubuntu 20.04+ (AMD64, ARM64, ARMv7). Minimum 2GB RAM, 2 CPU cores, 10GB disk. Recommended: 8GB+ RAM for advanced features.
  • WiFi Pineapple Pager: Firmware 1.0.7+, PAGERCTL payload.
  • General: Python3, nmap (auto-installed).
• Links: Install Guide, AI Integration Guide, Security & Authentication, Kill Switch.

Highlighted Details

• Network scanning and vulnerability assessment (Nmap, etc.).
• Multi-source threat intelligence dashboard integrating CISA KEV, NVD CVE, AlienVault OTX, and MITRE ATT&CK.
• AI-powered analysis leveraging GPT-5 Nano for security summaries, vulnerability prioritization, and remediation advice.
• System attack capabilities including brute-force on FTP, SSH, SMB, RDP, Telnet, SQL, and file extraction from vulnerable services.
• Advanced server features (8GB+ RAM) enabling real-time traffic analysis, deep vulnerability scanning (Nuclei, Nikto, SQLMap, ZAP), parallel scanning, and CVE correlation.
• Hardware integrations for e-Paper displays and WiFi Pineapple Pager, with physical mode-switching via PiSugar 3 button.
• Built-in Kill Switch endpoint (/api/kill) for data wiping.

Maintenance & Community

The project welcomes contributions for new attack modules, bug fixes, documentation, and feature improvements. Issues can be reported via GitHub Issues. Links to Contributing Docs and Code of Conduct are provided.

Licensing & Compatibility

Ragnar is distributed under the MIT License. This license generally permits commercial use and integration into closed-source projects without significant restrictions.

Limitations & Caveats

Specific hardware is required for certain display and integration features (e.g., e-Paper HAT, WiFi Pineapple Pager). Advanced server-side capabilities necessitate a minimum of 8GB RAM. The project is intended strictly for educational and authorized testing purposes. 32-bit systems are advised to use the predecessor, Bjorn.