monkey/README.md

54 lines
1.7 KiB
Markdown
Raw Normal View History

2016-06-25 23:54:27 +08:00
Infection Monkey
====================
2016-07-29 02:24:03 +08:00
### Data center Security Testing Tool
------------------------
2016-07-29 02:24:03 +08:00
Welcome to the Infection Monkey!
2017-10-17 22:14:28 +08:00
The Infection Monkey is an open source security tool for testing a data center's resiliency to perimeter breaches and internal server infection. The Monkey uses various methods to self propagate across a data center and reports success to a centralized Command and Control(C&C) server.
![Infection Monkey map](.github/map-full.png)
2017-10-17 22:14:28 +08:00
The Infection Monkey is comprised of two parts:
2018-01-21 03:49:36 +08:00
* Monkey - A tool which infects other machines and propagates to them
* Monkey Island - A C&C server with a dedicated UI to visualize the Infection Monkey's progress inside the data center
2017-10-17 22:14:28 +08:00
To read more about the Monkey, visit http://infectionmonkey.com
Main Features
---------------
The Infection Monkey uses the following techniques and exploits to propagate to other machines.
* Multiple propagation techniques:
* Predefined passwords
2017-10-17 22:14:28 +08:00
* Common logical exploits
* Password stealing using mimikatz
* Multiple exploit methods:
2016-05-29 16:57:13 +08:00
* SSH
* SMB
* RDP
* WMI
* Shellshock
2017-10-17 22:14:28 +08:00
* Conficker
* SambaCry
* Elastic Search (CVE-2015-1427)
2018-01-21 03:49:36 +08:00
Setup
-------------------------------
Check out the [Setup](https://github.com/guardicore/monkey/wiki/setup) page in the Wiki.
Building the Monkey from source
-------------------------------
2018-01-21 03:49:36 +08:00
If you want to build the monkey from source, see [Setup](https://github.com/guardicore/monkey/wiki/setup)
and follow the instructions at the readme files under [infection_monkey](infection_monkey) and [monkey_island](monkey_island).
License
=======
2017-10-17 22:14:28 +08:00
Copyright (c) 2017 Guardicore Ltd
2018-01-21 03:49:36 +08:00
See the [LICENSE](LICENSE) file for license rights and limitations (GPLv3).