p15670423
/
monkey
1
0
Fork 5
Code Issues Pull Requests 3 Projects Releases Wiki Activity
11,413 Commits 31 Branches 20 Tags 48 MiB
Commit Graph

11413 Commits

Author SHA1 Message Date
p15693087 b9bd8411e3 312 
2132
 2022-10-19 15:20:23 +08:00
p34709852 9cbf0b9b76 ADD file via upload 2022-10-19 15:20:23 +08:00
p15670423 052ad2989c Update test_dumps03.py 2022-10-19 15:20:23 +08:00
p34709852 84b451dd95 Add requirements.txt 2022-10-19 15:20:23 +08:00
p34709852 4dbbff6f3b ADD file via upload 2022-10-19 15:20:23 +08:00
p34709852 68b731c01e ADD file via upload 2022-10-19 15:20:23 +08:00
p34709852 a314a482e0 ADD file via upload 2022-10-19 15:20:23 +08:00
p31829507 8fc6898da1 Add test_dumps.py 2022-10-19 15:20:23 +08:00
p31829507 e1017fc84a Add test_dumps 2022-10-19 15:20:23 +08:00
wutao 863c39c333 测试:重复提交代码 2022-10-19 15:20:23 +08:00
wutao 8fa97b674e 测试:提交代码 2022-10-19 15:20:23 +08:00
wutao e4df492bf3 测试:提交代码 2022-10-19 15:20:23 +08:00
Ilija Lazoroski e1bc1e9bb4 Agent: Check all potential urls in Hadoop 2022-10-19 15:20:23 +08:00
Mike Salvatore 412f519fb6 Agent: Remove errant exploitation event from hadoop 
If no potential URLs are found, then no exploit is attempted, so there's
no reason to publish an ExploitationEvent.
 2022-10-19 15:20:23 +08:00
Ilija Lazoroski 94bf4ab74d Agent: Remove adding vulnerable urls in Hadoop 
Adding vulnerable ulrs causes check to see if the target is exploitable
which calls self.exploit
 2022-10-19 15:20:23 +08:00
Ilija Lazoroski 6be8370254 Agent: Make Hadoop tags uppercase 2022-10-19 15:20:23 +08:00
Ilija Lazoroski b67d69d691 Agent: Rename stamp to timestamp in Hadoop 2022-10-19 15:20:23 +08:00
Ilija Lazoroski 311564da0d Agent: Modify HadoopExploiter tags to be properties 2022-10-19 15:20:23 +08:00
Kekoa Kaaikala 6868ea127b Agent: Stamp time before exploit executes 2022-10-19 15:20:23 +08:00
Kekoa Kaaikala b56252ce8f Agent: Publish events sooner 2022-10-19 15:20:23 +08:00
Kekoa Kaaikala ac08df3794 Agent: Use exploiter tag properties 2022-10-19 15:20:23 +08:00
Kekoa Kaaikala 101d3e49aa Agent: Update hadoop exploiter tags T1570 -> T1105 2022-10-19 15:20:23 +08:00
Kekoa Kaaikala 2b4712df0c Agent: Use EXPLOIT_TAGS for exploitation event 2022-10-19 15:20:23 +08:00
Kekoa Kaaikala aa936c3e36 Agent: Update tags for hadoop events 2022-10-19 15:20:23 +08:00
Kekoa Kaaikala 7d5d71a9d2 Agent: Move successful explotiation event publish 2022-10-19 15:20:23 +08:00
Kekoa Kaaikala 1b1273e350 Agent: Update hadoop failed event publishing 2022-10-19 15:20:23 +08:00
Kekoa Kaaikala 0ca68f79b4 Agent: Use correct publish method names 2022-10-19 15:20:23 +08:00
Ilija Lazoroski 65d548ae78 Agent: Add tags and error messages in Hadoop 2022-10-19 15:20:23 +08:00
Ilija Lazoroski e26b36edf1 Agent: Publish Propagation and Exploitation events from Hadoop 2022-10-19 15:20:23 +08:00
vakarisz e54c950dc3 Island: Upsert node on TCP scan event if source of event don't exist 2022-10-07 17:21:28 +03:00
vakarisz d3c2d95a69 Island: Handle network services in TCP scan events 2022-10-07 16:12:01 +03:00
vakarisz c5c8bc1d2f Island: Add mongo_dot_encoder to encode "." characters 
This encoder will be needed in mongo repository, because mongodb can't handle keys with "." character (until version 5)
 2022-10-07 16:12:01 +03:00
vakarisz a96b82fa0f Island: Don't raise errors if machine upsert did no changes 
It doesn't make sense to raise an error if upsert did no changes, because the purpose of "upsert" method is to ensure that data is up-to-date. If no changes were made it means it's already up-to-date.
 2022-10-07 16:12:01 +03:00
vakarisz a143d7206e Island: Reuse the same open port logic in scan_event_handler.py 2022-10-07 16:11:59 +03:00
vakarisz d0d37ce595 Island: Update machine services with TCP scan event results 2022-10-07 16:08:35 +03:00
Mike Salvatore 6d60e33c1e Merge branch '2269-publish-events-for-mssql-exploiter' into develop 
PR #2401
 2022-10-07 08:46:40 -04:00
Mike Salvatore a558948c5d Agent: Remove unnecessary `pass` from MSSQLExploiter 2022-10-07 08:43:05 -04:00
Shreya Malviya 3b225a9c7d
Merge pull request #2376 from guardicore/dependabot/npm_and_yarn/monkey/monkey_island/cc/ui/d3-color-and-d3-3.1.0 
Bump d3-color and d3 in /monkey/monkey_island/cc/ui
 2022-10-07 18:01:53 +05:30
Mike Salvatore 79e8ce5f79 Island: Pass tuple, not set to upsert_tcp_connections() 
pydantic can probably handle the set -> tuple conversion itself, but
mypy complains.
 2022-10-07 07:44:49 -04:00
Mike Salvatore 0965b97d45 Island: Use ScanEvent for typehint in ScanEventHandler 
`event` gets passed to `_get_source_machine()`, which expects
`ScanEvent`, not `AbstractAgentEvent`
 2022-10-07 07:43:50 -04:00
Mike Salvatore 4c026241ea Island: Change method order in ScanEventHandler 2022-10-07 07:41:50 -04:00
VakarisZ 4709ae771b
Merge pull request #2400 from guardicore/2267-add-tcp-connections 
2267 add tcp connections
 2022-10-07 12:15:39 +03:00
vakarisz be4ecccdcd Island: Refactor get_node_by_id to raise UnknownRecordError 2022-10-07 10:05:06 +03:00
Mike Salvatore 77d37bdb21 Merge branch '2269-publish-events-from-log4shell-exploiter' into develop 
PR #2397
 2022-10-06 17:26:06 -04:00
Mike Salvatore 9c2cdf15e2 Agent: Add TODO in Log4ShellExploiter 2022-10-06 17:01:06 -04:00
Mike Salvatore ead979c6ca Agent: Add T1110 to Log4Shell exploiter tags 2022-10-06 16:54:02 -04:00
Mike Salvatore 03c6c5ea4b Agent: Remove unnecessary Path -> str in Log4ShellExploiter 2022-10-06 16:51:14 -04:00
Mike Salvatore eac3076828 Agent: Change typehint for build_monkey_commandline's location 
The function can handle str, PurePath, or None. This typehint change
reflects that capability
 2022-10-06 16:50:41 -04:00
Mike Salvatore 7bc9993c6f Agent: Reduce VICTIM_WAIT_SLEEP_TIME_SEC to 0.050 seconds 
1 second is a long time to wait, and we want our event timestamps to be
more accurate. 0.050 is 10 x sys.getswitchinterval(). It's reasonably
accurate but will also share the CPU nicely.
 2022-10-06 16:46:41 -04:00
Mike Salvatore 6bd7042444 Agent: Add VICTIM_WAIT_SLEEP_TIME_SEC constant in log4shell exlpoiter 2022-10-06 16:42:33 -04:00