Commit Graph

2439 Commits

Author SHA1 Message Date
Daniel Goldberg f0ee88182f
Merge pull request #435 from VakarisZ/attack_winapi_smallfix
WinAPI attack telem fix.
2019-09-18 09:51:15 +03:00
Shay Nehmad 014e47ad5e
Merge pull request #405 from guardicore/400/zero-trust-mvp
400/zero trust mvp
2019-09-18 08:43:42 +03:00
Shay Nehmad 5754ec6044
Merge pull request #428 from guardicore/400/more-tests
400/more tests
2019-09-18 08:37:44 +03:00
Shay Nehmad 6a2510a657 Merge branch 'develop' into 400/more-tests 2019-09-18 08:19:44 +03:00
VakarisZ 01a2a448de delays singleton attack telem and sends it when monkey can communicate with server 2019-09-17 14:51:42 +03:00
VakarisZ 5d8662deb4 Merge remote-tracking branch 'upstream/develop' into 420/blackbox 2019-09-17 09:20:12 +03:00
VakarisZ bc9b994cba
Merge pull request #422 from guardicore/mssql_bugfix
MSSQL bugs fixed, refactored to be more stable
2019-09-17 09:19:13 +03:00
VakarisZ 018d3ddc08 Fixed bugs regarding waiting for monkeys to die, readability improvements 2019-09-17 09:17:29 +03:00
Shay Nehmad 0667aad87f Small fixes - reversed condition accidentaly and missed one reference to get_windows_commands_to_add_user 2019-09-16 17:57:35 +03:00
Shay Nehmad db328a3432 Accidentaly committed server config testing 👎 2019-09-16 17:42:21 +03:00
Shay Nehmad 841e54afc8 Fixed UTs 2019-09-16 17:41:26 +03:00
Shay Nehmad 9f98025d33 Using protocol as well for cases when we are running on HTTP and not HTTPS (npm run start for example) 2019-09-16 16:44:16 +03:00
Shay Nehmad d4947d97f3 Lock npm version for `pluralize` 2019-09-16 16:37:30 +03:00
Shay Nehmad 1f56e8df61 Use classname instead of self for static method 2019-09-16 16:34:13 +03:00
Shay Nehmad 3b06768a98 Replaced sleep loop for waiting on the process with WaitForSingleObject winapi. 2019-09-16 16:32:21 +03:00
Shay Nehmad 0a11c4b007 Extracted duplicate code to `add_malicious_activity_to_timeline` helper function 2019-09-16 16:17:30 +03:00
Daniel Goldberg d8bac57eb5 Change grouper to be a VictimHost generator 2019-09-16 15:16:56 +03:00
Daniel Goldberg e11be48b80 Add documentation for TCP scan interval in Monkey configuration 2019-09-16 15:16:56 +03:00
Daniel Goldberg 2b14878a9c Bugfix, used wrong logger! 2019-09-16 15:16:56 +03:00
Daniel Goldberg 6c5d6a5ecc Move scanners to be instance variable.
Add MP support (threading/process) for scanning victims in chunks
2019-09-16 15:16:56 +03:00
Daniel Goldberg 7357c8c168 Iterate over ranges as chunks rather than discrete addresses 2019-09-16 15:16:56 +03:00
Daniel Goldberg 17dc764f37 Add support for MP in Windows PyInstaller 2019-09-16 15:16:56 +03:00
Shay Nehmad 76c642e4b3 Lowered code dup in get_result_event 2019-09-16 15:08:22 +03:00
Shay Nehmad dd9a4b2d10 Refactored test_new_user_communication, mostly separated to functions 2019-09-16 15:04:22 +03:00
Shay Nehmad 4330a39725 Removed unused PBA processing funcs 2019-09-16 14:59:27 +03:00
Shay Nehmad bb8a5bf55d Deleted TODO 2019-09-16 14:56:34 +03:00
Shay Nehmad bc94e5854a Moved handle close to finally block 2019-09-16 14:54:02 +03:00
Shay Nehmad b8f48d3542 Unpacking struct from winapi 2019-09-16 14:45:39 +03:00
Shay Nehmad 77269fb3ce Extracted user name creation to separate function 2019-09-16 14:06:21 +03:00
Shay Nehmad 889c8a2378 Moved user add+delete commands into `utils/users` 2019-09-16 13:53:33 +03:00
Shay Nehmad edc2d49307 Broke monkey_utils to utils/ and moved sambacry_runner to exploit. This commit is 100% refactoring without any new code, just deleted unused utils. 2019-09-16 13:00:42 +03:00
Shay Nehmad 4b44fad1cd Fixed typos and grammer errors 2019-09-16 12:27:50 +03:00
VakarisZ 91fe7c22a8 Removed comments that were used in testing 2019-09-13 16:50:12 +03:00
VakarisZ e0a38f3b19 Refactored gitignore to include gcp_keys directory but not it's contents 2019-09-13 16:40:43 +03:00
VakarisZ 9938ba9574 Implemented logs 2019-09-13 16:12:58 +03:00
VakarisZ a17305a324 More improvements on the configs 2019-09-11 17:35:41 +03:00
VakarisZ 994b6ed63d Improved exception throwing 2019-09-11 17:23:28 +03:00
Shay Nehmad 4d24d8432e Improved the Events modal 2019-09-11 17:19:23 +03:00
VakarisZ e6060b6729 Merge remote-tracking branch 'upstream/develop' into 420/blackbox 2019-09-11 13:56:50 +03:00
VakarisZ ae7c0000c6
Merge pull request #433 from VakarisZ/not_dying_fix
Bugfix for monkey not reporting being dead
2019-09-11 13:54:10 +03:00
VakarisZ 650ef12149 Bugfix for monkey not reporting being dead 2019-09-11 13:03:12 +03:00
VakarisZ 36b6752827 Refactored to run series of tests, improved configurations, file structure 2019-09-11 12:39:28 +03:00
Shay Nehmad 68383f069b Final text changes 2019-09-10 23:51:19 +03:00
Shay Nehmad cfd0c10d59 Refactoring inconclusive to verify and recommendation to principle
Product writer's orders
2019-09-10 23:44:03 +03:00
Shay Nehmad 5f02ebe1e0 Added Guardicore processes to AV list 2019-09-10 19:32:46 +03:00
Shay Nehmad 50f8e9053a Changed on windows as well 2019-09-10 14:50:54 +03:00
Shay Nehmad 4dca735265 Changed `check_output` to `Popen` to make user deletion async
we don't care about its result
2019-09-10 14:43:48 +03:00
Shay Nehmad 53f31ddcc9 Refactored notification logic to method 2019-09-09 17:36:00 +03:00
Shay Nehmad a51a6065b8 Now looking at the exit codes of ping 2019-09-09 17:27:53 +03:00
Shay Nehmad a32012ce52 Added communicate as new user to default PBA actions 2019-09-09 13:35:46 +03:00