Shreya
1cf07eff89
Improve log messages and comments
2021-02-19 01:06:05 +05:30
Shreya
13ef69c3ed
Clean up code and comments
2021-02-19 01:06:05 +05:30
Shreya
53ef6feadf
Restore password
...
(wmiexec to get HKLM keys --> secretsdump to get orig pwd nthash --> restore)
2021-02-19 01:06:05 +05:30
Shreya
e7485bd02f
Mention CVE
2021-02-19 01:06:05 +05:30
Shreya
8549ba14cf
Bringing stuff together
2021-02-19 01:06:05 +05:30
Shreya
5cd8b39f0f
Get original passwords' hashes
2021-02-19 01:06:05 +05:30
Shreya
a4207494ec
Change classes order in file
2021-02-19 01:06:05 +05:30
Shreya
44e15bd2a0
Add restore_password()
2021-02-19 01:06:05 +05:30
Shreya
9468de471d
Partially add Zerologon exploiter
2021-02-19 01:06:05 +05:30
Shreya
2cc0a159e0
Rename "WindowsServer" fingerprinter: "Zerologon" makes more sense
2021-02-19 01:06:05 +05:30
Shreya
900bb7636d
Basic config and report stuff
2021-02-19 01:06:05 +05:30
Mike Salvatore
978927c329
Merge pull request #970 from shreyamalviya/telemetry-tests
...
Telemetry unit tests
2021-02-18 14:18:05 -05:00
Shreya
2bc27b48de
Use stub for PBA
2021-02-19 00:44:28 +05:30
Shreya
8bd30ceb4c
Format code using black
2021-02-19 00:09:20 +05:30
Shreya
15107eeea3
Use constants/literals for tests
2021-02-19 00:02:34 +05:30
Shreya
a4603853a9
Split test_attack_telem_classes.py and test_technique_telems.py into separate test files
2021-02-18 22:44:42 +05:30
Shreya
08addff8c5
Modify tests for attack telem classes and technique telems
...
- test `send()` instead of `get_data()` using fixture `spy_send_telemetry`
2021-02-18 22:34:15 +05:30
Mike Salvatore
4efdeeacc3
agent: remove dependency on pytest-mock
2021-02-18 09:59:52 -05:00
Mike Salvatore
86ffaf358f
agent: break test_base_telem_classes into discrete test files
2021-02-18 09:53:55 -05:00
Mike Salvatore
0ac9ce949c
agent: reformat test_base_telem_classes.py with black
2021-02-18 09:38:37 -05:00
Mike Salvatore
c2ed31bde8
telemetry: test `send()` for telemetry classes in `telemetry/`
2021-02-18 09:33:58 -05:00
Shreya
7960529ee9
Add conftest.py
2021-02-18 19:41:29 +05:30
Shreya
42b7fa05d6
Add requirement
2021-02-17 19:02:20 +05:30
Shreya
6b0cc1e368
Add tests for other base telems + put all telem tests in one folder
2021-02-17 19:01:55 +05:30
Shreya
b9bbfac30b
Add/modify tests for attack telems
2021-02-17 18:25:38 +05:30
Mike Salvatore
de3adfd483
Merge pull request #964 from guardicore/payload_obfuscation
...
Payload obfuscation
2021-02-11 08:47:15 -05:00
VakarisZ
f11736d451
Added no inspection comments and an explanation on why we use Crypto for shellcode_obfuscator.py
2021-02-11 15:29:29 +02:00
Mike Salvatore
a7b79d6d03
cc: fix typo in pycrypto noqa comment
2021-02-11 08:26:10 -05:00
Mike Salvatore
e4bcf2ef1c
cc: ignore pycrypto security warnings since we use pycryptodome
2021-02-11 08:09:07 -05:00
Mike Salvatore
0cc65cb346
Merge pull request #924 from shreyamalviya/env-collection-errors
...
Catch exceptions in AwsInstance and AzureInstance
2021-02-10 08:51:48 -05:00
Shreya
11a0477dbb
Rename test functions, add 404 response tests, and other tiny changes
2021-02-10 16:15:17 +05:30
VakarisZ
28e4a0f23d
Altered shellcode obfuscator unit test to match the new code
2021-02-10 10:32:43 +02:00
Shreya
016d886781
Add tests for AwsInstance
...
and change urllib.request.urlopen() to requests.get() for easier testing; functionality doesn't change
2021-02-06 19:19:08 +05:30
Shreya
eed5ea1337
Add tests for GcpInstance
2021-02-04 21:02:53 +05:30
Shreya
413aa35b5b
Rename an old test file
2021-02-04 20:46:19 +05:30
Shreya
adab0436be
Add tests for AzureInstance
2021-02-04 20:46:20 +05:30
Shreya
59383e7946
Catch exceptions in AwsInstance and AzureInstance
2021-02-04 20:46:11 +05:30
Mike Salvatore
8f7a0aeb1c
Merge pull request #955 from mssalvatore/819/icmp-cross-segment-report
...
819/icmp cross segment report
Fixes #819
2021-02-03 10:13:10 -05:00
Mike Salvatore
919c51b920
ui: display ICMP in cross-segment issues report
2021-02-02 16:44:42 -05:00
Mike Salvatore
c6bec1335c
island: include 'icmp' from scan telemetry in report
2021-02-02 16:44:42 -05:00
Mike Salvatore
c7a1f246cb
agent: add icmp property to VictimHost
...
Keep track of whether or not PingScanner was successful by storing a
boolean in VictimHost objects. This information is communicated back to
the Monkey Island via telemetry.
2021-02-02 16:44:42 -05:00
Mike Salvatore
458e01cf24
ui: use template strings when generating cross-segment report
2021-02-02 16:44:42 -05:00
Mike Salvatore
c8b4089bd2
ui: display cross-segment issues as "pinged" if no services/ports
...
Issue #819
2021-02-02 16:44:42 -05:00
Mike Salvatore
cc9b88b8e5
ui: fix spelling error catagory -> category
...
Fixes #689
2021-02-02 13:50:00 -05:00
Mike Salvatore
13af101c2a
Merge pull request #920 from mssalvatore/refactor-advanced-multiselect
...
* Add warning icon to unsafe checkbox options
* Add "Reset to safe defaults" button
* Add warning icon and message to InfoPane
* Change behavior of master checkbox to be consistent with KDE user interface guidelines (mixed state)
* Extracted MasterCheckbox and ChildCheckbox from AdvancedMultiSelect
* Add "safe" property to schemas that feed AdvancedMultiSelect components
2021-02-01 08:04:10 -05:00
VakarisZ
e6e61f946c
Changed payload obfuscation method into encryption algorithm in an attempt to avoid AV static detection.
2021-02-01 14:15:21 +02:00
Mike Salvatore
09a8415aec
ui: remove disabled/readonly from AdvancedMultiSelect
2021-02-01 07:14:15 -05:00
Mike Salvatore
9f12702c3e
ui: code readability improvements
2021-02-01 06:57:04 -05:00
Shreya
c8c763d918
Store converted techniques' messages (markdown to HTML) separately
2021-01-30 15:38:58 -05:00
Mike Salvatore
a5acf4c4b5
github: add a more descriptive explanation of a spike
2021-01-29 21:53:42 -05:00