Commit Graph

6590 Commits

Author SHA1 Message Date
VakarisZ 6ee1949d46
Merge pull request #1582 from guardicore/1535-netstat-info-collector-removal
1535 netstat info collector removal
2021-11-12 17:05:44 +02:00
Ilija Lazoroski 6e65bb4265 UT: Remove send log to server 2021-11-12 15:56:12 +01:00
Ilija Lazoroski bbe01778cf Changelog: Removed checkbox to send log to server 2021-11-12 15:56:11 +01:00
Ilija Lazoroski 00f4f19f99 Island: Remove checkbox to send log to server 2021-11-12 15:52:54 +01:00
Ilija Lazoroski c43cfe490c Agent: Always send log to server 2021-11-12 15:52:54 +01:00
Shreya Malviya 59e7ac34f7
Agent: Don't download exe on Linux during signed script PBA execution 2021-11-12 07:58:04 -05:00
Mike Salvatore 9f4bf71976
Merge pull request #1580 from guardicore/1577-timeout-backdoor-user-pba
Modify "Communicate as Backdoor User" PBA's HTTP requests
2021-11-12 07:56:23 -05:00
VakarisZ 435f52a658 Changelog: add entry about removed netstat collector 2021-11-12 14:09:07 +02:00
VakarisZ a451764a6f Island: fix ATT&CK report T1082 technique to display that at least data about Network interfaces was gathered. Otherwise the "Info gathered" column might be empty. 2021-11-12 11:52:21 +02:00
VakarisZ 9e3ac63090 Agent, Island: remove netstat collector and references 2021-11-12 11:18:23 +02:00
VakarisZ 9220cd2f5b Swimm: remove netstat system info collector references 2021-11-12 11:18:23 +02:00
Mike Salvatore 54519dc309 Docs: Add system resources section to FAQ 2021-11-11 09:25:01 -05:00
Shreya Malviya 9ee6049636 Changelog: Add entry for backdoor uer PBA's HTTP request modifications 2021-11-11 19:26:47 +05:30
Shreya Malviya 5bbd1c608f Agent: Modify backdoor user PBA's HTTP requests' timeout to 10 seconds 2021-11-11 19:19:59 +05:30
Shreya Malviya 4288063408 Agent: Modify backdoor user PBA's commands to request for headers only
when checking for internet connection
2021-11-11 19:09:45 +05:30
Mike Salvatore 8c4c0fc47c Project: Add .hugo_build.lock to .gitignore 2021-11-11 08:31:23 -05:00
Mike Salvatore 81fb015e6b
Merge pull request #1574 from guardicore/1567-sambacry-removal
1567 sambacry removal
2021-11-10 09:23:39 -05:00
VakarisZ f5c8db979f Project: remove remaining sambacry exploiter references in performance.py config template, vulture_allowlist.py and monkey_config_standard.json unit test data file 2021-11-10 15:44:05 +02:00
VakarisZ e618f0613d Changelog: add entry about the removed sambacry exploiter 2021-11-10 15:44:01 +02:00
VakarisZ 881800047b Island: remove sambacry exploiter code and related infrastructure/docs 2021-11-10 15:43:51 +02:00
VakarisZ 73188e78cc Agent: remove sambacry exploiter code and related infrastructure/docs 2021-11-10 15:43:51 +02:00
VakarisZ d6e397871f Deploy: remove sambacry binary download step from linux and windows deployment scripts 2021-11-10 15:43:51 +02:00
VakarisZ 67ea6c05ed Docs: remove sambacry exploiter documentation 2021-11-10 15:43:51 +02:00
VakarisZ 136a105e56 BB: remove sambacry machines from BB infrastructure and docs 2021-11-10 15:43:51 +02:00
Shreya Malviya dac2aa5464
Merge pull request #1575 from guardicore/1536-remove-kill-file
Remove "Kill file" config option
2021-11-10 19:00:30 +05:30
Shreya Malviya 124e9efe91 Changelog: Add entry for removing 'kill file' 2021-11-10 18:49:41 +05:30
Shreya Malviya 45dcceff9e UT: Remove kill file config option from unit test data's config 2021-11-10 18:45:05 +05:30
Shreya Malviya 0989134141 UI: Remove kill file tab from config 2021-11-10 18:44:36 +05:30
Shreya Malviya 5727979383 Island: Remove kill file config option 2021-11-10 18:42:12 +05:30
Shreya Malviya 4966c74214 Agent: Remove kill file config option 2021-11-10 18:40:35 +05:30
Mike Salvatore cb613393e2 Build: Add warning about building an AppImage on LXD with shiftfs 2021-11-08 21:22:52 -05:00
Mike Salvatore 2c3cbb2ef7
Merge pull request #1570 from guardicore/1556-broken-agent-manual-run-win
1556 broken agent manual run Windows
2021-11-05 11:49:53 -04:00
VakarisZ c07f842c75 UI: small style fixes in local_windows_powershell.js 2021-11-05 11:46:45 -04:00
VakarisZ 7e1e5917cb Changelog: add entry for manual monkey run option modifications 2021-11-05 11:46:43 -04:00
Mike Salvatore 0d0fffcd7a Agent: Add performance-related TODOs to bit_manipulators.py 2021-11-05 11:35:38 -04:00
VakarisZ 4b5c8c23ea UI: removed cmd manual run option for windows
Reasoning behind removal: hard to fix "launch as user" option, agent doesn't support machines without powershell (winXP)
2021-11-05 10:04:00 +02:00
VakarisZ 896cf7a21d UI: remove -noexit flag from manual run command, because there's no point in opening an empty powershell window 2021-11-05 10:04:00 +02:00
VakarisZ 51eb6f2ce5 UI: fix manual run command for powershell as a user 2021-11-05 10:04:00 +02:00
Mike Salvatore 9eff78fb60
Merge pull request #1565 from guardicore/1533-remove-vsftpd
Remove the VSFTPD exploiter
2021-10-29 09:46:11 -04:00
Shreya Malviya 779ae79499 Changelog: Add entry for removing the VSFTPD exploiter 2021-10-29 18:24:23 +05:30
Shreya Malviya 455a8f2680 Docs: Remove VSFTPD exploiter from the docs 2021-10-29 18:20:12 +05:30
Shreya Malviya c6cbaca75b UT: Remove VSFTPD exploiter from unit tests' data - standard monkey config 2021-10-29 18:19:25 +05:30
Shreya Malviya b005946d88 BB: Remove VSFTPD exploiter from BB performance test's config template 2021-10-29 18:17:33 +05:30
Shreya Malviya ee79ea0a9d Project: Remove variable 'VSFTPD' from Vulture's allowlist 2021-10-29 18:15:38 +05:30
Shreya Malviya 3f19c0bb3c Island: Remove config and reporting stuff related to the VSFTPD exploiter 2021-10-29 18:12:40 +05:30
Shreya Malviya 97c50c3caa UI: Remove components related to the VSFTPD exploiter 2021-10-29 18:12:06 +05:30
Shreya Malviya 40b9b5b730 Agent: Remove VSFTPD exploiter 2021-10-29 17:57:12 +05:30
Mike Salvatore 8ee918b5a2
Merge pull request #1561 from guardicore/1554-authentication-service-refactor
Authentication service refactor
2021-10-28 14:47:01 -04:00
Mike Salvatore 28df604d7b Island: Raise exception instead of returning bool in authenticate() 2021-10-28 14:45:44 -04:00
VakarisZ 35509b2671
Merge pull request #1562 from guardicore/1545-telemetry-brief-loading
Bugfix: telemetry brief loading
2021-10-28 17:58:38 +03:00