307e1e3093
Rephrase custom PBA file descriptions in configuration
2021-03-11 18:33:48 +05:30
53fa550b99
Merge pull request #1031 from guardicore/fix-drupal-exploit-failure
...
Fix drupal exploit failure
2021-03-10 07:28:22 -05:00
3714dd2f6f
agent: Use the dropper in the DrupalExploiter
...
Fixes #1026
2021-03-10 06:44:53 -05:00
e7528e9544
agent: Use PIPE for stdin, stdout, and stderr in dropper
...
The dropper is expected to detatch the child monkey agent process. If
stdin, stdout, and stderr are set to `None`, the child process inherits
them. Since the child process inherits the parent's file descriptors and
holds them open, issues like #1026 can occur.
2021-03-10 06:43:48 -05:00
4ac7c01976
agent: add 2 new log statements to the dropper
2021-03-09 19:26:50 -05:00
ba6bf71776
agent: Fix typo in HTTPFinger
2021-03-09 11:56:32 -05:00
efedab8854
Merge pull request #1029 from guardicore/config_template_fixes
...
Config template fixes
2021-03-09 10:41:23 -05:00
6a7d08c93e
Improved README.md of config file generation script
2021-03-09 14:51:56 +02:00
92d9226edf
Bugfixed a couple of config templates.
2021-03-09 14:51:35 +02:00
728b26e87e
Merge pull request #1025 from guardicore/config_template_to_file
...
Utility script for translating config templates to config files
2021-03-09 06:27:17 -05:00
a4aee364b4
Ran black on config generation script
2021-03-09 10:23:35 +02:00
c234891330
Minor fixes in config file generation script: added island IP param in docs and added Drupal to configs
2021-03-08 17:27:57 +02:00
6a6dd67113
Refactored config templates to inherit from ConfigTemplate class instead of BaseTemplate
2021-03-08 17:21:59 +02:00
5f41ce54c6
Added config file generation script, which can generate config files from config templates.
2021-03-08 17:20:32 +02:00
b65524a85d
Refactored "island_configs" dir to "config_templates" dir in blackbox
2021-03-08 17:20:21 +02:00
5b8140029e
Merge pull request #1024 from guardicore/drupal-blackbox-test
...
Drupal blackbox test
2021-03-08 10:11:51 -05:00
551928369a
zoo: update command to run blackbox tests
...
Commit 3f687f6ae
2021-03-08 09:47:16 -05:00
34b0830c77
zoo: add drupal exploiter blackbox test
2021-03-08 09:42:48 -05:00
3164ae77c4
zoo: add drupal-28 to teraform scrips
2021-03-08 08:54:45 -05:00
0fb0c58fd4
zoo: add missing port number in blackbox/README.md
2021-03-08 08:54:15 -05:00
a132881ccc
Merge pull request #1022 from guardicore/zerologon-bb-test
...
Zerologon BB test
2021-03-08 13:59:16 +02:00
f43d9fe035
ZL BB tests: Renamed "ZeroLogon" to "Zerologon" for cinsistency, extracted relevant credential extortion from island config into a separate method.
2021-03-08 13:58:11 +02:00
70ec513f51
Added logging to the ZeroLogon analyzer
2021-03-08 13:10:14 +02:00
b43f669081
Bugfix: removed unneeded exploitation test run in ZeroLogon BB test
2021-03-08 12:35:31 +02:00
44f6ce36b6
Fixed credentials in zerologon exploiter to match.
2021-03-08 12:05:00 +02:00
263fa53ea5
Added an endpoint on the island for telemetry tests. This allows for tests like blackbox tests to send queries and check whether a certain telemetry is in the database or not
2021-03-08 11:13:31 +02:00
f6b0682297
Added ZeroLogon test to the BlackBox infrastructure.
2021-03-08 11:07:24 +02:00
3f687f6aea
Moved common config value paths to common
2021-03-08 11:06:18 +02:00
ba8acf2a64
Merge pull request #1021 from guardicore/fix-master-checkbox-rendering
...
Fix master checkbox rendering
2021-03-07 13:00:28 -05:00
5e21ff88cb
ui: minor style changes in AdvancedMultiSelect
2021-03-05 12:35:17 -05:00
793bb99309
ui: properly render master checkbox on import or reset
...
Fixes #1018
2021-03-05 12:34:46 -05:00
43c5834d51
cc: add useful debug logging that explains errors in HTTPFinger
2021-03-05 10:06:27 -05:00
90310a46dc
Merge pull request #1016 from guardicore/BB_config_generation_quickfix
...
Configuration generation for BB tests bugfix
2021-03-05 11:02:31 +02:00
3848dbeb32
Fixed a bug in configuration generation for BB tests. Bug was related to incorrect references
2021-03-05 10:50:55 +02:00
8de21df309
Merge pull request #1015 from guardicore/release_crypto_package_requirement
...
Fixed cryptography requirement
2021-03-04 11:25:09 +02:00
9fb0a5628d
Fixed cryptography requirement for infection monkey, latest one doesn't have a pre-built wheel
2021-03-04 10:46:05 +02:00
5bdb526db3
Merge pull request #1013 from guardicore/scoutsuite_docs
...
Scoutsuite docs
2021-03-03 11:51:29 -05:00
2ff84c9dc8
docs: s/color coated/color coded/
2021-03-03 11:50:50 -05:00
aacedc2e66
Improved phrasing in the scoutsuite documentation
2021-03-03 17:03:52 +02:00
bcc462ee94
Merge pull request #1004 from shreyamalviya/bugfix-incorrect-host-in-stolen-creds-report
...
Show exploited machine name under "Stolen From" in stolen credentials section
2021-03-03 09:19:55 -05:00
243e077687
Remove accidental debug statement
2021-03-03 18:59:47 +05:30
c9552f9f44
Improved scoutsuite documentation: fixed incorrect description, added more screenshots and improved phrasing
2021-03-03 15:23:24 +02:00
d60ce37c5d
cc: use fresh mongomock in each report test
2021-03-03 08:22:32 -05:00
243b783a7e
Moved scoutsuite docs to integrations from references
2021-03-03 14:37:31 +02:00
d772760ace
Add unit tests for get_stolen_creds()
2021-03-03 17:08:36 +05:30
eecee86d92
Remove preceeding underscore from variables
2021-03-03 15:09:01 +05:30
8d2e530eaa
Show IP if domain name isn't available
2021-03-03 15:09:01 +05:30
1528b00a1b
Change origin of creds stolen using exploits from host machine to exploited machine
2021-03-03 15:09:01 +05:30
eb41376f53
Merge pull request #1014 from guardicore/scoutsuite_submodule_retargetting
...
Re-targeted scoutsuite submodule to use latest commit
2021-03-03 11:33:06 +02:00
2dc9c26a7c
Re-targeted scoutsuite submodule to use our branch
2021-03-03 11:25:49 +02:00
Shreya
Mike Salvatore
VakarisZ
VakarisZ