3fb8c06102
Merge pull request #1280 from guardicore/ransomware-encryption-bool
...
Add encryption checkbox to ransomware config page
2021-06-30 07:46:22 -04:00
169bb34106
Agent: Simplify and improve logging in RansomwarePayload
2021-06-30 07:43:18 -04:00
946641f9a2
Rename {windows,linux}_dir to *_target_dir for consistency
2021-06-30 07:29:53 -04:00
9a58d5bc7a
Island: Reword ransomware target directory descriptions
2021-06-30 07:24:37 -04:00
771aa747a8
Agent: encryption_enabled renamed using "private" naming convention
2021-06-30 06:53:27 -04:00
0f6a712c4c
Merge pull request #1278 from guardicore/ransomware-readme-docs
...
Ransomware documentation modifications for README.txt
2021-06-30 06:49:40 -04:00
0d0d268a64
Docs: Fix formatting of ransomware documentation
2021-06-30 06:49:01 -04:00
af5fd8ac9d
Docs: Minor wording change to ransomware description
2021-06-30 06:47:09 -04:00
aecb80566b
cc: Reword ransomware configuration fields' descriptions
2021-06-30 13:43:06 +05:30
619695d5bc
agent: Rename `self.should_encrypt` to `self.encryption_enabled` in ransomware payload
2021-06-30 13:34:38 +05:30
560cfb5948
docs: Do slight rewording in ransomware's README section
2021-06-30 12:36:35 +05:30
8a902cd2b6
docs: Modify README portion of ransomware docs
...
Give more context. Explain how a ransomware attack usually does this.
Co-authored-by: Mike Salvatore <mike.s.salvatore@gmail.com>
2021-06-30 12:26:55 +05:30
392ece29a0
tests: Modify/add tests for ransomware payload as per ransomware config schema changes
2021-06-29 14:02:02 -04:00
a1efd915b1
cc: Fix grammar in ransomware config schema
2021-06-29 13:52:37 -04:00
4035d9d213
agent: Modify ransomware payload to work with modified ransomware config schema
2021-06-29 13:52:26 -04:00
13a94804b4
cc: Add checkbox for ransomware encryption
2021-06-29 13:51:29 -04:00
6301ec9d14
agent: Add a log message when ransomware leaves a README.txt
2021-06-29 13:39:00 -04:00
d87b8ae4a7
agent: Fix typo RansomewarePayload -> RansomwarePayload
2021-06-29 12:00:49 -04:00
32a0a41c21
Agent: Add content to ransomware README.txt file
2021-06-29 11:51:23 -04:00
f027ad6d1b
Agg ransomware simulation to CHANGELOG
2021-06-29 11:48:07 -04:00
355136ae35
Merge branch 'add-fields-to-file-encryption-telemetry' into develop
2021-06-29 11:44:09 -04:00
8ad822397c
Merge branch 'rename-ransomware-telem' into develop
2021-06-29 11:40:19 -04:00
6a67626bc3
Merge branch 'ransomware-readme-behavior' into develop
2021-06-29 11:31:57 -04:00
92be6e72c2
Island: Fix casing on README.TXT
2021-06-29 11:03:55 -04:00
b312c11f44
Agent: Leave a README.txt in ransomware target dir if it's configured
2021-06-29 11:03:55 -04:00
23b85acdfc
Agent: Add placeholder README file for ransomware simulation
2021-06-29 11:03:48 -04:00
d9366a599b
Merge pull request #1272 from guardicore/batchable-telemetry
...
Batchable telemetry
2021-06-29 10:35:23 -04:00
8281a9d738
agent: Add docstring to IBatchableTelem
2021-06-29 10:34:43 -04:00
f8579300b3
Revert "Add keywords to arguments that create RansomwarePayload in monkey.py"
...
This reverts commit e34599779b
2021-06-29 09:55:29 -04:00
7e7d46d4e7
agent: Improve description in BatchableTelemMixin docstring
2021-06-29 09:53:32 -04:00
444a18d57a
agent: Fix parameter descriptions in FileEncryptionTelem docstring
2021-06-29 08:15:39 -04:00
d5a26ca6eb
agent: Refactor BatchingTelemetryMessenger tests to destroy threads
2021-06-29 07:48:18 -04:00
8cf316b64a
agent: Refactor telemetry processing in BatchingTelemetryMessenger
...
We need to ensure when a BatchingTelemetryMessenger stops, all remaining
telemetries in its queue are sent. The existing logic does this, but
this commit improves the readability and intent of the code, as well as
adds a test for this condition.
2021-06-29 07:36:49 -04:00
9d3d4611dc
agent: Define _manage_telemetry_batches_thread in __init_()
2021-06-29 06:38:56 -04:00
60c12127e3
Merge pull request #1271 from guardicore/ransomware-logging
...
Ransomware logging
2021-06-29 06:19:49 -04:00
a454449cca
Do small readability changes in batching_telemetry_messenger.py
2021-06-29 12:09:26 +03:00
949a52741b
docs: Add link to ransomware simulations's README.txt file
2021-06-29 13:58:01 +05:30
5b05e6224d
docs: Modify ransomware page to include info about README.txt file
2021-06-29 13:58:02 +05:30
e34599779b
Add keywords to arguments that create RansomwarePayload in monkey.py
2021-06-29 09:14:43 +03:00
04b2ac6bd9
Don't normalize line endings in ransomware_targets test data
...
On Windows, git will normalize the line endings of .txt (and other)
files to crlf instead of lf. This is useful for many files, but the
ransomware_target files need unmodified when they are checked out.
By adding an exception in .gitattributes, the files in
monkey/tests/data_for_tests/ransomware_targets are not modified on
windows.
2021-06-28 20:52:42 -04:00
f7f60be632
Merge branch 'ransomware_readme_config_option' into develop
2021-06-28 14:57:18 -04:00
f8411d3c92
Island: Rename ransomware config "notifications" section
2021-06-28 13:50:45 -04:00
d7991eb06b
Merge pull request #1270 from guardicore/secure-custom-pba-dir
...
Create secure custom PBA directory on Windows
2021-06-28 13:48:17 -04:00
dbd6dedb95
agent: Add explicit "success" field to FileEncryptionTelem
2021-06-28 13:37:00 -04:00
c1af3f8165
agent: Fix failing ransomware test on Windows
2021-06-28 13:31:28 -04:00
df1f3cda78
agent: Add explicit fields to FileEncryptionTelem
2021-06-28 13:30:53 -04:00
49eb1cd996
agent: Rename RansomwareTelem -> FileEncryptionTelem
...
Ransomware will soon do more than just encrypt files. We should give the
telemetry that's related to encrypting files a more descriptive name
that better describes what it is reporting.
2021-06-28 13:20:30 -04:00
37a73440af
tests: Add extra line in tests/monkey_island/utils.py to pass formatting checks
2021-06-28 22:43:25 +05:30
543f0031a2
agent: Fully flush BatchingTelemetryMessenger queue before stopping
2021-06-28 12:34:24 -04:00
7e3eef90cb
agent: Rename get_telemetry_entries() -> get_telemetry_batch()
2021-06-28 12:27:32 -04:00
Mike Salvatore
Shreya
VakarisZ