40820a5ba5
Island: refactor report generation to take credentials from model
...
Reporting used to fetch credentials from telemetries, but they are no longer stored. Instead, credentials are being fetched from stolen_credentials collection
2022-02-28 12:30:26 +02:00
02d81771a9
Island: remove remaining references to "creds" property of monkey
2022-02-25 17:13:19 +02:00
cf56fcbef2
UT: removed telemetry encryption test
2022-02-25 15:38:36 +02:00
0ecfbff1e4
Island: don't store credential telemetries
...
Credential telemetries are not stored on the database to prevent the need to encrypt credentials and query database directly. Instead, credentials are parsed into a document that doesn't contain secrets and is easily queryable
2022-02-25 15:38:36 +02:00
afc98667c4
Island: remove unused "creds" properties from monkey model
2022-02-25 15:38:36 +02:00
0a7637c944
Merge pull request #1744 from guardicore/1732-remove-elasticsearch
...
Remove ElasticGroovyExploiter
2022-02-24 09:05:09 -05:00
7e362283fa
Changelog: Add entry for removing the Elastic Search exploiter
2022-02-24 19:14:20 +05:30
85eb3a2c0d
Merge pull request #1743 from guardicore/1605-modify-hadoop
...
Modify Hadoop exploiter
2022-02-24 08:02:01 -05:00
e8ba34b055
Island: Use exploitation_result in telemetry_feed
2022-02-24 13:33:32 +01:00
871b02d514
Agent: Stop Hadoop http_thread regardless the exploit result
2022-02-24 12:21:54 +01:00
7d76d94959
Zoo: Remove Elastic machines from terraform scripts and docs
2022-02-24 15:16:19 +05:30
6c7e630465
BB: Remove ElasticGroovyExploiter references
2022-02-24 15:14:32 +05:30
a599edec15
Project: Remove ELASTIC exploiter descriptor enum from Vulture's allowlist
2022-02-24 15:12:00 +05:30
35d39b46c7
UT: Remove ElasticGroovyExploiter references
2022-02-24 15:10:31 +05:30
3ff7daa2d5
UI: Remove ElasticGroovyExploiter reporting
2022-02-24 15:03:57 +05:30
b6438edb82
Agent: Remove ElasticGroovyExploiter
2022-02-24 15:01:16 +05:30
b1fbf64730
Docs: Remove ElasticSearch exploiter documentation
2022-02-24 15:00:52 +05:30
31e6c09673
Project: Replace ElasticSearch with Zerologon in README.md
2022-02-24 14:49:53 +05:30
4d6869fbf6
Agent: Use `ExploiterWrapper` for loading the Hadoop exploiter
2022-02-24 13:29:53 +05:30
eb9adc08c2
Agent: Override `HostExploiter`'s `pre_exploit()` in `WebRCE`
2022-02-24 13:21:15 +05:30
87547c4da1
Agent: Use http_ports from exploiter options in WebRCE
2022-02-24 13:21:15 +05:30
b859b8820f
Island: Add HTTP_PORTS to exploiter common options
2022-02-24 13:21:15 +05:30
34953f1c88
Agent: Enable Hadoop exploiter to run
2022-02-24 13:21:12 +05:30
1223e2acf3
Agent: Use exploiter options in WebRCE
2022-02-24 13:20:20 +05:30
67083fe336
Agent: Use ITelemetryMessenger to send telemetries in WebRCE
2022-02-24 13:20:20 +05:30
57eca553a7
Agent: Send ExploiterResultData from Hadoop exploiter
2022-02-24 13:20:20 +05:30
90646a6ff9
Agent: Remove code that set host architecture in Hadoop exploiter
2022-02-24 13:20:20 +05:30
79ccabceb1
Agent: Make some functions private in the Hadoop exploiter
2022-02-24 13:20:20 +05:30
ad5ce8e7d2
Agent: Remove `blind_exploit` logic from web_rce.py and weblogic.py
2022-02-24 13:20:20 +05:30
0501bb7037
Agent: Remove architecture setting from web_rce.py
2022-02-24 13:20:20 +05:30
5cbcb88dd6
Agent: Add ExploiterWrapper
...
Issue #1605
PR #1739
2022-02-23 16:37:23 -05:00
2431e2f20b
Agent: Fix typo in "exploitation_result" key
2022-02-23 12:00:42 -05:00
48e8420b4d
Merge pull request #1734 from guardicore/1695-parsing-ssh-keys
...
1695 ssh keys processing
2022-02-23 17:39:56 +02:00
e17d95bf18
Island: small improvements code style in credential parsing code
2022-02-23 17:38:15 +02:00
57e6d0208d
Merge pull request #1735 from guardicore/1733-remove-shellshock-exploit
...
Remove shellshock exploit
2022-02-23 10:27:22 -05:00
55c3236d8e
Changelog: Remove ShellShock exploiter
2022-02-23 10:24:23 -05:00
cdd28dda7b
Merge branch '1605-resolve-circular-dependency' into agent-refactor
...
Issue #1605
2022-02-23 09:45:41 -05:00
32d618ac92
Agent: Modify IPuppet interface to take VictimHost instead of object
2022-02-23 09:26:04 -05:00
b17c85cd01
Agent: Extract network_scanning package from network package
...
This resolves some circular dependencies between Tunnel, IPuppet, and
VictimHost.
2022-02-23 09:23:42 -05:00
62f1861193
Agent: Remove disused NetworkScanner
2022-02-23 09:23:36 -05:00
7d0e177e7a
Merge pull request #1727 from guardicore/1605-modify-ssh-exploit
...
Modify SSH exploit
2022-02-23 09:16:11 -05:00
0f0edc3439
Agent: Log error messages at error level in SSHExploiter
2022-02-23 09:08:28 -05:00
9d23c3dd62
UT: fix test data to contain credential type in capitals
2022-02-23 16:00:31 +02:00
04b217cde5
Island: remove code duplication in credentials_parser.py
2022-02-23 15:52:04 +02:00
9396ac7512
Island, UT: fix ssh key processing, add unit tests
2022-02-23 15:49:56 +02:00
ddb227b181
Island: sort telem processing functions alphabetically
2022-02-23 15:49:56 +02:00
a1073bdb34
Island: add monkey guid to credentials object
2022-02-23 15:49:56 +02:00
1fe1293405
UT: export credential testing infrastructure to conftest
2022-02-23 15:49:56 +02:00
8dd033c212
Island: refactor credential parser to use Credentials object
2022-02-23 15:49:54 +02:00
3ff9bbe327
UT: add a test for parsing username with special characters
2022-02-23 15:47:14 +02:00
vakarisz
Mike Salvatore
Shreya Malviya
Ilija Lazoroski
VakarisZ