Ilija Lazoroski
|
7ccab8e2f2
|
BB: Monkey object uses _id
|
2022-07-26 16:30:19 +02:00 |
Ilija Lazoroski
|
371b020542
|
BB: Reset Island after finished test
|
2022-07-26 16:29:21 +02:00 |
vakarisz
|
81101d4213
|
Common: Rename configuration package to agent_configuration
|
2022-07-26 09:38:58 -04:00 |
Ilija Lazoroski
|
fd6f1db074
|
BB: Add todo and comment out broken code in ZerologonAnalyzer
|
2022-07-25 11:07:47 +02:00 |
Mike Salvatore
|
878f12736f
|
BB: POST config and credentials as JSON
|
2022-07-22 13:26:12 -04:00 |
Mike Salvatore
|
e1691b108f
|
BB: Fix credentials object serialization
|
2022-07-22 13:26:12 -04:00 |
Mike Salvatore
|
5c60656f56
|
BB: Rename post_json(data) parameter to json
|
2022-07-22 17:24:53 +00:00 |
Mike Salvatore
|
2d338fc81f
|
BB: Use to_mapping() to send agent configuration JSON
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
b6703becbc
|
BB: Get rid of TestConfigurationParser and move its functions outside
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
35d5592da0
|
BB, Island: Remove BB performance tests and *everything* related to it
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
8b43d910b6
|
BB: Modify MonkeyIslandClient.import_config() to send propagation credentials to relevant endpoint
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
379ada7a24
|
BB: Rename IslandConfigParser -> TestConfigurationParser
Even though the names start with "test", they shouldn't cause any issues
since we only run "test_blackbox.py".
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
2764069aec
|
BB: Correctly pass and import test configuration and agent configuration
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
1f4167f44c
|
BB: Add more specific type hint to IslandConfigParser.get_target_ips_from_configuration()
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
42efe1fc56
|
BB: Remove unused function from IslandConfigParser
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
b13fb45b04
|
BB: Get rid of unneeded improts and variables
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
00626fe579
|
BB: Use agent configuration object to get target IPs in IslandConfigParser
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
549a79ced4
|
BB: Update type hint to be more specific in CommunicationAnalyzer
Co-authored-by: Mike Salvatore <mike.s.salvatore@gmail.com>
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
db5187fc74
|
BB: Remove config templates
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
1d45a15ea1
|
BB: Remove config_generation_script.py
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
c6c38ac008
|
BB: Add type hints in CommunicationAnalyzer
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
c9b10bfc3f
|
BB: Fix API endpoints in MonkeyIslandClient
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
f0993d94cf
|
BB: Rename raw_config -> serialized_config everywhere
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
690fb71e10
|
BB: Rename get_ips_of_targets() -> get_target_ips_from_serialized_config() and pass correct arguments
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
c6ffd16e48
|
BB: Modify IslandConfigParser.get_ips_of_targets() logic per new configuration
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
5d9e525ecc
|
BB: Remove unused apply_template_to_config() from IslandConfigParser
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
7d98d14d3a
|
BB: Use IslandConfigParser.get_serialized_config() in test_blackbox.py
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
c509b1390a
|
BB: Remove unused parameter in get_serialized_config() in IslandConfigParser
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
6bda56f30c
|
BB: Replace config templates with configuration objects in test_blackbox.py
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
d5736df56d
|
BB: Modify IslandConfigParser to return serialized config
|
2022-07-22 17:24:53 +00:00 |
Shreya Malviya
|
f99ad90371
|
BB: Reorder test configuration imports so they're alphabetical
|
2022-07-22 17:24:53 +00:00 |
Mike Salvatore
|
f049688160
|
BB: Add smb_download_timeout to test_configurations
|
2022-07-20 07:48:06 -04:00 |
Mike Salvatore
|
0e2cef181a
|
BB: Add wmi_mimikatz_test_configuration
|
2022-07-19 14:19:43 -04:00 |
Mike Salvatore
|
0605470af9
|
BB: Move Hadoop and Log4Shell to vulnerability exploiters
|
2022-07-19 14:17:06 -04:00 |
Mike Salvatore
|
27197ee70a
|
BB: Add smb_pth_test_configuration
|
2022-07-19 14:09:12 -04:00 |
Mike Salvatore
|
367b6de901
|
BB: Add powershell_credentials_reuse_test_configuration
|
2022-07-19 13:48:29 -04:00 |
Mike Salvatore
|
a605db7625
|
BB: Add Tests comment to depth_2_a.py
|
2022-07-19 13:31:16 -04:00 |
Mike Salvatore
|
cde0474eb2
|
BB: Add "Tests" comment to depth_1_a.py
|
2022-07-19 13:29:46 -04:00 |
Mike Salvatore
|
d354622f9a
|
BB: Add depth_3_a_test_configuration
|
2022-07-19 13:29:39 -04:00 |
Mike Salvatore
|
6e730394bf
|
BB: Add set_keep_tunnel_open_time()
|
2022-07-19 13:25:08 -04:00 |
Mike Salvatore
|
9bff20e92f
|
BB: Add depth_2_a_test_configuration
|
2022-07-19 13:25:07 -04:00 |
Mike Salvatore
|
3480b18e39
|
BB: Remove zerologon exploiter from depth_1_a_test_configuration
|
2022-07-19 09:00:51 -04:00 |
Mike Salvatore
|
4cd1c6bf3c
|
BB: Reorder some things in depth_1_a.py
|
2022-07-19 08:59:10 -04:00 |
Mike Salvatore
|
87363d3096
|
BB: Rename credentials -> CREDENTIALS
|
2022-07-19 08:57:19 -04:00 |
Mike Salvatore
|
707aa97a65
|
BB: Add TCP ports to depth_1_a_test_configuration
|
2022-07-19 08:47:57 -04:00 |
Mike Salvatore
|
189e2ad3d1
|
BB: Add HTTP ports to depth_1_a_test_configuration
|
2022-07-19 08:13:09 -04:00 |
Mike Salvatore
|
0c6764daf5
|
BB: Add add_http_ports()
|
2022-07-19 08:12:46 -04:00 |
Mike Salvatore
|
f1d9ea64e5
|
BB: Add tcp ports to depth_1_a_test_configuration
|
2022-07-18 15:17:33 -04:00 |
Mike Salvatore
|
0a0cb5de19
|
BB: Set maximum depth in depth_1_a_test_configuration
|
2022-07-18 15:17:33 -04:00 |
Mike Salvatore
|
365b4098e4
|
BB: Set maximum depth in zerologon_test_configuration
|
2022-07-18 15:17:32 -04:00 |
Mike Salvatore
|
5a1a40a515
|
BB: Add set_maximum_depth()
|
2022-07-18 15:17:30 -04:00 |
Mike Salvatore
|
c2028f15a4
|
BB: Add depth_1_a_test_configuration
|
2022-07-18 15:00:06 -04:00 |
Mike Salvatore
|
138ce81f1b
|
BB: Add add_credential_collectors()
|
2022-07-18 14:52:31 -04:00 |
Mike Salvatore
|
dbc138d263
|
BB: Add replace_propagation_credentials()
|
2022-07-18 14:52:05 -04:00 |
Mike Salvatore
|
d11fbe92e8
|
BB: Add missing type hints to add_exploiters()
|
2022-07-18 14:49:25 -04:00 |
Mike Salvatore
|
37e79f41e8
|
BB: Rename noop_test_configuration.py -> noop.py
|
2022-07-18 14:43:18 -04:00 |
Mike Salvatore
|
68c6625445
|
BB: Add a zerologon test configuration
|
2022-07-18 14:43:18 -04:00 |
Mike Salvatore
|
ed6b766cd1
|
BB: Add test_configurations/utils.py
|
2022-07-18 14:43:16 -04:00 |
Mike Salvatore
|
c42cfe3110
|
BB: Add noop_configuration
|
2022-07-18 14:26:43 -04:00 |
Mike Salvatore
|
b3499074b5
|
BB: Add TestConfiguration
|
2022-07-18 13:36:37 -04:00 |
Mike Salvatore
|
ea1dc930a1
|
BB: Remove "single_tests" subpackage
|
2022-07-18 13:08:29 -04:00 |
Mike Salvatore
|
cf45ae4c3e
|
BB: Remove "grouped" subpackage
|
2022-07-18 13:07:18 -04:00 |
Mike Salvatore
|
c1073bd1ea
|
BB: Remove unused "single_tests"
|
2022-07-18 13:06:00 -04:00 |
Mike Salvatore
|
70f3506317
|
BB: Remove test_blackbox_in_depth.py
|
2022-07-18 13:02:19 -04:00 |
Shreya Malviya
|
f7315b25f5
|
Zoo: Change agent binary download endpoint
|
2022-06-02 17:31:55 +05:30 |
Mike Salvatore
|
61793d56cf
|
BB: Add a note about clearing tomcat sessions
|
2022-05-04 10:32:23 -04:00 |
Mike Salvatore
|
2f3c08cb77
|
BB: Add a note about setting java.security.egd for tomcat
|
2022-05-04 10:32:21 -04:00 |
Ilija Lazoroski
|
30e27b4e9a
|
Zoo: Add timeout to zerologon bb test
* Fix log message in smb tools
|
2022-04-26 11:40:48 -04:00 |
Ilija Lazoroski
|
a740e92784
|
Envs: Rename api/monkey endpoint to api/agent
* Remove 32-bitness
* Fix api/agent/download endpoint
|
2022-04-18 13:53:15 +02:00 |
Ilija Lazoroski
|
d2cc056a55
|
Island, BB: Rename api/monkey_control to api/monkey-control
|
2022-04-15 13:16:56 +02:00 |
Ilija Lazoroski
|
1535832279
|
Island, BB: Rename clear_caches endpoint to clear-caches
|
2022-04-15 12:36:12 +02:00 |
Mike Salvatore
|
6df2c38b0f
|
BB: Remove tests for drupal, struts, and weblogic exploiters
|
2022-04-14 14:02:43 -04:00 |
Mike Salvatore
|
c74f0ed472
|
BB: Change scan list order in test_depth_3_a() to decrease runtime
|
2022-04-14 13:53:04 -04:00 |
Mike Salvatore
|
a2c3b74d09
|
BB: Change test order
|
2022-04-14 13:52:41 -04:00 |
Mike Salvatore
|
16e887a94a
|
Merge pull request #1887 from guardicore/agent-refactor
|
2022-04-14 12:20:43 -04:00 |
vakarisz
|
3ebab643bc
|
BB: Small typo fix
|
2022-04-14 15:12:18 +03:00 |
Mike Salvatore
|
03433a8d75
|
BB: Format depth_3_a.py with Black
|
2022-04-13 11:48:32 -04:00 |
vakaris_zilius
|
43d38d90e0
|
BB: Extract powershell cred re-use into a separate test
Credential re-use only applies to windows island, that's why it's separate
|
2022-04-13 14:21:23 +00:00 |
vakaris_zilius
|
b20de39ce0
|
BB: Split depth_1_b into separate tests, add SMB_PTH
|
2022-04-13 16:45:14 +03:00 |
vakaris_zilius
|
76ba33a750
|
BB: Fix a WMI bug in configuration
Depth 3 a should test PTH, because mimikatz is already being tested in depth 1 a.
|
2022-04-13 16:45:14 +03:00 |
vakaris_zilius
|
c498b22610
|
BB: Improve configuration documentation with IP's
|
2022-04-13 16:45:14 +03:00 |
vakaris_zilius
|
2dee5698f2
|
BB: Remove performance test template from test_blackbox.py
|
2022-04-13 16:45:14 +03:00 |
vakaris_zilius
|
1d647a0c6b
|
BB: Move ssh keys test to a separate test suite
|
2022-04-13 16:45:14 +03:00 |
vakaris_zilius
|
03e23778dd
|
BB: Add explanation to how 46 powershell machine can be exploited
|
2022-04-13 16:45:14 +03:00 |
vakaris_zilius
|
4df72d08eb
|
BB: Reduce the time for agents to die to 2 minutes
|
2022-04-13 16:45:14 +03:00 |
vakaris_zilius
|
0b4f98c675
|
BB: Increase default test timeout to 150s
Timeout needed an increase because one log4shell machine was slow to communicate back
|
2022-04-13 16:45:14 +03:00 |
vakaris_zilius
|
549eebd55c
|
BB: Rename depth_4_a to depth_3_a
|
2022-04-13 16:45:14 +03:00 |
vakarisz
|
91a431517a
|
BB: Use grouped tests
Grouping tests will allow us to run more tests at once
|
2022-04-13 16:45:14 +03:00 |
vakarisz
|
7a3ec16d16
|
BB: Add powershell empty credential login test to depth_1_a test
|
2022-04-13 16:45:14 +03:00 |
vakarisz
|
ceabb99e7c
|
BB: Add time log for monkey killing time
|
2022-04-13 16:45:14 +03:00 |
vakarisz
|
9ca061e23c
|
BB: Add config templates for grouped tests
|
2022-04-13 16:45:14 +03:00 |
vakarisz
|
48469a59a6
|
BB: Move single test templates into a dedicated folder
|
2022-04-13 16:45:12 +03:00 |
Ilija Lazoroski
|
d9c295bed4
|
BB: Remove WebLogic exploiter
|
2022-04-11 11:58:24 +02:00 |
Mike Salvatore
|
1f5bb7efaf
|
Merge pull request #1876 from guardicore/1869-remove-drupal
Remove Drupal exploiter
|
2022-04-10 09:45:24 -04:00 |
Shreya Malviya
|
378b5178c5
|
BB: Relate references to the Drupal machine in the Zoo
|
2022-04-08 20:59:38 +05:30 |
Ilija Lazoroski
|
d3c60af960
|
BB: Remove Struts2 exploiter
|
2022-04-08 12:14:38 +02:00 |
Shreya Malviya
|
0789869316
|
BB: Remove Drupal BB test and related code
|
2022-04-08 14:27:48 +05:30 |
Mike Salvatore
|
394088e39d
|
BB: Reduce DELAY_BETWEEN_ANALYSIS
|
2022-03-29 16:10:20 -04:00 |
Mike Salvatore
|
4e489ad62b
|
Merge pull request #1814 from guardicore/1801-fix-blackbox-tests
1801 fix blackbox tests
|
2022-03-25 07:18:22 -04:00 |
Mike Salvatore
|
35923c1eb1
|
BB: Reduce the timeouts for tunneling tests
|
2022-03-24 13:43:04 -04:00 |