Commit Graph

1460 Commits

Author SHA1 Message Date
Itay Mizeretz cdc576e77e Make mimikatz inside zip and extract only if config says so 2018-08-22 19:31:26 +03:00
itaymmguardicore fc2929ed2e
Merge pull request #159 from VakarisZ/WebRCE_Framework
Web rce framework
2018-08-22 16:46:48 +03:00
Vakaris df4b1268d1 Refactored struts2 to overload get_exploit_config 2018-08-22 16:08:38 +03:00
Vakaris 9ef44ef71f Struts2 refactored to use default_exploit_host function 2018-08-22 16:07:59 +03:00
Vakaris 6cb058eb1d Struts2 refactored for framework fixes 2018-08-22 16:07:39 +03:00
Vakaris bbd4adf2ae Struts2 core functions 2018-08-22 16:07:39 +03:00
Vakaris 3e7d7425e4 made get_exploit_config non-static for readability 2018-08-22 16:01:16 +03:00
Vakaris e1b1236fb3 Comments and CR notes fixed 2018-08-22 13:41:17 +03:00
Vakaris eae3f3440d Refactored exploit_host and added get_exploit_config 2018-08-22 13:33:36 +03:00
Itay Mizeretz 369795e375 small fixes to make everything work 2018-08-21 17:17:21 +03:00
Vakaris 911404ef68 Implemented default_exploit_host method that can implement whole framework's workflow according to some flags/params 2018-08-21 12:34:59 +03:00
Itay Mizeretz a18061d45d Merge branch 'develop' into feature/detect-cross-segment-traffic
# Conflicts:
#	infection_monkey/config.py
#	infection_monkey/example.conf
#	monkey_island/cc/services/report.py
2018-08-21 11:42:45 +03:00
Itay Mizeretz 203943bf27 Merge remote-tracking branch 'origin/master' into develop 2018-08-21 11:34:59 +03:00
Itay Mizeretz bafa0e42a0 Make feature simpler
Change config value phrasing
2018-08-21 11:34:26 +03:00
itaymmguardicore b56dec318e
Merge pull request #166 from guardicore/hotfix/fix-dep-security-vul
Hotfix/fix dep security vul
2018-08-20 14:43:29 +03:00
Vakaris e3d286dbc0 Minor bugfix for error handling in new custom monkey destination paths feature 2018-08-18 13:14:05 +03:00
Vakaris 5565a80418 Web_RCE framework now supports custom monkey uploading paths( we don't always have permissions to uppload to C:\Windows) 2018-08-17 13:53:09 +03:00
Itay Mizeretz 6e7706f9bf Fix bug which is now critical 2018-08-16 18:55:29 +03:00
Itay Mizeretz 5724d14583 Fix webpack lookup issue 2018-08-16 18:30:51 +03:00
Itay Mizeretz 422df7c71f Replace deprecated modal component 2018-08-16 18:30:26 +03:00
Itay Mizeretz a65721d0c5 Fix known bug necessary for building 2018-08-16 17:09:23 +03:00
Itay Mizeretz b8dd37c5df Temprarily comment out broken component 2018-08-16 17:08:34 +03:00
Itay Mizeretz 2a393d6ed5 Upgrade npm packages and make required modifications 2018-08-16 17:08:03 +03:00
Vakaris b8bda692b9 Notes fixed v.2 2018-08-15 16:01:27 +03:00
Vakaris 0d45a44d6b Final, tested framework fixes 2018-08-10 15:07:56 +03:00
Vakaris 5232d84e06 Almost all notes fixed, but nothing tested. 2018-08-09 16:52:15 +03:00
Vakaris d1a29872c4 Fixed half of the notes and added a small tcp_port_to_service method in network/tools
no message
2018-08-09 12:13:44 +03:00
maor.rayzin 4e1c4c3290 Merge branch 'develop' into nadler/pth 2018-08-08 16:51:13 +03:00
maor.rayzin 44ee74aaca * Added a coverage for the force connection closing in the mssql fingerprinter.
(cherry picked from commit 782ced912d)
2018-08-08 16:48:51 +03:00
maor.rayzin 0486b630aa * Commented out the ldap checkup for bug testing 2018-08-08 16:38:11 +03:00
maor.rayzin 3c40fd7cc3 * Added warnings and threats comments about pth findings 2018-08-08 16:03:16 +03:00
Vakaris 8e684a3fad Bugfix: model.__init__ changed( I forgot to add the file to the branch) and server lock is not a singleton anymore 2018-08-07 17:44:31 +03:00
Itay Mizeretz 83d41df875 Fix another merge fail 2018-08-06 14:30:38 +03:00
Itay Mizeretz 063ecd9313 Add files dropped in merge 2018-08-06 14:18:03 +03:00
Itay Mizeretz 26337e3a7a Merge remote-tracking branch 'origin/develop' into feature/support-common-folder
# Conflicts:
#	infection_monkey/network/__init__.py
#	infection_monkey/transport/__init__.py
#	monkey/infection_monkey/config.py
#	monkey/infection_monkey/dropper.py
#	monkey/infection_monkey/exploit/__init__.py
#	monkey/infection_monkey/transport/ftp.py
2018-08-06 12:17:25 +03:00
Itay Mizeretz 25f0c08528 Fix python dep installation issues 2018-08-05 14:58:19 +03:00
Itay Mizeretz 4017e189ab Another stupid path fix 2018-08-05 14:21:37 +03:00
Itay Mizeretz 4e84c87050 Add missing files 2018-08-05 13:35:48 +03:00
maor.rayzin 4a780d81a8 * removed not needed import
*
2018-08-05 11:48:48 +03:00
maor.rayzin 3a9a92d1b9 * More info in the recommendations section 2018-08-05 11:46:47 +03:00
Vakaris 3f8d63c2d9 Timeout of joining set to 5 seconds. No use of waiting for another thread to stop. We can run our program while the thread stops 2018-08-04 13:01:19 +03:00
maor.rayzin cdfd6284ee * Added information about what info gathered to the report's issues section 2018-08-01 13:07:18 +03:00
maor.rayzin af3b5665ce * some logs and un-commenting for testing. 2018-07-24 20:49:57 +03:00
maor.rayzin 48e1d85eb0 * fixed a lot of safe dict access
* some small fixed and typos
2018-07-24 19:09:19 +03:00
maor.rayzin f97df84da9 Merge branch 'develop' into nadler/pth
# Conflicts:
#	infection_monkey/requirements.txt
#	monkey_island/cc/app.py
#	monkey_island/cc/resources/telemetry.py
#	monkey_island/cc/ui/src/components/pages/ReportPage.js
2018-07-24 15:00:58 +03:00
maor.rayzin dd5b606ef8 * wrong endpoint fix 2018-07-24 14:54:12 +03:00
maor.rayzin fae87bd07b * wrong endpoint fix 2018-07-24 14:52:16 +03:00
maor.rayzin 2a12fefe6d Merge branch 'nadler/pth-map' into nadler/pth 2018-07-24 14:46:32 +03:00
maor.rayzin 2f4a3dc885 * finished map's nodes and edges generation for pth report 2018-07-24 14:43:41 +03:00
Itay Mizeretz eb79499e80 Change report structure
Add tables for shared admins, strong users, shared creds.
2018-07-22 18:49:51 +03:00