Itay Mizeretz
|
cdc576e77e
|
Make mimikatz inside zip and extract only if config says so
|
2018-08-22 19:31:26 +03:00 |
itaymmguardicore
|
fc2929ed2e
|
Merge pull request #159 from VakarisZ/WebRCE_Framework
Web rce framework
|
2018-08-22 16:46:48 +03:00 |
Vakaris
|
df4b1268d1
|
Refactored struts2 to overload get_exploit_config
|
2018-08-22 16:08:38 +03:00 |
Vakaris
|
9ef44ef71f
|
Struts2 refactored to use default_exploit_host function
|
2018-08-22 16:07:59 +03:00 |
Vakaris
|
6cb058eb1d
|
Struts2 refactored for framework fixes
|
2018-08-22 16:07:39 +03:00 |
Vakaris
|
bbd4adf2ae
|
Struts2 core functions
|
2018-08-22 16:07:39 +03:00 |
Vakaris
|
3e7d7425e4
|
made get_exploit_config non-static for readability
|
2018-08-22 16:01:16 +03:00 |
Vakaris
|
e1b1236fb3
|
Comments and CR notes fixed
|
2018-08-22 13:41:17 +03:00 |
Vakaris
|
eae3f3440d
|
Refactored exploit_host and added get_exploit_config
|
2018-08-22 13:33:36 +03:00 |
Itay Mizeretz
|
369795e375
|
small fixes to make everything work
|
2018-08-21 17:17:21 +03:00 |
Vakaris
|
911404ef68
|
Implemented default_exploit_host method that can implement whole framework's workflow according to some flags/params
|
2018-08-21 12:34:59 +03:00 |
Itay Mizeretz
|
a18061d45d
|
Merge branch 'develop' into feature/detect-cross-segment-traffic
# Conflicts:
# infection_monkey/config.py
# infection_monkey/example.conf
# monkey_island/cc/services/report.py
|
2018-08-21 11:42:45 +03:00 |
Itay Mizeretz
|
203943bf27
|
Merge remote-tracking branch 'origin/master' into develop
|
2018-08-21 11:34:59 +03:00 |
Itay Mizeretz
|
bafa0e42a0
|
Make feature simpler
Change config value phrasing
|
2018-08-21 11:34:26 +03:00 |
itaymmguardicore
|
b56dec318e
|
Merge pull request #166 from guardicore/hotfix/fix-dep-security-vul
Hotfix/fix dep security vul
|
2018-08-20 14:43:29 +03:00 |
Vakaris
|
e3d286dbc0
|
Minor bugfix for error handling in new custom monkey destination paths feature
|
2018-08-18 13:14:05 +03:00 |
Vakaris
|
5565a80418
|
Web_RCE framework now supports custom monkey uploading paths( we don't always have permissions to uppload to C:\Windows)
|
2018-08-17 13:53:09 +03:00 |
Itay Mizeretz
|
6e7706f9bf
|
Fix bug which is now critical
|
2018-08-16 18:55:29 +03:00 |
Itay Mizeretz
|
5724d14583
|
Fix webpack lookup issue
|
2018-08-16 18:30:51 +03:00 |
Itay Mizeretz
|
422df7c71f
|
Replace deprecated modal component
|
2018-08-16 18:30:26 +03:00 |
Itay Mizeretz
|
a65721d0c5
|
Fix known bug necessary for building
|
2018-08-16 17:09:23 +03:00 |
Itay Mizeretz
|
b8dd37c5df
|
Temprarily comment out broken component
|
2018-08-16 17:08:34 +03:00 |
Itay Mizeretz
|
2a393d6ed5
|
Upgrade npm packages and make required modifications
|
2018-08-16 17:08:03 +03:00 |
Vakaris
|
b8bda692b9
|
Notes fixed v.2
|
2018-08-15 16:01:27 +03:00 |
Vakaris
|
0d45a44d6b
|
Final, tested framework fixes
|
2018-08-10 15:07:56 +03:00 |
Vakaris
|
5232d84e06
|
Almost all notes fixed, but nothing tested.
|
2018-08-09 16:52:15 +03:00 |
Vakaris
|
d1a29872c4
|
Fixed half of the notes and added a small tcp_port_to_service method in network/tools
no message
|
2018-08-09 12:13:44 +03:00 |
maor.rayzin
|
4e1c4c3290
|
Merge branch 'develop' into nadler/pth
|
2018-08-08 16:51:13 +03:00 |
maor.rayzin
|
44ee74aaca
|
* Added a coverage for the force connection closing in the mssql fingerprinter.
(cherry picked from commit 782ced912d )
|
2018-08-08 16:48:51 +03:00 |
maor.rayzin
|
0486b630aa
|
* Commented out the ldap checkup for bug testing
|
2018-08-08 16:38:11 +03:00 |
maor.rayzin
|
3c40fd7cc3
|
* Added warnings and threats comments about pth findings
|
2018-08-08 16:03:16 +03:00 |
Vakaris
|
8e684a3fad
|
Bugfix: model.__init__ changed( I forgot to add the file to the branch) and server lock is not a singleton anymore
|
2018-08-07 17:44:31 +03:00 |
Itay Mizeretz
|
83d41df875
|
Fix another merge fail
|
2018-08-06 14:30:38 +03:00 |
Itay Mizeretz
|
063ecd9313
|
Add files dropped in merge
|
2018-08-06 14:18:03 +03:00 |
Itay Mizeretz
|
26337e3a7a
|
Merge remote-tracking branch 'origin/develop' into feature/support-common-folder
# Conflicts:
# infection_monkey/network/__init__.py
# infection_monkey/transport/__init__.py
# monkey/infection_monkey/config.py
# monkey/infection_monkey/dropper.py
# monkey/infection_monkey/exploit/__init__.py
# monkey/infection_monkey/transport/ftp.py
|
2018-08-06 12:17:25 +03:00 |
Itay Mizeretz
|
25f0c08528
|
Fix python dep installation issues
|
2018-08-05 14:58:19 +03:00 |
Itay Mizeretz
|
4017e189ab
|
Another stupid path fix
|
2018-08-05 14:21:37 +03:00 |
Itay Mizeretz
|
4e84c87050
|
Add missing files
|
2018-08-05 13:35:48 +03:00 |
maor.rayzin
|
4a780d81a8
|
* removed not needed import
*
|
2018-08-05 11:48:48 +03:00 |
maor.rayzin
|
3a9a92d1b9
|
* More info in the recommendations section
|
2018-08-05 11:46:47 +03:00 |
Vakaris
|
3f8d63c2d9
|
Timeout of joining set to 5 seconds. No use of waiting for another thread to stop. We can run our program while the thread stops
|
2018-08-04 13:01:19 +03:00 |
maor.rayzin
|
cdfd6284ee
|
* Added information about what info gathered to the report's issues section
|
2018-08-01 13:07:18 +03:00 |
maor.rayzin
|
af3b5665ce
|
* some logs and un-commenting for testing.
|
2018-07-24 20:49:57 +03:00 |
maor.rayzin
|
48e1d85eb0
|
* fixed a lot of safe dict access
* some small fixed and typos
|
2018-07-24 19:09:19 +03:00 |
maor.rayzin
|
f97df84da9
|
Merge branch 'develop' into nadler/pth
# Conflicts:
# infection_monkey/requirements.txt
# monkey_island/cc/app.py
# monkey_island/cc/resources/telemetry.py
# monkey_island/cc/ui/src/components/pages/ReportPage.js
|
2018-07-24 15:00:58 +03:00 |
maor.rayzin
|
dd5b606ef8
|
* wrong endpoint fix
|
2018-07-24 14:54:12 +03:00 |
maor.rayzin
|
fae87bd07b
|
* wrong endpoint fix
|
2018-07-24 14:52:16 +03:00 |
maor.rayzin
|
2a12fefe6d
|
Merge branch 'nadler/pth-map' into nadler/pth
|
2018-07-24 14:46:32 +03:00 |
maor.rayzin
|
2f4a3dc885
|
* finished map's nodes and edges generation for pth report
|
2018-07-24 14:43:41 +03:00 |
Itay Mizeretz
|
eb79499e80
|
Change report structure
Add tables for shared admins, strong users, shared creds.
|
2018-07-22 18:49:51 +03:00 |