p15670423
/
monkey
1
0
Fork 5
Code Issues Pull Requests 3 Projects Releases Wiki Activity
3,254 Commits 31 Branches 20 Tags 48 MiB
Commit Graph

3254 Commits

Author SHA1 Message Date
Shreya eea5352084 Little changes based on review 2020-06-24 14:36:03 +05:30
Shreya 6b4e90e6d0 PBA tweaks: Windows 2020-06-24 14:36:03 +05:30
Shreya 80c8a42bd0 Mentioning 'type' doesn't seem necessary 2020-06-24 14:36:03 +05:30
Shreya 0f6fcc799c Add report components, link to matrix 2020-06-24 14:36:03 +05:30
Shreya 49350aa303 PBA changes: Windows 2020-06-24 14:33:08 +05:30
Shreya 15ac77056a PBA changes: Linux 2020-06-24 14:33:08 +05:30
Shreya 2b9d54408a Tweak PBA logic 
Don't need to use winAPI to delete file
 2020-06-24 14:33:08 +05:30
Shreya 1d952a4781 PBA stuff 2020-06-24 14:33:08 +05:30
Shreya 45c5546f17 Add "Hidden files" PBA feature 
TODO: winAPI
 2020-06-24 14:33:08 +05:30
Shreya Malviya 08727305d8
Merge pull request #687 from shreyamalviya/T1156 
Add T1156 and T1504 attack techniques (shell startup file modifications)
 2020-06-24 14:13:09 +05:30
Shreya 53e6f893c6 Disabled prop-types warning in eslint 
(Accidentally force-pushed over the previous commit changing this)
 2020-06-24 13:58:52 +05:30
Shreya f21dbde27d Extend windows PBA for all users on system 2020-06-24 13:37:08 +05:30
Shreya 7efeff3ff0 Modify linux PBA so it doesn't give errors when running on windows 2020-06-24 13:25:54 +05:30
Shreya 6f6bfca9f9 Use mongo search for report data 
(For linux, shows only bash startup files in ATT&CK report)
 2020-06-24 13:25:54 +05:30
Shreya 7459105bbc Extend linux PBA for all users on system 
TODO: ATT&CK report stuff (mongo search + show only bash file modification info)
TODO: Windows
 2020-06-24 13:25:54 +05:30
Shreya 8d2aaac65f Fix + make linux PBA commands cleaner 2020-06-24 13:25:54 +05:30
Shreya e5f92d29b5 Add startup files for fish, zsh, dash, ksh, sh, csh, tcsh 2020-06-24 13:25:54 +05:30
Shreya 0c60ad16ae Code design changes 2020-06-24 13:25:54 +05:30
Shreya 60207e3a79 Change file locations 2020-06-24 13:25:54 +05:30
Shreya 6d98f95d4c Make used/scanned/unscanned messages descriptive 2020-06-24 13:25:54 +05:30
Shreya 58a0a67244 Add T1504 to config_schema 2020-06-24 13:25:54 +05:30
Shreya ef6bb52302 Remove Privilege escalation/T1504 in attack_schema 
Shows it twice in ATT&CK matrix in the configuration,
but shows it only once in the ATT&CK matrix in the report section.
 2020-06-24 13:25:54 +05:30
Shreya 8bb5096add Add T1504 report data + modify T1156 report data 2020-06-24 13:25:54 +05:30
Shreya 1b040dc874 Add windows PBA 2020-06-24 13:25:54 +05:30
Shreya 3fe4dd679b Pass empty string to linux_cmds if OS is windows 2020-06-24 13:25:54 +05:30
Shreya dfa34e602f Started T1504 implementation 
Add to `attack_schema.py`, `attack_report.py`
Add report `T1504.js`
 2020-06-24 13:25:54 +05:30
Shreya e2d35ca267 Simpler bash commands for linux PBA 2020-06-24 13:25:54 +05:30
Shreya a9c763cd9c Add linux PBA + report components 2020-06-24 13:25:49 +05:30
Shay Nehmad 6ead5d43cf
Merge pull request #691 from guardicore/bugfix/pth_map_include 
UI bugfix: non-existent PTH map include
 2020-06-23 10:43:56 +03:00
VakarisZ 6f6cf76977 UI bugfix: non-existent PTH map include 2020-06-23 10:34:18 +03:00
VakarisZ 0ec5259540
Merge pull request #678 from guardicore/feature/pypykatz 
Mimikatz dll to pypykatz refactor
 2020-06-08 15:21:49 +03:00
VakarisZ 7e9251272f
Merge pull request #671 from guardicore/feature/edge_refactoring 
Edge refactoring to DAL and minor PIP improvements
 2020-06-08 15:17:19 +03:00
VakarisZ 966599a038 Removed pass the hash map UI component 2020-06-08 15:12:40 +03:00
VakarisZ 5669ae652c Bugfix - username with "." character fix 2020-06-08 14:24:16 +03:00
VakarisZ 3228bcf2c7 CR comments fixed: renames and readability improvements 2020-06-08 14:23:39 +03:00
VakarisZ 4c8319669f Map jiggle small-fix: wait less for map to stop moving 2020-06-08 10:31:31 +03:00
VakarisZ fb59531969 Refactored EdgeService into a boundary object. 2020-06-08 10:29:04 +03:00
Shay Nehmad 6c28ff058a
Merge pull request #680 from guardicore/master 
Master
 2020-06-07 17:12:24 +03:00
Shay Nehmad 3726a14f68
Merge pull request #663 from guardicore/release/1.8.2 
Release/1.8.2
 2020-06-07 16:04:00 +03:00
VakarisZ 0dc864baa5 Fixed a bug that added empty credentials to configuration 2020-06-05 15:59:31 +03:00
VakarisZ 6703e32ff2 UI bugs, related to PTH map hiding, fixed. 2020-06-05 14:54:04 +03:00
VakarisZ c03c70ba28 Removed infrastructure related to mimikatz binary: deployment scripts and docs updated 2020-06-05 14:40:58 +03:00
VakarisZ 0be709958c Improved scanned servers overview by inputting space character code 2020-06-05 12:09:28 +03:00
VakarisZ f5b37044fd Removed PTH map 2020-06-05 09:36:53 +03:00
VakarisZ 895db8b446 Fixed bugs and finished up pypykatz integration 2020-06-05 09:36:35 +03:00
VakarisZ 192ac67159 Fixed typo in ScannedServers.js 2020-06-05 09:27:09 +03:00
Shay Nehmad 9ea6718d37 Moved a function into common, since Monkey doesn't have ring as a dependency 
Also renamed it and added UTs
 2020-06-03 16:18:19 +03:00
Shay Nehmad ca87ff1330 Merge branch 'develop' into release/1.8.2 2020-06-03 15:55:29 +03:00
VakarisZ 90b47a4bb6 Migrated to pypykatz on monkey 2020-06-03 10:02:31 +03:00
Shay Nehmad 33ef1f6261
Merge pull request #670 from guardicore/485/handle-missing-binaries 
485/handle missing binaries
 2020-05-31 11:20:34 +03:00