Itay Mizeretz
f1b7fb6706
Fix unicode problem
2017-08-16 16:13:31 +03:00
Itay Mizeretz
60d64c4e6b
Fix minor bug
2017-08-16 15:40:23 +03:00
Itay Mizeretz
a671b55df3
Add mimikatz collector
...
Combine all users and passwords in config
2017-08-16 15:14:26 +03:00
Evstifeev Roman
f1dca7fa86
Don't crash when receiving unknown configuration variables
...
Instead of crashing if the monkey deserializes an unknown configuration
variable, send an error message to the current monkey server and keep on
working.
Add utnittests.
fixes #26
2016-09-27 23:56:26 +03:00
Daniel Goldberg
aced96819b
Reverted again the dup requests library
2016-09-21 15:42:26 +03:00
daniel goldberg
ab7f731ed5
Removed reliance on grequests. Complicates other code and no real performance improvement in a LAN enviornment.
2016-09-21 14:55:13 +03:00
daniel goldberg
9ab5b178df
Merge remote-tracking branch 'origin/master'
2016-09-21 12:32:12 +03:00
daniel goldberg
3549bb351e
Issue #35 - Added option for blocked IPs.
2016-09-21 11:35:41 +03:00
Evstifeev Roman
2066c19190
requirements.txt - remove duplicate (requests)
2016-09-20 19:35:23 +04:00
itsikkes
155a03efad
Small hack to support fast-user switching when RDPing to already loggen-in host
...
Although it doesn't always happen, because there is no easy wasy to know
- trying to press YES on the dialog box (if any) can help the login
process
2016-09-19 22:27:17 +03:00
daniel goldberg
084cee78fd
Merge remote-tracking branch 'origin/master'
2016-09-14 14:19:13 +03:00
Daniel Goldberg
d1f218daad
Don't dup pip list
2016-09-13 14:07:48 +03:00
itsikkes
b3322b2541
improved local interface selection when exploiting
2016-09-08 12:30:40 +03:00
daniel goldberg
6fcf8b2f15
Merge remote-tracking branch 'origin/master'
2016-09-08 10:21:47 +03:00
daniel goldberg
24792aec61
Remove commented build step.
2016-09-08 08:56:11 +03:00
danielguardicore
d2203b2220
Removed legacy ChaosMonkey from SMB execution.
2016-09-07 19:10:30 +03:00
danielguardicore
9f27825789
Changed tcp scanning to be a bit more random. Might confuse really basic defenses.
2016-09-07 19:01:19 +03:00
danielguardicore
ce3eaa9b2e
Fixed grequsts/gevents monkey patching of socket code, which lead to paramiko being unable to function after a shellshock scan.
2016-09-07 10:16:17 +03:00
itsikkes
39eaca300f
RDP: change VBS object to reduce requirements + process is more verbose
2016-09-06 11:05:15 +03:00
daniel goldberg
6e76162b8f
Added str representation of hosts.
2016-09-05 21:10:17 +03:00
daniel goldberg
397c4f82ca
Merge remote-tracking branch 'origin/master'
2016-09-05 18:49:10 +03:00
daniel goldberg
32c326bd7b
PEP8 in diff files
...
Add concept of non default timeout for copying SMB files. This is by default 5 minutes.
Changed behavior of SMB exploiter if file already exists, we don't assume exploitation is useless and try again. Worse case is we run the monkey after it finished running.
Changed behavior if managed to connect to machine to IPC$ over some dialect. If Success, we don't try again.
2016-09-05 17:45:27 +03:00
Daniel Goldberg
78cafb8d58
Set minimum Python version for Windows version.
...
This should fix #34
2016-09-05 16:13:55 +03:00
daniel goldberg
5ae67840a6
No manifest files, everything compiled in onefile
2016-09-04 14:33:02 +03:00
daniel goldberg
442cc827c0
Merge remote-tracking branch 'origin/master'
2016-09-04 14:30:56 +03:00
daniel goldberg
fc19da7427
Added grequests to hidden imports.
...
Fixed dict lookup in monkeyfs
2016-09-04 13:45:49 +03:00
Daniel Goldberg
ffb0baaa31
Typo
2016-09-01 13:58:44 +03:00
daniel goldberg
12ff0c5677
Reverted bug in config, added 'user' to default bruteforce.
2016-08-30 11:04:44 +03:00
daniel goldberg
6a51e926f8
Fixed random IP
2016-08-29 19:14:37 +03:00
daniel goldberg
bbc5cfb24c
Add log
2016-08-29 18:58:16 +03:00
daniel goldberg
1a4a08e3bd
Add HTTPFinger to conf file and PEP8 fix
2016-08-29 18:58:16 +03:00
daniel goldberg
91427eb346
Tiny PEP8 change and changed reporting of vulnerable URLs in shellshock
2016-08-29 18:58:16 +03:00
daniel goldberg
30cb88f01d
Update conf to use shellshock as well
2016-08-29 18:58:16 +03:00
Daniel Goldberg
835c861219
Add ShellShockExploiter to default config
2016-08-29 18:58:16 +03:00
daniel goldberg
d80c670392
Fixed bug in HTTPFingering
...
Added support for skip_exploit_if_file_exists in linux exploiters.
Delayed/fixed a race in the monkey patching that gevents does.
2016-08-29 18:58:16 +03:00
daniel goldberg
cd27438a1e
PEP 8 changes
2016-08-29 18:58:15 +03:00
daniel goldberg
1806f9bc62
Issue #33 - Added support for skip_exploit_if_file_exist in linux
2016-08-29 13:34:21 +03:00
daniel goldberg
a322a619cb
Issue 23 - Added shellshock exploit.
2016-08-29 12:09:46 +03:00
daniel goldberg
bdde8dfeed
Added func to find route to victim, reorganised firewall
2016-08-29 12:08:42 +03:00
daniel goldberg
3b39ee4308
Added more logging to HTTP server
2016-08-29 12:05:24 +03:00
daniel goldberg
57525b6450
Moved to using HEAD to save code
2016-08-25 16:32:16 +03:00
daniel goldberg
dd8738a4f1
Fixed collision where HTTP auto upgraded to HTTPS
2016-08-25 16:27:29 +03:00
daniel goldberg
bee9fc23ea
BugFix
2016-08-25 15:46:29 +03:00
daniel goldberg
4f1dfb4016
PEP8
2016-08-25 15:45:47 +03:00
daniel goldberg
8c9014684c
Fixed some bugs in HTTP fingerprinting
2016-08-25 15:43:59 +03:00
daniel goldberg
d455a8bb40
Added basic HTTP fingering by using banner grabbing
2016-08-24 18:31:16 +03:00
daniel goldberg
67d77408f6
PEP8
2016-08-22 18:34:22 +03:00
acepace
8c4288d100
PEP8 changes
2016-08-20 23:37:42 +03:00
acepace
e16debeff9
Documented config variable
2016-08-20 17:56:23 +03:00
acepace
88951f920d
Bunch of generic PEP8 improvements
2016-08-20 17:03:49 +03:00
acepace
0eb655c44b
Changed Monkey SSH file path to /tmp to not require root.
...
Tiny PEP8 changes
2016-08-20 15:28:14 +03:00
itsikkes
fba5bea912
Tunnel improvements - bugfix for using default tunnel, improvement in tunnel shutdown
...
1) Bugfix when searching for tunnel - registration packet might be sent
from wrong interface in case of the default tunnel
2) Tunnel shutdown now verifies that no one used the tunnel before
shutting it down (added code to allow tracing of last used time)
3) Timeouts increasments
2016-08-13 18:38:31 +03:00
itsikkes
a2fccaca03
Bug fix in shutdown sequence and added sleep for allowing newly exploited use the tunnel
...
1) When exploiting new host, ensure it has enough time to get access to
the tunnel before shut down
2) When shutting down, first report to the island and only then quit the
tunnel (if in use)
2016-08-13 18:33:49 +03:00
itsikkes
82efd24c4e
updated to reflect recent patch
2016-08-13 18:30:24 +03:00
acepace
8f1669dd44
Added functionality to report all brute force password attempts even if unsuccessful.
2016-08-09 00:23:18 +03:00
acepace
d75ce529ab
Issue #18 , added ability to attack multiple users in SSH brute force.
...
Also fixed small bug in windows kill path parsing.
2016-08-08 22:25:33 +03:00
acepace
2ed7cc359e
Merge branch 'master' of https://github.com/guardicore/monkey
...
# Conflicts:
# chaos_monkey/example.conf
2016-08-03 09:24:55 +03:00
itsikkes
de958088b4
depth commandline option is not overwritten when getting config from the island
2016-08-01 16:52:27 +03:00
itsikkes
f55b8d429d
moved connectivity checking outside of loop
2016-08-01 14:46:21 +03:00
itsikkes
2afcae489e
updated missing fields
2016-07-31 20:40:45 +03:00
acepace
39a208afc3
Added local kill switch to flow, right after loading configuration.
2016-07-31 14:33:48 +03:00
acepace
1c5ec3086f
Change default server to non-sense IP to force override. Must never be localhost.
2016-07-31 14:33:13 +03:00
acepace
d466824a0c
Fixed Pyinstaller versioning
2016-07-28 11:22:21 +03:00
acepace
dfb8b8b812
Added local network scan to default configuration
2016-07-28 11:22:02 +03:00
itsikkes
07db5ea348
Merge branch 'master' of https://github.com/guardicore/monkey
2016-07-26 18:53:05 +03:00
itsikkes
76e3350fa3
merge duplicate code
2016-07-26 18:52:58 +03:00
acepace
3cd0d5818a
Merge branch 'master' of https://github.com/guardicore/monkey
2016-07-25 17:44:37 +03:00
acepace
59712c6816
Updated requirements to include netifaces
2016-07-25 17:44:10 +03:00
itsikkes
fc95dccf22
bug fixes and features
...
added support for multi-parent, auto mark dead monkeys,; UI: get exploit
details, can select edges, show num pf monkeys alive, show failed
exploit attempts; some bug fixes;
2016-07-24 01:04:42 +03:00
itsikkes
b8519300ab
config bugfix - missing field
2016-07-23 08:59:26 +03:00
itsikkes
e26f849286
RDP module bugfix
2016-07-23 08:41:57 +03:00
itsikkes
df4c8c6415
restored mission import
2016-07-21 11:45:29 +03:00
itsikkes
9adffe86dc
Merge branch 'master' of https://github.com/guardicore/monkey
2016-07-21 11:23:21 +03:00
itsikkes
ad6b7a9893
missing parent flag
2016-07-21 11:22:01 +03:00
acepace
c9eb743ea7
Merge branch 'master' of https://github.com/guardicore/monkey
...
# Conflicts:
# README.md
2016-07-20 08:54:41 +03:00
itsikkes
4a42fc540e
fixes and improvements after test-run 1
2016-07-20 00:53:41 +03:00
acepace
5eb2379fa2
Merge branch 'master' of https://github.com/guardicore/monkey
...
# Conflicts:
# chaos_monkey/config.py
# chaos_monkey/network/info.py
2016-07-18 23:45:02 +03:00
acepace
6871a3da4f
Removed unused import. Added kill file option.
2016-07-18 23:43:17 +03:00
itsikkes
2c3d0af3e3
merge fix
2016-07-15 17:00:55 +03:00
itsikkes
c5fd92c570
Merge remote-tracking branch 'origin/master'
...
# Conflicts:
# chaos_monkey/config.py
2016-07-15 16:58:09 +03:00
itsikkes
3da0c1a57c
Added auto-scan subnets option
...
Monkey is now able to auto scan the local host subnets, removing the
need to preconfigure it to scan the network subnets (option is on by
default)
2016-07-15 16:54:46 +03:00
acepace
5a9153858a
Changed DNS path to monkey.guardicore.com
2016-07-10 11:47:07 +03:00
acepace
3767e05434
Change order of config file to be easier to modify.
...
Added internet servers to config file
2016-07-10 11:41:13 +03:00
acepace
eaaa5f314b
Updated config documentation
2016-07-10 11:20:22 +03:00
itsikkes
5d1a3680b2
serval bug fixes
...
1. all monkeys got the 1st config;
2. incompatible config types
3. UI fixes at the island
2016-07-06 11:44:33 +03:00
itsikkes
3d5d972cf8
Add monkey kill option from island
2016-07-04 10:44:57 +03:00
itsikkes
84496dd3f5
Added internet access check
...
Shown in the monkey properties in the island
2016-06-28 11:13:24 +03:00
acepace
57a0426dfb
Moved PIP requirements for Chaos Monkey itself and removed useless build_env.
2016-06-21 18:18:45 +03:00
acepace
27d14094cc
Changed MS08-67 user to monkey indicative to help track infections
2016-06-14 17:06:17 +03:00
acepace
20e4793c0e
Revert prior change.
2016-06-07 18:15:34 +03:00
acepace
a004a757ec
Fixed an annoying path in Windows paths...
2016-06-07 18:14:38 +03:00
acepace
61ff2ed740
made fixed range actually load from configuration...
2016-06-07 17:18:51 +03:00
itsikkes
347833d619
add tunnels visualization
...
tunnel information is sent to island and appears on the map: blue -
tunnel, red - expolit
2016-05-27 01:06:56 +03:00
itsikkes
539174e1c5
known issue regarding using twisted with pyInstaller
2016-05-26 20:33:29 +03:00
itsikkes
3dacde2f28
find tunnel now searches on all host's interfaces
2016-05-26 19:52:15 +03:00
itsikkes
3990806d8c
ignore empty strings in fixed address list
...
empty address string is used in the sample config for empty strings
touple, which shouldn't cause an exception
2016-05-26 16:36:55 +03:00
itsikkes
e1cd671e0a
add missed dependency for mongoDB
2016-05-26 09:57:26 +03:00
itsikkes
ace6a758f7
update installation process on linux
...
still not final, but improved
2016-05-25 22:51:38 +03:00
acepace
12c9062dd4
Added hidden import to monkey-linux.spec
2016-03-02 17:13:52 +02:00
acepace
e76513529e
GC-5506 #resolved added different log files for different platforms.
2016-03-02 17:13:36 +02:00
acepace
2860305278
Merge branch 'master' of https://github.com/guardicore/monkey
2016-03-02 15:39:27 +02:00
acepace
3afbd6b93f
GC-5502: #resolved - Added code to handle lack of permissions.
2016-03-02 15:38:51 +02:00
urihershgc
4f0a0093da
GC-5503: #resolved - added missing package as hidden
2016-03-02 15:25:14 +02:00
acepace
f95bbb0d13
Removed out of date build explanations
2016-03-01 19:01:40 +02:00
acepace
584810e79b
Moved chaos money build notes to proper directory.
2016-03-01 15:34:10 +02:00
acepace
6a486165e5
Fixed broken imports
2016-03-01 13:19:45 +02:00
acepace
73fe684589
Upgraded pyinstaller usage
2016-02-29 11:32:50 +02:00
urihershgc
6e521db994
removed fake
2016-02-16 10:16:21 +02:00
urihershgc
eab6f386a8
monkey debian minor improvements
2016-01-19 16:07:02 +02:00
urihershgc
0cd5d5aea3
GC-5050: skip timeouts fix and shorter timeout
2016-01-14 16:14:07 +02:00
urihershgc
6fe21a83e1
GC-5050: skip timeouts if no potential machines were found
2016-01-14 14:35:55 +02:00
urihershgc
013c87f478
GC-5050: added execution script
2016-01-14 14:05:27 +02:00
urihershgc
047939b80d
GC-5050: better configuration handling
2016-01-14 11:58:15 +02:00
urihershgc
a0e87a82f7
GC-5050: better range calculation
2016-01-13 10:27:49 +02:00
urihershgc
54e4453d67
pyinstaller run clean
2015-12-31 09:57:29 +02:00
urihershgc
471fede2fe
GC-3598: #resolved added process list
2015-12-09 16:33:44 +02:00
urihershgc
e5d809e7aa
GC-4599: better logging of depth
2015-12-08 09:58:06 +02:00
urihershgc
21463211fd
GC-4599: fixed depth to int
2015-12-08 09:41:21 +02:00
urihershgc
0ec19578c3
GC-4599: added depth parameter
2015-12-07 19:08:15 +02:00
urihershgc
2333436da4
added example configuration
2015-12-07 10:15:56 +02:00
urihershgc
893ba1b7af
GC-4600 added command line option
2015-12-06 09:50:36 +02:00
urihershgc
3522e6e02d
GC-4600: monkey is propagating current C&C server
2015-12-03 16:38:50 +02:00
urihershgc
fa4c92c7f1
logging missing configuration
2015-12-03 16:21:16 +02:00
urihershgc
cc266329bd
restore proxy addressing
2015-12-03 09:39:54 +02:00
urihershgc
378f0bdedf
configuration fix
2015-12-02 14:18:49 +02:00
urihershgc
d9b2c9590a
config edit
2015-12-02 13:49:26 +02:00
urihershgc
52e5abfc81
code organization #3
2015-12-02 11:18:49 +02:00
urihershgc
234781bc47
GC-3598: added info collection infrastructure
2015-11-30 15:29:30 +02:00
urihershgc
d984641f53
code organization #2
2015-11-30 14:11:19 +02:00
urihershgc
6b5c1e46aa
monkey and not winworm in log
2015-11-30 11:03:54 +02:00
urihershgc
048c989b27
code organization
2015-11-30 10:56:20 +02:00
urihershgc
b370582666
tunneling bug fix
2015-11-26 16:30:49 +02:00
urihershgc
3081ac6d91
configuration print and meaningless spaces fixes
2015-11-26 15:48:47 +02:00
urihershgc
7466cdccfb
variable name fix
2015-11-25 15:44:22 +02:00
Barak Hoffer
6a5c4f834d
fix no log file bug
2015-10-15 10:13:40 +03:00
Barak Hoffer
6169f1f42e
added default tunnel is the exploiter
...
added self delete on cleanup
fixed argument parsing
2015-10-14 17:22:05 +03:00
Barak Hoffer
4731df114c
fixed ssh on different port bugs
2015-10-12 17:42:54 +03:00
Barak Hoffer
5b647f97af
windows xp firewall bug fix
2015-10-12 14:57:04 +03:00
Barak Hoffer
cc32b369b4
tunnel bugs fix
2015-10-12 14:56:44 +03:00
Barak Hoffer
edc0f5fdf3
add support for c&c tunneling
...
"GC-3595 #resolve"
2015-10-08 13:39:52 +03:00
Barak Hoffer
a19f820ec8
- windows firewall add rules support
...
- exploit with our monkey if suitable
2015-10-08 13:35:52 +03:00
Barak Hoffer
760d267459
minor bug fixes
2015-10-08 13:32:26 +03:00
Barak Hoffer
35859c1a21
- minor bug fixes
2015-10-08 13:30:36 +03:00
Barak Hoffer
b5b8423df7
minor bug fix
2015-10-01 15:32:28 +03:00
Barak Hoffer
3a24ad4058
minor bug fixes
2015-10-01 11:49:48 +03:00
Barak Hoffer
bc74029c7a
minor bug fix
2015-10-01 10:12:17 +03:00
Barak Hoffer
73f9821ee4
minor bug fix
2015-09-30 15:05:30 +03:00
Barak Hoffer
8dc7b38d56
- c&c
...
- support for virtual files (monkeyfs)
- ssh exploitation
- some linux support issues fixed
2015-09-29 17:58:06 +03:00
Barak Hoffer
7697f5fce9
add support for simple fingerprinting by: ping, smb, ssh and open ports
2015-09-29 17:55:54 +03:00
Barak Hoffer
bea2d5e3d4
- add support for linux singelton using unix socket
2015-09-29 17:51:44 +03:00