Commit Graph

  • ef581ff912 Agent: Ignore union-attr mypy error in Zerologon Ilija Lazoroski 2022-10-05 16:01:34 +0200
  • e9254aedbd Agent: Publish exploitation events from Zerologon Ilija Lazoroski 2022-10-05 14:15:23 +0200
  • 563957f9c2 Island: Add NodeUpdateFacade.get_event_source_machine() 2269-update-nodes-on-exploit Mike Salvatore 2022-10-07 10:36:34 -0400
  • b6a6295ae8 Island: Remove disused agent_event_handlers/utils.py Mike Salvatore 2022-10-07 09:52:29 -0400
  • e876682d84 Island: Use NodeUpdateFacade in ScanEventHandler Mike Salvatore 2022-10-07 09:51:44 -0400
  • e77932f7d6 Island: Add NodeUpdateFacade Mike Salvatore 2022-10-07 09:49:57 -0400
  • e1f32177e9 Island: Call get_or_create_target_machine() from ScanEventHandler Mike Salvatore 2022-10-05 15:01:40 -0400
  • c4052bc5ad Island: Add utils.get_or_create_target_machine() Mike Salvatore 2022-10-05 14:30:31 -0400
  • a7d7c1a787 UT: Add missing __init__.py Mike Salvatore 2022-10-05 14:16:08 -0400
  • cd4ee9c3a4
    Merge e54c950dc3 into 04fec93c39 #2409 VakarisZ 2022-10-07 17:21:40 +0300
  • e54c950dc3 Island: Upsert node on TCP scan event if source of event don't exist #2409 vakarisz 2022-10-07 17:21:28 +0300
  • 0f7840d61a
    Merge d1427117c7 into 04fec93c39 #2408 ilija-lazoroski 2022-10-07 09:45:43 -0400
  • e4b99dce03
    Merge d9f8b2a3d0 into 04fec93c39 #2406 Kekoa Kaaikala 2022-10-07 13:40:12 +0000
  • 04fec93c39 Merge branch '2269-publish-events-from-hadoop-exploiter' into develop Mike Salvatore 2022-10-07 09:37:37 -0400
  • d9f8b2a3d0 Agent: Use T1569 tag for propagation events #2406 2269-publish-events-from-smbexec-exploiter Kekoa Kaaikala 2022-10-07 13:30:11 +0000
  • 7797890ff4 Agent: Add attach technique T1569 Kekoa Kaaikala 2022-10-07 13:29:00 +0000
  • 104e0abda9 Agent: Fix mypy issues in smb_tools.py Kekoa Kaaikala 2022-10-07 13:26:49 +0000
  • bc0adb2193 Agent: Rename message to error_message Kekoa Kaaikala 2022-10-07 13:14:03 +0000
  • 7a664218bd Agent: Check all potential urls in Hadoop #2396 Ilija Lazoroski 2022-10-07 14:53:19 +0200
  • d3c2d95a69 Island: Handle network services in TCP scan events vakarisz 2022-10-07 16:07:04 +0300
  • c5c8bc1d2f Island: Add mongo_dot_encoder to encode "." characters vakarisz 2022-10-07 16:04:51 +0300
  • a96b82fa0f Island: Don't raise errors if machine upsert did no changes vakarisz 2022-10-07 16:02:45 +0300
  • a143d7206e Island: Reuse the same open port logic in scan_event_handler.py vakarisz 2022-10-07 10:50:24 +0300
  • d0d37ce595 Island: Update machine services with TCP scan event results vakarisz 2022-10-05 15:31:23 +0300
  • d1427117c7 Agent: Add successful exploitation in WMI #2408 2269-publish-events-from-wmi Ilija Lazoroski 2022-10-07 14:58:32 +0200
  • 6950dcdf0c Agent: Change propagation timestamp in WMI Ilija Lazoroski 2022-10-07 14:49:49 +0200
  • 6d60e33c1e Merge branch '2269-publish-events-for-mssql-exploiter' into develop Mike Salvatore 2022-10-07 08:46:40 -0400
  • a558948c5d Agent: Remove unnecessary `pass` from MSSQLExploiter #2401 Mike Salvatore 2022-10-07 08:43:05 -0400
  • 66f5d7a86a Agent: Remove errant exploitation event from hadoop Mike Salvatore 2022-10-07 08:35:24 -0400
  • 3b225a9c7d
    Merge pull request #2376 from guardicore/dependabot/npm_and_yarn/monkey/monkey_island/cc/ui/d3-color-and-d3-3.1.0 Shreya Malviya 2022-10-07 18:01:53 +0530
  • c09c2c2127 Agent: Add attack technique tags from WMIExploiter Ilija Lazoroski 2022-10-07 14:12:52 +0200
  • ed191bcf61 Agent: Publish events from WMI Ilija Lazoroski 2022-10-07 13:55:49 +0200
  • 79e8ce5f79 Island: Pass tuple, not set to upsert_tcp_connections() Mike Salvatore 2022-10-07 07:44:49 -0400
  • 0965b97d45 Island: Use ScanEvent for typehint in ScanEventHandler Mike Salvatore 2022-10-07 07:43:10 -0400
  • 4c026241ea Island: Change method order in ScanEventHandler Mike Salvatore 2022-10-07 07:39:47 -0400
  • 25073be9f3 Agent: Remove adding vulnerable urls in Hadoop Ilija Lazoroski 2022-10-07 11:22:27 +0200
  • c02d43556a Agent: Make Hadoop tags uppercase Ilija Lazoroski 2022-10-06 13:14:55 +0200
  • 8bdb30dcfb Agent: Rename stamp to timestamp in Hadoop Ilija Lazoroski 2022-10-06 13:05:48 +0200
  • 8f6df12d9c Agent: Modify HadoopExploiter tags to be properties Ilija Lazoroski 2022-10-06 12:58:19 +0200
  • 76a3cb0ba0 Agent: Stamp time before exploit executes Kekoa Kaaikala 2022-10-05 20:16:06 +0000
  • de5d365bb0 Agent: Publish events sooner Kekoa Kaaikala 2022-10-05 18:53:31 +0000
  • 3e592cfa69 Agent: Use exploiter tag properties Kekoa Kaaikala 2022-10-05 18:25:40 +0000
  • 4a0a24dde2 Agent: Update hadoop exploiter tags T1570 -> T1105 Kekoa Kaaikala 2022-10-05 13:42:26 +0000
  • 76ae57281d Agent: Use EXPLOIT_TAGS for exploitation event Kekoa Kaaikala 2022-10-05 12:25:23 +0000
  • 54b551b728 Agent: Update tags for hadoop events Kekoa Kaaikala 2022-10-04 19:43:14 +0000
  • c31aed94ea Agent: Move successful explotiation event publish Kekoa Kaaikala 2022-10-04 19:30:42 +0000
  • bee1047024 Agent: Update hadoop failed event publishing Kekoa Kaaikala 2022-10-04 19:16:22 +0000
  • 57af640317 Agent: Use correct publish method names Kekoa Kaaikala 2022-10-04 18:26:03 +0000
  • 9c185a3a78 Agent: Add tags and error messages in Hadoop Ilija Lazoroski 2022-10-04 16:39:10 +0200
  • fe864792f3 Agent: Publish Propagation and Exploitation events from Hadoop Ilija Lazoroski 2022-10-04 13:05:10 +0200
  • 4709ae771b
    Merge pull request #2400 from guardicore/2267-add-tcp-connections VakarisZ 2022-10-07 12:15:39 +0300
  • be4ecccdcd Island: Refactor get_node_by_id to raise UnknownRecordError #2400 vakarisz 2022-10-07 10:05:06 +0300
  • ce6ca64b4d
    Agent: Define exploiter and propagation tags correctly Shreya Malviya 2022-10-07 12:00:04 +0530
  • 77d37bdb21 Merge branch '2269-publish-events-from-log4shell-exploiter' into develop Mike Salvatore 2022-10-06 17:26:06 -0400
  • 9c2cdf15e2 Agent: Add TODO in Log4ShellExploiter #2397 Mike Salvatore 2022-10-06 17:01:06 -0400
  • ead979c6ca Agent: Add T1110 to Log4Shell exploiter tags Mike Salvatore 2022-10-06 16:54:02 -0400
  • 03c6c5ea4b Agent: Remove unnecessary Path -> str in Log4ShellExploiter Mike Salvatore 2022-10-06 16:51:14 -0400
  • eac3076828 Agent: Change typehint for build_monkey_commandline's location Mike Salvatore 2022-10-06 16:50:05 -0400
  • 7bc9993c6f Agent: Reduce VICTIM_WAIT_SLEEP_TIME_SEC to 0.050 seconds Mike Salvatore 2022-10-06 16:43:05 -0400
  • 6bd7042444 Agent: Add VICTIM_WAIT_SLEEP_TIME_SEC constant in log4shell exlpoiter Mike Salvatore 2022-10-06 16:42:33 -0400
  • d8fca72f28 Agent: Publish all prop/exploit events from _wait_for_victim() Mike Salvatore 2022-10-06 16:41:20 -0400
  • b2c5b22128 Merge branch '2269-publish-events-from-powershell-exploiter' into develop Mike Salvatore 2022-10-06 12:45:13 -0400
  • 8e3bf96589 Agent: Convert plaintext to str() Mike Salvatore 2022-10-06 12:40:50 -0400
  • 65dd386603 Agent: Collect timestamp before powershell connect #2402 2269-publish-events-from-powershell-exploiter Mike Salvatore 2022-10-06 12:39:37 -0400
  • c4573673ce Agent: Rename timestamp -> execute_agent_timestamp Mike Salvatore 2022-10-06 12:39:11 -0400
  • f917654f41 Agent: Report successful propagation if agent ran Kekoa Kaaikala 2022-10-06 16:27:57 +0000
  • 7b13817b66 Agent: Publish propagation events Kekoa Kaaikala 2022-10-06 16:25:18 +0000
  • c631755397 Agent: Publish exploitation events Kekoa Kaaikala 2022-10-06 16:15:35 +0000
  • 629c2433cd Agent: Override tag properties Kekoa Kaaikala 2022-10-06 16:14:50 +0000
  • db09fe0cae Agent: Extract method _run_agent_on_victim Kekoa Kaaikala 2022-10-06 14:49:36 +0000
  • c3ba2cf6b2 Agent: Extract method _get_rpc_connection Kekoa Kaaikala 2022-10-06 14:45:43 +0000
  • 2d130a0442 Agent: Extract method _get_agent_command Kekoa Kaaikala 2022-10-06 14:15:52 +0000
  • 156300e8ed Agent: Extract method _exploit Kekoa Kaaikala 2022-10-06 14:14:38 +0000
  • ac11d159fe Agent: Revise Powershell publishing of events Ilija Lazoroski 2022-10-06 16:03:15 +0200
  • de9b5601d8
    Merge branch 2269-publish-events-from-sshexec-exploiter into develop Mike Salvatore 2022-10-06 10:00:35 -0400
  • c980bfd915 Agent: Move timestamp closer to ssh.exec_command() #2395 Mike Salvatore 2022-10-06 09:57:11 -0400
  • 52380a2513 Agent: Publish exploitation event on unexpected SSH exception Mike Salvatore 2022-10-06 09:51:14 -0400
  • 39bada5bb1 Agent: Move assignment outside of try/except Mike Salvatore 2022-10-05 12:17:16 -0400
  • 3bca02af59 Agent: Fix powershell tests Kekoa Kaaikala 2022-10-05 14:25:02 +0000
  • 7d535c72d9 Agent: Publish powershell exploitation events Kekoa Kaaikala 2022-10-05 14:10:11 +0000
  • 3bede2f9d1 Agent: Publish propagation events Kekoa Kaaikala 2022-10-05 13:59:21 +0000
  • bb6716df18 Common: Add attack technique T1059 Kekoa Kaaikala 2022-10-05 13:23:13 +0000
  • 8503e0f499 UT: Remove unused test data structures vakarisz 2022-10-06 15:02:13 +0300
  • ec617df06a Agent: Fix LocketHTTPServer mypy error in MSSQLExploiter Ilija Lazoroski 2022-10-06 13:53:17 +0200
  • 0d246a0479 Island: Rename add_tcp_connections to upsert_tcp_connections vakarisz 2022-10-06 14:49:11 +0300
  • 47846628e6 Agent: Modify MSSQL tags to be properties Ilija Lazoroski 2022-10-06 13:47:11 +0200
  • 3bc2e4876f Island: Handle missing node in add_tcp_connections vakarisz 2022-10-06 14:45:56 +0300
  • 15974ff21c Agent: Stamp time before running exploit Kekoa Kaaikala 2022-10-05 20:49:08 +0000
  • 66f8471f24 Agent: Remove "summary" event Kekoa Kaaikala 2022-10-05 20:46:29 +0000
  • e404416363 Agent: Use exploit tag properties Kekoa Kaaikala 2022-10-05 20:41:47 +0000
  • 5c6b1e3910 Common: Remove unused technique T1071 Kekoa Kaaikala 2022-10-05 20:36:07 +0000
  • 9269c8579c Agent: Remove unneccessary technique Kekoa Kaaikala 2022-10-05 20:35:34 +0000
  • 8317c03686 Agent: Add tags to MSSQL propagation events Kekoa Kaaikala 2022-10-05 13:29:03 +0000
  • aab965bad7 Common: Add attack technique T1071 Kekoa Kaaikala 2022-10-05 13:28:08 +0000
  • fa8b721abe Common: Add attack technique T1059 Kekoa Kaaikala 2022-10-05 13:23:13 +0000
  • 183bd1145f Agent: Add tags to MSSQL exploitation events Kekoa Kaaikala 2022-10-05 13:07:28 +0000
  • 33230e85f7 Agent: Use updated publish methods Kekoa Kaaikala 2022-10-05 12:51:59 +0000
  • 2cd9d0086b Agent: Fix mypy error in http_tools.py Kekoa Kaaikala 2022-10-04 15:21:46 +0000
  • 8dd196122b Agent: Publish events from MSSQLExploiter Kekoa Kaaikala 2022-10-04 14:46:35 +0000
  • b0ec035909 Island: Move tcp_connection addition to node repository vakarisz 2022-10-06 14:31:12 +0300