p15693087
/
monkey
forked from p15670423/monkey
1
0
Fork 0
Code Issues Pull Requests 1 Projects Releases Wiki Activity
7,716 Commits 31 Branches 0 Tags 47 MiB
Commit Graph

7716 Commits

Author SHA1 Message Date
Shreya Malviya 196f814860 Agent: Remove PBA's dependency on Plugin 2022-03-25 12:54:03 +05:30
Ilija Lazoroski db03ac3dd9 Agent: Use random binary destination path for Hadoop 2022-03-24 14:59:51 -04:00
Mike Salvatore 8d4edca419
Merge pull request #1813 from guardicore/1801-fix-failure-quitting-tunnel 
1801 fix failure quitting tunnel
 2022-03-24 14:57:24 -04:00
vakarisz a92a8af96b BB: Remove smb-20 machine 2022-03-24 13:08:30 -04:00
Mike Salvatore b3b5707a45 Agent: Convert dest_path to str before performing comparison 2022-03-24 12:51:07 -04:00
Mike Salvatore 8aad5b16d5 Agent: Fix tunnel address parsing in _close_tunnel() 
The current proxy schema specifies that tunnels start with "http://",
not "https://". This lead to a bug in the tunnel address parsing which
prevented the tunnel from being quit properly.
 2022-03-24 12:27:22 -04:00
Mike Salvatore ef134be044 Agent: Remove default servers from WormConfiguration.command_servers 
In my 16 months working on this project, the default server included in
WormConfiguration.command_servers has never had a Monkey Island running
on it. This adds a 30 second delay to each hop in the tunneling test as
the agent attempts to contact this bogus IP. Removing it speeds up
propagation and also avoids unintended consequences if a user has a
different service running on 192.0.2.0:5000.
 2022-03-24 11:10:22 -04:00
Mike Salvatore 996f2b3c7a Agent: Fix unnecessary waiting in MonkeyTunnel 
The monkey tunnel only needs to wait before closing if propagation was
successful. Previously, it waited before closing if any exploiter was
run.

PR: #1811
 2022-03-24 11:05:05 -04:00
Mike Salvatore 2471eb6762
Merge pull request #1810 from guardicore/1782-log4shell 
1782 log4shell
 2022-03-24 10:50:46 -04:00
vakaris_zilius 25c7696300 Agent: Change typehints of agent destination path to PurePath 2022-03-24 14:47:07 +00:00
vakaris_zilius 49d3433ade Agent: Change to more specific typehint in helpers.py 2022-03-24 14:36:20 +00:00
Shreya Malviya cb51394439 BB: Add relevant TCP ports to PowerShell config template 2022-03-24 18:43:52 +05:30
Mike Salvatore 707c79ab21 Agent: Reduce proxy timeouts from 30 to 10 seconds 
Stopping the agent is delayed by these timeouts. Reducing them allows
the agent to stop more rapidly on average.

Fixes #1372
 2022-03-24 08:37:03 -04:00
vakaris_zilius 087027b20c Agent: Change WMI exploiter to use random agent name 2022-03-24 07:25:46 -04:00
vakaris_zilius 1436be6428 Agent: Fix propagation success toggle in log4shell 
Propagation will only be marked successful if the agent got downloaded, not if the java class got downloaded
 2022-03-24 10:39:41 +00:00
vakaris_zilius 90b4038c14 Agent: Use random agent name in log4shell exploiter 2022-03-24 10:37:57 +00:00
vakaris_zilius dc2a63475b Agent: Fix incorrect monkey destination path bug 
This bug happened because Path will always cast path to current OS path and if target OS is different the path won't work. By explicitly casting the path to target OS type we get a path for target OS
 2022-03-24 10:31:41 +00:00
Shreya Malviya 8ad31593b1
Merge pull request #1803 from guardicore/1788-powershell-ssl-detection 
PowerShell SSL detection
 2022-03-24 13:28:10 +05:30
VakarisZ cbf9544e58
Merge pull request #1805 from guardicore/1782-smb 
Agent: Convert destination path to string in SMB exploiter
 2022-03-24 07:39:48 +00:00
vakaris_zilius c09428dde9 Agent: Move path to string translation to smb_tools from smbexec 2022-03-24 07:38:43 +00:00
Mike Salvatore 45658b5559 Agent: Skip empty password attempts in PowerShell if HTTP disabled 2022-03-23 19:20:42 -04:00
Mike Salvatore 06899be264 Tests: Fix tests for PowerShellExploiter 2022-03-23 14:47:19 -04:00
Mike Salvatore c28e200a25 Agent: Remove disused PowerShellRemotingDisabledError 2022-03-23 14:43:59 -04:00
Mike Salvatore 385449101d Tests: Move host fixtures to conftest.py 2022-03-23 14:43:59 -04:00
Mike Salvatore 3d7586f713 Agent: Fix edge case handling in auth_options._get_ssl() 
If the host has neither the HTTP or HTTPS port enabled, return False.
 2022-03-23 14:43:59 -04:00
Mike Salvatore 4b84ba3fc0 Tests: Fix unit tests for powershell_utils.auth_options 2022-03-23 14:43:59 -04:00
Shreya Malviya e947f335ff Agent: Remove unused functions in PowerShell exploiter 2022-03-23 14:43:59 -04:00
Shreya Malviya 4614e2207d Agent: Decide if SSL is to be used in auth_options.py 2022-03-23 14:43:59 -04:00
Shreya Malviya 6d9e18fdc9 Island: Add 5985 and 5986 to TCP ports 2022-03-23 14:43:59 -04:00
Ilija Lazoroski 51cfb73ce0 Agent: User random binary destination path for MSSQL Exploit 2022-03-23 14:42:10 -04:00
Ilija Lazoroski cad5fa4897 Agent: Use random binary destination path for SSH Exploit 2022-03-23 14:41:06 -04:00
Mike Salvatore 82b6cdbad5
Merge pull request #1804 from guardicore/1782-powershell 
Agent: Upload binary with random string when using powershell
 2022-03-23 14:33:25 -04:00
Mike Salvatore 99b8321271 Tests: Fix broken PowerShellExploiter tests 2022-03-23 14:32:08 -04:00
Mike Salvatore d3fc833813 Agent: Use Paths in IPowerShellClient.copy_file() 2022-03-23 14:25:28 -04:00
Ilija Lazoroski 1e28599398 Agent: Make ZeroLogon interruptibale 2022-03-23 14:14:47 -04:00
Mike Salvatore 56bdcbeddd Agent: Pull paramiko from specific tag 
Co-authored-by: vakarisz <vakarisz@yahoo.com>
 2022-03-23 11:34:13 -04:00
vakaris_zilius 7001977a88 Agent: Change powershell client to work with Path not str 2022-03-23 15:24:36 +00:00
vakaris_zilius 18e3dd7c91 Agent: Convert destination path to string in SMB exploiter 2022-03-23 15:14:23 +00:00
vakaris_zilius 7c504d220d Agent: Upload binary with random string when using powershell 2022-03-23 14:56:05 +00:00
Mike Salvatore 06f33e0fa1
Merge pull request #1802 from guardicore/1782-random-agent-filename 
Agent: Add a method that appends random string to filename in path
 2022-03-23 09:41:17 -04:00
vakaris_zilius c2b06f22f0 Agent: Improve path comparison style in test_helpers.py 2022-03-23 13:37:33 +00:00
vakaris_zilius efb0039e34 Agent: Make _add_random_suffix method code more concise 2022-03-23 13:33:26 +00:00
vakaris_zilius 2e6b361a9d Agent: Add a method that appends random string to filename in path 
This method will be used to avoid duplication in destination file paths and will avoid clashes of exploiters writing to same files
 2022-03-23 10:49:25 +00:00
Mike Salvatore 3973f26192 Build: Bump Python version for building AppImage to 3.7.13 2022-03-22 19:34:25 -04:00
Mike Salvatore 426fc15ec1 Agent: Fix typo interruptable -> interruptible 2022-03-22 08:35:08 -04:00
Ilija Lazoroski 8921ed77ac Agent: Make Hadoop interruptable 2022-03-22 08:23:33 -04:00
Mike Salvatore ed817feaf2 Agent: Make SMBExploiter interruptible 2022-03-22 07:33:00 -04:00
vakaris_zilius 2c7920c95a Agent: Fix ssh timeout for open_sftp by using forked paramiko 2022-03-22 07:09:09 -04:00
VakarisZ 663c1c6471
Merge pull request #1796 from guardicore/1611-interruptable-log4shell 
Agent: Make log4shell interruptable
 2022-03-22 07:14:36 +00:00
vakaris_zilius 3cfa72f731 Agent: Remove unreliable stop check in log4shell 2022-03-22 06:57:33 +00:00