Commit Graph

847 Commits

Author SHA1 Message Date
maor.rayzin 2f4a3dc885 * finished map's nodes and edges generation for pth report 2018-07-24 14:43:41 +03:00
maor.rayzin 1b45029c5d * WIP added map edges and nodes generation 2018-07-21 21:13:42 +03:00
maor.rayzin 865bb3489d * WIP Refactoring the report info gathering file
* WIP Refactoring the report map information
2018-07-21 21:00:13 +03:00
Oran Nadler 6019432a2b pth report is now shown also in the website 2018-05-22 03:00:06 -07:00
Oran Nadler c298544f22 Revert "try"
This reverts commit 2724e671f7.
2018-05-15 16:52:08 +03:00
Oran Nadler 2724e671f7 try 2018-05-15 16:42:51 +03:00
Oran Nadler f6ebf0b51c fix bug not running the edge generation functions due to caching 2018-05-15 16:29:02 +03:00
Oran Nadler 0fe5a20a6b fix 2018-05-15 15:37:23 +03:00
Oran Nadler cad048119d split pth to be able to run standalone and in website 2018-05-15 15:26:46 +03:00
Oran Nadler cec7ef6071 rename 2018-05-15 15:23:16 +03:00
Oran Nadler 88cb74ce12 hide junk 2018-05-15 14:28:51 +03:00
Oran Nadler 29e85a868b make attackers more visibile in table 2018-05-15 14:20:09 +03:00
Oran Nadler 3cff5edffe deepcopy cahced object before returing it 2018-05-15 13:49:23 +03:00
Oran Nadler d0ce419ae0 add GetAttackersBySid 2018-05-15 13:07:19 +03:00
Oran Nadler bad90d35c1 FATAL bugfix in cache, better find sid by username 2018-05-15 12:55:50 +03:00
Oran Nadler b54eb89330 Add 'Two machines should not share any local admin.' report 2018-05-15 11:10:32 +03:00
Oran Nadler e672e26f71 handle the PartCoponent issue in the report 2018-05-08 17:25:46 +03:00
Oran Nadler 7af6e6473c Handle the Win32_GroupUser missing PartCompenent issue 2018-05-08 17:05:33 +03:00
Oran Nadler 588387a263 typo 2018-05-08 16:12:51 +03:00
Oran Nadler 404da6e6d6 typo 2018-05-08 15:48:53 +03:00
Oran Nadler 0ca804d4e3 add comment 2018-05-08 15:44:05 +03:00
Oran Nadler 4c1d0bfff5 add ldap wmi queries 2018-05-08 15:40:38 +03:00
Oran Nadler 72fa6bbd68 no need to eval SidType 2018-04-30 18:42:30 +03:00
Oran Nadler 1d25ba9085 check SidType everywhere to make sure we don't have type errors 2018-04-30 18:40:11 +03:00
Oran Nadler 9594fab1a2 shared users seems to work 2018-04-30 18:15:10 +03:00
Oran Nadler 8ab880340f don't count DomainAdmins as shared admins 2018-04-30 17:58:15 +03:00
Oran Nadler 0025d242d7 fix 2018-04-30 17:50:38 +03:00
Oran Nadler 99ee46c38a add unique local admin 2018-04-30 17:48:21 +03:00
Oran Nadler d83dad727d remove secret from display 2018-04-30 16:53:48 +03:00
Oran Nadler 2e3401f285 fix 2018-04-30 16:51:07 +03:00
Oran Nadler b49ba7526f fix 2018-04-30 16:48:42 +03:00
Oran Nadler d59e464578 only take running services 2018-04-30 16:44:43 +03:00
Oran Nadler ebda00b333 add list of critical services installed 2018-04-30 16:28:29 +03:00
Oran Nadler 5692d1dc86 add dns service to critical services 2018-04-30 16:19:58 +03:00
Oran Nadler f7556b0930 fix 2018-04-17 15:57:44 +03:00
Oran Nadler c308532ff4 show low sevirity threat users 2018-04-17 15:54:03 +03:00
Oran Nadler e17f9b8273 fix 2018-04-17 15:02:49 +03:00
Oran Nadler 807606dae2 i think this is also a bug 2018-04-17 15:00:22 +03:00
Oran Nadler 29fac1a960 fix 2018-04-17 14:59:06 +03:00
Oran Nadler 0d4e28b55b small fixes 2018-04-17 14:43:26 +03:00
Oran Nadler 7a7729c212 add threatning users to report 2018-04-17 13:58:47 +03:00
Oran Nadler 13bf7107c9 BUGFIX: Take the latest info_collection got from machine instead of oldest 2018-04-17 13:30:55 +03:00
Oran Nadler 2c68cca5db add list of the users that share each password 2018-04-17 13:12:57 +03:00
Oran Nadler cdadb32ff0 fix 2018-04-17 12:49:14 +03:00
Oran Nadler 6d5d8595a0 fix 2018-04-17 12:47:52 +03:00
Oran Nadler 0fa14d631c add critical server list to report 2018-04-17 12:45:32 +03:00
Oran Nadler b74167178f add installed services to report 2018-04-17 12:29:28 +03:00
Oran Nadler 502997a8e4 add logs 2018-04-10 18:55:53 +03:00
Oran Nadler 61741eb94d Merge branch 'nadler/pth' of github.com:guardicore/monkey into nadler/pth 2018-04-10 17:51:37 +03:00
Oran Nadler 21cf786d51 add more wmi classeS 2018-04-10 17:51:18 +03:00