p15693087
/
monkey
forked from p15670423/monkey
1
0
Fork 0
Code Issues Pull Requests 1 Projects Releases Wiki Activity
983 Commits 31 Branches 0 Tags 47 MiB
Commit Graph

482 Commits

Author SHA1 Message Date
maor.rayzin 3a9a92d1b9 * More info in the recommendations section 2018-08-05 11:46:47 +03:00
maor.rayzin cdfd6284ee * Added information about what info gathered to the report's issues section 2018-08-01 13:07:18 +03:00
maor.rayzin 48e1d85eb0 * fixed a lot of safe dict access 
* some small fixed and typos
 2018-07-24 19:09:19 +03:00
maor.rayzin f97df84da9 Merge branch 'develop' into nadler/pth 
# Conflicts:
#	infection_monkey/requirements.txt
#	monkey_island/cc/app.py
#	monkey_island/cc/resources/telemetry.py
#	monkey_island/cc/ui/src/components/pages/ReportPage.js
 2018-07-24 15:00:58 +03:00
maor.rayzin dd5b606ef8 * wrong endpoint fix 2018-07-24 14:54:12 +03:00
maor.rayzin fae87bd07b * wrong endpoint fix 2018-07-24 14:52:16 +03:00
maor.rayzin 2a12fefe6d Merge branch 'nadler/pth-map' into nadler/pth 2018-07-24 14:46:32 +03:00
maor.rayzin 2f4a3dc885 * finished map's nodes and edges generation for pth report 2018-07-24 14:43:41 +03:00
Itay Mizeretz eb79499e80 Change report structure 
Add tables for shared admins, strong users, shared creds.
 2018-07-22 18:49:51 +03:00
maor.rayzin 1b45029c5d * WIP added map edges and nodes generation 2018-07-21 21:13:42 +03:00
maor.rayzin 865bb3489d * WIP Refactoring the report info gathering file 
* WIP Refactoring the report map information
 2018-07-21 21:00:13 +03:00
Itay Mizeretz 800e337f6f Add credential map to report. currently uses fake static data 2018-07-19 18:35:37 +03:00
Daniel Goldberg f98a121c51
Merge branch 'develop' into master 2018-07-09 18:53:43 +03:00
Daniel Goldberg 35b535f97a Removed hard coded debug address and replaced with non routable IP 2018-07-08 12:14:45 +03:00
Daniel Goldberg d510476658
Merge branch 'develop' into struts2RCE 2018-06-21 13:23:12 +03:00
Vakaris ef6c512ea9 Finished up exploitation and added reporting 2018-06-20 22:35:18 +03:00
Vakaris 2d27972e7e Struts exploitation working, and tested with win-64 and ubuntu 2018-06-20 16:58:20 +03:00
Vakaris 413bdd9254 Not yet functioning and tested, but most functions are done 2018-06-19 18:08:52 +03:00
Itay Mizeretz 0173aaf3f6 Update mocha 
Change color structure for edge - required by update
 2018-06-13 17:36:17 +03:00
maor.rayzin d312a3a771 * Changed name from MSSQLFingerprint to MSSQLFinger to match convention. 
* Added UI support for the new fingerprint in Monkey Island.
* UI supports includes writing up MSSQL as a service under node's
  services list.
 2018-06-12 13:26:28 +03:00
Daniel Goldberg de832780b6 Removed overly verbose logging line, triggered every 2 seconds 2018-06-06 13:54:21 +03:00
Daniel Goldberg ecdd2e8762
Merge branch 'develop' into SSH_key_stealing 2018-06-05 16:59:28 +03:00
Daniel Goldberg d77704b3e2
Merge pull request #139 from guardicore/feature/Adding_logs_to_monkey_island 
Feature/adding logs to monkey island
 2018-06-05 14:06:23 +03:00
Vakaris 0503f90168 Notes fixed 2018-06-04 12:07:10 +03:00
maor.rayzin f37fabaf75 I've added logs to cover these situations and modules: 
Configuration reset
    Configuration Insert
    Configuration Update
    Report steps
    Monkey downloads
    Env startup logs

Also I've changed the logging init position so it covers every functions from main, some functions and vars are being called and init from import level, in order to log those situations I had to init the log system right on the beginning of the module.
 2018-05-31 19:27:26 +03:00
maor.rayzin ad0d9f4567 Added more log lines 2018-05-31 18:35:33 +03:00
Daniel Goldberg 9fa92d0c88 Fix typo in warning 2018-05-31 15:39:36 +03:00
maor.rayzin 509558fbb2 Changed the log formatting a bit, added file and function name and line 
numbers to the log string.
 2018-05-31 13:18:33 +03:00
maor.rayzin 05c4bb7ac7 Integrated an option to download the monkey island log files from the Log page in the web app. 2018-05-31 10:44:47 +03:00
maor.rayzin 6aeaf0f857 Integrated an option to download the monkey island log files from the Log page in the web app. 2018-05-30 18:30:56 +03:00
Vakaris 30a3bbf9a0 Exploitation of machines using ssh keys added. Also, added shh keys exploitation to report 2018-05-29 01:02:49 +03:00
Vakaris f45cebfd5e Does not store encrypted or already present ssh keys, shows all users from whom SSH private key were stolen under "stolen credentials" in report 2018-05-25 01:34:24 +03:00
Vakaris 5f194b70f2 Unecessary import fixed 2018-05-24 17:11:45 +03:00
Vakaris 4197ab12a3 SSH keys are now encrypted and added to database 2018-05-24 16:59:22 +03:00
Oran Nadler 6019432a2b pth report is now shown also in the website 2018-05-22 03:00:06 -07:00
cclauss 0411811fe5 from six import string_types, text_type, xrange (#128) 
* from six import string_types, text_type, xrange
 2018-05-22 11:13:18 +03:00
maor.rayzin 13fa4fa6a4 Added a logging system to the monkey_island module. 
Added a main function in main.py
Inserted a few logs to test the log system
 2018-05-17 19:24:50 +03:00
Daniel Goldberg 7656f448a5
Add python-dev as dependency 
Because we also build packages manually during the install that depend on python-dev
 2018-05-17 15:11:38 +03:00
Oran Nadler c298544f22 Revert "try" 
This reverts commit 2724e671f7.
 2018-05-15 16:52:08 +03:00
Oran Nadler 2724e671f7 try 2018-05-15 16:42:51 +03:00
Oran Nadler f6ebf0b51c fix bug not running the edge generation functions due to caching 2018-05-15 16:29:02 +03:00
Oran Nadler 0fe5a20a6b fix 2018-05-15 15:37:23 +03:00
Oran Nadler cad048119d split pth to be able to run standalone and in website 2018-05-15 15:26:46 +03:00
Oran Nadler cec7ef6071 rename 2018-05-15 15:23:16 +03:00
Oran Nadler 88cb74ce12 hide junk 2018-05-15 14:28:51 +03:00
Oran Nadler 29e85a868b make attackers more visibile in table 2018-05-15 14:20:09 +03:00
Oran Nadler 3cff5edffe deepcopy cahced object before returing it 2018-05-15 13:49:23 +03:00
Oran Nadler d0ce419ae0 add GetAttackersBySid 2018-05-15 13:07:19 +03:00
Oran Nadler bad90d35c1 FATAL bugfix in cache, better find sid by username 2018-05-15 12:55:50 +03:00
Oran Nadler b54eb89330 Add 'Two machines should not share any local admin.' report 2018-05-15 11:10:32 +03:00