p15693087
/
monkey
forked from p15670423/monkey
1
0
Fork 0
Code Issues Pull Requests 1 Projects Releases Wiki Activity
3,838 Commits 31 Branches 0 Tags 47 MiB
Commit Graph

2167 Commits

Author SHA1 Message Date
Shay Nehmad 33b9dae213 Bugfix - missing import 2020-09-01 14:46:53 +03:00
ophirharpazg afcbbb880c add to exploiter info 2020-09-01 14:23:52 +03:00
ophirharpazg 7288fb9814 fix Docs page and add to report 2020-09-01 14:16:22 +03:00
ophirharpazg a7b84b966c fix length check and add log 2020-09-01 12:43:20 +03:00
ophirharpazg bdba20133d retore the upper bound from the original exploit implementation 2020-09-01 12:39:36 +03:00
ophirharpazg 9fcf2fe0e6 improve the check of sufficient URLs for the attack 2020-09-01 12:39:14 +03:00
Shay Nehmad 5a00d5e5f9 Merge branch '669/drupal' of https://github.com/guardicore/monkey into 669/drupal 2020-09-01 12:17:33 +03:00
Shay Nehmad cf776063af Reformat + extract payload building to functions 2020-09-01 12:17:01 +03:00
ophirharpazg f31186272f fixed logic and name in finding exploitable nodes 2020-09-01 12:07:29 +03:00
VakarisZ 7107e963fb
Merge pull request #809 from VakarisZ/ms08-067 
Added windows XP support for win_ms08_067
 2020-09-01 11:56:02 +03:00
ophirharpazg 6e2678473c rename function that finds vulnerable node IDs 2020-09-01 11:53:49 +03:00
Shay Nehmad cec57c1604 Update minor things in order to pass CI build 2020-09-01 11:48:06 +03:00
Shay Nehmad e7ecaa1744 Merge branch 'develop' into 669/drupal 2020-09-01 11:42:42 +03:00
snyk-bot 33be50a6e2 fix: upgrade snyk from 1.369.3 to 1.372.0 
Snyk has created this PR to upgrade snyk from 1.369.3 to 1.372.0.

See this package in npm:
https://www.npmjs.com/package/snyk

See this project in Snyk:
https://app.snyk.io/org/guardicore/project/b4a24b2f-c0d4-474c-9f18-da5a77c685fe?utm_source=github&utm_medium=upgrade-pr
 2020-09-01 07:03:36 +00:00
Shay Nehmad c79bc8f47b
Merge pull request #812 from guardicore/linter-cleanup 
Linter cleanup
 2020-09-01 09:15:05 +03:00
Shay Nehmad f084d84157 Fixed isort 2020-08-31 18:31:00 +03:00
Shay Nehmad 1a4d27d7ff Delete return value 2020-08-31 18:12:01 +03:00
Shay Nehmad 5696c3e536 Some more easy noqas or invalid escape fixes 2020-08-31 18:06:08 +03:00
ophirharpazg 6184400f51 mention Drupal REST API requirement 2020-08-31 17:55:24 +03:00
ophirharpazg b82a6e48b2 use ID_STRING instead of dashes 2020-08-31 17:55:04 +03:00
Shay Nehmad accd6bd0fa See https://eslint.org/docs/rules/no-prototype-builtins 2020-08-31 17:16:53 +03:00
ophirharpazg c9ea95110c remove unnecessary function and replace with urljoin 2020-08-31 16:52:10 +03:00
ophirharpazg 1ae8ecff62 Move remote_port to a designated file and add UT 2020-08-31 16:40:21 +03:00
Shay Nehmad 9d26b5698c Fix isort bug with comments 2020-08-31 14:47:47 +03:00
Shay Nehmad f23199c4a3 Fixed more warnings and lowered the linter upper limit to double digits 2020-08-31 14:40:03 +03:00
Shay Nehmad b26727d5e0 Fix isort formatting 2020-08-31 14:36:26 +03:00
Shreya fc7d5bf1b3 Merge remote-tracking branch 'upstream/develop' into T1099 2020-08-31 17:00:58 +05:30
Shay Nehmad 910e8355f9 Fix or noqa some python linter errors 
Also, replace os.path with Path
 2020-08-31 14:13:56 +03:00
Shay Nehmad db46134a60
Merge pull request #803 from guardicore/snyk-upgrade-7ac4a238c663fbd71e69edeed8729cd1 
[Snyk] Upgrade bootstrap from 4.5.0 to 4.5.1
 2020-08-31 12:13:06 +03:00
Shay Nehmad a1356a14b3 npm audit fix 2020-08-31 12:12:50 +03:00
Shay Nehmad 70ecd27ab1 Merge branch 'develop' into snyk-upgrade-7ac4a238c663fbd71e69edeed8729cd1 2020-08-31 12:04:34 +03:00
Shay Nehmad d9dbb6fcfa
Merge pull request #797 from guardicore/snyk-upgrade-3bcbcf02454033baa460afe021a37c03 
[Snyk] Upgrade react-json-tree from 0.11.2 to 0.12.0
 2020-08-31 12:04:11 +03:00
Shay Nehmad c01663c12f
Merge pull request #811 from guardicore/snyk-upgrade-675068a89f14975a8ee45d366b442b9d 
[Snyk] Upgrade filepond from 4.19.0 to 4.19.2
 2020-08-31 12:02:17 +03:00
Shay Nehmad 122c400c07 Merge branch 'develop' into snyk-upgrade-3bcbcf02454033baa460afe021a37c03 2020-08-31 12:00:04 +03:00
VakarisZ b14193f848 Merge remote-tracking branch 'upstream/develop' into 519/scoutsuite-integration 
# Conflicts:
#	.gitmodules
#	.travis.yml
#	monkey/common/data/system_info_collectors_names.py
#	monkey/monkey_island/cc/services/config_schema.py
#	monkey/monkey_island/cc/services/telemetry/processing/system_info_collectors/system_info_telemetry_dispatcher.py
 2020-08-31 11:34:15 +03:00
VakarisZ d8a0a6d7a8 More work on Run monkey page 2020-08-31 10:35:39 +03:00
ophirharpazg 4c9d0f2786 Add Drupal to the newly formed configuration 2020-08-30 18:04:40 +03:00
ophirharpazg 1e259fc131 Add a detailed issue to the security report 2020-08-30 18:04:26 +03:00
ophirharpazg 3df5078ec1 Merge branch 'develop' into 669/drupal 
# Conflicts:
#	monkey/monkey_island/cc/services/config_schema.py
 2020-08-30 18:03:54 +03:00
ophirharpazg 6fa1801280 Merge remote-tracking branch 'origin/develop' into 669/drupal 2020-08-30 17:17:19 +03:00
snyk-bot 60fdf06cfb fix: upgrade filepond from 4.19.0 to 4.19.2 
Snyk has created this PR to upgrade filepond from 4.19.0 to 4.19.2.

See this package in npm:
https://www.npmjs.com/package/filepond

See this project in Snyk:
https://app.snyk.io/org/shaynehmad/project/37aecb9c-98b4-4735-95a2-83d941303b4e?utm_source=github&utm_medium=upgrade-pr
 2020-08-28 07:00:57 +00:00
snyk-bot 8db4897229 fix: upgrade snyk from 1.368.0 to 1.369.3 
Snyk has created this PR to upgrade snyk from 1.368.0 to 1.369.3.

See this package in npm:
https://www.npmjs.com/package/snyk

See this project in Snyk:
https://app.snyk.io/org/shaynehmad/project/37aecb9c-98b4-4735-95a2-83d941303b4e?utm_source=github&utm_medium=upgrade-pr
 2020-08-28 07:00:52 +00:00
VakarisZ 731239f08d Added windows XP support for win_ms08_067.py and fixed exploited/not exploited logic 2020-08-28 09:38:01 +03:00
ophirharpazg 7fff3b57bc Drupal server exploit implementation 2020-08-27 19:47:59 +03:00
ophirharpazg 2d48001f7b log exceptions in exploit_host 2020-08-27 19:47:38 +03:00
ophirharpazg f3f124ce76 renames, formatting and documentation 2020-08-27 19:47:08 +03:00
ophirharpazg 610d3d1144 get a vulnerable URL in a configurable manner 2020-08-27 19:46:42 +03:00
ophirharpazg a87640c4aa add Drupal exploit to the configuration 2020-08-27 19:43:41 +03:00
ophirharpazg 36d8487877 add Drupal exploit to the report - basic message 2020-08-27 19:43:16 +03:00
Shay Nehmad 1b86e00d33
Merge pull request #791 from guardicore/snyk-upgrade-e25eb24d943358d57b15972b86e257b1 
[Snyk] Upgrade filepond from 4.18.0 to 4.19.0
 2020-08-27 16:10:27 +03:00
VakarisZ 48360cb928
Merge pull request #779 from guardicore/feature/bugfix_and_loading_screen 
UI router bugfix and loading screen
 2020-08-27 15:54:58 +03:00
VakarisZ ee429b00c6
Merge pull request #787 from VakarisZ/server_config_auto_generation 
server_config.json no longer tracked in git, generated on island launch
 2020-08-27 15:49:45 +03:00
VakarisZ fc0742ffff
Merge pull request #807 from VakarisZ/ms08-067 
Ms08-067exploiter bugfixes, Defender evasion
 2020-08-27 15:47:18 +03:00
VakarisZ 8f3c1b9f75 Changed import order in test_shellcode_obfuscator.py 2020-08-27 15:33:54 +03:00
VakarisZ db789abf00 Removed typos and cleaned up win_ms08_067.py code 2020-08-27 14:16:33 +03:00
Shay Nehmad 4fa33ae57b Merge branch 'develop' into snyk-upgrade-e25eb24d943358d57b15972b86e257b1 2020-08-27 10:23:08 +03:00
Shay Nehmad c68e2e8e98
Merge pull request #790 from guardicore/snyk-upgrade-74184deb3a2ba3f48c5c2cbb4750525b 
[Snyk] Upgrade snyk from 1.363.0 to 1.368.0
 2020-08-27 10:21:40 +03:00
VakarisZ 3414f39245 Fixed wmi import bug 2020-08-27 09:01:58 +03:00
VakarisZ 1d3f4700c1 Implemented shellcode obfuscator and obfuscated shellcode in win_ms08_067.py 2020-08-27 09:00:41 +03:00
Shreya cff06a1308 Merge remote-tracking branch 'upstream/develop' into T1216 2020-08-27 10:51:04 +05:30
Shreya f7065a912d Merge remote-tracking branch 'upstream/develop' into T1087 2020-08-27 10:34:43 +05:30
Shreya 144e314edc Tiny fix to work on Windows 2020-08-27 10:16:58 +05:30
Shreya 7950b246aa Code review changes 
- break down `get_linux_commands_to_clear_command_history()` to separate functions
- keep technique off by default
- technique message changes
- other tiny changes
 2020-08-26 23:36:08 +05:30
Shreya e25e913e86 Just some refactoring 
and chages to pass the build
 2020-08-26 23:36:08 +05:30
Shreya 2431d45b74 Add T1146 (clear command history) 2020-08-26 23:36:08 +05:30
VakarisZ 99c302d4dc Fixed ms08-067 python3 migration bug (bytes/strings mixup) 2020-08-26 13:04:34 +03:00
snyk-bot 8589f05acf fix: upgrade bootstrap from 4.5.0 to 4.5.1 
Snyk has created this PR to upgrade bootstrap from 4.5.0 to 4.5.1.

See this package in npm:
https://www.npmjs.com/package/bootstrap

See this project in Snyk:
https://app.snyk.io/org/shaynehmad/project/37aecb9c-98b4-4735-95a2-83d941303b4e?utm_source=github&utm_medium=upgrade-pr
 2020-08-26 07:00:27 +00:00
VakarisZ e42c4a0fa2 More work and styling of monkey run page components 2020-08-25 15:54:38 +03:00
VakarisZ bdb7fd4a23 Started modifying win_ms08_067.py to avoid defender 2020-08-25 15:02:18 +03:00
Shreya 61d2528291 Use `Get-LocalUser` for Windows PBA instead of `net user` 2020-08-24 22:40:55 +05:30
Shreya 989286857b CR changes 2020-08-24 19:02:58 +05:30
VakarisZ 522644238b Added command display component and tabs to it 2020-08-24 14:22:01 +03:00
VakarisZ 5eaed088d6 Basic structure of run monkey page step by step wizard 2020-08-21 11:30:54 +03:00
snyk-bot 45465e2748 fix: upgrade react-json-tree from 0.11.2 to 0.12.0 
Snyk has created this PR to upgrade react-json-tree from 0.11.2 to 0.12.0.

See this package in npm:
https://www.npmjs.com/package/react-json-tree

See this project in Snyk:
https://app.snyk.io/org/shaynehmad/project/37aecb9c-98b4-4735-95a2-83d941303b4e?utm_source=github&utm_medium=upgrade-pr
 2020-08-21 07:01:28 +00:00
Shreya 984a8c2251 Small fix - deletes exe file now 2020-08-20 20:00:31 +05:30
Shreya 5dc2d54cef Fix typos 2020-08-20 19:39:14 +05:30
Shreya e8f72f5cd5 Add commands' source 2020-08-20 19:20:36 +05:30
Shreya 1f82dab6f5 Add T1099 (timestomping) 2020-08-20 19:16:48 +05:30
Shreya ba8a7797e6 Download exe from the island successfully, delete during pba cleanup 2020-08-20 01:38:06 +05:30
Shreya f3924ebb43 Pass build 2020-08-19 00:59:37 +05:30
Shreya 09f54bc72b Add T1087 (account discovery) 2020-08-18 22:08:58 +05:30
snyk-bot f2e2a9823d fix: upgrade filepond from 4.18.0 to 4.19.0 
Snyk has created this PR to upgrade filepond from 4.18.0 to 4.19.0.

See this package in npm:
https://www.npmjs.com/package/filepond

See this project in Snyk:
https://app.snyk.io/org/shaynehmad/project/37aecb9c-98b4-4735-95a2-83d941303b4e?utm_source=github&utm_medium=upgrade-pr
 2020-08-18 07:01:48 +00:00
snyk-bot a17bd7bead fix: upgrade snyk from 1.363.0 to 1.368.0 
Snyk has created this PR to upgrade snyk from 1.363.0 to 1.368.0.

See this package in npm:
https://www.npmjs.com/package/snyk

See this project in Snyk:
https://app.snyk.io/org/shaynehmad/project/37aecb9c-98b4-4735-95a2-83d941303b4e?utm_source=github&utm_medium=upgrade-pr
 2020-08-18 07:01:43 +00:00
Shreya 79eeaa7904 Code review changes 
- smaller executable file; fetches it from the island when pba needs to run
- technique configured off by default
- other implementation changes
 2020-08-18 02:25:13 +05:30
Shreya 15210d260c Code review changes 
- smaller executable file; fetches it from the island when pba needs to run
- technique configured off by default
- other implementation changes
 2020-08-18 00:29:50 +05:30
Shreya 4b664031af Code review changes 
- smaller executable file; fetches it from the island when pba needs to run
- technique configured off by default
- other implementation changes
 2020-08-18 01:39:45 +05:30
Shreya 59f9752faf Add T1216 (signed script proxy execution) 2020-08-18 00:52:59 +05:30
Shay Nehmad 7e90609b98
Merge pull request #781 from guardicore/snyk-upgrade-51fe9ca3fc24b5b8949fa37849d90816 
[Snyk] Upgrade react-particles-js from 3.2.1 to 3.3.0
 2020-08-17 14:47:03 +03:00
Shay Nehmad 6bcce67af4
Merge pull request #778 from guardicore/snyk-upgrade-6db8903558cfc252d0ae0a7241a6ef27 
[Snyk] Upgrade snyk from 1.362.1 to 1.363.0
 2020-08-17 14:41:14 +03:00
VakarisZ bd05cca087 Fixed python linting warnings 2020-08-17 12:56:35 +03:00
snyk-bot 7b9079b324 fix: monkey/monkey_island/cc/ui/package.json & monkey/monkey_island/cc/ui/package-lock.json to reduce vulnerabilities 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-LODASH-590103
 2020-08-17 07:00:21 +00:00
VakarisZ 2e95d367b8 Fixed local directory in set_server_config.py to point to project root, so it would be able to access project packages. 2020-08-17 09:33:20 +03:00
VakarisZ 05395fee6d Created code that generates default server_config.json, so we don't need to track this file on git and remember not to commit credentials. 2020-08-14 15:44:47 +03:00
VakarisZ 77cf8355ee Fixed isort warning 2020-08-13 19:30:14 +03:00
VakarisZ 628583d38f Fixed post breach file upload bug 2020-08-13 19:00:21 +03:00
snyk-bot 8fb0900c9a fix: upgrade react-particles-js from 3.2.1 to 3.3.0 
Snyk has created this PR to upgrade react-particles-js from 3.2.1 to 3.3.0.

See this package in npm:
https://www.npmjs.com/package/react-particles-js

See this project in Snyk:
https://app.snyk.io/org/shaynehmad/project/37aecb9c-98b4-4735-95a2-83d941303b4e?utm_source=github&utm_medium=upgrade-pr
 2020-08-12 07:00:46 +00:00
VakarisZ 95cc44c4d2 Fixed white screen on map/going to map bug, implemented loading screen while UI is waiting for login status 2020-08-11 18:10:30 +03:00
VakarisZ 62c4eeb3fc
Merge pull request #758 from shreyamalviya/pba-threading 
Run post-breach phase in separate thread
 2020-08-11 17:05:39 +03:00
snyk-bot ad2b9ba65a fix: upgrade snyk from 1.362.1 to 1.363.0 
Snyk has created this PR to upgrade snyk from 1.362.1 to 1.363.0.

See this package in npm:
https://www.npmjs.com/package/snyk

See this project in Snyk:
https://app.snyk.io/org/shaynehmad/project/37aecb9c-98b4-4735-95a2-83d941303b4e?utm_source=github&utm_medium=upgrade-pr
 2020-08-11 07:00:36 +00:00
Shay Nehmad c685a7eb96
Merge branch 'develop' into snyk-upgrade-a73b21ca3d3b12638dce5cc24f064d49 2020-08-10 10:10:15 +03:00