Code review changes

- smaller executable file; fetches it from the island when pba needs to run
- technique configured off by default
- other implementation changes
This commit is contained in:
Shreya 2020-08-18 00:22:46 +05:30
parent 15210d260c
commit 79eeaa7904
3 changed files with 2 additions and 2 deletions

View File

@ -1,3 +1,4 @@
import shutil
import subprocess import subprocess
from pathlib import Path from pathlib import Path
@ -7,6 +8,7 @@ from infection_monkey.control import ControlClient
def get_windows_commands_to_proxy_execution_using_signed_script(): def get_windows_commands_to_proxy_execution_using_signed_script():
# temp_comspec_path = ['infection_monkey', 'post_breach', 'signed_script_proxy', 'windows', 'random_executable.exe'] # temp_comspec_path = ['infection_monkey', 'post_breach', 'signed_script_proxy', 'windows', 'random_executable.exe']
# temp_comspec = Path(*temp_comspec_path) # temp_comspec = Path(*temp_comspec_path)
temp_comspec = "c:\\Users\\win\\desktop\\t1216.exe"
with ControlClient.get_T1216_pba_file() as r: with ControlClient.get_T1216_pba_file() as r:
with open(temp_comspec, 'wb') as f: with open(temp_comspec, 'wb') as f:
shutil.copyfileobj(r.raw, f) shutil.copyfileobj(r.raw, f)

View File

@ -31,7 +31,6 @@ from monkey_island.cc.resources.netmap import NetMap
from monkey_island.cc.resources.node import Node from monkey_island.cc.resources.node import Node
from monkey_island.cc.resources.node_states import NodeStates from monkey_island.cc.resources.node_states import NodeStates
from monkey_island.cc.resources.pba_file_download import PBAFileDownload from monkey_island.cc.resources.pba_file_download import PBAFileDownload
from monkey_island.cc.resources.T1216_pba_file_download import T1216PBAFileDownload
from monkey_island.cc.resources.pba_file_upload import FileUpload from monkey_island.cc.resources.pba_file_upload import FileUpload
from monkey_island.cc.resources.remote_run import RemoteRun from monkey_island.cc.resources.remote_run import RemoteRun
from monkey_island.cc.resources.reporting.report import Report from monkey_island.cc.resources.reporting.report import Report

View File

@ -8,7 +8,6 @@ class T1216PBAFileDownload(flask_restful.Resource):
""" """
File download endpoint used by monkey to download executable file for T1216 ("Signed Script Proxy Execution" PBA) File download endpoint used by monkey to download executable file for T1216 ("Signed Script Proxy Execution" PBA)
""" """
def get(self): def get(self):
executable_file_path = ['monkey_island', 'cc', 'resources', 'pba', 'T1216_random_executable.exe'] executable_file_path = ['monkey_island', 'cc', 'resources', 'pba', 'T1216_random_executable.exe']
executable_file = Path(*executable_file_path) executable_file = Path(*executable_file_path)