p17860254
/
monkey
forked from p15670423/monkey
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Added success log message in mimikatz and fixed private keys attack query

This commit is contained in:
VakarisZ 2019-08-23 16:08:53 +03:00
parent 489a6e8ebb
commit 97b0568c35
2 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
monkey/infection_monkey/system_info/windows_info_collector.py
View File

@ -63,5 +63,6 @@ class WindowsInfoCollector(InfoCollector):
if "credentials" in self.info: if "credentials" in self.info:
self.info["credentials"].update(mimikatz_info) self.info["credentials"].update(mimikatz_info)
self.info["mimikatz"] = mimikatz_collector.get_mimikatz_text() self.info["mimikatz"] = mimikatz_collector.get_mimikatz_text()
LOG.info('Mimikatz info gathered successfully')
else: else:
LOG.info('No mimikatz info was gathered') LOG.info('No mimikatz info was gathered')

2
monkey/monkey_island/cc/services/attack/technique_reports/T1145.py
View File

@ -12,7 +12,7 @@ class T1145(AttackTechnique):
used_msg = "Monkey found ssh keys on machines in the network." used_msg = "Monkey found ssh keys on machines in the network."
# Gets data about ssh keys found # Gets data about ssh keys found
query = [{'$match': {'telem_category': 'system_info_collection', query = [{'$match': {'telem_category': 'system_info',
'data.ssh_info': {'$elemMatch': {'private_key': {'$exists': True}}}}}, 'data.ssh_info': {'$elemMatch': {'private_key': {'$exists': True}}}}},
{'$project': {'_id': 0, {'$project': {'_id': 0,
'machine': {'hostname': '$data.hostname', 'ips': '$data.network_info.networks'}, 'machine': {'hostname': '$data.hostname', 'ips': '$data.network_info.networks'},