p17860254
/
monkey
forked from p15670423/monkey
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
6,790 Commits 31 Branches 0 Tags 47 MiB
Commit Graph

6790 Commits

Author SHA1 Message Date
vakarisz 8a120110f5 Agent: change ldap and http ports to be chosen dynamically in log4shell 2022-01-05 12:46:40 +02:00
vakarisz 0659fddac6 Agent: add the docker POC exploit to log4shell 
Implements the infrastructure needed to add different log4shell exploits and adds the
 2022-01-04 17:48:45 +02:00
vakarisz 206abfa5e8 Agent: refactor a couple web_rce methods to static 2022-01-04 17:41:19 +02:00
vakarisz e69639b426 Agent: use separate java classes for windows and linux in log4shell 
Linux and windows targets should use different java classes, because one is compiled to be launched in /bin/bash, another in cmd.exe. We can't just inject the whole command, because Runtime.getRuntime().exec() interprets the string in strange ways
 2022-01-04 16:09:19 +02:00
vakarisz 1884c6d767 TEMP: base implementation of the log4shell 2021-12-23 16:45:25 +02:00
vakarisz 41b97cb54a TEMP: base implementation of the log4shell 2021-12-22 17:17:02 +02:00
Mike Salvatore fddaa16931 Agent: Improve InvalidExploitTemplateError messages 2021-12-21 15:19:45 -05:00
Mike Salvatore 4d5a2511c6 Agent: Add LDAP server for log4shell exploit 2021-12-21 15:19:44 -05:00
Mike Salvatore 2a795723ab Agent: Add ldaptor to dependencies 2021-12-21 15:12:50 -05:00
Mike Salvatore 68978907e2 Agent: Add build_exploit_bytecode for log4shell exploiter 2021-12-20 15:12:11 -05:00
Mike Salvatore 47cdd7eaf9
Merge pull request #1633 from guardicore/1576-simplify-server-config-json 
1576 simplify server config json
 2021-12-01 09:07:23 -05:00
Mike Salvatore 1d7c80bfec Changelog: Add changelog entry for #1576 2021-12-01 07:40:30 -05:00
Mike Salvatore e61bac0895 Tests: Test get_server_config() instead of internal _extract_config() 2021-12-01 07:39:19 -05:00
VakarisZ 6e7ddbc6c7 Agent: improve the readability of island_config_options.py 2021-12-01 14:35:37 +02:00
VakarisZ 8304a4ea19 UT: improve unit tests in test_server_setup.py 2021-12-01 10:56:18 +02:00
Mike Salvatore 3d56d88512 BB: Remove stale TODO from poweshell test 2021-11-30 13:40:13 -05:00
Mike Salvatore 854ca7fa89 Island: Change log level to warn if server config not found 2021-11-30 13:02:06 -05:00
Mike Salvatore 707fbf41aa Island: Remove defunct "environment" from default server_config.json 2021-11-30 12:59:20 -05:00
Mike Salvatore 9ed689946c Docs: Minor edits to Linux setup documentation 2021-11-30 12:56:52 -05:00
Mike Salvatore 3e8f7382d0 Docs: Minor edits to docker setup documentation 2021-11-30 12:53:55 -05:00
Mike Salvatore 9e036c8853 Doc: Make minor edits to windows setup documentation 2021-11-30 12:52:40 -05:00
Mike Salvatore 7570064ae7 Docs: Remove erroneous comment about log level for agents 
Agents' log level is not configurable at this time.
 2021-11-30 12:49:19 -05:00
Mike Salvatore 0b7da7ed67 Docs: Fix "logging" links in FAQ 2021-11-30 12:48:03 -05:00
VakarisZ 0a32ac888e Docs: moved server configuration and common configuration operation docs to corresponding deployment option setup pages 2021-11-30 15:44:46 +02:00
VakarisZ 06f31791fc Island, UT: fix island config option extraction to also expand paths and add a UT for that 2021-11-30 12:12:29 +02:00
VakarisZ 03566d2966 Island: remove the server config extraction from server_config.json in island's cwd 
All deployments can be configured via command line OR by modifying the server_config.json that comes with the deployment
 2021-11-30 12:06:02 +02:00
VakarisZ e95df875be Island: fix a bug in server's config options extraction that caused unspecified properties to get overridden by defaults 2021-11-30 10:27:09 +02:00
VakarisZ 68ea983458 UT: fixed the path to consts in test_server_setup.py 2021-11-29 17:27:26 +02:00
VakarisZ ffe9a65037 Docs: improve the documentation by specifying that user can use log levels `info` and `debug`, instead of saying "default Python log levels" 2021-11-29 17:21:46 +02:00
VakarisZ 04feb1b31d Island,UT: move PACKAGE_CONFIG_PATH and USER_CONFIG_PATH consts to config_setup.py, where they are used 2021-11-29 15:16:02 +02:00
VakarisZ 7e479ec3df Island: improve readability in config_setup.py by renaming methods and adding default parameter to IslandConfigOptions 2021-11-29 14:47:37 +02:00
VakarisZ 811983a8b5 Island: refactor/change exit() to the syntax of sys.exit 2021-11-29 11:35:22 +02:00
VakarisZ 3e32dbbc52 Docs: extract the server configuration workflow to a separate server_configuration.md page, which explains how to setup and use server_configuration.json 
This change extracts server_config.json usage into a single page, which can then be referred to from any page that requires island configuration
 2021-11-26 17:05:38 +02:00
VakarisZ dcc71faaa9 Island: try reading server_config.json from install directory 
On windows it's not easy to pass server_config as a commandline parameter. It's easier to just create a file in install directory.
 2021-11-26 12:04:46 +02:00
VakarisZ 00665cbae0 Island: implements the logic of server config extraction and adds unit tests for it 
Since server_config.json no longer needs to be writable, we can load defaults, then override package specific options and lastly override user specified options to form the final config for island
 2021-11-26 12:04:46 +02:00
VakarisZ 00819ccf40 Build: remove unused server config options from docker 
Options removed match the defaults so there's no reason to keep them
 2021-11-26 12:04:46 +02:00
VakarisZ 7e21635733 Island: separate the workflow of config extraction from data directory setup 2021-11-26 12:04:46 +02:00
VakarisZ a3563b97a8
Merge pull request #1625 from guardicore/1599-unused-python-dependencies 
1599 unused python dependencies
 2021-11-24 13:07:58 +02:00
VakarisZ 8a88949d1a Island: re-add cffi explicit requirement 
Docker island is showing ModuleNotFoundError: No module named '_cffi_backend'without it
 2021-11-24 11:12:34 +02:00
VakarisZ 933cafe997 Agent: remove unused python dependencies and add comments explaining indirect usages of packages 2021-11-23 14:36:10 +02:00
VakarisZ 11b84bd80d Island: remove unused island dependencies 2021-11-23 12:49:27 +02:00
Mike Salvatore f457635507
Merge pull request #1620 from guardicore/1506-remove-environments 
Remove environments
 2021-11-22 06:40:40 -05:00
ilija-lazoroski 6cc983dc21
Merge pull request #1618 from guardicore/1532-remove-mitre-attack-config 
1532 remove mitre attack config
 2021-11-22 12:06:45 +01:00
Ilija Lazoroski c7a1c9d21d UT: Remove testing disabled attack techniques 2021-11-22 11:27:46 +01:00
Ilija Lazoroski 4e98baf6e3 Island: Remove attack config and enable all techniques by default 2021-11-22 11:27:46 +01:00
Ilija Lazoroski f07b7fafa2 Common: Remove disabled state from scan status 2021-11-22 11:27:46 +01:00
Ilija Lazoroski a41cad6291 Changelog: Add entry for removing ATT&CK configuration screen 2021-11-22 11:27:46 +01:00
Ilija Lazoroski 58072205e8 Swimm: Remove explanation on attack techniques 2021-11-22 11:27:46 +01:00
Ilija Lazoroski 0e4e137f6e Docs: Remove MITRE attack scenario 2021-11-22 11:27:20 +01:00
Ilija Lazoroski ee16fa82a0 Island: Remove attack endpoint and config functions 2021-11-19 18:19:28 +01:00