Commit Graph

4228 Commits

Author SHA1 Message Date
VakarisZ 522000d169 Swimm: update unit Define what your new PBA does (id: xYkxB76pK0peJj2tSxBJ). 2021-02-18 16:51:52 +02:00
VakarisZ 51abb5dacb Swimm: update unit Add a simple Post Breach action (id: tbxb2cGgUiJQ8Btma0fp). 2021-02-18 16:49:44 +02:00
VakarisZ 6d31afacd0 Swimm: update unit Add a new System Info Collector (id: OwcKMnALpn7tuBaJY1US). 2021-02-18 16:45:34 +02:00
VakarisZ a977ec4397 Cleaned up imports and added no inspection comments to pass flake 2021-02-18 10:55:12 +02:00
VakarisZ 414dbf0665 Merge remote-tracking branch 'upstream/develop' into 519/scoutsuite-integration 2021-02-17 16:59:06 +02:00
VakarisZ 81ea057509 Fixed a bug in MonkeyFindingDetails, where updating events using update was failing due to some internal mongoengine error. 2021-02-17 16:58:26 +02:00
VakarisZ 01c775e955 Refactored details out of abstract finding document. 2021-02-17 16:53:59 +02:00
VakarisZ 8b8c5f9590 Added RuleNameEnum class and a type hint related to it in abstract class 2021-02-17 16:20:13 +02:00
VakarisZ 25704b74c9 Zero Trust finding saving method refactored to remove code duplication between children 2021-02-11 16:53:19 +02:00
VakarisZ e96ee305fb Minor variable and method refactoring to improve readability in scoutsuite code 2021-02-11 16:52:20 +02:00
VakarisZ 3cb2a63a9d Changed rule name classes to inherit from RuleNameEnum to add a more specific type hints 2021-02-11 16:51:38 +02:00
Mike Salvatore de3adfd483
Merge pull request #964 from guardicore/payload_obfuscation
Payload obfuscation
2021-02-11 08:47:15 -05:00
VakarisZ f11736d451 Added no inspection comments and an explanation on why we use Crypto for shellcode_obfuscator.py 2021-02-11 15:29:29 +02:00
Mike Salvatore a7b79d6d03 cc: fix typo in pycrypto noqa comment 2021-02-11 08:26:10 -05:00
Mike Salvatore e4bcf2ef1c cc: ignore pycrypto security warnings since we use pycryptodome 2021-02-11 08:09:07 -05:00
Mike Salvatore 0cc65cb346
Merge pull request #924 from shreyamalviya/env-collection-errors
Catch exceptions in AwsInstance and AzureInstance
2021-02-10 08:51:48 -05:00
Shreya 11a0477dbb Rename test functions, add 404 response tests, and other tiny changes 2021-02-10 16:15:17 +05:30
VakarisZ 28e4a0f23d Altered shellcode obfuscator unit test to match the new code 2021-02-10 10:32:43 +02:00
VakarisZ baadb241e8 Reverted relative paths in zero trust code back to absolute 2021-02-09 15:51:34 +02:00
VakarisZ 6f16ba431c Minor refactorings of code style in zero trust code 2021-02-09 14:21:55 +02:00
VakarisZ a0bb0bc7fe Small renamings and minor improvements 2021-02-08 17:42:57 +02:00
VakarisZ 905ffd029a Added ScoutSuite rule parsing unit test and example of raw ScoutSuite data received. 2021-02-08 17:41:57 +02:00
VakarisZ 80e7435572 Refactored Finding DTO into ScoutSuiteFinding and MonkeyFinding DTO which inherit from more abstract Finding. 2021-02-08 17:38:45 +02:00
Shreya 016d886781 Add tests for AwsInstance
and change urllib.request.urlopen() to requests.get() for easier testing; functionality doesn't change
2021-02-06 19:19:08 +05:30
VakarisZ 9444067250 Added comments, type hints and other minor changes in the scoutsuite code 2021-02-05 11:05:22 +02:00
VakarisZ bcfa8fff78 Extracted count badge into a separate component which is reused between scoutsuite rules button and monkey events button 2021-02-05 11:03:27 +02:00
Shreya eed5ea1337 Add tests for GcpInstance 2021-02-04 21:02:53 +05:30
Shreya 413aa35b5b Rename an old test file 2021-02-04 20:46:19 +05:30
Shreya adab0436be Add tests for AzureInstance 2021-02-04 20:46:20 +05:30
Shreya 59383e7946 Catch exceptions in AwsInstance and AzureInstance 2021-02-04 20:46:11 +05:30
VakarisZ 6cb4280f89 Merge remote-tracking branch 'upstream/develop' into 519/scoutsuite-integration
# Conflicts:
#	.swm/AzD8XysWg1BBXCjCDkfq.swm
#	.swm/OwcKMnALpn7tuBaJY1US.swm
#	.swm/tbxb2cGgUiJQ8Btma0fp.swm
#	monkey/monkey_island/cc/services/config_schema/definitions/system_info_collector_classes.py
2021-02-04 11:29:00 +02:00
Mike Salvatore 8f7a0aeb1c
Merge pull request #955 from mssalvatore/819/icmp-cross-segment-report
819/icmp cross segment report

Fixes #819
2021-02-03 10:13:10 -05:00
Mike Salvatore 919c51b920 ui: display ICMP in cross-segment issues report 2021-02-02 16:44:42 -05:00
Mike Salvatore c6bec1335c island: include 'icmp' from scan telemetry in report 2021-02-02 16:44:42 -05:00
Mike Salvatore c7a1f246cb agent: add icmp property to VictimHost
Keep track of whether or not PingScanner was successful by storing a
boolean in VictimHost objects. This information is communicated back to
the Monkey Island via telemetry.
2021-02-02 16:44:42 -05:00
Mike Salvatore 458e01cf24 ui: use template strings when generating cross-segment report 2021-02-02 16:44:42 -05:00
Mike Salvatore c8b4089bd2 ui: display cross-segment issues as "pinged" if no services/ports
Issue #819
2021-02-02 16:44:42 -05:00
Mike Salvatore cc9b88b8e5 ui: fix spelling error catagory -> category
Fixes #689
2021-02-02 13:50:00 -05:00
Mike Salvatore 13af101c2a
Merge pull request #920 from mssalvatore/refactor-advanced-multiselect
* Add warning icon to unsafe checkbox options
* Add "Reset to safe defaults" button
* Add warning icon and message to InfoPane
* Change behavior of master checkbox to be consistent with KDE user interface guidelines (mixed state)
* Extracted MasterCheckbox and ChildCheckbox from AdvancedMultiSelect
* Add "safe" property to schemas that feed AdvancedMultiSelect components
2021-02-01 08:04:10 -05:00
VakarisZ e6e61f946c Changed payload obfuscation method into encryption algorithm in an attempt to avoid AV static detection. 2021-02-01 14:15:21 +02:00
Mike Salvatore 09a8415aec ui: remove disabled/readonly from AdvancedMultiSelect 2021-02-01 07:14:15 -05:00
Mike Salvatore 9f12702c3e ui: code readability improvements 2021-02-01 06:57:04 -05:00
Shreya c8c763d918 Store converted techniques' messages (markdown to HTML) separately 2021-01-30 15:38:58 -05:00
Mike Salvatore a5acf4c4b5 github: add a more descriptive explanation of a spike 2021-01-29 21:53:42 -05:00
VakarisZ 284cc3afdb Removed scoutsuite telemetry processing as there's nothing to process and other minor code improvements 2021-01-29 18:17:32 +02:00
Mike Salvatore 1440121aef ui: rename unsafeOptionsSelected() -> isUnsafeOptionSelected() 2021-01-29 11:06:40 -05:00
Mike Salvatore 57554ca435 ui: fix some code cleanliness issues 2021-01-29 11:02:54 -05:00
Mike Salvatore 06685b14cf ui: simplify compareOptions() with boolean arithmetic 2021-01-29 10:52:14 -05:00
VakarisZ c45ff1dc1f Used dpath module instead of custom code to traverse object. 2021-01-29 13:01:22 +02:00
VakarisZ ba9e8c22b4 Improved mokey event fetching and added unit tests 2021-01-29 12:42:24 +02:00