Commit Graph

180 Commits

Author SHA1 Message Date
Ilija Lazoroski a438f3afb0 Zoo: Replace --os with --skip-powershell-reuse
With this logic the powershell cached will run
if we don't provide the cli param --skip-powershell-reuse.
2021-09-28 17:31:20 +02:00
Ilija Lazoroski 07c08ac0b6 Zoo: Reformat powershell cached credentials test 2021-09-27 19:02:13 +02:00
Ilija Lazoroski 689e6ac532 Zoo: Add os specific black box test.
Add new --os flag to the blackbox tests.
If not specified it will skip all os marked tests.
2021-09-27 13:08:52 +02:00
Ilija Lazoroski b90e9ccf21 Zoo: Add second hop bb test
Added new powershell-3-48 machine for second hop test.
Explanation why cached are not working after the first hop.
Documentation for the zoo.
2021-09-24 15:29:11 +02:00
VakarisZ b69916428b Remove T1129 attack technique from the codebase 2021-09-17 14:19:42 +03:00
VakarisZ dec2fc43c2
Merge pull request #1449 from guardicore/powershell-exploiter-ntlm-hashes
Use LM and NT hashes in powershell exploiter
2021-09-09 11:56:02 +03:00
Ilija Lazoroski d27194c568 Zoo: Fix powershell bb config for ntlm hash 2021-09-06 13:50:24 +02:00
VakarisZ 57908b94eb
Merge pull request #1452 from guardicore/1418/bb-to-use-credentials
Zoo: Change island to use credentials
2021-09-06 10:28:39 +03:00
Ilija Lazoroski 1e5d49024d Zoo: Change island to use credentials 2021-09-06 09:17:15 +02:00
Ilija Lazoroski 18c21513af Zoo: Add new machine for powershell exploiter 2021-09-02 17:06:22 +02:00
Mike Salvatore d22c7813a5 BB: Switch the scanning order in tunneling tests
Because the SMB exploiter deploys the 32-bit agent, which will then
upgrade itself to 64-bit, it takes a long time between when exploitation
is successful and the agent calls home. By switching the order that
hosts are scanned in, this test runs approximately 25 seconds quicker
and allows us to reduce the `keep_tunnel_open_time` setting by 30
seconds.
2021-08-30 13:28:25 -04:00
Shreya Malviya 54f80df1f4 bb: Remove extra line from end of file 2021-08-30 15:12:35 +05:30
Ilija Lazoroski 9a96e6ed39 Zoo: Refactor start and stop gcp machine functions 2021-08-26 10:35:22 +02:00
Ilija Lazoroski e6ca0fd3b6 Zoo: Parallelize start and stop of gcp machines 2021-08-25 10:07:41 +02:00
Ilija Lazoroski 5cee9443ff Zoo: Remove GCPHandler class. Powershell-3-47 renamed to
Powershell-3-46. Powershell-45 moved to different zone
2021-08-24 15:11:22 +02:00
Ilija Lazoroski 9f2a4cb7e4 Zoo: Update terraform scripts. Update gcp test machine list with new zone 2021-08-24 11:56:09 +02:00
Ilija Lazoroski 305b2cf716 Zoo: Add PowerShell config and bb test 2021-08-24 10:32:54 +02:00
Mike Salvatore 087c8f2cf8 BB: Remove internet_services from BaseTemplate 2021-08-19 14:16:44 -04:00
Ilija Lazoroski e393374ae6 BB: Increase scope depth for Struts2 2021-08-05 10:36:33 +02:00
Mike Salvatore f6b52d9031 BB: Don't wait so long for monkeys to die
With the propagation depth set to 1 for most tests and the number of
scanned ports limited, we don't need such a large delay when waiting for
monkeys to die.
2021-08-04 15:06:11 -04:00
Mike Salvatore ee77869357 BB: Limit propagation depth to 1 for most tests 2021-08-04 15:06:03 -04:00
Mike Salvatore c34a303628 BB: Limit scanned ports for SMB PTH test 2021-08-04 13:54:17 -04:00
Mike Salvatore 8d992f41d3 BB: Update config_values with smb_pth settings 2021-08-04 13:54:17 -04:00
Mike Salvatore e946b547c7 BB: Limit scanned ports for WMI PTH test 2021-08-04 13:54:13 -04:00
Mike Salvatore 0c23568756 BB: Limit scanned ports for zerologon test 2021-08-04 13:31:39 -04:00
Mike Salvatore 4d9162d168 BB: Limit scanned ports for weblogic test 2021-08-04 13:28:46 -04:00
Mike Salvatore 5143d03915 BB: Fix "Strtuts2" typo 2021-08-04 13:15:49 -04:00
Mike Salvatore 472c54814a BB: Limit scanned ports for struts exploiter 2021-08-04 13:15:24 -04:00
Mike Salvatore efd512cbad BB: Limit scanned ports for wmi and mimikatz 2021-08-04 12:57:08 -04:00
Mike Salvatore 833ebf9fd0 BB: Limit scanned ports for smb and mimikatz 2021-08-04 12:56:42 -04:00
Mike Salvatore 3136921beb BB: Limit scanned ports for hadoop test 2021-08-04 12:36:23 -04:00
Ilija Lazoroski 862a64b303 BB: Improve Drupal performance 2021-08-04 15:45:02 +02:00
Mike Salvatore f58c9354fc BB: Limit scanned ports for mssql test 2021-08-04 09:59:23 -04:00
Mike Salvatore e36cd72a70 BB: Limit scanned ports for elastic test 2021-08-04 09:30:54 -04:00
Ilija Lazoroski 7ccec16d69 BB: Improve shellshock and ssh. 2021-08-04 13:49:22 +02:00
Mike Salvatore 8ae0d5720b BB: Add utility scripts to start and stop all GCP machines 2021-08-02 07:10:50 -04:00
Mike Salvatore 275dbeccdd BB: Move GCP_TEST_MACHINE_LIST to its own file
Allows the GCP_TEST_MACHINE_LIST to be reused by other utility scripts
2021-08-02 07:09:37 -04:00
VakarisZ 568a97e5a5 BB performance tests: update the outdated README.md and other small improvements 2021-07-31 19:40:19 -04:00
Ilija Lazoroski cf0da5dc7d BB: Change internet services default config. 2021-07-30 06:17:46 -04:00
Mike Salvatore abe8fc268b Tests: Fix flakey elastic blackbox test
Fixes #1117
2021-07-21 08:39:24 -04:00
Mike Salvatore 61c3efdf83 Tests: Speed up blackbox tests by 1 minute each
The "keep_tunnel_open_time" option adds an unnecessary 60 second delay
to each test (except the tunneling test, where it is necessary). By
setting the time to 0, each test now runs 60 seconds faster.
2021-07-21 08:23:02 -04:00
VakarisZ 49e63fcf1b Improve exception message, thrown when trying to establish connection to island in BB tests 2021-05-21 08:41:28 +03:00
VakarisZ af049b468b BB tests: removed island connectivity test. Now the connection is tested in fixture and if anything goes wrong tests are not launched 2021-05-20 16:47:00 +03:00
VakarisZ 488143b1d3 BB tests: added the ability for BB tests to "register". If they need registration to run monkeys, BB tests selects passwordless option 2021-05-20 16:47:00 +03:00
VakarisZ b79ef1680c
Update envs/monkey_zoo/blackbox/README.md
Co-authored-by: Shreya Malviya <shreya.malviya@gmail.com>
2021-05-17 14:39:30 +03:00
VakarisZ 2e2fd0a53c Changed blackbox tests to fail and stop if they can't connect to the island. 2021-05-13 09:15:33 +03:00
VakarisZ fbbce0cd99 Small improvements in readme of blackbox tests. 2021-05-13 09:14:50 +03:00
VakarisZ 45f2702403 Reverted back to fetching file directory first when resolving GCP keys. This is to make gcp key file relative to utils directory, not the current file. This will make it less confusing, because people usually navigate directories, not files. 2021-05-12 16:58:46 +03:00
VakarisZ 7a03a9504d Removed the `relative_key_path` parameter from GCPHandler class because it's unused and has a misleading name. 2021-05-12 16:33:52 +03:00
VakarisZ c45de9dae7 Improved readability of gcp_machine_handlers.py 2021-05-12 10:41:52 +03:00