Ilija Lazoroski
a438f3afb0
Zoo: Replace --os with --skip-powershell-reuse
...
With this logic the powershell cached will run
if we don't provide the cli param --skip-powershell-reuse.
2021-09-28 17:31:20 +02:00
Ilija Lazoroski
07c08ac0b6
Zoo: Reformat powershell cached credentials test
2021-09-27 19:02:13 +02:00
Ilija Lazoroski
689e6ac532
Zoo: Add os specific black box test.
...
Add new --os flag to the blackbox tests.
If not specified it will skip all os marked tests.
2021-09-27 13:08:52 +02:00
Ilija Lazoroski
b90e9ccf21
Zoo: Add second hop bb test
...
Added new powershell-3-48 machine for second hop test.
Explanation why cached are not working after the first hop.
Documentation for the zoo.
2021-09-24 15:29:11 +02:00
VakarisZ
b69916428b
Remove T1129 attack technique from the codebase
2021-09-17 14:19:42 +03:00
VakarisZ
dec2fc43c2
Merge pull request #1449 from guardicore/powershell-exploiter-ntlm-hashes
...
Use LM and NT hashes in powershell exploiter
2021-09-09 11:56:02 +03:00
Ilija Lazoroski
d27194c568
Zoo: Fix powershell bb config for ntlm hash
2021-09-06 13:50:24 +02:00
VakarisZ
57908b94eb
Merge pull request #1452 from guardicore/1418/bb-to-use-credentials
...
Zoo: Change island to use credentials
2021-09-06 10:28:39 +03:00
Ilija Lazoroski
1e5d49024d
Zoo: Change island to use credentials
2021-09-06 09:17:15 +02:00
Ilija Lazoroski
18c21513af
Zoo: Add new machine for powershell exploiter
2021-09-02 17:06:22 +02:00
Mike Salvatore
d22c7813a5
BB: Switch the scanning order in tunneling tests
...
Because the SMB exploiter deploys the 32-bit agent, which will then
upgrade itself to 64-bit, it takes a long time between when exploitation
is successful and the agent calls home. By switching the order that
hosts are scanned in, this test runs approximately 25 seconds quicker
and allows us to reduce the `keep_tunnel_open_time` setting by 30
seconds.
2021-08-30 13:28:25 -04:00
Shreya Malviya
54f80df1f4
bb: Remove extra line from end of file
2021-08-30 15:12:35 +05:30
Ilija Lazoroski
9a96e6ed39
Zoo: Refactor start and stop gcp machine functions
2021-08-26 10:35:22 +02:00
Ilija Lazoroski
e6ca0fd3b6
Zoo: Parallelize start and stop of gcp machines
2021-08-25 10:07:41 +02:00
Ilija Lazoroski
5cee9443ff
Zoo: Remove GCPHandler class. Powershell-3-47 renamed to
...
Powershell-3-46. Powershell-45 moved to different zone
2021-08-24 15:11:22 +02:00
Ilija Lazoroski
9f2a4cb7e4
Zoo: Update terraform scripts. Update gcp test machine list with new zone
2021-08-24 11:56:09 +02:00
Ilija Lazoroski
305b2cf716
Zoo: Add PowerShell config and bb test
2021-08-24 10:32:54 +02:00
Mike Salvatore
087c8f2cf8
BB: Remove internet_services from BaseTemplate
2021-08-19 14:16:44 -04:00
Ilija Lazoroski
e393374ae6
BB: Increase scope depth for Struts2
2021-08-05 10:36:33 +02:00
Mike Salvatore
f6b52d9031
BB: Don't wait so long for monkeys to die
...
With the propagation depth set to 1 for most tests and the number of
scanned ports limited, we don't need such a large delay when waiting for
monkeys to die.
2021-08-04 15:06:11 -04:00
Mike Salvatore
ee77869357
BB: Limit propagation depth to 1 for most tests
2021-08-04 15:06:03 -04:00
Mike Salvatore
c34a303628
BB: Limit scanned ports for SMB PTH test
2021-08-04 13:54:17 -04:00
Mike Salvatore
8d992f41d3
BB: Update config_values with smb_pth settings
2021-08-04 13:54:17 -04:00
Mike Salvatore
e946b547c7
BB: Limit scanned ports for WMI PTH test
2021-08-04 13:54:13 -04:00
Mike Salvatore
0c23568756
BB: Limit scanned ports for zerologon test
2021-08-04 13:31:39 -04:00
Mike Salvatore
4d9162d168
BB: Limit scanned ports for weblogic test
2021-08-04 13:28:46 -04:00
Mike Salvatore
5143d03915
BB: Fix "Strtuts2" typo
2021-08-04 13:15:49 -04:00
Mike Salvatore
472c54814a
BB: Limit scanned ports for struts exploiter
2021-08-04 13:15:24 -04:00
Mike Salvatore
efd512cbad
BB: Limit scanned ports for wmi and mimikatz
2021-08-04 12:57:08 -04:00
Mike Salvatore
833ebf9fd0
BB: Limit scanned ports for smb and mimikatz
2021-08-04 12:56:42 -04:00
Mike Salvatore
3136921beb
BB: Limit scanned ports for hadoop test
2021-08-04 12:36:23 -04:00
Ilija Lazoroski
862a64b303
BB: Improve Drupal performance
2021-08-04 15:45:02 +02:00
Mike Salvatore
f58c9354fc
BB: Limit scanned ports for mssql test
2021-08-04 09:59:23 -04:00
Mike Salvatore
e36cd72a70
BB: Limit scanned ports for elastic test
2021-08-04 09:30:54 -04:00
Ilija Lazoroski
7ccec16d69
BB: Improve shellshock and ssh.
2021-08-04 13:49:22 +02:00
Mike Salvatore
8ae0d5720b
BB: Add utility scripts to start and stop all GCP machines
2021-08-02 07:10:50 -04:00
Mike Salvatore
275dbeccdd
BB: Move GCP_TEST_MACHINE_LIST to its own file
...
Allows the GCP_TEST_MACHINE_LIST to be reused by other utility scripts
2021-08-02 07:09:37 -04:00
VakarisZ
568a97e5a5
BB performance tests: update the outdated README.md and other small improvements
2021-07-31 19:40:19 -04:00
Ilija Lazoroski
cf0da5dc7d
BB: Change internet services default config.
2021-07-30 06:17:46 -04:00
Mike Salvatore
abe8fc268b
Tests: Fix flakey elastic blackbox test
...
Fixes #1117
2021-07-21 08:39:24 -04:00
Mike Salvatore
61c3efdf83
Tests: Speed up blackbox tests by 1 minute each
...
The "keep_tunnel_open_time" option adds an unnecessary 60 second delay
to each test (except the tunneling test, where it is necessary). By
setting the time to 0, each test now runs 60 seconds faster.
2021-07-21 08:23:02 -04:00
VakarisZ
49e63fcf1b
Improve exception message, thrown when trying to establish connection to island in BB tests
2021-05-21 08:41:28 +03:00
VakarisZ
af049b468b
BB tests: removed island connectivity test. Now the connection is tested in fixture and if anything goes wrong tests are not launched
2021-05-20 16:47:00 +03:00
VakarisZ
488143b1d3
BB tests: added the ability for BB tests to "register". If they need registration to run monkeys, BB tests selects passwordless option
2021-05-20 16:47:00 +03:00
VakarisZ
b79ef1680c
Update envs/monkey_zoo/blackbox/README.md
...
Co-authored-by: Shreya Malviya <shreya.malviya@gmail.com>
2021-05-17 14:39:30 +03:00
VakarisZ
2e2fd0a53c
Changed blackbox tests to fail and stop if they can't connect to the island.
2021-05-13 09:15:33 +03:00
VakarisZ
fbbce0cd99
Small improvements in readme of blackbox tests.
2021-05-13 09:14:50 +03:00
VakarisZ
45f2702403
Reverted back to fetching file directory first when resolving GCP keys. This is to make gcp key file relative to utils directory, not the current file. This will make it less confusing, because people usually navigate directories, not files.
2021-05-12 16:58:46 +03:00
VakarisZ
7a03a9504d
Removed the `relative_key_path` parameter from GCPHandler class because it's unused and has a misleading name.
2021-05-12 16:33:52 +03:00
VakarisZ
c45de9dae7
Improved readability of gcp_machine_handlers.py
2021-05-12 10:41:52 +03:00