p20319658
/
monkey
forked from p34709852/monkey
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
5,640 Commits 30 Branches 0 Tags 47 MiB
Commit Graph

5640 Commits

Author SHA1 Message Date
Mike Salvatore e0b20b4340
Merge pull request #1316 from guardicore/ransomware-report-exploitation-stats-component 
Generate exploitation stats for ransomware report
 2021-07-12 13:39:30 -04:00
Mike Salvatore a794a5777a
Merge pull request #1306 from guardicore/ransomware-exploitation-details-report-service 
Ransomware exploitation details report service
 2021-07-12 13:38:59 -04:00
Mike Salvatore ced3c3b137 Island: Extract getScannedVsExploitedStats() method 2021-07-12 12:41:42 -04:00
Mike Salvatore 6fdf0858ac Island: Remove superfluous description from ransomware report 2021-07-12 12:15:54 -04:00
Mike Salvatore 644a90c2f3 Island: Add "Propagation" header to ransomware report 2021-07-12 12:15:54 -04:00
Mike Salvatore 50c24c77f4 Island: Use Pluralize to display ransomware propagation stats 2021-07-12 12:15:54 -04:00
Shreya c8e0104985 cc: Extract ransomware report's exploitation stats component to a separate function 2021-07-12 12:14:57 -04:00
Shreya 3b7d35868a cc: Show exploitation stats on ransomware report page 2021-07-12 12:13:51 -04:00
Mike Salvatore c7d655ac7d Tests: Set autouse=False for patch_report_service fixture 2021-07-12 12:08:31 -04:00
Mike Salvatore e4cd06d8c3 Island: Move ransomware_report.py to ransomware/ransomware_report.py 2021-07-12 12:03:30 -04:00
Mike Salvatore 9e7e58658c Island: Simplify _get_exploit_counts() 2021-07-12 11:54:39 -04:00
Mike Salvatore 06439d92f9 Island: Rename count_per_exploit -> num_exploited_per_exploit 2021-07-12 11:50:39 -04:00
Mike Salvatore 4564596cd0 Agent: Add unit tests for ransomware report service 2021-07-12 11:48:16 -04:00
VakarisZ b35896c53f
Merge pull request #1313 from guardicore/1296/faq-internet-queries 
Fix mistakes in FAQ - Internet and updates queries
 2021-07-12 13:16:57 +03:00
Ilija Lazoroski 673b689ab5 docs: Add note for Hugo installation 2021-07-12 11:49:25 +02:00
Ilija Lazoroski 6d584a6501 docs: Fix mistakes in FAQ 2021-07-12 10:22:48 +02:00
Shreya 2212029f0b cc: Process exploit data on backend for ransomware stats reporting 2021-07-12 13:11:44 +05:30
Mike Salvatore af739b6c99
Merge pull request #1309 from guardicore/1287/ransomware-readme-config-dirs 
Ransomware README with configurable directories
 2021-07-09 15:47:22 -04:00
Mike Salvatore eb36869e71 Island: Minor wording change to readme_note description 2021-07-09 15:41:31 -04:00
Mike Salvatore a119855d84 Tests: Remove unnecessary option from test_no_readme_if_no_directory 2021-07-09 15:38:53 -04:00
Mike Salvatore d108812e26 Agent: Remove redundant condition from RansomwarePayload.run_payload() 2021-07-09 14:49:00 -04:00
Ilija Lazoroski 824ffc3dfe Merge branch '1287/ransomware-readme-config-dirs' of https://github.com/guardicore/monkey into 1287/ransomware-readme-config-dirs 2021-07-09 14:39:05 +02:00
Ilija Lazoroski 31a33a70cd Island: Add different aproach to check for readme 2021-07-09 14:38:30 +02:00
Ilija Lazoroski 947ecb330c Island: Add different aproach to check for readme 2021-07-09 14:33:43 +02:00
Ilija Lazoroski cd2d08d266 Island: Improve wording on readme.txt note 2021-07-09 13:45:54 +02:00
Ilija Lazoroski 80f98575b2 Merge branch '1287/ransomware-readme-config-dirs' of https://github.com/guardicore/monkey into 1287/ransomware-readme-config-dirs 2021-07-09 12:38:21 +02:00
Ilija Lazoroski 0419e14a7a Island: Add readme note to the bottom of the page 2021-07-09 12:36:44 +02:00
Ilija Lazoroski 8e22d2d1ae Island: Add readme note to the bottom of the page 2021-07-09 12:23:12 +02:00
Ilija Lazoroski 80050b89e6 Island: Add unit test leaving no readme if no target dir 2021-07-09 11:23:22 +02:00
Ilija Lazoroski 69754205d0 Island: Add condition for leaving readme 2021-07-09 11:15:55 +02:00
Ilija Lazoroski 253f2668d0 Island: Add hidden widget to encryption and readme in ransomware 2021-07-08 20:49:55 +02:00
Mike Salvatore fb50ba1e55 Agent: Remove unnecessary `if` from _find_files() 2021-07-08 12:52:05 -04:00
Mike Salvatore bb554d923d Agent: Rename _valid_file_extensions... -> _targeted_file_extensions 2021-07-08 12:52:05 -04:00
Mike Salvatore 24fdb9e299
Merge pull request #1307 from guardicore/ransomware-inject-copy-dependency 
Ransomware README improvements
 2021-07-08 12:50:32 -04:00
Mike Salvatore 92c5c3b682 Agent: Extract method _copy_file() from _leave_readme() 
Reworks the logic in _leave_readme() to reduce indenting and improve
clarity and extracts the logic to copy the file into _copy_readme_file()
 2021-07-08 12:04:50 -04:00
Mike Salvatore 7454ee72b2 Agent: Switch copy_file typehint from str to Path 2021-07-08 12:04:12 -04:00
Mike Salvatore 064525e6b9 Agent: Don't try to create README.txt if one already exists 2021-07-08 11:59:50 -04:00
Mike Salvatore f0e9109f64 Agent: Inject copy_file callable into RansomwarePayload 
In order to test certain conditions, our options are to either
monkeypatch shutil.copyfile(), or inject a callable into the
RansomwarePayload.  Monkeypatching shutil.copyfile() could lead to
issues down the road. For example, if the implementation of
`_leave_readme()` is changed to no longer use copyfile(), a test that
asserts that copyfile() has not been called will pass, even though a
file may have been copied.
 2021-07-08 11:23:15 -04:00
Shreya a95adfb5b6 island: Replace key ("stats" -> "propagation") in RansomwareReport data 2021-07-08 19:59:34 +05:30
Shreya 38bead54ae island: Extract methods (all static) in class RansomwareReportService and remove the class 2021-07-08 19:53:52 +05:30
Shreya 27058cc827 island: Remove unnecessary code in RansomwareReportService 2021-07-08 19:49:08 +05:30
Mike Salvatore e1b08079f1
Merge pull request #1305 from guardicore/ransomware-skip-encryption-test-refactor 
Island: Refactor test_encryption_skipped_if_no_directory()
 2021-07-08 06:37:49 -04:00
Shreya d7ec2db477 island: Rename `get_exploitation_stats()` to `get_exploitation_details()` 2021-07-08 15:46:27 +05:30
Shreya 79d042b471 island: Create RansomwareReportService and add `get_exploitation_stats()` to it 2021-07-08 15:44:43 +05:30
Mike Salvatore ecb20dc99a Island: Refactor test_encryption_skipped_if_no_directory() 
The old implementation tightly coupled the test to the specific
implementation of the ransomware payload. Since the ransomware payload
provides insight into its actions in the form of telemetry, it should be
sufficient to test whether or not any telemetries were sent in order to
determine whether or not encryption was skipped. This way, the test can
remain decoupled from the internal workings of the ransomware payload.
 2021-07-07 19:14:45 -04:00
Mike Salvatore 0db85ae407
Merge pull request #1300 from guardicore/expand-path-returns-path 
Expand path returns path
 2021-07-07 19:11:10 -04:00
Mike Salvatore ae7687243f Island: Return Path object from expand_path() 2021-07-07 18:49:50 -04:00
Mike Salvatore 8508a9f98f Island: Remove unnecessary expand_path() call 2021-07-07 08:26:37 -04:00
VakarisZ 9ed2145810
Merge pull request #1303 from guardicore/ransomeware_cwd_encryption_bugfix 
Ransomeware bugfix: cwd encryption by default
 2021-07-07 14:20:39 +03:00
VakarisZ 726e180797 Add a log message explaining why ransomware target directory is set to none 2021-07-07 13:02:10 +03:00