Commit Graph

4411 Commits

Author SHA1 Message Date
Shreya eeba0513d2 Only upload custom PBA file; execute only if specified in custom PBA command 2021-03-11 18:33:48 +05:30
Shreya 307e1e3093 Rephrase custom PBA file descriptions in configuration 2021-03-11 18:33:48 +05:30
Mike Salvatore 53fa550b99
Merge pull request #1031 from guardicore/fix-drupal-exploit-failure
Fix drupal exploit failure
2021-03-10 07:28:22 -05:00
Mike Salvatore 3714dd2f6f agent: Use the dropper in the DrupalExploiter
Fixes #1026
2021-03-10 06:44:53 -05:00
Mike Salvatore e7528e9544 agent: Use PIPE for stdin, stdout, and stderr in dropper
The dropper is expected to detatch the child monkey agent process. If
stdin, stdout, and stderr are set to `None`, the child process inherits
them. Since the child process inherits the parent's file descriptors and
holds them open, issues like #1026 can occur.
2021-03-10 06:43:48 -05:00
Mike Salvatore 4ac7c01976 agent: add 2 new log statements to the dropper 2021-03-09 19:26:50 -05:00
Mike Salvatore ba6bf71776 agent: Fix typo in HTTPFinger 2021-03-09 11:56:32 -05:00
Mike Salvatore efedab8854
Merge pull request #1029 from guardicore/config_template_fixes
Config template fixes
2021-03-09 10:41:23 -05:00
VakarisZ 6a7d08c93e Improved README.md of config file generation script 2021-03-09 14:51:56 +02:00
VakarisZ 92d9226edf Bugfixed a couple of config templates. 2021-03-09 14:51:35 +02:00
Mike Salvatore 728b26e87e
Merge pull request #1025 from guardicore/config_template_to_file
Utility script for translating config templates to config files
2021-03-09 06:27:17 -05:00
VakarisZ a4aee364b4 Ran black on config generation script 2021-03-09 10:23:35 +02:00
VakarisZ c234891330 Minor fixes in config file generation script: added island IP param in docs and added Drupal to configs 2021-03-08 17:27:57 +02:00
VakarisZ 6a6dd67113 Refactored config templates to inherit from ConfigTemplate class instead of BaseTemplate 2021-03-08 17:21:59 +02:00
VakarisZ 5f41ce54c6 Added config file generation script, which can generate config files from config templates. 2021-03-08 17:20:32 +02:00
VakarisZ b65524a85d Refactored "island_configs" dir to "config_templates" dir in blackbox 2021-03-08 17:20:21 +02:00
Mike Salvatore 5b8140029e
Merge pull request #1024 from guardicore/drupal-blackbox-test
Drupal blackbox test
2021-03-08 10:11:51 -05:00
Mike Salvatore 551928369a zoo: update command to run blackbox tests
Commit 3f687f6ae introduced a dependency on `common/`. Update the
instructions in blackbox/README.md to reflect this change.
2021-03-08 09:47:16 -05:00
Mike Salvatore 34b0830c77 zoo: add drupal exploiter blackbox test 2021-03-08 09:42:48 -05:00
Mike Salvatore 3164ae77c4 zoo: add drupal-28 to teraform scrips 2021-03-08 08:54:45 -05:00
Mike Salvatore 0fb0c58fd4 zoo: add missing port number in blackbox/README.md 2021-03-08 08:54:15 -05:00
VakarisZ a132881ccc
Merge pull request #1022 from guardicore/zerologon-bb-test
Zerologon BB test
2021-03-08 13:59:16 +02:00
VakarisZ f43d9fe035 ZL BB tests: Renamed "ZeroLogon" to "Zerologon" for cinsistency, extracted relevant credential extortion from island config into a separate method. 2021-03-08 13:58:11 +02:00
VakarisZ 70ec513f51 Added logging to the ZeroLogon analyzer 2021-03-08 13:10:14 +02:00
VakarisZ b43f669081 Bugfix: removed unneeded exploitation test run in ZeroLogon BB test 2021-03-08 12:35:31 +02:00
VakarisZ 44f6ce36b6 Fixed credentials in zerologon exploiter to match. 2021-03-08 12:05:00 +02:00
VakarisZ 263fa53ea5 Added an endpoint on the island for telemetry tests. This allows for tests like blackbox tests to send queries and check whether a certain telemetry is in the database or not 2021-03-08 11:13:31 +02:00
VakarisZ f6b0682297 Added ZeroLogon test to the BlackBox infrastructure. 2021-03-08 11:07:24 +02:00
VakarisZ 3f687f6aea Moved common config value paths to common 2021-03-08 11:06:18 +02:00
Mike Salvatore ba8acf2a64
Merge pull request #1021 from guardicore/fix-master-checkbox-rendering
Fix master checkbox rendering
2021-03-07 13:00:28 -05:00
Mike Salvatore 5e21ff88cb ui: minor style changes in AdvancedMultiSelect 2021-03-05 12:35:17 -05:00
Mike Salvatore 793bb99309 ui: properly render master checkbox on import or reset
Fixes #1018
2021-03-05 12:34:46 -05:00
Mike Salvatore 43c5834d51 cc: add useful debug logging that explains errors in HTTPFinger 2021-03-05 10:06:27 -05:00
VakarisZ 90310a46dc
Merge pull request #1016 from guardicore/BB_config_generation_quickfix
Configuration generation for BB tests bugfix
2021-03-05 11:02:31 +02:00
VakarisZ 3848dbeb32 Fixed a bug in configuration generation for BB tests. Bug was related to incorrect references 2021-03-05 10:50:55 +02:00
VakarisZ 8de21df309
Merge pull request #1015 from guardicore/release_crypto_package_requirement
Fixed cryptography requirement
2021-03-04 11:25:09 +02:00
VakarisZ 9fb0a5628d Fixed cryptography requirement for infection monkey, latest one doesn't have a pre-built wheel 2021-03-04 10:46:05 +02:00
Mike Salvatore 5bdb526db3
Merge pull request #1013 from guardicore/scoutsuite_docs
Scoutsuite docs
2021-03-03 11:51:29 -05:00
Mike Salvatore 2ff84c9dc8 docs: s/color coated/color coded/ 2021-03-03 11:50:50 -05:00
VakarisZ aacedc2e66 Improved phrasing in the scoutsuite documentation 2021-03-03 17:03:52 +02:00
Mike Salvatore bcc462ee94
Merge pull request #1004 from shreyamalviya/bugfix-incorrect-host-in-stolen-creds-report
Show exploited machine name under "Stolen From" in stolen credentials section
2021-03-03 09:19:55 -05:00
Shreya 243e077687 Remove accidental debug statement 2021-03-03 18:59:47 +05:30
VakarisZ c9552f9f44 Improved scoutsuite documentation: fixed incorrect description, added more screenshots and improved phrasing 2021-03-03 15:23:24 +02:00
Mike Salvatore d60ce37c5d cc: use fresh mongomock in each report test 2021-03-03 08:22:32 -05:00
VakarisZ 243b783a7e Moved scoutsuite docs to integrations from references 2021-03-03 14:37:31 +02:00
Shreya d772760ace Add unit tests for get_stolen_creds() 2021-03-03 17:08:36 +05:30
Shreya eecee86d92 Remove preceeding underscore from variables 2021-03-03 15:09:01 +05:30
Shreya 8d2e530eaa Show IP if domain name isn't available 2021-03-03 15:09:01 +05:30
Shreya 1528b00a1b Change origin of creds stolen using exploits from host machine to exploited machine 2021-03-03 15:09:01 +05:30
VakarisZ eb41376f53
Merge pull request #1014 from guardicore/scoutsuite_submodule_retargetting
Re-targeted scoutsuite submodule to use latest commit
2021-03-03 11:33:06 +02:00