From 02154e38fd820f9bd705e74602cda183f62a8b21 Mon Sep 17 00:00:00 2001 From: vakaris_zilius Date: Fri, 18 Mar 2022 15:05:30 +0000 Subject: [PATCH] Agent: Make powershell exploiter interruptable --- monkey/infection_monkey/exploit/HostExploiter.py | 4 ++++ monkey/infection_monkey/exploit/powershell.py | 13 ++++++++++++- 2 files changed, 16 insertions(+), 1 deletion(-) diff --git a/monkey/infection_monkey/exploit/HostExploiter.py b/monkey/infection_monkey/exploit/HostExploiter.py index 2e198ac4c..b1e2c72d3 100644 --- a/monkey/infection_monkey/exploit/HostExploiter.py +++ b/monkey/infection_monkey/exploit/HostExploiter.py @@ -103,6 +103,10 @@ class HostExploiter: self.exploit_result.error_message = "Exploiter has been interrupted" return self.interrupt.is_set() + class InterruptError(Exception): + # Raise when exploiter gets interrupted + pass + def post_exploit(self): self.set_finish_time() diff --git a/monkey/infection_monkey/exploit/powershell.py b/monkey/infection_monkey/exploit/powershell.py index 026ffb17d..ede63daaf 100644 --- a/monkey/infection_monkey/exploit/powershell.py +++ b/monkey/infection_monkey/exploit/powershell.py @@ -67,7 +67,11 @@ class PowerShellExploiter(HostExploiter): auth_options = [get_auth_options(creds, use_ssl) for creds in credentials] - self._client = self._authenticate_via_brute_force(credentials, auth_options) + try: + self._client = self._authenticate_via_brute_force(credentials, auth_options) + except self.InterruptError: + return self.exploit_result + if not self._client: self.exploit_result.error_message = ( "Unable to authenticate to the remote host using any of the available credentials" @@ -79,6 +83,8 @@ class PowerShellExploiter(HostExploiter): try: self._execute_monkey_agent_on_victim() self.exploit_result.propagation_success = True + except self.InterruptError: + return self.exploit_result except Exception as ex: logger.error(f"Failed to propagate to the remote host: {ex}") self.exploit_result.error_message = str(ex) @@ -134,6 +140,8 @@ class PowerShellExploiter(HostExploiter): self, credentials: List[Credentials], auth_options: List[AuthOptions] ) -> Optional[IPowerShellClient]: for (creds, opts) in zip(credentials, auth_options): + if self.is_interrupted(): + raise self.InterruptError try: client = PowerShellClient(self.host.ip_addr, creds, opts) client.connect() @@ -166,6 +174,9 @@ class PowerShellExploiter(HostExploiter): def _execute_monkey_agent_on_victim(self): monkey_path_on_victim = self.options["dropper_target_path_win_64"] + if self.is_interrupted(): + raise self.InterruptError() + self._copy_monkey_binary_to_victim(monkey_path_on_victim) logger.info("Successfully copied the monkey binary to the victim.")