From d9c295bed46508ca0e07949e5771176f1b82d32f Mon Sep 17 00:00:00 2001 From: Ilija Lazoroski Date: Fri, 8 Apr 2022 14:01:52 +0200 Subject: [PATCH] BB: Remove WebLogic exploiter --- .../blackbox/config_templates/performance.py | 1 - .../blackbox/config_templates/weblogic.py | 18 ----- .../blackbox/gcp_test_machine_list.py | 2 - envs/monkey_zoo/blackbox/test_blackbox.py | 5 -- .../utils/config_generation_script.py | 2 - envs/monkey_zoo/docs/fullDocs.md | 76 ------------------- envs/monkey_zoo/terraform/images.tf | 8 -- envs/monkey_zoo/terraform/monkey_zoo.tf | 50 ------------ 8 files changed, 162 deletions(-) delete mode 100644 envs/monkey_zoo/blackbox/config_templates/weblogic.py diff --git a/envs/monkey_zoo/blackbox/config_templates/performance.py b/envs/monkey_zoo/blackbox/config_templates/performance.py index 11fcca51b..4c96a9b1e 100644 --- a/envs/monkey_zoo/blackbox/config_templates/performance.py +++ b/envs/monkey_zoo/blackbox/config_templates/performance.py @@ -16,7 +16,6 @@ class Performance(ConfigTemplate): "SmbExploiter", "WmiExploiter", "SSHExploiter", - "WebLogicExploiter", "HadoopExploiter", "MSSQLExploiter", "PowerShellExploiter", diff --git a/envs/monkey_zoo/blackbox/config_templates/weblogic.py b/envs/monkey_zoo/blackbox/config_templates/weblogic.py deleted file mode 100644 index 10bdadd11..000000000 --- a/envs/monkey_zoo/blackbox/config_templates/weblogic.py +++ /dev/null @@ -1,18 +0,0 @@ -from copy import copy - -from envs.monkey_zoo.blackbox.config_templates.base_template import BaseTemplate -from envs.monkey_zoo.blackbox.config_templates.config_template import ConfigTemplate - - -class Weblogic(ConfigTemplate): - - config_values = copy(BaseTemplate.config_values) - - config_values.update( - { - "basic.exploiters.exploiter_classes": ["WebLogicExploiter"], - "basic_network.scope.subnet_scan_list": ["10.2.2.18", "10.2.2.19"], - "internal.network.tcp_scanner.HTTP_PORTS": [7001], - "internal.network.tcp_scanner.tcp_target_ports": [], - } - ) diff --git a/envs/monkey_zoo/blackbox/gcp_test_machine_list.py b/envs/monkey_zoo/blackbox/gcp_test_machine_list.py index 8b39b0599..866e69c3e 100644 --- a/envs/monkey_zoo/blackbox/gcp_test_machine_list.py +++ b/envs/monkey_zoo/blackbox/gcp_test_machine_list.py @@ -11,8 +11,6 @@ GCP_TEST_MACHINE_LIST = { "tunneling-10", "tunneling-11", "tunneling-12", - "weblogic-18", - "weblogic-19", "zerologon-25", ], "europe-west1-b": [ diff --git a/envs/monkey_zoo/blackbox/test_blackbox.py b/envs/monkey_zoo/blackbox/test_blackbox.py index 7ee77c714..31cbdd379 100644 --- a/envs/monkey_zoo/blackbox/test_blackbox.py +++ b/envs/monkey_zoo/blackbox/test_blackbox.py @@ -22,7 +22,6 @@ from envs.monkey_zoo.blackbox.config_templates.smb_mimikatz import SmbMimikatz from envs.monkey_zoo.blackbox.config_templates.smb_pth import SmbPth from envs.monkey_zoo.blackbox.config_templates.ssh import Ssh from envs.monkey_zoo.blackbox.config_templates.tunneling import Tunneling -from envs.monkey_zoo.blackbox.config_templates.weblogic import Weblogic from envs.monkey_zoo.blackbox.config_templates.wmi_mimikatz import WmiMimikatz from envs.monkey_zoo.blackbox.config_templates.wmi_pth import WmiPth from envs.monkey_zoo.blackbox.config_templates.zerologon import Zerologon @@ -184,10 +183,6 @@ class TestMonkeyBlackbox: def test_smb_pth(self, island_client): TestMonkeyBlackbox.run_exploitation_test(island_client, SmbPth, "SMB_PTH") - @pytest.mark.skip(reason="Weblogic exploiter is deprecated") - def test_weblogic_exploiter(self, island_client): - TestMonkeyBlackbox.run_exploitation_test(island_client, Weblogic, "Weblogic_exploiter") - def test_log4j_solr_exploiter(self, island_client): TestMonkeyBlackbox.run_exploitation_test( island_client, Log4jSolr, "Log4Shell_Solr_exploiter" diff --git a/envs/monkey_zoo/blackbox/utils/config_generation_script.py b/envs/monkey_zoo/blackbox/utils/config_generation_script.py index dd25201f4..76abff669 100644 --- a/envs/monkey_zoo/blackbox/utils/config_generation_script.py +++ b/envs/monkey_zoo/blackbox/utils/config_generation_script.py @@ -14,7 +14,6 @@ from envs.monkey_zoo.blackbox.config_templates.smb_mimikatz import SmbMimikatz from envs.monkey_zoo.blackbox.config_templates.smb_pth import SmbPth from envs.monkey_zoo.blackbox.config_templates.ssh import Ssh from envs.monkey_zoo.blackbox.config_templates.tunneling import Tunneling -from envs.monkey_zoo.blackbox.config_templates.weblogic import Weblogic from envs.monkey_zoo.blackbox.config_templates.wmi_mimikatz import WmiMimikatz from envs.monkey_zoo.blackbox.config_templates.wmi_pth import WmiPth from envs.monkey_zoo.blackbox.config_templates.zerologon import Zerologon @@ -44,7 +43,6 @@ CONFIG_TEMPLATES = [ SmbPth, Ssh, Tunneling, - Weblogic, WmiMimikatz, WmiPth, Zerologon, diff --git a/envs/monkey_zoo/docs/fullDocs.md b/envs/monkey_zoo/docs/fullDocs.md index 032d6ef8d..9d5635255 100644 --- a/envs/monkey_zoo/docs/fullDocs.md +++ b/envs/monkey_zoo/docs/fullDocs.md @@ -18,8 +18,6 @@ This document describes Infection Monkey’s test network, how to deploy and use [Nr. 15 Mimikatz](#_Toc536021468)
[Nr. 16 MsSQL](#_Toc536021469)
[Nr. 17 Upgrader](#_Toc536021470)
-[Nr. 18 WebLogic](#_Toc526517180)
-[Nr. 19 WebLogic](#_Toc526517181)
[Nr. 21 Scan](#_Toc526517196)
[Nr. 22 Scan](#_Toc526517197)
[Nr. 25 Zerologon](#_Toc536021478)
@@ -632,80 +630,6 @@ Update all requirements using deployment script:
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Nr. 18 WebLogic

-

(10.2.2.18)

(Vulnerable)
OS:Ubuntu 16.04.05 x64
Software:

JDK,

-

Oracle WebLogic server 12.2.1.2

Default server’s port:7001
Admin domain credentials:weblogic : B74Ot0c4
Server’s config:Default
Notes:
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Nr. 19 WebLogic

-

(10.2.2.19)

(Vulnerable)
OS:Windows 10 x64
Software:

JDK,

-

Oracle WebLogic server 12.2.1.2

Default server’s port:7001
Admin servers credentials:weblogic : =ThS2d=m(`B
Server’s config:Default
Notes:
- diff --git a/envs/monkey_zoo/terraform/images.tf b/envs/monkey_zoo/terraform/images.tf index 54e933095..3dadc5876 100644 --- a/envs/monkey_zoo/terraform/images.tf +++ b/envs/monkey_zoo/terraform/images.tf @@ -83,14 +83,6 @@ data "google_compute_image" "log4j-logstash-56" { name = "log4j-logstash-56" project = local.monkeyzoo_project } -data "google_compute_image" "weblogic-18" { - name = "weblogic-18" - project = local.monkeyzoo_project -} -data "google_compute_image" "weblogic-19" { - name = "weblogic-19" - project = local.monkeyzoo_project -} data "google_compute_image" "scan-21" { name = "scan-21" project = local.monkeyzoo_project diff --git a/envs/monkey_zoo/terraform/monkey_zoo.tf b/envs/monkey_zoo/terraform/monkey_zoo.tf index fbf915f8a..de0b922f5 100644 --- a/envs/monkey_zoo/terraform/monkey_zoo.tf +++ b/envs/monkey_zoo/terraform/monkey_zoo.tf @@ -400,56 +400,6 @@ resource "google_compute_instance_from_template" "log4j-logstash-56" { } } -/* We need to alter monkey's behavior for this to upload 32-bit monkey instead of 64-bit (not yet developed) -resource "google_compute_instance_from_template" "upgrader-17" { - name = "${local.resource_prefix}upgrader-17" - source_instance_template = "${local.default_windows}" - boot_disk{ - initialize_params { - image = "${data.google_compute_image.upgrader-17.self_link}" - } - } - network_interface { - subnetwork="${local.resource_prefix}monkeyzoo-main" - network_ip="10.2.2.17" - access_config { - // Cheaper, non-premium routing - network_tier = "STANDARD" - } - } -} -*/ - -resource "google_compute_instance_from_template" "weblogic-18" { - name = "${local.resource_prefix}weblogic-18" - source_instance_template = local.default_ubuntu - boot_disk{ - initialize_params { - image = data.google_compute_image.weblogic-18.self_link - } - auto_delete = true - } - network_interface { - subnetwork="${local.resource_prefix}monkeyzoo-main" - network_ip="10.2.2.18" - } -} - -resource "google_compute_instance_from_template" "weblogic-19" { - name = "${local.resource_prefix}weblogic-19" - source_instance_template = local.default_windows - boot_disk{ - initialize_params { - image = data.google_compute_image.weblogic-19.self_link - } - auto_delete = true - } - network_interface { - subnetwork="${local.resource_prefix}monkeyzoo-main" - network_ip="10.2.2.19" - } -} - resource "google_compute_instance_from_template" "scan-21" { name = "${local.resource_prefix}scan-21" source_instance_template = local.default_ubuntu