Ilija Lazoroski
0dae58baaf
Agent, UT: Change puppet interface to use scan_tcp_ports
...
Instead of using scan_tcp_port and scan each port seperately
we can use scan_tcp_ports which will recieve list of ports
for the specific host and return dictionary of port:PortScanData
items. There was no point of scanning each port seperately.
2022-02-07 14:24:20 -05:00
Mike Salvatore
f07c876d31
Agent: Add code review comments to check_tcp_ports()
2022-02-07 07:42:07 -05:00
Mike Salvatore
d77af7de0b
Merge pull request #1689 from guardicore/1676-remove-agent-bootloader
...
Remove agent bootloader
2022-02-03 12:13:27 -05:00
Mike Salvatore
da58392050
Agent: Reset signal handlers after the Master is cleaned up
...
After the Master terminates, this resets the signal handlers to the
default handlers provided by Python.
2022-02-03 07:58:24 -05:00
Ilija Lazoroski
3f639d40f3
Agent: Add pkg_resources.py2_warn in the spec file.
2022-02-03 13:49:01 +01:00
Mike Salvatore
019f2c1403
Agent: Implement ping scanning in Puppet
...
Fixes #1602
PR #1691
2022-02-02 09:14:27 -05:00
Mike Salvatore
9f2fe5e513
Agent: Refactor ping_scanner to remove unnecessary inheritance
2022-02-02 09:14:27 -05:00
Ilija Lazoroski
28d03339bf
Island: Small formatting change in config model
2022-02-01 18:27:51 +01:00
Ilija Lazoroski
e224470161
Changelog: Add entry for removal of agent's bootloader
2022-02-01 18:27:51 +01:00
vakarisz
25f1195475
Island, UI: remove starting node states
...
Since bootloader is gone, nothing sets the state of the node to "starting"
2022-02-01 18:27:51 +01:00
vakarisz
79ab06e575
Island, UI: remove starting node states
...
Since bootloader is gone, nothing sets the state of the node to "starting"
2022-02-01 18:27:51 +01:00
Ilija Lazoroski
28875fd55f
Agent: Change pyinstaller version to 4.2
...
Remove altgraph and importlib-metadata since upstream
pyinstaller includes them.
2022-02-01 18:26:49 +01:00
Shreya Malviya
2c88d6053c
Project: Remove deleted constants from Vulture's allowlist
2022-02-01 16:40:06 +01:00
Shreya Malviya
a8956a18ff
Island: Remove 'old' node states now that the bootloader is removed
2022-02-01 16:40:06 +01:00
Shreya Malviya
a7f821d20d
Agent: Remove unneeded function `is_local_ips` since bootloader telem was removed
2022-02-01 16:40:06 +01:00
Shreya Malviya
db965e14f8
Agent: Remove do_POST in HTTPConnectProxyHandler
...
As per https://github.com/guardicore/monkey/pull/527 , this code was
added for the bootloader. Now that we're removing the bootloader, this
is no longer needed.
2022-02-01 16:39:57 +01:00
Ilija Lazoroski
b5c51bedc1
Island, UT: Remove Bootloader endpoint
2022-02-01 15:32:13 +01:00
Ilija Lazoroski
add449c5f4
Island, UT: Remove bootloader service
2022-02-01 15:32:13 +01:00
Ilija Lazoroski
fbd36e5b41
Island: Remove Bootloader server
2022-02-01 15:32:13 +01:00
Shreya Malviya
c3e66debc8
Docs: Remove the bootloader section from the operating systems page
2022-02-01 15:32:13 +01:00
Shreya Malviya
2a4024926b
Agent: Update Pipfile to use an original pyinstaller version instead of
...
our fork
and remove related dependencies as per the comments next to them.
The pyinstaller version is changed to the version that the Island uses.
2022-02-01 15:32:13 +01:00
Mike Salvatore
635496a4be
Merge pull request #1687 from guardicore/1677-remove-ms08-067
...
Remove MS08-067 Exploiter
2022-01-31 08:17:35 -05:00
Mike Salvatore
d257276f30
Changelog: Add entry for removal of MS08-067 exploiter
2022-01-31 08:15:43 -05:00
Ilija Lazoroski
ceec121d88
Agent: Remove shellcode obfusctor
...
Encryptor which was used in MS08-067 exploiter.
2022-01-31 11:11:33 +01:00
Ilija Lazoroski
ff87252a24
Agent, Island: Remove MS08_67 exploiter
2022-01-31 11:11:33 +01:00
Ilija Lazoroski
3fc8621e16
Docs: Remove MS08_067 exploiter documentation
2022-01-31 11:11:25 +01:00
Mike Salvatore
678db40e25
Agent: Check for spaces in IP or domain names
...
socket.gethostbyname() may return different results on different systems
when provided with an IP address that contains a space. This depends on
python version or other environmental factors. For example:
System 1:
>>> socket.gethostbyname('172.60 .9.109')
Traceback (most recent call last):
File "<stdin>", line 1, in <module>
socket.gaierror: [Errno -2] Name or service not known
>>> socket.gethostbyname('172.17 .9.109')
Traceback (most recent call last):
File "<stdin>", line 1, in <module>
socket.gaierror: [Errno -2] Name or service not known
System 2:
>>> socket.gethostbyname('172.60 .9.109')
'172.0.0.60'
To remedy this, this commit adds a check to verify that the IP/domain
does not contain a space, as a space is an illegal character in either.
2022-01-27 12:56:40 -05:00
Mike Salvatore
8371a268ba
Island: Change the order of log messages on startup to improve UX
...
Some users were confused when the Island started up and thought it had
frozen. I hope to alleviate this confusion by changing the order of the
log messages. If the last message displayed after initialization
gives the user instructions on accessing the island, hopefully users
will no longer be confused.
PR #1684
2022-01-26 12:09:43 -05:00
Mike Salvatore
f478444bb7
Merge pull request #1682 from guardicore/small-code-improvements
...
Small code improvements
2022-01-26 08:31:55 -05:00
Mike Salvatore
a888915577
Agent: Add bool return type hint to _can_propagate()
2022-01-26 08:14:04 -05:00
Mike Salvatore
92636da4b2
Agent: Use Iterable instead of List for type hint in run_plugins()
2022-01-26 08:13:35 -05:00
Mike Salvatore
8cf54e7673
Agent: Fix typo plugin -> plugins in _run_plugins()
2022-01-26 08:11:35 -05:00
Mike Salvatore
1ca8c98b86
Island: Use MappingProxyType for default argument in IslandConfigOptions
2022-01-25 19:57:07 -05:00
Mike Salvatore
3450ac93a3
Agent: Extract code from try/except in _leave_readme_in_target_directory
2022-01-25 19:57:07 -05:00
Mike Salvatore
fae0c8ded2
Agent: Replace if checks with interruptable_iter() in for loops
2022-01-25 19:57:07 -05:00
Mike Salvatore
0c877833c5
Agent: Move master/threading_utils.py -> utils/threading.py
...
Both create_daemon_thread() and interruptable_iter() will need to be
used outside of the master.
2022-01-25 19:57:07 -05:00
Mike Salvatore
df42d0752a
Agent: Add interruptable_iter() generator
2022-01-25 19:57:07 -05:00
Mike Salvatore
f8ea2e06ac
UT: Add test for create_daemon_thread()
2022-01-25 19:57:07 -05:00
Mike Salvatore
ce4c0188c2
Agent: Add missing type hints to dir_utils.py
2022-01-25 19:57:07 -05:00
Mike Salvatore
62efeffe90
Agent: Use iter() to improve InPlaceFileEncryptor._encrypt_file()
2022-01-25 19:57:07 -05:00
Mike Salvatore
fa59f45d31
Agent: Use filter() to improve loop in _process_tcp_scan_results()
2022-01-25 19:57:07 -05:00
Mike Salvatore
ea0ab309d2
Agent: Improve loop code in IPScanner._scan_address()
2022-01-25 19:57:07 -05:00
Mike Salvatore
e1cf4fa9c2
Merge branch 'release/1.13.0' into agent-refactor
2022-01-25 13:35:49 -05:00
Mike Salvatore
fed7d050be
Changelog: Update version and release date for v1.13.0
2022-01-25 09:54:12 -05:00
vakarisz
ab290fd732
Docs: clarify that AppImage can only run in WSL 2 on windows
2022-01-25 15:20:33 +02:00
vakarisz
28cf8b55cf
BB: modified performance config template to contain log4shell machines
2022-01-25 15:16:32 +02:00
vakarisz
62dc4a4d5c
Docs: add version to docker examples
...
Based on docs it wasn't clear what user should substitute for "VERSION". By providing specific version like "v1.13.0" we clarify the format of the version string.
2022-01-25 15:03:06 +02:00
vakarisz
014108e360
Docs: remove outdated documentation about AWS deployment
2022-01-25 14:59:55 +02:00
vakarisz
a59c6b59b6
Docs: add hashes of 1.13.0 release binaries
2022-01-24 10:29:44 +02:00
vakarisz
189505a97d
Agent: add vulnerable log4shell url's
...
Url's are used in mitre report
2022-01-21 15:35:07 +02:00