Commit Graph

68 Commits

Author SHA1 Message Date
itaymmguardicore 9242fe3232 Merge pull request #51 from guardicore/feature/elasticgroovy
Feature/elasticgroovy
2017-09-27 15:41:40 +03:00
Itay Mizeretz 22ce3d9387 Expand config env variables on demand 2017-09-27 11:24:42 +03:00
Daniel Goldberg 6708e623fc Added Elastic attack 2017-09-26 15:43:46 +03:00
Daniel Goldberg 01af61aa04 Merge from develop 2017-09-25 18:23:31 +03:00
Daniel Goldberg 8bace9794a Update config.py 2017-09-25 18:07:26 +03:00
Daniel Goldberg f3a172fc4a Fixed CR notes
https://github.com/guardicore/monkey/pull/48#pullrequestreview-64914540
2017-09-25 18:02:21 +03:00
Daniel Goldberg 79e6a44008 Fix CR comments, see
https://github.com/guardicore/monkey/pull/47#pullrequestreview-64871377
2017-09-25 17:34:19 +03:00
Daniel Goldberg 5ed6e37959 Bug fix 2017-09-25 15:32:01 +03:00
Daniel Goldberg 86d6cdfba3 Add elasticsearch fingerprinting. 2017-09-25 15:13:36 +03:00
Daniel Goldberg 10c9648854 Add mysql fingerprinting and improve struct parsing 2017-09-25 12:01:48 +03:00
Itay Mizeretz 024ebfcbe6 minor fix 2017-09-04 16:36:15 +03:00
Itay Mizeretz c612ea0361 Documented sambacry, moved everything to configuration, minor fixes 2017-08-31 20:03:32 +03:00
Itay Mizeretz 194ed624c2 sambacry almost working e2e 2017-08-31 17:50:55 +03:00
Itay Mizeretz 97205e6427 Fix config property bug 2017-08-21 11:51:47 +03:00
Itay Mizeretz 26df64fb87 Fixed CR 2017-08-20 19:32:18 +03:00
Itay Mizeretz 1a55c8362f Add C&C ability to share credentials found from monkeys 2017-08-17 18:04:36 +03:00
Itay Mizeretz a671b55df3 Add mimikatz collector
Combine all users and passwords in config
2017-08-16 15:14:26 +03:00
Evstifeev Roman f1dca7fa86 Don't crash when receiving unknown configuration variables
Instead of crashing if the monkey deserializes an unknown configuration
variable, send an error message to the current monkey server and keep on
working.

Add utnittests.

fixes #26
2016-09-27 23:56:26 +03:00
daniel goldberg 3549bb351e Issue #35 - Added option for blocked IPs. 2016-09-21 11:35:41 +03:00
danielguardicore d2203b2220 Removed legacy ChaosMonkey from SMB execution. 2016-09-07 19:10:30 +03:00
daniel goldberg 32c326bd7b PEP8 in diff files
Add concept of non default timeout for copying SMB files. This is by default 5 minutes.
Changed behavior of SMB exploiter if file already exists, we don't assume exploitation is useless and try again. Worse case is we run the monkey after it finished running.
Changed behavior if managed to connect to machine to IPC$ over some dialect. If Success, we don't try again.
2016-09-05 17:45:27 +03:00
daniel goldberg 12ff0c5677 Reverted bug in config, added 'user' to default bruteforce. 2016-08-30 11:04:44 +03:00
daniel goldberg 6a51e926f8 Fixed random IP 2016-08-29 19:14:37 +03:00
daniel goldberg 1a4a08e3bd Add HTTPFinger to conf file and PEP8 fix 2016-08-29 18:58:16 +03:00
daniel goldberg 91427eb346 Tiny PEP8 change and changed reporting of vulnerable URLs in shellshock 2016-08-29 18:58:16 +03:00
Daniel Goldberg 835c861219 Add ShellShockExploiter to default config 2016-08-29 18:58:16 +03:00
daniel goldberg cd27438a1e PEP 8 changes 2016-08-29 18:58:15 +03:00
daniel goldberg a322a619cb Issue 23 - Added shellshock exploit. 2016-08-29 12:09:46 +03:00
daniel goldberg d455a8bb40 Added basic HTTP fingering by using banner grabbing 2016-08-24 18:31:16 +03:00
daniel goldberg 67d77408f6 PEP8 2016-08-22 18:34:22 +03:00
acepace e16debeff9 Documented config variable 2016-08-20 17:56:23 +03:00
acepace 0eb655c44b Changed Monkey SSH file path to /tmp to not require root.
Tiny PEP8 changes
2016-08-20 15:28:14 +03:00
acepace d75ce529ab Issue #18, added ability to attack multiple users in SSH brute force.
Also fixed small bug in windows kill path parsing.
2016-08-08 22:25:33 +03:00
acepace 2ed7cc359e Merge branch 'master' of https://github.com/guardicore/monkey
# Conflicts:
#	chaos_monkey/example.conf
2016-08-03 09:24:55 +03:00
itsikkes de958088b4 depth commandline option is not overwritten when getting config from the island 2016-08-01 16:52:27 +03:00
acepace 39a208afc3 Added local kill switch to flow, right after loading configuration. 2016-07-31 14:33:48 +03:00
acepace 1c5ec3086f Change default server to non-sense IP to force override. Must never be localhost. 2016-07-31 14:33:13 +03:00
itsikkes b8519300ab config bugfix - missing field 2016-07-23 08:59:26 +03:00
acepace 5eb2379fa2 Merge branch 'master' of https://github.com/guardicore/monkey
# Conflicts:
#	chaos_monkey/config.py
#	chaos_monkey/network/info.py
2016-07-18 23:45:02 +03:00
acepace 6871a3da4f Removed unused import. Added kill file option. 2016-07-18 23:43:17 +03:00
itsikkes 2c3d0af3e3 merge fix 2016-07-15 17:00:55 +03:00
itsikkes c5fd92c570 Merge remote-tracking branch 'origin/master'
# Conflicts:
#	chaos_monkey/config.py
2016-07-15 16:58:09 +03:00
itsikkes 3da0c1a57c Added auto-scan subnets option
Monkey is now able to auto scan the local host subnets, removing the
need to preconfigure it to scan the network subnets (option is on by
default)
2016-07-15 16:54:46 +03:00
acepace 5a9153858a Changed DNS path to monkey.guardicore.com 2016-07-10 11:47:07 +03:00
acepace eaaa5f314b Updated config documentation 2016-07-10 11:20:22 +03:00
itsikkes 5d1a3680b2 serval bug fixes
1. all monkeys got the 1st config;
2. incompatible config types
3. UI fixes at the island
2016-07-06 11:44:33 +03:00
itsikkes 84496dd3f5 Added internet access check
Shown in the monkey properties in the island
2016-06-28 11:13:24 +03:00
acepace 27d14094cc Changed MS08-67 user to monkey indicative to help track infections 2016-06-14 17:06:17 +03:00
acepace a004a757ec Fixed an annoying path in Windows paths... 2016-06-07 18:14:38 +03:00
acepace e76513529e GC-5506 #resolved added different log files for different platforms. 2016-03-02 17:13:36 +02:00