Mike Salvatore
1b04844e5e
Agent: Deduplicate stop logic in AutomatedMaster
2021-12-03 11:06:56 -05:00
Mike Salvatore
839157a822
Agent: Implement AutomatedMaster._run_payloads()
2021-12-03 10:53:42 -05:00
Mike Salvatore
44055b32f9
Island: Reformat "payloads" in config before sending to agent
...
Allow the configuration to contain multiple payloads that can be run by
the agent.
2021-12-03 10:53:34 -05:00
Mike Salvatore
2455d34c7f
Merge pull request #1638 from guardicore/1538-strip-credentials-from-agent-config
...
1538 strip credentials from agent config
2021-12-03 09:22:38 -05:00
Mike Salvatore
02c725d1f8
Agent: Call get "/api/monkey" endpoint from ControlChannel.get_config()
2021-12-03 09:13:08 -05:00
Mike Salvatore
30afe3cc85
Island: Strip credentials out of config before sending to agent
...
The credentials for credential reuse attacks will now be retrieved by
the agent via a new endpoint that returns only credentials in order to
reduce unnecessary network traffic (issue #1538 ).
2021-12-03 09:13:08 -05:00
Mike Salvatore
9ed4f2687e
Tests: Add flat monkey config for use in tests
2021-12-03 09:13:08 -05:00
Mike Salvatore
8730b2bbbc
Agent: Call /legacy config endpoint from ControlClient
2021-12-03 09:13:08 -05:00
Mike Salvatore
7cda2b8e58
Island: Add "/legacy" config format option to monkey config endpoint
...
The schema of the configuration that is given to the agent when it
requests configuration from the island is heavily influenced by the GUI
and how configuration options should be displayed to the user. It is not
formatted in a way that is easy for the agent to utilize. This commit
adds a `/api/monkey/<string:guid>/<string:config_format>` endpoint that
allows legacy code to continue to function, while the agent's new
AutomatedMaster component (issue #1597 ) can receive configuration in a
way that makes sense for the agent.
2021-12-03 09:13:08 -05:00
Mike Salvatore
21a9c4fa14
Island: Remove disused MonkeyConfiguration resource
2021-12-03 09:13:08 -05:00
Mike Salvatore
a1601f120f
Merge pull request #1637 from guardicore/1597-implement-automated-master
...
1597 implement automated master - Part 1
2021-12-03 08:55:41 -05:00
Mike Salvatore
7516505623
Agent: Join on pba_thread to ensure it completes before simulation ends
2021-12-03 08:06:46 -05:00
Mike Salvatore
fc88fb948c
Agent: Add a few TODOs into AutomatedMaster
2021-12-03 07:18:48 -05:00
Mike Salvatore
23886e2cf7
Agent: Use logger.warning() instead of depricated warn()
2021-12-03 06:51:59 -05:00
Mike Salvatore
bf0e5f098b
Agent: Make minor code quality improvements to AutomatedMaster
2021-12-02 11:51:29 -05:00
Mike Salvatore
4fc18ae750
Agent: Improve responsiveness of AutomatedMaster shutdown
2021-12-02 11:51:29 -05:00
Mike Salvatore
9279d82adf
Agent: Add a Timer class
2021-12-02 11:51:29 -05:00
Mike Salvatore
73bf93050f
Agent: Implement _collect_system_info in AutomatedMaster
2021-12-02 11:51:29 -05:00
Mike Salvatore
9809fc2a41
Agent: Implement _run_simulation() that calls stubbed methods
2021-12-02 11:51:29 -05:00
Mike Salvatore
a2bba6a025
Agent: Implement _check_for_stop() in AutomatedMaster
2021-12-02 11:51:29 -05:00
Mike Salvatore
0456d695c4
Agent: Add an AutomatedMaster that implements start() and terminate()
2021-12-02 11:51:27 -05:00
Mike Salvatore
418b5ce9ec
Merge pull request #1631 from guardicore/1595-new-agent-setup
...
Implement Agent setup function
2021-12-02 09:20:05 -05:00
VakarisZ
ce7362e278
Agent: add a waiting timer to allow exploited machines to connect to the tunnel (in agent cleanup)
2021-12-02 14:26:10 +02:00
VakarisZ
e4bdc96410
Agent: move _set_propagation_depth and _add_default_server_to_config from constructor to start
...
Moved because these methods don't initialize the parameters, they change the global WormConfiguration object which is logic/behavior
2021-12-02 11:51:14 +02:00
VakarisZ
1e9c9ab823
Agent: move _set_propagation_depth and _add_default_server_to_config from constructor to start
...
Moved because these methods don't initialize the parameters, they change the global WormConfiguration object which is logic/behavior
2021-12-02 11:25:59 +02:00
Mike Salvatore
f074b3e388
Agent: Pass agent_id to ControlChannel constructor
2021-12-01 12:18:32 -05:00
Mike Salvatore
1944040328
Agent: Remove unnecessary control_channel_server() from IControlChannel
2021-12-01 12:14:58 -05:00
Mike Salvatore
13e16b9dea
Agent: Revert "legacy" in dropper start() and cleanup() functions
2021-12-01 11:26:05 -05:00
Mike Salvatore
48782e79d4
Swimm: update exercise Add a new configuration setting to the Agent ⚙ AzD8XysWg1BBXCjCDkfq
2021-12-01 11:26:00 -05:00
Mike Salvatore
eaf27a7b92
Merge branch '1576-simplify-server-config-json' into agent-refactor
2021-12-01 11:18:27 -05:00
VakarisZ
ad6b309523
Agent: readability and style changes in monkey.py: refactored back from raising exceptions to logging and returning, not storing part of island config options as separate parameters, etc.
2021-12-01 18:13:27 +02:00
VakarisZ
81e61dcea5
Agent: improve the readability of InfectionMonkey constructor by decoupling cmd argument parsing from object parameter setting
2021-12-01 17:08:32 +02:00
VakarisZ
793bb33c8c
Agent: use the refactored startup instead of legacy methods (monkey.start() instead of monkey.legacy_start(), etc.)
2021-12-01 17:04:45 +02:00
Mike Salvatore
1d7c80bfec
Changelog: Add changelog entry for #1576
2021-12-01 07:40:30 -05:00
Mike Salvatore
e61bac0895
Tests: Test get_server_config() instead of internal _extract_config()
2021-12-01 07:39:19 -05:00
VakarisZ
6e7ddbc6c7
Agent: improve the readability of island_config_options.py
2021-12-01 14:35:37 +02:00
VakarisZ
0806afed1a
Agent: rename PlannedShutdownException to PlannedShutdownError
...
This will stay consistent with python and our own codebase
2021-12-01 12:49:50 +02:00
VakarisZ
89436a4cd9
Agent: remove behavioral methods from monkey.py and leave only setup/teardown related code
...
Behavior is handled by master, monkey.py should only setup/teardown the agent
2021-12-01 12:45:44 +02:00
VakarisZ
8304a4ea19
UT: improve unit tests in test_server_setup.py
2021-12-01 10:56:18 +02:00
Mike Salvatore
854ca7fa89
Island: Change log level to warn if server config not found
2021-11-30 13:02:06 -05:00
Mike Salvatore
707fbf41aa
Island: Remove defunct "environment" from default server_config.json
2021-11-30 12:59:20 -05:00
Mike Salvatore
9ed689946c
Docs: Minor edits to Linux setup documentation
2021-11-30 12:56:52 -05:00
Mike Salvatore
3e8f7382d0
Docs: Minor edits to docker setup documentation
2021-11-30 12:53:55 -05:00
Mike Salvatore
9e036c8853
Doc: Make minor edits to windows setup documentation
2021-11-30 12:52:40 -05:00
Mike Salvatore
7570064ae7
Docs: Remove erroneous comment about log level for agents
...
Agents' log level is not configurable at this time.
2021-11-30 12:49:19 -05:00
Mike Salvatore
0b7da7ed67
Docs: Fix "logging" links in FAQ
2021-11-30 12:48:03 -05:00
Mike Salvatore
e76915cf96
Merge pull request #1634 from guardicore/1610-cleanup-ransomware
...
Cleanup function for ransomware
2021-11-30 12:31:04 -05:00
Mike Salvatore
a5fc0bc393
Agent: Change readme if condition in RansomwarePayload.cleanup()
...
If the _readme_incomplete flag is set but no readme file has been left
in the target directory, do not leave a new readme file. This can happen
if the thread is forcefully killed between the time when the flag is set
and the file is first created. The cleanup function is only concerned
with cleaning up incomplete files, not ensuring the existence of the
file under all circumstances.
2021-11-30 12:03:37 -05:00
Mike Salvatore
789a6691c1
Agent: Improve log messages in RansomwarePayload.cleanup()
2021-11-30 12:03:37 -05:00
Mike Salvatore
62a6b09e00
Agent: Use `self._target_directory` in RansomwarePayload
2021-11-30 12:03:37 -05:00