p34709852
/
monkey
forked from p15670423/monkey
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
9,184 Commits 30 Branches 0 Tags 47 MiB
Commit Graph

9184 Commits

Author SHA1 Message Date
Ilija Lazoroski 27c0b838c4 Island: Fix one missed telemetry processor 2022-07-18 21:23:17 +02:00
Ilija Lazoroski 474a26aeff UI: Fix StolenCredentials issue to add if we have any stolen credentials 2022-07-18 21:23:17 +02:00
Ilija Lazoroski 5c765f85c2 UI: Add StolenCredentialsIssue to issues 2022-07-18 21:23:17 +02:00
Ilija Lazoroski 35ed7f60c4 Island: Fix an import in initialize 2022-07-18 21:23:17 +02:00
Ilija Lazoroski c65439e049 UI: Remove WeakPassword issue 
* We don't have the passwords used for exploiting the machines
  in the UI
* All it will be reworked
 2022-07-18 21:23:17 +02:00
Ilija Lazoroski 1683265868 Island: Rename reporting/stolen_credentials.py to 
reporting/format_credentials.py
 2022-07-18 21:23:17 +02:00
Ilija Lazoroski 5ebf0ed8f6 Island: Remove StolenCredentials model 2022-07-18 21:23:17 +02:00
Ilija Lazoroski a24bdd43b8 Island: Move credentials parser hack to dirty_hacks function 2022-07-18 21:23:17 +02:00
Ilija Lazoroski 885f0565a8 Island: Patch T1003 with a callable class 2022-07-18 21:23:17 +02:00
Ilija Lazoroski 06a64c14d7 Island: Add callable class for T1003 2022-07-18 21:23:17 +02:00
Ilija Lazoroski c83f76b02b Island: Add formatting credentials for report 2022-07-18 21:23:17 +02:00
Ilija Lazoroski c75ee22c29 Island: Remove get_config_{users,passwords} from reporting 2022-07-18 21:23:17 +02:00
Ilija Lazoroski 94419d8141 Island: Add PTHReportservice get issues functions 
* get_duplicated_passwords_issues
* get strong_users_on_crit_issues
 2022-07-18 21:23:17 +02:00
Ilija Lazoroski f417cff17b UI: Rename UsedCredentials.tsx.js to UsedCredentials.js 2022-07-18 21:23:17 +02:00
Ilija Lazoroski bfda71dd45 UI: Check for actual stolen credentials in issues 2022-07-18 21:23:17 +02:00
Ilija Lazoroski 89f5ff89d2 Island: Remove extract_ssh_keys from stolen_credentials reporting 2022-07-18 21:23:17 +02:00
Ilija Lazoroski 4dbdbcc75e UI: Remove unneeded logging in UsedCredentials component 2022-07-18 21:23:17 +02:00
Ilija Lazoroski 8ccdba7528 UI: Grab credentials from endpoint and render them 2022-07-18 21:23:17 +02:00
Ilija Lazoroski f99bd74cd4 UI: Construct and render stolen credentials 2022-07-18 21:23:17 +02:00
Ilija Lazoroski 2861f0b085 UI: Add UsedCredentials component to render credentials 2022-07-18 21:23:17 +02:00
Ilija Lazoroski e61b0bfdca UI: Add credentials parsing functionalities 2022-07-18 21:23:17 +02:00
Ilija Lazoroski f0f4f6d591 Island: Remove credentials from reporting 2022-07-18 21:23:17 +02:00
ilija-lazoroski 7456ef6b05
Merge pull request #2100 from guardicore/2092-remove-single-tests 
2092 remove single tests
 2022-07-18 21:02:54 +02:00
Mike Salvatore ea1dc930a1 BB: Remove "single_tests" subpackage 2022-07-18 13:08:29 -04:00
Mike Salvatore cf45ae4c3e BB: Remove "grouped" subpackage 2022-07-18 13:07:18 -04:00
Mike Salvatore c1073bd1ea BB: Remove unused "single_tests" 2022-07-18 13:06:00 -04:00
Mike Salvatore 70f3506317 BB: Remove test_blackbox_in_depth.py 2022-07-18 13:02:19 -04:00
Mike Salvatore 4e11ed2816
Merge pull request #2099 from guardicore/2072-credentials-store-fix 
2072 credentials store fix
 2022-07-18 11:07:38 -04:00
Mike Salvatore dde3fd3476 UT: Parametrize test_get_credentials_from_store() 2022-07-18 10:30:52 -04:00
Mike Salvatore ebc854735e Agent: Use new Credentials objects in AggregatingCredentialsStore 2022-07-18 10:22:14 -04:00
Mike Salvatore ef4fbb30cc Agent: Use new credentials format in ControlChannel 2022-07-18 09:55:08 -04:00
Mike Salvatore 19a7bfd8e6
Merge pull request #2098 from guardicore/2072-simplify-credentials 
2072 simplify credentials
 2022-07-18 09:35:54 -04:00
Mike Salvatore e5d3271b74 UT: Use Credentials.to_mapping() in test_credential_telem_send() 2022-07-18 09:23:21 -04:00
Mike Salvatore 068dbbe963 Agent: Extract methods to clean up AggregatingCredentialsStore 2022-07-18 09:14:51 -04:00
Mike Salvatore 7c920cced3 Agent: Fix identity logic in AggregatingCredentialsStore 2022-07-18 09:07:11 -04:00
Mike Salvatore 9edfe6979b Agent: Capture secrets if missing username in SSHCredentialCollector 2022-07-18 08:53:36 -04:00
Mike Salvatore d5a125d985 Agent: Capture username even if no secrets are associated 2022-07-18 08:46:07 -04:00
Mike Salvatore c144ad9e64 Agent: Fix "new user" logic in MimikatzCredentialCollector 
Neither Passwords nor hashes should be included for and users that
Infection Monkey creates.
 2022-07-18 08:42:31 -04:00
Mike Salvatore cb9f43d242 Agent: Fix type hint in MimikatzCredentialCollector 2022-07-18 08:27:32 -04:00
Mike Salvatore 302803b779 Agent: Improve variable names in MimikatzCredentialCollector 2022-07-18 08:27:08 -04:00
Mike Salvatore acf12c2de1 Common: Simplify _make_credentials() 2022-07-18 08:14:01 -04:00
Mike Salvatore 9e7963afc0 Common: Simplify _serialize_credentials() 2022-07-18 08:13:09 -04:00
Ilija Lazoroski 575fff0cdb Agent: Simplify credentials object in MimikatzCredentialCollector 2022-07-18 11:49:44 +02:00
Ilija Lazoroski 2cb6c60866 UT: Fix credentials intercepting telemetry messenger tests 2022-07-18 11:47:49 +02:00
Ilija Lazoroski 0f2fc0902f Agent: Simplify credentials object in aggregating credentials store 2022-07-18 11:32:12 +02:00
Ilija Lazoroski f421f42604 Agent: Simplify credentials in ssh credentials collector 2022-07-18 11:32:12 +02:00
Mike Salvatore 213b161d1a Common: Fix type hints in credentials.py 2022-07-15 12:34:42 -04:00
Mike Salvatore 62ce91b59b Common: Prevent invalid Credentials objects from being constructed 2022-07-15 12:19:12 -04:00
Mike Salvatore 19a720898e Island: Handle encryption/decryption of None credential components 2022-07-15 11:36:07 -04:00
Mike Salvatore 2af713dabd Common: Allow identities or secrets to be None 
It's possible that credentials are stolen and an identity/secret
association can not be made. For example, a list of usernames can be
acquired by `ls /home`, but no passwords will be retrieved this way.
Credentials(identity=Username("username"), secret=None) will represent
this case.
 2022-07-15 10:50:25 -04:00