p34709852
/
monkey
forked from p15670423/monkey
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
2,021 Commits 30 Branches 0 Tags 47 MiB
Commit Graph

2021 Commits

Author SHA1 Message Date
Dhayalan 0ed66f2cd8 Merge remote-tracking branch 'upstream/develop' into develop 2019-03-13 12:54:57 +01:00
Dhayalan 01cc702906 Update vsftpd.py 
Removed (+,! ) used for debugging.
Changed the recv size from 1024 to 128
 2019-03-13 11:31:26 +01:00
Dhayalan 53f12f4b67 Update ReportPage.js 
Fix for issue #213
 2019-03-12 20:53:16 +01:00
Dhayalan 9b0c0d4233 Update vsftpd.py 
using `ftp_socket.recv(1024).decode('utf-8')` to prevent chances of race conditions
 2019-03-12 19:51:12 +01:00
Dhayalan 47baea039a Update vsftpd.py 
Better exception log
 2019-03-12 19:44:45 +01:00
Dhayalan bb8a1c5c01 Updated the exploit. 
The `.` was removed from reportpage.js and the exploit was modified.
 2019-03-12 19:38:48 +01:00
Dhayalan dade4daad2 Update vsftpd.py 
Removed unused imports, removed hardcoded username and password.

Removed EXPLOIT_TYPE
Removed NONE in tatget_os_type

Reduced time to sleep from 2 to 1
 2019-03-12 12:37:09 +01:00
Dhayalan 0b3e6274d9 Update vsftpd.py 
Changed the payload from /tmp/monkey to generating payload using build_monkey_commandline
 2019-03-12 12:16:20 +01:00
Dhayalan 6313ce7933 Update vsftpd.py 2019-03-12 12:06:17 +01:00
Dhayalan 0706bddda5 Added discription and details for repot. 
Added discription and details about the exploit vsftpd
 2019-03-11 16:09:09 +01:00
Dhayalan 2b47749385 Added a new exploit 
A new exploit was added to the infection_monkey for the following vulnerability
https://www.rapid7.com/db/modules/exploit/unix/ftp/vsftpd_234_backdoor
 2019-03-11 01:50:27 +01:00
Daniel Goldberg 3cd85ff85a
Merge pull request #276 from VakarisZ/mssql_partial_fix 
MSSQL now is able to upload a payload
 2019-03-09 12:24:47 +02:00
vakaris_zilius c205636b10 MSSQL now is able to upload a payload 2019-03-08 15:34:17 +00:00
Daniel Goldberg de2e0d88ba
Merge pull request #275 from Dhayalanb/develop 
Updated Create_certificate to key of length 2048
 2019-03-07 13:14:22 +02:00
Dhayalan 3372ea7820
Updated Create_certificate to key of length 2048 
deb package creates a key of length 1024 by default and and since the release of openssl 1.1.1 the default openssl.conf file at /etc/ssl/openssl.conf  has CipherString = DEFAULT@SECLEVEL=2 , resulting in the key length to be small.  In order to adhere to SECLEVEL=2 the key length was increased from 1024 to 2048.
 2019-03-07 12:09:03 +01:00
VakarisZ 9019db777a Removed docs that can not be versioned 2019-03-05 11:56:58 +02:00
Daniel Goldberg 16f0b475af
Merge pull request #255 from VakarisZ/avoid_sshguard 
Exploitation order + tiny monkey.py refactor
 2019-03-05 11:42:35 +02:00
Daniel Goldberg 3f91f273cb
Fix typo in README 2019-02-27 17:18:56 +02:00
VakarisZ cc327633ec Added enum34 to requirements 2019-02-26 19:55:47 +02:00
itay 38381c4c9d Merge branch 'develop' 2019-02-26 12:38:05 +02:00
itay ebe79d74d4 Disable MSSQL exploiter 2019-02-26 10:51:38 +02:00
VakarisZ 04358d556a Exploit ordering implemented using enum 2019-02-22 11:08:21 +02:00
Daniel Goldberg 3691b432fa
Merge pull request #272 from guardicore/bugfix/mssql-bugfixes 
fix expanding of env variables
 2019-02-21 17:50:15 +02:00
itay b5523a9c54 fix expanding of env variables 2019-02-21 16:50:02 +02:00
itaymmguardicore 8069d27346
Merge pull request #271 from guardicore/hotfix/sambacry-catch-another-exception 
Sambacry now catches NetBIOSError on attempting credentials
 2019-02-21 12:34:54 +02:00
itay df8de92ea9 Sambacry now catches NetBIOSError on attempting credentials 2019-02-21 12:10:59 +02:00
VakarisZ 765ff0e0a8
Merge pull request #269 from VakarisZ/weblogic_quickfix 
Weblogic default timeout increased
 2019-02-19 11:01:17 +02:00
VakarisZ 0e24f45fc9 Merge remote-tracking branch 'upstream/develop' into weblogic_quickfix 2019-02-19 10:58:10 +02:00
VakarisZ bdb8b56fcc Weblogic timeout increased 2019-02-19 10:57:47 +02:00
itaymmguardicore 85044bc0c7
Merge pull request #268 from guardicore/bugfix/reset-then-update-config 
Fixed bug where config reset followed by update failed
 2019-02-18 14:46:05 +02:00
itay 122ce5f406 Fixed bug where config reset followed by update failed 2019-02-18 14:45:03 +02:00
itaymmguardicore 3508515840
Merge pull request #267 from guardicore/hotfix/various-fixes 
Hotfix/various fixes
 2019-02-18 12:24:54 +02:00
itay 759cbcd6ae Hotfix telemetry feed accessing non-existent monkey_guid 2019-02-18 12:23:13 +02:00
itay f5b9c6fe46 Show AWS info regardless of failed auth 2019-02-18 11:53:52 +02:00
itay af5e791e1b postbreach actions disabled by default 2019-02-18 11:40:15 +02:00
itay e7940992e0 Update infection monkey readme 2019-02-17 14:50:50 +02:00
itaymmguardicore ee7c9d9ea8
Merge pull request #266 from guardicore/hotfix/remove-unecessary-set-state 
Some unecessary set states removed to prevent refreshing of config page
 2019-02-17 14:08:54 +02:00
itaymmguardicore 1fa31340ca
Merge pull request #265 from guardicore/hotfix/various-fixes 
Hotfix/various fixes
 2019-02-17 14:06:26 +02:00
itaymmguardicore ba359a518c
Merge pull request #264 from guardicore/feature/deb-mongo-dep 
Feature/deb mongo dep
 2019-02-17 14:06:02 +02:00
itay 371a4d0678 Remove copy-pasted text 2019-02-17 13:22:41 +02:00
itay 47401957a5 update logo 2019-02-17 13:22:14 +02:00
itay d67cb18cae Some unecessary set states removed to prevent refreshing of config page 2019-02-14 19:07:12 +02:00
itay 03a0c45b5c Use monkey's python 2019-02-14 16:50:00 +02:00
itay 1189d42bbb Debian package now requires mongo as dependency instead of having a monkey-mongo service 2019-02-14 13:57:56 +02:00
itaymmguardicore 0513966c76
Merge pull request #259 from guardicore/feature/run-aws-monkey 
Feature/run aws monkey
 2019-02-13 14:58:54 +02:00
Daniel Goldberg 08aede237e
Merge pull request #263 from guardicore/bugfix/set-auth-by-server 
Checking with server if auth enabled
 2019-02-12 17:03:19 +02:00
itaymmguardicore 78507062b8
Merge branch 'develop' into feature/run-aws-monkey 2019-02-12 16:37:56 +02:00
itay dfb51cc962 Add AWS troubleshooting message 2019-02-12 16:26:29 +02:00
itay 30e96dc7d3 Checking with server if auth enabled 2019-02-12 15:39:29 +02:00
Daniel Goldberg 64ed770d2d
Merge pull request #262 from guardicore/bugfix/require-tr-only-linux 
Bugfix/require tr only linux
 2019-02-11 19:18:23 +02:00