p34709852
/
monkey
forked from p15670423/monkey
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
4,099 Commits 30 Branches 0 Tags 47 MiB
Commit Graph

4099 Commits

Author SHA1 Message Date
Shreya 961d5f81f8 Make DC details object attributes 2021-02-19 01:06:06 +05:30
Shreya a908d31fc5 Remove unused imports and variable 2021-02-19 01:06:06 +05:30
Shreya 81c6de75b7 Add Zerologon to documentation 2021-02-19 01:06:06 +05:30
Shreya 290385a8a0 Zerologon's success on a machine shouldn't prevent other exploit attempts on the machine 
(ZL gathers credentials for other exploits)
 2021-02-19 01:06:06 +05:30
Shreya 9c0fc7e435 Changes after manual testing 2021-02-19 01:06:06 +05:30
Shreya c05a48d34d Final exploit touches and report stuff 2021-02-19 01:06:05 +05:30
Shreya b57605b58d Changes from manual testing 2021-02-19 01:06:05 +05:30
Shreya 1cf07eff89 Improve log messages and comments 2021-02-19 01:06:05 +05:30
Shreya 13ef69c3ed Clean up code and comments 2021-02-19 01:06:05 +05:30
Shreya 53ef6feadf Restore password 
(wmiexec to get HKLM keys --> secretsdump to get orig pwd nthash --> restore)
 2021-02-19 01:06:05 +05:30
Shreya e7485bd02f Mention CVE 2021-02-19 01:06:05 +05:30
Shreya 8549ba14cf Bringing stuff together 2021-02-19 01:06:05 +05:30
Shreya 5cd8b39f0f Get original passwords' hashes 2021-02-19 01:06:05 +05:30
Shreya a4207494ec Change classes order in file 2021-02-19 01:06:05 +05:30
Shreya 44e15bd2a0 Add restore_password() 2021-02-19 01:06:05 +05:30
Shreya 9468de471d Partially add Zerologon exploiter 2021-02-19 01:06:05 +05:30
Shreya 2cc0a159e0 Rename "WindowsServer" fingerprinter: "Zerologon" makes more sense 2021-02-19 01:06:05 +05:30
Shreya 900bb7636d Basic config and report stuff 2021-02-19 01:06:05 +05:30
Mike Salvatore 978927c329
Merge pull request #970 from shreyamalviya/telemetry-tests 
Telemetry unit tests
 2021-02-18 14:18:05 -05:00
Shreya 2bc27b48de Use stub for PBA 2021-02-19 00:44:28 +05:30
Shreya 8bd30ceb4c Format code using black 2021-02-19 00:09:20 +05:30
Shreya 15107eeea3 Use constants/literals for tests 2021-02-19 00:02:34 +05:30
Shreya a4603853a9 Split test_attack_telem_classes.py and test_technique_telems.py into separate test files 2021-02-18 22:44:42 +05:30
Shreya 08addff8c5 Modify tests for attack telem classes and technique telems 
- test `send()` instead of `get_data()` using fixture `spy_send_telemetry`
 2021-02-18 22:34:15 +05:30
Mike Salvatore 4efdeeacc3 agent: remove dependency on pytest-mock 2021-02-18 09:59:52 -05:00
Mike Salvatore 86ffaf358f agent: break test_base_telem_classes into discrete test files 2021-02-18 09:53:55 -05:00
Mike Salvatore 0ac9ce949c agent: reformat test_base_telem_classes.py with black 2021-02-18 09:38:37 -05:00
Mike Salvatore c2ed31bde8 telemetry: test `send()` for telemetry classes in `telemetry/` 2021-02-18 09:33:58 -05:00
Shreya 7960529ee9 Add conftest.py 2021-02-18 19:41:29 +05:30
Shreya 42b7fa05d6 Add requirement 2021-02-17 19:02:20 +05:30
Shreya 6b0cc1e368 Add tests for other base telems + put all telem tests in one folder 2021-02-17 19:01:55 +05:30
Shreya b9bbfac30b Add/modify tests for attack telems 2021-02-17 18:25:38 +05:30
Mike Salvatore de3adfd483
Merge pull request #964 from guardicore/payload_obfuscation 
Payload obfuscation
 2021-02-11 08:47:15 -05:00
VakarisZ f11736d451 Added no inspection comments and an explanation on why we use Crypto for shellcode_obfuscator.py 2021-02-11 15:29:29 +02:00
Mike Salvatore a7b79d6d03 cc: fix typo in pycrypto noqa comment 2021-02-11 08:26:10 -05:00
Mike Salvatore e4bcf2ef1c cc: ignore pycrypto security warnings since we use pycryptodome 2021-02-11 08:09:07 -05:00
Mike Salvatore 0cc65cb346
Merge pull request #924 from shreyamalviya/env-collection-errors 
Catch exceptions in AwsInstance and AzureInstance
 2021-02-10 08:51:48 -05:00
Shreya 11a0477dbb Rename test functions, add 404 response tests, and other tiny changes 2021-02-10 16:15:17 +05:30
VakarisZ 28e4a0f23d Altered shellcode obfuscator unit test to match the new code 2021-02-10 10:32:43 +02:00
Shreya 016d886781 Add tests for AwsInstance 
and change urllib.request.urlopen() to requests.get() for easier testing; functionality doesn't change
 2021-02-06 19:19:08 +05:30
Shreya eed5ea1337 Add tests for GcpInstance 2021-02-04 21:02:53 +05:30
Shreya 413aa35b5b Rename an old test file 2021-02-04 20:46:19 +05:30
Shreya adab0436be Add tests for AzureInstance 2021-02-04 20:46:20 +05:30
Shreya 59383e7946 Catch exceptions in AwsInstance and AzureInstance 2021-02-04 20:46:11 +05:30
Mike Salvatore 8f7a0aeb1c
Merge pull request #955 from mssalvatore/819/icmp-cross-segment-report 
819/icmp cross segment report

Fixes #819
 2021-02-03 10:13:10 -05:00
Mike Salvatore 919c51b920 ui: display ICMP in cross-segment issues report 2021-02-02 16:44:42 -05:00
Mike Salvatore c6bec1335c island: include 'icmp' from scan telemetry in report 2021-02-02 16:44:42 -05:00
Mike Salvatore c7a1f246cb agent: add icmp property to VictimHost 
Keep track of whether or not PingScanner was successful by storing a
boolean in VictimHost objects. This information is communicated back to
the Monkey Island via telemetry.
 2021-02-02 16:44:42 -05:00
Mike Salvatore 458e01cf24 ui: use template strings when generating cross-segment report 2021-02-02 16:44:42 -05:00
Mike Salvatore c8b4089bd2 ui: display cross-segment issues as "pinged" if no services/ports 
Issue #819
 2021-02-02 16:44:42 -05:00