p34709852
/
monkey
forked from p15670423/monkey
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
7,627 Commits 30 Branches 0 Tags 47 MiB
Commit Graph

7627 Commits

Author SHA1 Message Date
Mike Salvatore fd2143a4df Agent: Re-raise exceptions in HostExploiter 
The AutomatedMaster can't process the exceptions if the HostExploiter
swallows them. The HostExploiter can log and re-raise the exceptions so
they can be processed by the AutomatedMaster.
 2022-03-07 10:24:22 -05:00
Ilija Lazoroski c802f21756 Agent: Prevent overwriting hadoop linux agent 
Because hadoop is re-requesting agents, we don't get the
agent if it already there, if it has size 0 and if it exists
we remove it.
 2022-03-07 15:40:15 +01:00
Mike Salvatore 00829ac094 Agent: Add TODOs to AutomatedMaster 2022-03-07 06:20:34 -05:00
Mike Salvatore 754402c69d Agent: Gracefully handle unexpected exceptions when running exploiters 2022-03-07 06:16:23 -05:00
Mike Salvatore e58d06b91e
Merge pull request #1757 from guardicore/1736-add-log4shell-to-puppet 
Add Log4Shell to puppet
 2022-03-07 05:52:21 -05:00
Mike Salvatore 0e01264bb6 Agent: Make do_GET() and inner function of _get_new_http_handler_class 2022-03-07 05:21:48 -05:00
Mike Salvatore 95be74ed81 Agent: Reorder exploit_class_http_server.py 2022-03-07 05:18:28 -05:00
Mike Salvatore c4f971ff33 Agent: Add comment to _get_new_http_handler_class() 2022-03-07 05:16:46 -05:00
Mike Salvatore 3698a28e26 Agent: Add return type annotation to remove_monkey_dir() 2022-03-07 05:13:48 -05:00
Mike Salvatore ca485bf569 Agent: Return temporary monkey_dir as Path instead of str 2022-03-07 05:13:46 -05:00
Mike Salvatore efa0c5beb4 Agent: Format HTTPFingerprinter with Black 2022-03-04 17:05:35 -05:00
Mike Salvatore bf998f5021 Agent: Fix HTTPHandler class name in ExploitClassHTTPServer 2022-03-04 17:03:37 -05:00
Mike Salvatore df495f98c7 Agent: Fix twisted import parallelization bug 2022-03-03 14:49:39 -05:00
Mike Salvatore 93415cf2c8 Agent: Add TODO to Log4ShellExploiter 2022-03-03 14:40:41 -05:00
Mike Salvatore 515edf265a Island: Add helpful logging to MonkeyDownload resource 2022-03-03 13:48:18 -05:00
Mike Salvatore 928192b9b0 Agent: Add helpful debug logging to log4shell exploiter 2022-03-03 13:48:00 -05:00
Mike Salvatore d3c75200fd Agent: Remove SystemInfoCollector references from dropper.py 2022-03-03 11:31:11 -05:00
vakarisz b20abad0b6 Island: change manual run commands to target /os download endpoints 
Now monkey agents are downloaded not by name, but by os, so url's had to change
 2022-03-03 17:42:10 +02:00
Shreya Malviya 04facab583 UI: Fix manual running commands' address shown on Island's run page 2022-03-03 20:08:10 +05:30
Mike Salvatore 9af6c3bed1 Agent: Suppress debug logging of urllib3 
urllib3 debug logs are unnecessarily verbose for our purposes. Setting
the log level of urllib3 to debug unclutters the logs and makes
debugging simpler.
 2022-03-03 09:37:39 -05:00
Mike Salvatore 4408601332 UT: Add unit test for missing server header in valid http response 2022-03-03 09:18:54 -05:00
vakaris_zilius 08aac019d8 Agent: Fix false negatives in HTTPFingerprinter 2022-03-03 09:10:30 -05:00
vakaris_zilius 454b038948 Monkey: fix a bug where incorrect windows type string results in key error in pre_exploit() 2022-03-03 09:25:56 +00:00
Mike Salvatore 031cafbe12 Agent: Refactor Log4ShellExploiter to work with Puppet 2022-03-02 14:23:34 -05:00
Mike Salvatore 7e957e5310 Agent: Create temporary monkey directory in monkey.py 2022-03-02 14:22:34 -05:00
Mike Salvatore 8a6a820d14 Agent: Use a random, secure /tmp directory for "monkey_dir" 2022-03-02 14:20:57 -05:00
Mike Salvatore 731965f438
Merge pull request #1759 from guardicore/keep-tunnel-open 
Keep tunnel open
 2022-03-02 12:21:51 -05:00
Mike Salvatore c9329b35b9 Agent: Add missing __init__.py to telemetry/messengers/ 2022-03-02 12:11:32 -05:00
Mike Salvatore 63ed001a3e Agent: Remove disused _wait_for_exploited_machine_connection() 2022-03-02 12:11:22 -05:00
Mike Salvatore 84cb14e1c5 Agent: Pass ExploitInterceptingTelemetryMessenger to Master 2022-03-02 12:11:22 -05:00
Mike Salvatore aba0446e61 Agent: Add telemetry messenger to report exploited machines to tunnel 2022-03-02 12:11:19 -05:00
Mike Salvatore 393043545a Agent: Use Threading.Event instead of bool for MonkeyTunnel._stopped 2022-03-02 10:53:44 -05:00
Mike Salvatore 47062071ac Agent: Add logic to MonkeyTunnel to wait for exploited victims 2022-03-02 10:53:43 -05:00
Shreya Malviya 1ca9a21d43 UT: Add test for thread-safety of ExploitClassHTTPServer 2022-03-02 17:02:37 +02:00
Shreya Malviya 7739094cfd UT: Fix test function name's spelling 2022-03-02 17:02:37 +02:00
Shreya Malviya 3cd3d661bf Agent: Create HTTP handler class dynamically for ExploitClassHTTPServer 2022-03-02 17:02:37 +02:00
Shreya Malviya 896bcfebea Agent: Load Log4ShellExploiter into puppet 2022-03-02 17:02:37 +02:00
Shreya Malviya 36e01ae472 Agent: Return ExploiterResultData from Log4ShellExploiter's _exploit_host() 2022-03-02 16:55:23 +02:00
Mike Salvatore f270a50c00 Agent: Fix typo in monkey.py (repoitory -> repository) 2022-03-02 09:13:24 -05:00
Mike Salvatore 145078839d Merge branch '1675-remove-32-bit-agents' into agent-refactor 
PR #1758
 2022-03-02 08:49:52 -05:00
Mike Salvatore 46eb8a4484 CHANGELOG: Add changelog entries for removing 32-bit agents. 2022-03-02 06:50:15 -05:00
Mike Salvatore 07658802f3
Merge pull request #1756 from guardicore/1675-agent-repository 
Add IAgentRepository to simplify agent download during propagation
 2022-03-02 06:42:59 -05:00
Mike Salvatore 932d4401d8 Island: Remove redundant file name in commit hash log message 2022-03-02 06:42:06 -05:00
Mike Salvatore 279aed36af Agent: Remove monkeyfs and download methods from ControlClient 2022-03-01 14:57:00 -05:00
Mike Salvatore 1b1b68f6a6 Use IAgentRepository in Hadoop/WebRCE exploiter 2022-03-01 13:58:03 -05:00
Mike Salvatore 86c18b556f Agent: Remove disused transport.http.HTTPServer 2022-03-01 13:29:55 -05:00
Mike Salvatore c33318646a
Merge pull request #1754 from guardicore/1695-attack-changes 
1695 attack changes
 2022-03-01 09:46:30 -05:00
vakarisz 458b2121cd Changelog: added entry for removed T1082 attack technique report 2022-03-01 16:16:06 +02:00
vakarisz 4e1fc525ae Island: remove T1082 attack technique 
This attack technique gathered data from deprecated system info telemetries. This attack technique needs to be reworked and perhaps it's better to have a single, dedicated and controlable system info gathering procedure
 2022-03-01 16:06:18 +02:00
vakarisz 3734cb007e Island: change T1016 to format results from Monkey document 
Previously T1016 pulled results from system info telemetries, but system info telemetries are deprecated and network information is stored on monkey documents
 2022-03-01 16:06:18 +02:00