p34709852
/
monkey
forked from p15670423/monkey
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
4,808 Commits 30 Branches 0 Tags 47 MiB
Commit Graph

2718 Commits

Author SHA1 Message Date
VakarisZ ed589bd46a Specified pyjwt requirement to be 1.7 2021-03-18 09:41:29 +02:00
VakarisZ e6a0b7b49e Merge branch 'release/1.10.0' of https://github.com/guardicore/monkey into release/1.10.0 2021-03-18 09:34:33 +02:00
VakarisZ 4cd105abe4 Fixed ScoutSuite unit test 2021-03-18 09:31:45 +02:00
VakarisZ 3ca7537a99 ScoutSuite performance upgrades. 2021-03-17 11:50:49 -04:00
VakarisZ 6a13fa90e6 Small profiling decorator improvement 2021-03-17 11:50:45 -04:00
VakarisZ 80776f2b1d Minor spec file style improvement 2021-03-17 11:50:03 -04:00
VakarisZ fd058c7ff0 Refactored ScoutSuite into a separate package rather than submodule 2021-03-17 11:49:33 -04:00
VakarisZ 2c1e89c7b3 ScoutSuite performance upgrades. 2021-03-17 14:49:35 +02:00
VakarisZ aaf6a33f92 Small profiling decorator improvement 2021-03-17 14:41:11 +02:00
VakarisZ 9e27a93a3b Minor spec file style improvement 2021-03-17 12:45:08 +02:00
Shreya 5192953dd0 Unrelated log statement changes 2021-03-16 15:27:06 +05:30
Shreya ece4e6e911 Change import 2021-03-16 15:26:20 +05:30
Shreya 90d9d5933a Handle UnicodeDecodeError when getting installed packages on Windows systems 2021-03-16 15:23:46 +05:30
VakarisZ c6fd7ae5e8 Refactored ScoutSuite into a separate package rather than submodule 2021-03-16 09:11:45 +02:00
Shreya 2b4fd9e9a7 Rephrase custom PBA command config descriptions 2021-03-11 19:39:57 +05:30
Shreya 4928109be2 Rephrase custom PBA file config descriptions 2021-03-11 18:42:01 +05:30
Shreya 9167aa6460 Unit test modifications 2021-03-11 18:33:48 +05:30
Shreya 72a88c81a3 Add unit tests 2021-03-11 18:33:48 +05:30
Shreya 6f134bdb03 Download custom PBA file during execution, not initialisation 2021-03-11 18:33:48 +05:30
Shreya eeba0513d2 Only upload custom PBA file; execute only if specified in custom PBA command 2021-03-11 18:33:48 +05:30
Shreya 307e1e3093 Rephrase custom PBA file descriptions in configuration 2021-03-11 18:33:48 +05:30
Mike Salvatore 3714dd2f6f agent: Use the dropper in the DrupalExploiter 
Fixes #1026
 2021-03-10 06:44:53 -05:00
Mike Salvatore e7528e9544 agent: Use PIPE for stdin, stdout, and stderr in dropper 
The dropper is expected to detatch the child monkey agent process. If
stdin, stdout, and stderr are set to `None`, the child process inherits
them. Since the child process inherits the parent's file descriptors and
holds them open, issues like #1026 can occur.
 2021-03-10 06:43:48 -05:00
Mike Salvatore 4ac7c01976 agent: add 2 new log statements to the dropper 2021-03-09 19:26:50 -05:00
Mike Salvatore ba6bf71776 agent: Fix typo in HTTPFinger 2021-03-09 11:56:32 -05:00
VakarisZ a132881ccc
Merge pull request #1022 from guardicore/zerologon-bb-test 
Zerologon BB test
 2021-03-08 13:59:16 +02:00
VakarisZ 263fa53ea5 Added an endpoint on the island for telemetry tests. This allows for tests like blackbox tests to send queries and check whether a certain telemetry is in the database or not 2021-03-08 11:13:31 +02:00
VakarisZ 3f687f6aea Moved common config value paths to common 2021-03-08 11:06:18 +02:00
Mike Salvatore 5e21ff88cb ui: minor style changes in AdvancedMultiSelect 2021-03-05 12:35:17 -05:00
Mike Salvatore 793bb99309 ui: properly render master checkbox on import or reset 
Fixes #1018
 2021-03-05 12:34:46 -05:00
Mike Salvatore 43c5834d51 cc: add useful debug logging that explains errors in HTTPFinger 2021-03-05 10:06:27 -05:00
VakarisZ 8de21df309
Merge pull request #1015 from guardicore/release_crypto_package_requirement 
Fixed cryptography requirement
 2021-03-04 11:25:09 +02:00
VakarisZ 9fb0a5628d Fixed cryptography requirement for infection monkey, latest one doesn't have a pre-built wheel 2021-03-04 10:46:05 +02:00
Mike Salvatore 5bdb526db3
Merge pull request #1013 from guardicore/scoutsuite_docs 
Scoutsuite docs
 2021-03-03 11:51:29 -05:00
Shreya 243e077687 Remove accidental debug statement 2021-03-03 18:59:47 +05:30
Mike Salvatore d60ce37c5d cc: use fresh mongomock in each report test 2021-03-03 08:22:32 -05:00
Shreya d772760ace Add unit tests for get_stolen_creds() 2021-03-03 17:08:36 +05:30
Shreya eecee86d92 Remove preceeding underscore from variables 2021-03-03 15:09:01 +05:30
Shreya 8d2e530eaa Show IP if domain name isn't available 2021-03-03 15:09:01 +05:30
Shreya 1528b00a1b Change origin of creds stolen using exploits from host machine to exploited machine 2021-03-03 15:09:01 +05:30
VakarisZ eb41376f53
Merge pull request #1014 from guardicore/scoutsuite_submodule_retargetting 
Re-targeted scoutsuite submodule to use latest commit
 2021-03-03 11:33:06 +02:00
VakarisZ 2dc9c26a7c Re-targeted scoutsuite submodule to use our branch 2021-03-03 11:25:49 +02:00
VakarisZ cb60b8dbd2 Removed unused Badge component import from ScoutSuiteRuleButton.js 2021-03-03 11:24:21 +02:00
VakarisZ 5987cee226 Improved scoutsuite rule display by giving resource path more space. 2021-03-03 10:24:12 +02:00
VakarisZ 719c90e9b3 Removed unimportant AWS info present in screenshots 2021-03-03 10:23:11 +02:00
Mike Salvatore 875027d3f3 ui: replace double with single quotes in SecurityReport.js 2021-03-02 12:08:03 -05:00
VakarisZ b652e0d851
Merge pull request #983 from shreyamalviya/bugfix-run-monkey-manual-ignores-configured-ip 
Show only configured IPs for Run Monkey -> Manual page
 2021-03-02 14:15:39 +02:00
Mike Salvatore 1b73c56d67
Merge pull request #998 from guardicore/zerologon-password-reset-warning 
Zerologon password reset warning
 2021-03-02 07:01:03 -05:00
Shreya 5f66a99f30 Consider non-threat issues when calculating threat count 2021-03-02 14:53:17 +05:30
Shreya 6babcd099a Change warning order and phrasing in report 2021-03-02 13:02:56 +05:30
VakarisZ 89907d133e Improved warning icon display style in the overview 2021-03-02 09:09:25 +02:00
Mike Salvatore a152da02d2 ui: show warning when unsafe ATT&CK configuration is submitted 2021-03-01 12:00:05 -05:00
Mike Salvatore 4d4a01b6a2 ui: resolve race condition in ATT&CK configuration page 2021-03-01 11:57:59 -05:00
Mike Salvatore ac530b2555 cc: reword zerologon exploiter class info 2021-03-01 10:35:04 -05:00
VakarisZ 9e3fe03ce1 Replace double quotes with single quotes in SecurityReport.js 2021-03-01 10:27:56 -05:00
VakarisZ 9171ed8190 Minor formatting improvements in SecurityReport.js 2021-03-01 10:27:56 -05:00
VakarisZ e49b7b85cc Improved formatting and link styles in SecurityReport.js 2021-03-01 10:27:56 -05:00
VakarisZ 8eeed20f7e Changed zerologon links to be more consistent and have a style 2021-03-01 10:27:56 -05:00
VakarisZ b3e9922d0f Changed the logic of zerologon password restoration issue overview to be more consistent with the function of issue map. 2021-03-01 10:27:56 -05:00
Mike Salvatore 5050f33f1a ui: add missing semicolons to ConfigurePage.js 2021-03-01 10:14:08 -05:00
Shreya 7b0f35b8a4 Add comment to unit tests, specifying where else changes need to be made 2021-03-01 18:00:52 +05:30
Mike Salvatore f6fc380fd7 ui: add fingerprinters to SafeOptionValidator 2021-02-26 14:40:49 -05:00
Mike Salvatore 67e142f4fe ui: generalize isUnsafeOptionSelected 2021-02-26 14:33:42 -05:00
Mike Salvatore dd7c1bb08c ui: rework logic to remove unsafeOptionsConfirmed 2021-02-26 14:27:18 -05:00
Mike Salvatore 95af08a5fa ui: improve names in unsafeItemSelected 2021-02-26 12:50:31 -05:00
Mike Salvatore 75bf30913a ui: extract UnsafeOptionsConfirmationModal JSX invocation into a function 2021-02-26 12:49:57 -05:00
Shreya 2f99631ed4 Fix unit tests 2021-02-26 22:39:32 +05:30
Mike Salvatore 5a9cb8b4af ui: switch unsafe modal cancel button to variant secondary 2021-02-26 11:11:52 -05:00
Mike Salvatore 11c30fec14 ui: simplify `onClick()` callbacks in UnsafeOptionsConfirmationModal 2021-02-26 11:08:57 -05:00
Mike Salvatore 2ef81d5688 ui: change language from "use" -> submit for consistency 2021-02-26 11:06:33 -05:00
Mike Salvatore 7079a6fd23 ui: pass callback, not return value, to setState() 2021-02-26 08:42:04 -05:00
Mike Salvatore f094efba8f
ui: minor change to unsafe modal dialog language 
Co-authored-by: VakarisZ <36815064+VakarisZ@users.noreply.github.com>
 2021-02-26 08:10:13 -05:00
Mike Salvatore 10a4252aff ui: remove unnecessary semicolons 2021-02-26 08:08:48 -05:00
Mike Salvatore 68e835433a ui: sort unsafe options first so they're less likely to be hidden 2021-02-26 08:08:39 -05:00
Mike Salvatore 88e2ccb30a ui: pass callback, not return value, to setState() 2021-02-25 20:02:33 -05:00
Mike Salvatore f82d4a1b97 ui: fix capitalization of "Import config" button for consistency 2021-02-25 19:54:32 -05:00
Mike Salvatore 8f32c48964 ui: make unsafeItemSelected() a pure function 2021-02-25 19:47:21 -05:00
Mike Salvatore ff28509d0d ui: fix race in unsafe confirmation modal dialog 2021-02-25 19:41:36 -05:00
Mike Salvatore 8fd1582909 ui: display modal dialog when unsafe config is imported 2021-02-25 19:19:36 -05:00
Mike Salvatore d160787851 ui: extract renderUnsafeOptionsConfirmationModal() into a component 2021-02-25 15:39:32 -05:00
Mike Salvatore 6813262b30 ui: check PBA, exploiter, and system info safety on submit 2021-02-25 13:37:41 -05:00
Shreya c0d2d5b2b6 Fix typo, remove unused import, change function/variable names for consistency 2021-02-25 22:38:17 +05:30
Mike Salvatore 510b001c2a ui: add a modal dialog that asks users to confirm unsafe options 2021-02-25 11:59:01 -05:00
Shreya f9ea196b98 Add unit tests for `set_server_ips_in_config()` in monkey_island/cc/services/config.py 2021-02-25 22:14:36 +05:30
VakarisZ ce697b3a45 Improved exception handling of expected exceptions - if they are expected, we don't need to see the error trace. 2021-02-25 16:27:45 +02:00
VakarisZ e9b84ff86d Improved zero logon exploiter to fail on failed domain controller name fetch. 2021-02-25 16:27:45 +02:00
Mike Salvatore 67fd1712b5 report: rename ZEROLOGON_CRED_RESTORE_FAILED -> ZEROLOGON_PASSWORD_RESTORED 2021-02-25 09:04:47 -05:00
Shreya 11e6b9e281 Take IPs for Run Monkey -> Manual page from configuration 2021-02-25 19:06:17 +05:30
VakarisZ 94ac75e649 Improved zero logon overview UI and added password restoration warning to overview. 2021-02-25 15:29:22 +02:00
VakarisZ 8b7e0d0fa0 Added ZeroLogon overview section to the report 2021-02-25 15:16:00 +02:00
Shreya 6581a5ab0c Add warning to machine-specific recommendation if password was not reset 2021-02-25 18:17:50 +05:30
Shreya 3da1de39a6 Add Zerologon (and Drupal) information to "Immediate Threats" 2021-02-25 14:54:36 +05:30
Mike Salvatore f17c08d286 cc,agent: rename password_restore_success -> password_restored 2021-02-24 17:26:31 -05:00
Mike Salvatore 70fd7d7bb0 cc: add password_restore_success to zerologon report issue 2021-02-24 17:15:32 -05:00
Mike Salvatore 4fbb0f2026 ui: add machine-related recommendation for Zerologon to security report 2021-02-24 16:36:53 -05:00
Mike Salvatore 36bd9834a6 agent: add zerologon password restore success/failure to telemetry 2021-02-24 15:07:42 -05:00
Mike Salvatore b6bb6d8221 cc: format exploiter_classes.py with black 2021-02-24 13:40:49 -05:00
Mike Salvatore b5b8d289ca cc: add a note about resetting password after failed zerologon attempt 2021-02-24 13:23:46 -05:00
Shreya Malviya bc3283c4a5
Merge pull request #911 from shreyamalviya/zerologon-exploiter 
Zerologon Exploiter
 2021-02-24 17:58:45 +05:30
Shreya Malviya 43cac3568b
Reword exploiter description 
Co-authored-by: Mike Salvatore <mike.s.salvatore@gmail.com>
 2021-02-24 16:18:58 +05:30
Shreya 28edf7d2b7 Encrypt credentials before logging 2021-02-24 16:08:36 +05:30
VakarisZ fdeb54d541 Added jwt_required decorator to the "local_run" endpoint, in order to avoid malicious actors running the monkey 2021-02-23 10:47:37 -05:00
Shreya db52f0966f Modify `PaginatedTable`: let `ReactTable` handle the case where no data is available 2021-02-23 10:00:56 -05:00
Shreya 353e9844dc Modify unit tests 2021-02-23 12:57:50 +05:30
dependabot[bot] 8b60625d81 build(deps): bump marked in /monkey/monkey_island/cc/ui 
Bumps [marked](https://github.com/markedjs/marked) from 1.1.1 to 2.0.0.
- [Release notes](https://github.com/markedjs/marked/releases)
- [Changelog](https://github.com/markedjs/marked/blob/master/release.config.js)
- [Commits](https://github.com/markedjs/marked/compare/v1.1.1...v2.0.0)

Signed-off-by: dependabot[bot] <support@github.com>
 2021-02-22 12:50:28 -05:00
Shreya a2c11759a4 Add unit tests 2021-02-22 22:35:46 +05:30
Shreya defc94dd59 Add zerologon_utils/vuln_assessment.py 2021-02-22 18:44:06 +05:30
Shreya 4e281d9826 CR changes: type hints and comment 2021-02-22 17:47:27 +05:30
Shreya b82635d292 Add noqa comment to ignore complexity of DumpSecrets.dump() 2021-02-22 17:30:11 +05:30
Mike Salvatore 776d3421aa agent: add TODO to rework telemetry classes 2021-02-19 19:34:43 -05:00
Shreya 6883e4a5f1 Format all zerologon files with black 2021-02-20 01:12:04 +05:30
Shreya 2ef892e33f Try starting remote shell on victim with all user creds until successful 2021-02-20 01:12:04 +05:30
Shreya c227ccd3a1 Remove Zerologon fingerprinter (and move required functionality to Zerologon exploiter) 2021-02-20 01:12:04 +05:30
Shreya 869d608e09 Modify how `store_extracted_creds_for_exploitation()` is called 
+ other little CR changes
 2021-02-20 01:12:04 +05:30
Shreya 6c9ce028e0 Use __enter__() and __exit__() for StdoutCapture 2021-02-20 01:12:04 +05:30
Shreya e0ae8381ba restoring pwd: uses next available user account in case Administrator isn't found 
and save all other credentials
 2021-02-20 01:12:04 +05:30
Shreya c20e677940 Add impacket copyright notice 2021-02-20 01:12:01 +05:30
VakarisZ 4158ed802b Refactored telemetry unit tests to json encode data the same way telemetries do. 2021-02-19 17:19:21 +02:00
VakarisZ c698e0ab66
Merge pull request #848 from guardicore/519/scoutsuite-integration 
519/scoutsuite integration
 2021-02-19 08:08:40 +02:00
Shreya 0992e276b4 More CR changes 
TODO:
- impacket license
- get pwd for some other users if 'Administrator' doesn't exist (and save all users' creds?)
- unit tests
 2021-02-19 01:06:06 +05:30
Shreya 0866aee2cf Testing changes 2021-02-19 01:06:06 +05:30
Shreya 2c2a9eaaae Restructure `_exploit_host()` and `restore_password()` 2021-02-19 01:06:06 +05:30
Shreya 2bdcdcc18b CR changes 2021-02-19 01:06:06 +05:30
Shreya d7086f04aa CR + testing changes 2021-02-19 01:06:06 +05:30
Shreya e357b3fbe6 Changes after rebasing 2021-02-19 01:06:06 +05:30
Shreya 435f10fb20 CR changes 2021-02-19 01:06:06 +05:30
Shreya 961d5f81f8 Make DC details object attributes 2021-02-19 01:06:06 +05:30
Shreya a908d31fc5 Remove unused imports and variable 2021-02-19 01:06:06 +05:30
Shreya 81c6de75b7 Add Zerologon to documentation 2021-02-19 01:06:06 +05:30
Shreya 290385a8a0 Zerologon's success on a machine shouldn't prevent other exploit attempts on the machine 
(ZL gathers credentials for other exploits)
 2021-02-19 01:06:06 +05:30
Shreya 9c0fc7e435 Changes after manual testing 2021-02-19 01:06:06 +05:30
Shreya c05a48d34d Final exploit touches and report stuff 2021-02-19 01:06:05 +05:30
Shreya b57605b58d Changes from manual testing 2021-02-19 01:06:05 +05:30
Shreya 1cf07eff89 Improve log messages and comments 2021-02-19 01:06:05 +05:30
Shreya 13ef69c3ed Clean up code and comments 2021-02-19 01:06:05 +05:30
Shreya 53ef6feadf Restore password 
(wmiexec to get HKLM keys --> secretsdump to get orig pwd nthash --> restore)
 2021-02-19 01:06:05 +05:30
Shreya e7485bd02f Mention CVE 2021-02-19 01:06:05 +05:30
Shreya 8549ba14cf Bringing stuff together 2021-02-19 01:06:05 +05:30
Shreya 5cd8b39f0f Get original passwords' hashes 2021-02-19 01:06:05 +05:30
Shreya a4207494ec Change classes order in file 2021-02-19 01:06:05 +05:30
Shreya 44e15bd2a0 Add restore_password() 2021-02-19 01:06:05 +05:30
Shreya 9468de471d Partially add Zerologon exploiter 2021-02-19 01:06:05 +05:30
Shreya 2cc0a159e0 Rename "WindowsServer" fingerprinter: "Zerologon" makes more sense 2021-02-19 01:06:05 +05:30
Shreya 900bb7636d Basic config and report stuff 2021-02-19 01:06:05 +05:30
Shreya 2bc27b48de Use stub for PBA 2021-02-19 00:44:28 +05:30
Shreya 8bd30ceb4c Format code using black 2021-02-19 00:09:20 +05:30
Shreya 15107eeea3 Use constants/literals for tests 2021-02-19 00:02:34 +05:30
Shreya a4603853a9 Split test_attack_telem_classes.py and test_technique_telems.py into separate test files 2021-02-18 22:44:42 +05:30
Shreya 08addff8c5 Modify tests for attack telem classes and technique telems 
- test `send()` instead of `get_data()` using fixture `spy_send_telemetry`
 2021-02-18 22:34:15 +05:30
Mike Salvatore 4efdeeacc3 agent: remove dependency on pytest-mock 2021-02-18 09:59:52 -05:00
Mike Salvatore 86ffaf358f agent: break test_base_telem_classes into discrete test files 2021-02-18 09:53:55 -05:00
Mike Salvatore 0ac9ce949c agent: reformat test_base_telem_classes.py with black 2021-02-18 09:38:37 -05:00
Mike Salvatore c2ed31bde8 telemetry: test `send()` for telemetry classes in `telemetry/` 2021-02-18 09:33:58 -05:00
Shreya 7960529ee9 Add conftest.py 2021-02-18 19:41:29 +05:30
VakarisZ a977ec4397 Cleaned up imports and added no inspection comments to pass flake 2021-02-18 10:55:12 +02:00
VakarisZ 414dbf0665 Merge remote-tracking branch 'upstream/develop' into 519/scoutsuite-integration 2021-02-17 16:59:06 +02:00
VakarisZ 81ea057509 Fixed a bug in MonkeyFindingDetails, where updating events using update was failing due to some internal mongoengine error. 2021-02-17 16:58:26 +02:00
VakarisZ 01c775e955 Refactored details out of abstract finding document. 2021-02-17 16:53:59 +02:00
VakarisZ 8b8c5f9590 Added RuleNameEnum class and a type hint related to it in abstract class 2021-02-17 16:20:13 +02:00
Shreya 42b7fa05d6 Add requirement 2021-02-17 19:02:20 +05:30
Shreya 6b0cc1e368 Add tests for other base telems + put all telem tests in one folder 2021-02-17 19:01:55 +05:30
Shreya b9bbfac30b Add/modify tests for attack telems 2021-02-17 18:25:38 +05:30
VakarisZ 25704b74c9 Zero Trust finding saving method refactored to remove code duplication between children 2021-02-11 16:53:19 +02:00
VakarisZ e96ee305fb Minor variable and method refactoring to improve readability in scoutsuite code 2021-02-11 16:52:20 +02:00
VakarisZ 3cb2a63a9d Changed rule name classes to inherit from RuleNameEnum to add a more specific type hints 2021-02-11 16:51:38 +02:00
Mike Salvatore de3adfd483
Merge pull request #964 from guardicore/payload_obfuscation 
Payload obfuscation
 2021-02-11 08:47:15 -05:00
VakarisZ f11736d451 Added no inspection comments and an explanation on why we use Crypto for shellcode_obfuscator.py 2021-02-11 15:29:29 +02:00
Mike Salvatore a7b79d6d03 cc: fix typo in pycrypto noqa comment 2021-02-11 08:26:10 -05:00
Mike Salvatore e4bcf2ef1c cc: ignore pycrypto security warnings since we use pycryptodome 2021-02-11 08:09:07 -05:00
Mike Salvatore 0cc65cb346
Merge pull request #924 from shreyamalviya/env-collection-errors 
Catch exceptions in AwsInstance and AzureInstance
 2021-02-10 08:51:48 -05:00
Shreya 11a0477dbb Rename test functions, add 404 response tests, and other tiny changes 2021-02-10 16:15:17 +05:30
VakarisZ 28e4a0f23d Altered shellcode obfuscator unit test to match the new code 2021-02-10 10:32:43 +02:00
VakarisZ baadb241e8 Reverted relative paths in zero trust code back to absolute 2021-02-09 15:51:34 +02:00
VakarisZ 6f16ba431c Minor refactorings of code style in zero trust code 2021-02-09 14:21:55 +02:00
VakarisZ a0bb0bc7fe Small renamings and minor improvements 2021-02-08 17:42:57 +02:00
VakarisZ 905ffd029a Added ScoutSuite rule parsing unit test and example of raw ScoutSuite data received. 2021-02-08 17:41:57 +02:00
VakarisZ 80e7435572 Refactored Finding DTO into ScoutSuiteFinding and MonkeyFinding DTO which inherit from more abstract Finding. 2021-02-08 17:38:45 +02:00
Shreya 016d886781 Add tests for AwsInstance 
and change urllib.request.urlopen() to requests.get() for easier testing; functionality doesn't change
 2021-02-06 19:19:08 +05:30
VakarisZ 9444067250 Added comments, type hints and other minor changes in the scoutsuite code 2021-02-05 11:05:22 +02:00
VakarisZ bcfa8fff78 Extracted count badge into a separate component which is reused between scoutsuite rules button and monkey events button 2021-02-05 11:03:27 +02:00
Shreya eed5ea1337 Add tests for GcpInstance 2021-02-04 21:02:53 +05:30
Shreya 413aa35b5b Rename an old test file 2021-02-04 20:46:19 +05:30
Shreya adab0436be Add tests for AzureInstance 2021-02-04 20:46:20 +05:30
Shreya 59383e7946 Catch exceptions in AwsInstance and AzureInstance 2021-02-04 20:46:11 +05:30
VakarisZ 6cb4280f89 Merge remote-tracking branch 'upstream/develop' into 519/scoutsuite-integration 
# Conflicts:
#	.swm/AzD8XysWg1BBXCjCDkfq.swm
#	.swm/OwcKMnALpn7tuBaJY1US.swm
#	.swm/tbxb2cGgUiJQ8Btma0fp.swm
#	monkey/monkey_island/cc/services/config_schema/definitions/system_info_collector_classes.py
 2021-02-04 11:29:00 +02:00
Mike Salvatore 919c51b920 ui: display ICMP in cross-segment issues report 2021-02-02 16:44:42 -05:00
Mike Salvatore c6bec1335c island: include 'icmp' from scan telemetry in report 2021-02-02 16:44:42 -05:00
Mike Salvatore c7a1f246cb agent: add icmp property to VictimHost 
Keep track of whether or not PingScanner was successful by storing a
boolean in VictimHost objects. This information is communicated back to
the Monkey Island via telemetry.
 2021-02-02 16:44:42 -05:00
Mike Salvatore 458e01cf24 ui: use template strings when generating cross-segment report 2021-02-02 16:44:42 -05:00
Mike Salvatore c8b4089bd2 ui: display cross-segment issues as "pinged" if no services/ports 
Issue #819
 2021-02-02 16:44:42 -05:00
Mike Salvatore cc9b88b8e5 ui: fix spelling error catagory -> category 
Fixes #689
 2021-02-02 13:50:00 -05:00
Mike Salvatore 13af101c2a
Merge pull request #920 from mssalvatore/refactor-advanced-multiselect 
* Add warning icon to unsafe checkbox options
* Add "Reset to safe defaults" button
* Add warning icon and message to InfoPane
* Change behavior of master checkbox to be consistent with KDE user interface guidelines (mixed state)
* Extracted MasterCheckbox and ChildCheckbox from AdvancedMultiSelect
* Add "safe" property to schemas that feed AdvancedMultiSelect components
 2021-02-01 08:04:10 -05:00
VakarisZ e6e61f946c Changed payload obfuscation method into encryption algorithm in an attempt to avoid AV static detection. 2021-02-01 14:15:21 +02:00
Mike Salvatore 09a8415aec ui: remove disabled/readonly from AdvancedMultiSelect 2021-02-01 07:14:15 -05:00
Mike Salvatore 9f12702c3e ui: code readability improvements 2021-02-01 06:57:04 -05:00
Shreya c8c763d918 Store converted techniques' messages (markdown to HTML) separately 2021-01-30 15:38:58 -05:00
VakarisZ 284cc3afdb Removed scoutsuite telemetry processing as there's nothing to process and other minor code improvements 2021-01-29 18:17:32 +02:00
Mike Salvatore 1440121aef ui: rename unsafeOptionsSelected() -> isUnsafeOptionSelected() 2021-01-29 11:06:40 -05:00
Mike Salvatore 57554ca435 ui: fix some code cleanliness issues 2021-01-29 11:02:54 -05:00
Mike Salvatore 06685b14cf ui: simplify compareOptions() with boolean arithmetic 2021-01-29 10:52:14 -05:00