Commit Graph

5962 Commits

Author SHA1 Message Date
Mike Salvatore ba1e9be8f8 Island: Change .format() to format string in mongo_setup.py 2021-08-03 09:44:59 -04:00
Mike Salvatore 109a992201 Island: Add error messages to Mongo exceptions 2021-08-03 09:40:51 -04:00
Ilija Lazoroski 8dc2905c71 Island: Add Timeout and Version exceptions to mongo setup. 2021-08-03 14:37:12 +02:00
Shreya Malviya 94ddd7c760 docs: Update link to contributing exploits' documentation on 'Contribute' page 2021-08-03 15:37:54 +05:30
Shreya Malviya b5db42d829 docs: Mark 'Adding Exploits' as not draft 2021-08-03 15:37:54 +05:30
Shreya Malviya e7375c0d94 docs: Add 'Adding Exploits' page 2021-08-03 15:37:54 +05:30
Shreya Malviya 170999e9ed docs: Fix heading in 'Adding System Info Collectors' 2021-08-03 15:37:38 +05:30
Ilija Lazoroski f0e3d76501 Island: Check if mongodb is running. 2021-08-03 10:14:24 +02:00
Mike Salvatore 62b2217821 UI: Add ransomware blog link to lateral movement section 2021-08-02 12:00:00 -04:00
Shreya Malviya fdba9f54ca
UI: Fix ATT&CK report bug which wasn't showing IP addresses in PBAs
Fixes #1370
PR #1393
2021-08-02 10:35:03 -04:00
Mike Salvatore 8ae0d5720b BB: Add utility scripts to start and stop all GCP machines 2021-08-02 07:10:50 -04:00
Mike Salvatore 275dbeccdd BB: Move GCP_TEST_MACHINE_LIST to its own file
Allows the GCP_TEST_MACHINE_LIST to be reused by other utility scripts
2021-08-02 07:09:37 -04:00
VakarisZ 568a97e5a5 BB performance tests: update the outdated README.md and other small improvements 2021-07-31 19:40:19 -04:00
Mike Salvatore 294ec0d546 Merge branch '1374/bug-fix' into develop
Pull request #1387
2021-07-31 19:38:40 -04:00
Mike Salvatore 9e449bb90f Update AppImage changelog entries 2021-07-31 19:22:42 -04:00
Mike Salvatore 1194834fea Merge branch 'package-appimage-with-linuxdeploy' into develop
Pull Request #1381
2021-07-31 19:22:00 -04:00
Mike Salvatore 11488365e8 Build: Package the AppImage with linuxdeploy
Fixes #1355
Fixes #1362
2021-07-31 19:20:36 -04:00
Ilija Lazoroski cf0da5dc7d BB: Change internet services default config. 2021-07-30 06:17:46 -04:00
Mike Salvatore b11277a340 Update changelog for #1374 2021-07-30 05:49:24 -04:00
Mike Salvatore e97943a905 Agent: Always join threads in main loop before exit 2021-07-30 05:44:43 -04:00
Mike Salvatore e7d694380d Agent: Skip propagation if max depth is reached
Fixes #1374

When monkey starts, it launches a thread for executing post breach
actions. It then executes its propagation loop on the main thread. If
the maximum propagation depth has been reached, a
PlannedShutdownException is raised on the main thread. This results in
InfectionMonkey.cleanup() being called, which then calls
InfectionMonkey.self_delete(). self_delete() deletes the monkey binary,
but the post breach actions thread hasn't been stopped, resulting in
a trace when the thread attempts an import.

We don't need to shutdown if the maximum propagation depth is reached.
We only need to skip the propagation phase so that monkey does not
propagate further. PBAs and payloads can still be allowed to run.
2021-07-30 05:44:34 -04:00
Mike Salvatore 017e37deb0 Agent: Extract propagation loop into a function 2021-07-30 05:40:31 -04:00
Mike Salvatore 2543e5b2a5 Agent: Only run ransomware payload once 2021-07-30 05:30:09 -04:00
Mike Salvatore ce492d25f4 Agent: Return boolean from "should_monkey_run()"
A function named "should_monkey_run()" should let you know whether or
not monkey should run. Before this commit, the function was responsible
for flow control, as it raised a PlannedShutdownException, resulting in
the shutdown of the monkey agent.
2021-07-30 05:30:09 -04:00
Mike Salvatore 8e41634854
Merge pull request #1385 from guardicore/0910/brief-alert-register
Fix brief red alert on register.
2021-07-29 11:54:38 -04:00
Ilija Lazoroski 62024ae051 UI: Fix brief red alert on register. 2021-07-29 17:18:53 +02:00
Shreya Malviya 72f77b7d29 docs: Mark ransomware page as not a draft 2021-07-29 19:44:05 +05:30
Mike Salvatore 9a4e6be89e Docs: Update list of tested Linux distros 2021-07-29 08:37:43 -04:00
Shreya Malviya 101c0a3870
Merge pull request #1378 from guardicore/docs-use-cases
Documentation: Scenarios
2021-07-29 17:25:56 +05:30
Mike Salvatore 1829bb0b82
Merge pull request #1379 from guardicore/landing-page-banner
Landing page banner
2021-07-29 07:20:32 -04:00
Shreya Malviya b1f4e2e6ad docs: Add more optimistic language about the custom scenario 2021-07-29 16:41:53 +05:30
Shreya Malviya 21417cdf6b docs: Remove link to FAQ on scenarios page 2021-07-29 16:37:43 +05:30
Shreya Malviya 52401357e8 docs: Modify scenarios' explanation to be less technical and introduce custom scenarios 2021-07-29 16:35:52 +05:30
Shreya Malviya 2d83ea642a docs: Unitalicise and uncapitalise 'scenarios' in scenarios page description 2021-07-29 16:33:59 +05:30
VakarisZ 333fbfc6de Island UI: fix guardicore logo on smaller screens 2021-07-29 11:41:29 +03:00
VakarisZ 45f05dcddf Island UI: remove the unnecessary header from landing page 2021-07-29 11:33:50 +03:00
Mike Salvatore c53730a6c3 Build: Remove .tgz from dist in docker/clean.sh 2021-07-28 15:52:17 -04:00
Mike Salvatore bd66539548 Build: Remove AppImage package from dist/ in appimage/clean.sh 2021-07-28 15:51:27 -04:00
Mike Salvatore b4d97d1ce7 Build: Add missing ")" to string 2021-07-28 13:47:11 -04:00
Mike Salvatore 2e918fa263
Merge pull request #1376 from guardicore/docs_av_detection
Documentation hub: add information about the Infection Monkey getting…
2021-07-28 13:38:45 -04:00
Mike Salvatore 2f38c6effb Docs: Minor formating/typo change to "Is ... Monkey a malware..." 2021-07-28 13:37:52 -04:00
Mike Salvatore a9e2304f8f Docs: Add missing "the" to "Infection Monkey" 2021-07-28 13:36:20 -04:00
Mike Salvatore fceb52ba38
Merge pull request #1375 from guardicore/ransomware_exploits_table
Ransomware report: Exploits table in lateral movement section
2021-07-28 13:11:47 -04:00
Mike Salvatore bfd7d3cfbf Remove "__author__" lines from the source code
The "__author__" lines in numerous Python files serve little purpose.
At best, they are redundant. At worst, they are incorrect and
misleading.

The VCS (i.e. git) tracks all changes to files. Storing the author in
the files is redundant violates the DRY principle.

If the file changes, whose name belongs in the __author__ field? What if
it changes so drastically that it's almost unrecognizable? If there's
any circumstance where the __author__ name should change, what enforces
that this change takes place? Given the ambiguity of these scenarios,
the __author__ field could be misleading or incorrect.

Resolves #1345
2021-07-28 12:43:28 -04:00
Mike Salvatore 79639610df Tests: Split up test_get_exploits_used_on_node() 2021-07-28 12:17:47 -04:00
Mike Salvatore b8b82039d8 UI: Add banner to the top of the landing page 2021-07-28 12:06:45 -04:00
Mike Salvatore 9a3697aadc UI: Add 10px between version an bottom of landing page 2021-07-28 12:03:47 -04:00
VakarisZ 8583303682 Island: remove the redundant line with total amount of exploited machines from ransomware report + small improvements in monkey_exploitation.py 2021-07-28 16:57:06 +03:00
Shreya Malviya d3ab7c7bf3
docs: Reword scenarios' explanation
Co-authored-by: Mike Salvatore <mike.s.salvatore@gmail.com>
2021-07-28 18:43:28 +05:30
Shreya Malviya aa13202fa8
docs: Reword description on scenarios page
Co-authored-by: Mike Salvatore <mike.s.salvatore@gmail.com>
2021-07-28 18:42:38 +05:30