Mike Salvatore
96ac13c579
Merge pull request #1478 from guardicore/powershell-pth-on-windows
...
Powershell pth on windows
2021-09-21 08:14:45 -04:00
VakarisZ
5077d84269
Change report service to use report model.
...
Because report saving/fetching happens through model, model can encrypt/decrypt sensitive data
2021-09-21 10:45:39 +03:00
VakarisZ
ea7a75df26
Add infrastructure for encrypting fields in database.
2021-09-21 10:43:34 +03:00
VakarisZ
c7e91c5784
Add report model and a unit test for it's encryption
2021-09-21 10:39:39 +03:00
VakarisZ
cf7b94613b
Rename test_config_encryption.py to test_encryption.py
...
This change is done because the code being tested is in encryption.py, not in config_encryption.py
2021-09-21 10:25:48 +03:00
VakarisZ
f61602552f
Island: update dpath to the latest v2.0.5 and other packages version updates.
...
dpath lib had to be updated to get a bugfix
2021-09-21 10:19:21 +03:00
Mike Salvatore
8fc79c2fe3
Agent: Use pyspnego with bugfix to enable PowerShell PTH on Windows
...
Specify commit 3f748f21 of pyspnego, as this commit contains a bugfix
that allows Infection Monkey to launch pass-the-hash attacks from a
Windows attacker.
2021-09-20 20:43:00 -04:00
ilija-lazoroski
4afeba6334
Merge pull request #1475 from guardicore/1468/fix-nodejs-dependencies
...
Update nodejs dependencies
2021-09-20 09:58:59 +02:00
Mike Salvatore
844d244d67
Agent: Use NTLM specifically for PowerShell if using pass-the-hash
2021-09-17 11:43:06 -04:00
Mike Salvatore
79aacf3dcb
Agent: Extract _get_*() functions from get_auth_options()
2021-09-17 11:42:52 -04:00
Mike Salvatore
444fb90f93
Agent: Return single AuthOptions from get_auth_options()
...
The test suite was overly complicated for get_auth_options(), which
indicated that, perhaps, the function itself was overly complicated.
Previously, it accepted a list of Credentials and returned a list of
AuthOptions. Now, it accepts a single Credentials object and returns a
single AuthOptions object. This simpler interface allowed the test suite
to be easier to read, while adding negligible complexity to
PowerShellExploiter._exploit_host()
2021-09-17 11:30:32 -04:00
Ilija Lazoroski
83615e8c66
UI: Upgrade babel/cli due to vuln in glob-parent
2021-09-17 16:22:28 +02:00
Ilija Lazoroski
aac1b00553
UI: Replace node-sass with sass (Dart Sass)
...
Note: There are some annoying deprecation warnings
which come from bootstrap. Those can be dealt with
if we upgrade bootstrap.
2021-09-17 14:55:21 +02:00
Ilija Lazoroski
f942e87b75
UI: Update npm webpack
...
Note: webpack doesn't have verbose option anymore
2021-09-17 14:02:33 +02:00
Mike Salvatore
9d07f82bd6
Fix typo in CHANGELOG
2021-09-17 07:46:27 -04:00
VakarisZ
5a8507e5c6
Add the removal of "Execution through the module load" T1129 attack technique to the CHANGELOG.md
2021-09-17 14:21:06 +03:00
VakarisZ
b69916428b
Remove T1129 attack technique from the codebase
2021-09-17 14:19:42 +03:00
Ilija Lazoroski
525a112eaa
UI: Update npm version to 7.24.0
2021-09-17 12:27:57 +02:00
Ilija Lazoroski
43b1201751
UI: Update node dependencies using npm audit fix
2021-09-17 11:43:00 +02:00
VakarisZ
a93d6361a3
Docs: fix broken scenario link in homepage_shortcuts.html
2021-09-16 14:46:31 +03:00
Mike Salvatore
64c9ccaf46
Merge pull request #1467 from guardicore/1205/modify-build-scripts-deployment
...
Add deployment type to the build_scripts
2021-09-15 10:31:33 -04:00
VakarisZ
cfff225ad6
Change the docker and appImage deployment scripts to not alter the deployment string if no deployment argument is passed
2021-09-15 15:52:53 +03:00
Ilija Lazoroski
c4ab6f4362
Build_scripts: Add deployment type to the build_scripts
2021-09-15 14:38:07 +02:00
Mike Salvatore
7ebe9e8ee2
Build: Upgrade AppImage Python version to 3.7.12
2021-09-15 08:08:47 -04:00
Mike Salvatore
60e34636ec
UI: Fix stupid typo in the attack section of the ransomware report
2021-09-14 12:50:39 -04:00
Mike Salvatore
1d991be6b4
Update CHANGELOG.md
2021-09-14 12:30:43 -04:00
Mike Salvatore
f54b759d92
Merge pull request #1459 from guardicore/extract-deployment-field
...
Extract deployment field from server config
2021-09-14 12:24:46 -04:00
Mike Salvatore
3287f4831e
Build: Remove deployment.json files
2021-09-14 12:22:03 -04:00
Mike Salvatore
238810e743
Build: Remove unused install_common_build_prereqs()
2021-09-14 12:09:13 -04:00
Ilija Lazoroski
6ebe2e391b
Island: Add more exceptions to get_deployment_from_file
2021-09-14 16:54:06 +02:00
Mike Salvatore
412aefab3e
Island: Switch get_deployment_from_file() to use Paths
2021-09-14 10:19:14 -04:00
VakarisZ
ed93971595
Remove the empty test_server_config_handler.py file.
2021-09-14 14:49:30 +03:00
Mike Salvatore
58ed42a247
Agent: Add comment regarding NTLM hashes to format_password()
2021-09-14 07:44:03 -04:00
Shreya Malviya
38011f20b5
island: Remove unnecessary type conversion in log statement
2021-09-14 16:05:19 +05:30
Shreya Malviya
686f65e4f4
tests: Move monkeypatch statements to fixtures in test_version_update.py
2021-09-14 16:04:06 +05:30
Shreya Malviya
90c6392e16
island, tests: Handle exceptions when getting deployment type from file and add related tests
2021-09-14 15:47:50 +05:30
Shreya Malviya
9fd6ea9598
island, tests: Modify function to get deployment type with file path as input and modify related tests
2021-09-14 14:02:24 +05:30
Ilija Lazoroski
c1fc56d4ce
Island: Change monkey code to use deployment.json
...
Add UTs for get_deployment. Fix Enviroment UTs.
2021-09-13 18:47:28 +02:00
VakarisZ
4759fe1581
Merge pull request #1458 from guardicore/1450/av_explanation_missing_binary
...
UI: Add AV explanation if binaries are missing
2021-09-13 09:24:34 +03:00
Mike Salvatore
8d2b704bd9
Docs: Fix broken link in FAQ
2021-09-11 13:15:55 -04:00
VakarisZ
45429f6b29
Merge pull request #1457 from guardicore/1126/ut_for_pba_file_upload
...
UT: Add unit tests for pba_upload
2021-09-10 17:03:54 +03:00
Ilija Lazoroski
92b829ede2
UI: Add AV explanation if binaries are missing
2021-09-10 15:39:28 +02:00
Ilija Lazoroski
c348a01b16
UT: Improve readability on pba_file_upload
2021-09-10 14:48:39 +02:00
Shreya Malviya
78ab3f176c
tests: Remove deployment field from unit tests' server configs
2021-09-10 17:41:43 +05:30
Ilija Lazoroski
2fd38061b2
UT: Add unit tests for pba_upload
2021-09-10 14:10:31 +02:00
Shreya Malviya
2b4beb2200
island: Don't set deployment type from server config in env config
2021-09-10 17:36:57 +05:30
Shreya Malviya
a62328dcf6
island: Get deployment type from file in env config
2021-09-10 17:31:33 +05:30
Shreya Malviya
2af3878e81
common: Pick up version details from deployment.json in common/version.py
2021-09-10 16:36:26 +05:30
Shreya Malviya
2b9b755177
island: Extract deployment type and version number into deployment.json
2021-09-10 16:29:31 +05:30
Shreya Malviya
c46c02507f
build_scripts: Extract deployment field from server configs to separate files for appimage and docker
2021-09-10 15:21:34 +05:30