monkey/README.md

# Infection Monkey
[![GitHub release (latest by date)](https://img.shields.io/github/v/release/guardicore/monkey)](https://github.com/guardicore/monkey/releases)

[![Build Status](https://travis-ci.com/guardicore/monkey.svg?branch=develop)](https://travis-ci.com/guardicore/monkey)
[![codecov](https://codecov.io/gh/guardicore/monkey/branch/develop/graph/badge.svg)](https://codecov.io/gh/guardicore/monkey)

![GitHub stars](https://img.shields.io/github/stars/guardicore/monkey)
![GitHub commit activity](https://img.shields.io/github/commit-activity/m/guardicore/monkey)

## Data center Security Testing Tool

Welcome to the Infection Monkey! 

The Infection Monkey is an open source security tool for testing a data center's resiliency to perimeter breaches and internal server infection. The Monkey uses various methods to self propagate across a data center and reports success to a centralized Monkey Island server.

The Infection Monkey is comprised of two parts:

* **Monkey** - A tool which infects other machines and propagates to them.
* **Monkey Island** - A dedicated server to control and visualize the Infection Monkey's progress inside the data center.

To read more about the Monkey, visit [infectionmonkey.com](https://infectionmonkey.com). 

## 💥 We're Hiring 💥
We are looking for a strong, full-stack developer with a passion for
cybersecurity to join the Infection Monkey development team. Infection Monkey
is an open-source, automated, breach and attack simulation platform, consisting
of a worm-like agent and C&C server. This is a remote position and is open
world-wide. If you're excited about Infection Monkey, we want to see your
resume. You can learn more about Infection Monkey on our
[website](https://www.guardicore.com/infectionmonkey/).

For more information, or to apply, see the official job post
[here](https://www.guardicore.com/careers/co/labs/65.D16/full-stack-developer/all/?coref=1.10.r36_60E&t=1617025683094).

## Screenshots

### Map
<img src=".github/map-full.png"  width="800" height="600">

### Security report
<img src=".github/security-report.png"  width="800" height="500">

### Zero trust report
<img src=".github/zero-trust-report.png"  width="800" height="500">

### ATT&CK report
<img src=".github/attack-report.png"  width="900" height="500">

## Main Features

The Infection Monkey uses the following techniques and exploits to propagate to other machines.

* Multiple propagation techniques:
  * Predefined passwords
  * Common logical exploits
  * Password stealing using Mimikatz
* Multiple exploit methods:
  * SSH
  * SMB
  * WMI
  * Shellshock
  * Conficker
  * SambaCry
  * Elastic Search (CVE-2015-1427)
  * Weblogic server
  * and more, see our [Documentation hub](https://www.guardicore.com/infectionmonkey/docs/reference/exploiters/) for more information about our RCE exploiters.

## Setup
Check out the [Setup](https://www.guardicore.com/infectionmonkey/docs/setup/) page in the Wiki or a quick getting [started guide](https://www.guardicore.com/infectionmonkey/docs/usage/getting-started/).

The Infection Monkey supports a variety of platforms, documented [in our documentation hub](https://www.guardicore.com/infectionmonkey/docs/reference/operating_systems_support/).

## Building the Monkey from source
To deploy development version of monkey you should refer to readme in the [deployment scripts](deployment_scripts) 
folder or follow documentation in [documentation hub](https://www.guardicore.com/infectionmonkey/docs/development/setup-development-environment/).

### Build status
| Branch | Status |
| ------ | :----: |
| Develop | [![Build Status](https://travis-ci.com/guardicore/monkey.svg?branch=develop)](https://travis-ci.com/guardicore/monkey) |
| Master | [![Build Status](https://travis-ci.com/guardicore/monkey.svg?branch=master)](https://travis-ci.com/guardicore/monkey) | 

## Tests

### Unit Tests

In order to run all of the Unit Tests, run the command `python -m pytest` in the `monkey` directory. 

To get a coverage report, first make sure the `coverage` package is installed using `pip install coverage`. Run the command 
`coverage run -m unittest` in the `monkey` directory and then `coverage html`. The coverage report can be found in 
`htmlcov.index`.  

### Blackbox tests

In order to run the Blackbox tests, refer to `envs/monkey_zoo/blackbox/README.md`. 

# License

Copyright (c) Guardicore Ltd

See the [LICENSE](LICENSE) file for license rights and limitations (GPLv3).
Added unit tests guide to the readme. 2019-11-05 16:19:39 +08:00			`# Infection Monkey`
Added some badges (since we added the build badge and I don't want it to look alone) 2019-10-28 15:31:00 +08:00			`[![GitHub release (latest by date)](https://img.shields.io/github/v/release/guardicore/monkey)](https://github.com/guardicore/monkey/releases)`
Added codecov tests to travis yml and updated readme 2020-03-15 17:20:58 +08:00
			`[![Build Status](https://travis-ci.com/guardicore/monkey.svg?branch=develop)](https://travis-ci.com/guardicore/monkey)`
Update codecov badge branch to develop 2020-03-15 20:48:09 +08:00			`[![codecov](https://codecov.io/gh/guardicore/monkey/branch/develop/graph/badge.svg)](https://codecov.io/gh/guardicore/monkey)`
Added codecov tests to travis yml and updated readme 2020-03-15 17:20:58 +08:00
Added some badges (since we added the build badge and I don't want it to look alone) 2019-10-28 15:31:00 +08:00			`![GitHub stars](https://img.shields.io/github/stars/guardicore/monkey)`
			`![GitHub commit activity](https://img.shields.io/github/commit-activity/m/guardicore/monkey)`
Update and rename README.textile to README.md 2015-12-01 01:04:31 +08:00
reordered readme with badges 2019-10-28 00:44:38 +08:00			`## Data center Security Testing Tool`
Update and rename README.textile to README.md 2015-12-01 01:04:31 +08:00
Update README.md 2016-07-29 02:24:03 +08:00			`Welcome to the Infection Monkey!`

Backmerge branch 'develop' into bugfix/rename_Cnc_island # Conflicts: # README.md 2018-02-22 16:50:08 +08:00			`The Infection Monkey is an open source security tool for testing a data center's resiliency to perimeter breaches and internal server infection. The Monkey uses various methods to self propagate across a data center and reports success to a centralized Monkey Island server.`
Update and rename README.textile to README.md 2015-12-01 01:04:31 +08:00
Rephrase readmes 2017-10-17 22:14:28 +08:00			`The Infection Monkey is comprised of two parts:`
Update and rename README.textile to README.md 2015-12-01 01:04:31 +08:00
Added codecov tests to travis yml and updated readme 2020-03-15 17:20:58 +08:00			`* Monkey - A tool which infects other machines and propagates to them.`
			`* Monkey Island - A dedicated server to control and visualize the Infection Monkey's progress inside the data center.`

			`To read more about the Monkey, visit [infectionmonkey.com](https://infectionmonkey.com).`
Rephrase readmes 2017-10-17 22:14:28 +08:00
job posting 2021-03-29 22:03:01 +08:00			`## 💥 We're Hiring 💥`
			`We are looking for a strong, full-stack developer with a passion for`
			`cybersecurity to join the Infection Monkey development team. Infection Monkey`
			`is an open-source, automated, breach and attack simulation platform, consisting`
			`of a worm-like agent and C&C server. This is a remote position and is open`
			`world-wide. If you're excited about Infection Monkey, we want to see your`
			`resume. You can learn more about Infection Monkey on our`
			`[website](https://www.guardicore.com/infectionmonkey/).`

			`For more information, or to apply, see the official job post`
			`[here](https://www.guardicore.com/careers/co/labs/65.D16/full-stack-developer/all/?coref=1.10.r36_60E&t=1617025683094).`

Added and updated screenshots on readme 2020-04-14 18:24:39 +08:00			`## Screenshots`
Changed dropdowns to headers in readme 2020-04-14 22:46:54 +08:00
			`### Map`
Fixed the rest of dropdowns and picture dimensions 2020-04-14 19:53:19 +08:00			`<img src=".github/map-full.png" width="800" height="600">`
Added and updated screenshots on readme 2020-04-14 18:24:39 +08:00
Changed dropdowns to headers in readme 2020-04-14 22:46:54 +08:00			`### Security report`
Added and updated screenshots on readme 2020-04-14 18:24:39 +08:00			`<img src=".github/security-report.png" width="800" height="500">`

Changed dropdowns to headers in readme 2020-04-14 22:46:54 +08:00			`### Zero trust report`
Added and updated screenshots on readme 2020-04-14 18:24:39 +08:00			`<img src=".github/zero-trust-report.png" width="800" height="500">`

Changed dropdowns to headers in readme 2020-04-14 22:46:54 +08:00			`### ATT&CK report`
Another mitre attack report picture dimension adjust 2020-04-14 20:01:49 +08:00			`<img src=".github/attack-report.png" width="900" height="500">`
Added and updated screenshots on readme 2020-04-14 18:24:39 +08:00
Added unit tests guide to the readme. 2019-11-05 16:19:39 +08:00			`## Main Features`
Added codecov tests to travis yml and updated readme 2020-03-15 17:20:58 +08:00
Rephrase readmes 2017-10-17 22:14:28 +08:00			`The Infection Monkey uses the following techniques and exploits to propagate to other machines.`
Update and rename README.textile to README.md 2015-12-01 01:04:31 +08:00
			`* Multiple propagation techniques:`
			`* Predefined passwords`
Rephrase readmes 2017-10-17 22:14:28 +08:00			`* Common logical exploits`
Remove C&C from all textual and code mentions 2018-02-15 21:36:19 +08:00			`* Password stealing using Mimikatz`
Added grequests and shellshock to documentation. 2016-08-29 18:16:57 +08:00			`* Multiple exploit methods:`
Removed trailing space 2016-05-29 16:57:13 +08:00			`* SSH`
Update and rename README.textile to README.md 2015-12-01 01:04:31 +08:00			`* SMB`
Added grequests and shellshock to documentation. 2016-08-29 18:16:57 +08:00			`* WMI`
			`* Shellshock`
Rephrase readmes 2017-10-17 22:14:28 +08:00			`* Conficker`
			`* SambaCry`
			`* Elastic Search (CVE-2015-1427)`
Added and updated screenshots on readme 2020-04-14 18:24:39 +08:00			`* Weblogic server`
Documentation framework -> hub 2020-08-06 00:12:30 +08:00			`* and more, see our [Documentation hub](https://www.guardicore.com/infectionmonkey/docs/reference/exploiters/) for more information about our RCE exploiters.`
Rephrase readmes 2017-10-17 22:14:28 +08:00
Added unit tests guide to the readme. 2019-11-05 16:19:39 +08:00			`## Setup`
Retargeted links in README.md to direct to documentation framework 2020-08-05 22:29:58 +08:00			`Check out the [Setup](https://www.guardicore.com/infectionmonkey/docs/setup/) page in the Wiki or a quick getting [started guide](https://www.guardicore.com/infectionmonkey/docs/usage/getting-started/).`
Update and rename README.textile to README.md 2015-12-01 01:04:31 +08:00
Documentation framework -> hub 2020-08-06 00:12:30 +08:00			`The Infection Monkey supports a variety of platforms, documented [in our documentation hub](https://www.guardicore.com/infectionmonkey/docs/reference/operating_systems_support/).`
Update README.md 2019-01-23 19:59:00 +08:00
Added unit tests guide to the readme. 2019-11-05 16:19:39 +08:00			`## Building the Monkey from source`
Retargeted links in README.md to direct to documentation framework 2020-08-05 22:29:58 +08:00			`To deploy development version of monkey you should refer to readme in the [deployment scripts](deployment_scripts)`
			`folder or follow documentation in [documentation hub](https://www.guardicore.com/infectionmonkey/docs/development/setup-development-environment/).`
Update and rename README.textile to README.md 2015-12-01 01:04:31 +08:00
reordered readme with badges 2019-10-28 00:44:38 +08:00			`### Build status`
			`\| Branch \| Status \|`
			`\| ------ \| :----: \|`
			`\| Develop \| [![Build Status](https://travis-ci.com/guardicore/monkey.svg?branch=develop)](https://travis-ci.com/guardicore/monkey) \|`
			`\| Master \| [![Build Status](https://travis-ci.com/guardicore/monkey.svg?branch=master)](https://travis-ci.com/guardicore/monkey) \|`

Added unit tests guide to the readme. 2019-11-05 16:19:39 +08:00			`## Tests`
Added codecov tests to travis yml and updated readme 2020-03-15 17:20:58 +08:00
Added unit tests guide to the readme. 2019-11-05 16:19:39 +08:00			`### Unit Tests`
Added codecov tests to travis yml and updated readme 2020-03-15 17:20:58 +08:00
Added unit tests guide to the readme. 2019-11-05 16:19:39 +08:00			In order to run all of the Unit Tests, run the command `python -m pytest` in the `monkey` directory.

Added codecov tests to travis yml and updated readme 2020-03-15 17:20:58 +08:00			To get a coverage report, first make sure the `coverage` package is installed using `pip install coverage`. Run the command
Removed "discover" from coverage cmd (it's for unittest, not pytest) 2020-03-15 17:28:46 +08:00			`coverage run -m unittest` in the `monkey` directory and then `coverage html`. The coverage report can be found in
Added codecov tests to travis yml and updated readme 2020-03-15 17:20:58 +08:00			`htmlcov.index`.

Added unit tests guide to the readme. 2019-11-05 16:19:39 +08:00			`### Blackbox tests`
Added codecov tests to travis yml and updated readme 2020-03-15 17:20:58 +08:00
Added unit tests guide to the readme. 2019-11-05 16:19:39 +08:00			In order to run the Blackbox tests, refer to `envs/monkey_zoo/blackbox/README.md`.

			`# License`
Added codecov tests to travis yml and updated readme 2020-03-15 17:20:58 +08:00
Remove year in the license 2018-05-01 20:12:30 +08:00			`Copyright (c) Guardicore Ltd`
Rephrase readmes 2017-10-17 22:14:28 +08:00
Update README.md 2018-01-21 03:49:36 +08:00			`See the [LICENSE](LICENSE) file for license rights and limitations (GPLv3).`