p41275903
/
monkey
forked from p15670423/monkey
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Island: Use AgentConfiguration to get configured exploiters

This commit is contained in:
Mike Salvatore 2022-07-13 13:17:35 -04:00
parent 46a71ff8f1
commit 65686190dd
1 changed files with 16 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
monkey/monkey_island/cc/services/reporting/report.py
View File

@ -1,10 +1,10 @@
import functools import functools
import ipaddress import ipaddress
import itertools
import logging import logging
from itertools import chain, product
from typing import List from typing import List
from common.config_value_paths import EXPLOITER_CLASSES_PATH, PASSWORD_LIST_PATH, USER_LIST_PATH from common.config_value_paths import PASSWORD_LIST_PATH, USER_LIST_PATH
from common.network.network_range import NetworkRange from common.network.network_range import NetworkRange
from common.network.segmentation_utils import get_ip_in_src_and_not_in_dst from common.network.segmentation_utils import get_ip_in_src_and_not_in_dst
from monkey_island.cc.database import mongo from monkey_island.cc.database import mongo
@ -304,7 +304,7 @@ class ReportService:
""" """
cross_segment_issues = [] cross_segment_issues = []
for subnet_pair in itertools.product(subnet_group, subnet_group): for subnet_pair in product(subnet_group, subnet_group):
source_subnet = subnet_pair[0] source_subnet = subnet_pair[0]
target_subnet = subnet_pair[1] target_subnet = subnet_pair[1]
pair_issues = ReportService.get_cross_segment_issues_per_subnet_pair( pair_issues = ReportService.get_cross_segment_issues_per_subnet_pair(
@ -388,13 +388,21 @@ class ReportService:
def get_config_passwords(): def get_config_passwords():
return ConfigService.get_config_value(PASSWORD_LIST_PATH, True) return ConfigService.get_config_value(PASSWORD_LIST_PATH, True)
@staticmethod @classmethod
def get_config_exploits(): def get_config_exploits(cls):
exploits_config_value = EXPLOITER_CLASSES_PATH agent_configuration = cls._agent_configuration_repository.get_configuration()
exploits = ConfigService.get_config_value(exploits_config_value, True) exploitation_configuration = agent_configuration.propagation.exploitation
enabled_exploiters = (
exploiter
for exploiter in chain(
exploitation_configuration.brute_force, exploitation_configuration.vulnerability
)
)
return [ return [
ExploiterDescriptorEnum.get_by_class_name(exploit).display_name for exploit in exploits ExploiterDescriptorEnum.get_by_class_name(exploiter.name).display_name
for exploiter in enabled_exploiters
] ]
@classmethod @classmethod