p41275903
/
monkey
forked from p15670423/monkey
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
11,412 Commits 31 Branches 0 Tags 47 MiB
Commit Graph

11412 Commits

Author SHA1 Message Date
Shreya Malviya 050a84d890 Agent: Move password restoration event publishing in zerologon 2022-10-07 17:50:16 +02:00
Ilija Lazoroski f05d5be32f UT: Add check if we publish events in Zerologon 2022-10-07 17:50:16 +02:00
Shreya Malviya a5e31ee998 Agent: Publish PasswordRestorationEvent in zerologon 2022-10-07 17:50:16 +02:00
Shreya Malviya a50554f115 Agent: Add `target` in CredentialsStolenEvent in zerologon 2022-10-07 17:50:16 +02:00
Shreya Malviya 16ed8d6233 Agent: Remove `time=time()` in calls to `_publish_exploitation_event()` in zerologon since that's the default argument anyway 2022-10-07 17:50:16 +02:00
Shreya Malviya ad47e3be2f UT: Remove unused variables from test_zerologon.py 2022-10-07 17:50:16 +02:00
Shreya Malviya fe178841d0 Agent: Add typehint in zerologon that mypy complained about 2022-10-07 17:50:16 +02:00
Shreya Malviya 0e2f80ded6 Agent: Fix calls to _publish_exploitation_event in zerologon 2022-10-07 17:50:16 +02:00
Shreya Malviya 1cf017c2ac Agent: Remove publishing exploitation attempts in zerologon's vuln assessment 2022-10-07 17:50:16 +02:00
Shreya Malviya 3b60c760e4 Agent: Catch Exception instead of BaseException in zerologon 2022-10-07 17:50:16 +02:00
ilija-lazoroski 237b0ae394 Common: Add PasswordRestorationEvent 2022-10-07 17:50:16 +02:00
Ilija Lazoroski 1db5e9adc5 UT: Add mock_agent_event_queue in zerologon tests 2022-10-07 17:50:16 +02:00
Ilija Lazoroski 9a261296e4 UT: Fix zerologon unit tests 2022-10-07 17:50:16 +02:00
Ilija Lazoroski d3a2fa8a4c Agent: Add zerologon exploiter tag to zerologon_utils 2022-10-07 17:50:16 +02:00
Ilija Lazoroski ef581ff912 Agent: Ignore union-attr mypy error in Zerologon 2022-10-07 17:50:16 +02:00
Ilija Lazoroski e9254aedbd Agent: Publish exploitation events from Zerologon 2022-10-07 17:50:16 +02:00
Mike Salvatore 04fec93c39 Merge branch '2269-publish-events-from-hadoop-exploiter' into develop 
PR #2396
 2022-10-07 09:37:37 -04:00
Ilija Lazoroski 7a664218bd Agent: Check all potential urls in Hadoop 2022-10-07 15:13:04 +02:00
Mike Salvatore 6d60e33c1e Merge branch '2269-publish-events-for-mssql-exploiter' into develop 
PR #2401
 2022-10-07 08:46:40 -04:00
Mike Salvatore a558948c5d Agent: Remove unnecessary `pass` from MSSQLExploiter 2022-10-07 08:43:05 -04:00
Mike Salvatore 66f5d7a86a Agent: Remove errant exploitation event from hadoop 
If no potential URLs are found, then no exploit is attempted, so there's
no reason to publish an ExploitationEvent.
 2022-10-07 08:35:24 -04:00
Shreya Malviya 3b225a9c7d
Merge pull request #2376 from guardicore/dependabot/npm_and_yarn/monkey/monkey_island/cc/ui/d3-color-and-d3-3.1.0 
Bump d3-color and d3 in /monkey/monkey_island/cc/ui
 2022-10-07 18:01:53 +05:30
Mike Salvatore 79e8ce5f79 Island: Pass tuple, not set to upsert_tcp_connections() 
pydantic can probably handle the set -> tuple conversion itself, but
mypy complains.
 2022-10-07 07:44:49 -04:00
Mike Salvatore 0965b97d45 Island: Use ScanEvent for typehint in ScanEventHandler 
`event` gets passed to `_get_source_machine()`, which expects
`ScanEvent`, not `AbstractAgentEvent`
 2022-10-07 07:43:50 -04:00
Mike Salvatore 4c026241ea Island: Change method order in ScanEventHandler 2022-10-07 07:41:50 -04:00
Ilija Lazoroski 25073be9f3 Agent: Remove adding vulnerable urls in Hadoop 
Adding vulnerable ulrs causes check to see if the target is exploitable
which calls self.exploit
 2022-10-07 11:46:35 +02:00
Ilija Lazoroski c02d43556a Agent: Make Hadoop tags uppercase 2022-10-07 11:46:35 +02:00
Ilija Lazoroski 8bdb30dcfb Agent: Rename stamp to timestamp in Hadoop 2022-10-07 11:46:35 +02:00
Ilija Lazoroski 8f6df12d9c Agent: Modify HadoopExploiter tags to be properties 2022-10-07 11:46:35 +02:00
Kekoa Kaaikala 76a3cb0ba0 Agent: Stamp time before exploit executes 2022-10-07 11:46:35 +02:00
Kekoa Kaaikala de5d365bb0 Agent: Publish events sooner 2022-10-07 11:46:35 +02:00
Kekoa Kaaikala 3e592cfa69 Agent: Use exploiter tag properties 2022-10-07 11:46:35 +02:00
Kekoa Kaaikala 4a0a24dde2 Agent: Update hadoop exploiter tags T1570 -> T1105 2022-10-07 11:46:35 +02:00
Kekoa Kaaikala 76ae57281d Agent: Use EXPLOIT_TAGS for exploitation event 2022-10-07 11:46:35 +02:00
Kekoa Kaaikala 54b551b728 Agent: Update tags for hadoop events 2022-10-07 11:46:35 +02:00
Kekoa Kaaikala c31aed94ea Agent: Move successful explotiation event publish 2022-10-07 11:46:35 +02:00
Kekoa Kaaikala bee1047024 Agent: Update hadoop failed event publishing 2022-10-07 11:46:34 +02:00
Kekoa Kaaikala 57af640317 Agent: Use correct publish method names 2022-10-07 11:46:34 +02:00
Ilija Lazoroski 9c185a3a78 Agent: Add tags and error messages in Hadoop 2022-10-07 11:46:34 +02:00
Ilija Lazoroski fe864792f3 Agent: Publish Propagation and Exploitation events from Hadoop 2022-10-07 11:46:34 +02:00
VakarisZ 4709ae771b
Merge pull request #2400 from guardicore/2267-add-tcp-connections 
2267 add tcp connections
 2022-10-07 12:15:39 +03:00
vakarisz be4ecccdcd Island: Refactor get_node_by_id to raise UnknownRecordError 2022-10-07 10:05:06 +03:00
Mike Salvatore 77d37bdb21 Merge branch '2269-publish-events-from-log4shell-exploiter' into develop 
PR #2397
 2022-10-06 17:26:06 -04:00
Mike Salvatore 9c2cdf15e2 Agent: Add TODO in Log4ShellExploiter 2022-10-06 17:01:06 -04:00
Mike Salvatore ead979c6ca Agent: Add T1110 to Log4Shell exploiter tags 2022-10-06 16:54:02 -04:00
Mike Salvatore 03c6c5ea4b Agent: Remove unnecessary Path -> str in Log4ShellExploiter 2022-10-06 16:51:14 -04:00
Mike Salvatore eac3076828 Agent: Change typehint for build_monkey_commandline's location 
The function can handle str, PurePath, or None. This typehint change
reflects that capability
 2022-10-06 16:50:41 -04:00
Mike Salvatore 7bc9993c6f Agent: Reduce VICTIM_WAIT_SLEEP_TIME_SEC to 0.050 seconds 
1 second is a long time to wait, and we want our event timestamps to be
more accurate. 0.050 is 10 x sys.getswitchinterval(). It's reasonably
accurate but will also share the CPU nicely.
 2022-10-06 16:46:41 -04:00
Mike Salvatore 6bd7042444 Agent: Add VICTIM_WAIT_SLEEP_TIME_SEC constant in log4shell exlpoiter 2022-10-06 16:42:33 -04:00
Mike Salvatore d8fca72f28 Agent: Publish all prop/exploit events from _wait_for_victim() 2022-10-06 16:41:20 -04:00