2019-10-01 15:42:51 +08:00
|
|
|
import logging
|
2020-07-15 23:46:04 +08:00
|
|
|
import os
|
|
|
|
from time import sleep
|
2019-10-01 15:42:51 +08:00
|
|
|
|
2019-08-29 20:14:07 +08:00
|
|
|
import pytest
|
2021-03-02 21:01:56 +08:00
|
|
|
|
2021-04-06 21:19:27 +08:00
|
|
|
from envs.monkey_zoo.blackbox.analyzers.communication_analyzer import CommunicationAnalyzer
|
2021-03-08 19:58:11 +08:00
|
|
|
from envs.monkey_zoo.blackbox.analyzers.zerologon_analyzer import ZerologonAnalyzer
|
2021-08-02 19:09:37 +08:00
|
|
|
from envs.monkey_zoo.blackbox.gcp_test_machine_list import GCP_TEST_MACHINE_LIST
|
2021-04-07 05:55:44 +08:00
|
|
|
from envs.monkey_zoo.blackbox.island_client.monkey_island_client import MonkeyIslandClient
|
2022-07-21 21:55:45 +08:00
|
|
|
from envs.monkey_zoo.blackbox.island_client.test_configuration_parser import TestConfigurationParser
|
2021-04-06 21:19:27 +08:00
|
|
|
from envs.monkey_zoo.blackbox.log_handlers.test_logs_handler import TestLogsHandler
|
2022-07-21 14:33:44 +08:00
|
|
|
from envs.monkey_zoo.blackbox.test_configurations import (
|
|
|
|
depth_1_a_test_configuration,
|
|
|
|
depth_2_a_test_configuration,
|
|
|
|
depth_3_a_test_configuration,
|
|
|
|
powershell_credentials_reuse_test_configuration,
|
|
|
|
smb_pth_test_configuration,
|
|
|
|
wmi_mimikatz_test_configuration,
|
|
|
|
zerologon_test_configuration,
|
|
|
|
)
|
2022-07-21 21:43:56 +08:00
|
|
|
from envs.monkey_zoo.blackbox.test_configurations.test_configuration import TestConfiguration
|
2020-04-24 18:19:07 +08:00
|
|
|
from envs.monkey_zoo.blackbox.tests.exploitation import ExploitationTest
|
2021-08-24 21:11:22 +08:00
|
|
|
from envs.monkey_zoo.blackbox.utils.gcp_machine_handlers import (
|
|
|
|
initialize_gcp_client,
|
|
|
|
start_machines,
|
|
|
|
stop_machines,
|
|
|
|
)
|
2019-08-27 20:52:39 +08:00
|
|
|
|
2022-04-13 16:03:59 +08:00
|
|
|
DEFAULT_TIMEOUT_SECONDS = 2 * 60 + 30
|
2019-09-13 21:12:58 +08:00
|
|
|
MACHINE_BOOTUP_WAIT_SECONDS = 30
|
2019-10-01 15:42:51 +08:00
|
|
|
LOG_DIR_PATH = "./logs"
|
2021-03-05 16:46:07 +08:00
|
|
|
logging.basicConfig(level=logging.INFO)
|
2019-10-01 21:11:53 +08:00
|
|
|
LOGGER = logging.getLogger(__name__)
|
2019-08-29 19:57:04 +08:00
|
|
|
|
2019-09-07 01:59:11 +08:00
|
|
|
|
2021-04-06 21:19:27 +08:00
|
|
|
@pytest.fixture(autouse=True, scope="session")
|
2020-05-13 15:44:04 +08:00
|
|
|
def GCPHandler(request, no_gcp):
|
|
|
|
if not no_gcp:
|
2021-05-11 15:44:02 +08:00
|
|
|
try:
|
2021-08-24 21:11:22 +08:00
|
|
|
initialize_gcp_client()
|
|
|
|
start_machines(GCP_TEST_MACHINE_LIST)
|
2021-05-11 15:44:02 +08:00
|
|
|
except Exception as e:
|
|
|
|
LOGGER.error("GCP Handler failed to initialize: %s." % e)
|
|
|
|
pytest.exit("Encountered an error while starting GCP machines. Stopping the tests.")
|
2020-05-13 15:44:04 +08:00
|
|
|
wait_machine_bootup()
|
2019-09-07 01:59:11 +08:00
|
|
|
|
2020-05-13 15:44:04 +08:00
|
|
|
def fin():
|
2021-08-24 21:11:22 +08:00
|
|
|
stop_machines(GCP_TEST_MACHINE_LIST)
|
2019-09-07 01:59:11 +08:00
|
|
|
|
2020-05-13 15:44:04 +08:00
|
|
|
request.addfinalizer(fin)
|
2019-09-07 01:59:11 +08:00
|
|
|
|
|
|
|
|
2021-04-06 21:19:27 +08:00
|
|
|
@pytest.fixture(autouse=True, scope="session")
|
2019-09-13 21:12:58 +08:00
|
|
|
def delete_logs():
|
2019-10-01 21:11:53 +08:00
|
|
|
LOGGER.info("Deleting monkey logs before new tests.")
|
2019-10-01 15:42:51 +08:00
|
|
|
TestLogsHandler.delete_log_folder_contents(TestMonkeyBlackbox.get_log_dir_path())
|
2019-09-13 21:12:58 +08:00
|
|
|
|
|
|
|
|
|
|
|
def wait_machine_bootup():
|
|
|
|
sleep(MACHINE_BOOTUP_WAIT_SECONDS)
|
|
|
|
|
|
|
|
|
2021-04-06 21:19:27 +08:00
|
|
|
@pytest.fixture(scope="class")
|
2022-07-21 22:27:02 +08:00
|
|
|
def island_client(island):
|
2021-05-20 13:44:12 +08:00
|
|
|
client_established = False
|
|
|
|
try:
|
|
|
|
island_client_object = MonkeyIslandClient(island)
|
|
|
|
client_established = island_client_object.get_api_status()
|
|
|
|
except Exception:
|
2021-05-21 13:41:28 +08:00
|
|
|
logging.exception("Got an exception while trying to establish connection to the Island.")
|
2021-05-20 13:44:12 +08:00
|
|
|
finally:
|
|
|
|
if not client_established:
|
|
|
|
pytest.exit("BB tests couldn't establish communication to the island.")
|
2019-09-11 17:39:28 +08:00
|
|
|
yield island_client_object
|
2019-09-07 01:59:11 +08:00
|
|
|
|
|
|
|
|
2021-04-06 21:19:27 +08:00
|
|
|
@pytest.mark.usefixtures("island_client")
|
2019-09-11 17:39:28 +08:00
|
|
|
# noinspection PyUnresolvedReferences
|
2021-03-02 21:01:56 +08:00
|
|
|
class TestMonkeyBlackbox:
|
2019-09-13 21:12:58 +08:00
|
|
|
@staticmethod
|
2021-04-06 21:19:27 +08:00
|
|
|
def run_exploitation_test(
|
|
|
|
island_client: MonkeyIslandClient,
|
2022-07-21 21:43:56 +08:00
|
|
|
test_configuration: TestConfiguration,
|
2021-04-06 21:19:27 +08:00
|
|
|
test_name: str,
|
|
|
|
timeout_in_seconds=DEFAULT_TIMEOUT_SECONDS,
|
|
|
|
):
|
|
|
|
analyzer = CommunicationAnalyzer(
|
2022-07-21 15:22:39 +08:00
|
|
|
island_client,
|
2022-07-21 21:55:45 +08:00
|
|
|
TestConfigurationParser.get_target_ips(test_configuration),
|
2021-04-06 21:19:27 +08:00
|
|
|
)
|
|
|
|
log_handler = TestLogsHandler(
|
|
|
|
test_name, island_client, TestMonkeyBlackbox.get_log_dir_path()
|
|
|
|
)
|
2020-04-10 19:32:39 +08:00
|
|
|
ExploitationTest(
|
2020-02-25 17:24:28 +08:00
|
|
|
name=test_name,
|
|
|
|
island_client=island_client,
|
2022-07-21 21:43:56 +08:00
|
|
|
test_configuration=test_configuration,
|
2020-02-25 17:24:28 +08:00
|
|
|
analyzers=[analyzer],
|
|
|
|
timeout=timeout_in_seconds,
|
2021-04-06 21:19:27 +08:00
|
|
|
log_handler=log_handler,
|
|
|
|
).run()
|
2019-10-01 15:42:51 +08:00
|
|
|
|
|
|
|
@staticmethod
|
|
|
|
def get_log_dir_path():
|
|
|
|
return os.path.abspath(LOG_DIR_PATH)
|
2019-09-07 01:59:11 +08:00
|
|
|
|
2022-04-15 01:52:41 +08:00
|
|
|
# If test_depth_1_a() is run first, some test will fail because machines are not yet fully
|
|
|
|
# booted. Running test_depth_2_a() first gives slow VMs extra time to boot.
|
2022-04-13 21:10:02 +08:00
|
|
|
def test_depth_2_a(self, island_client):
|
2022-07-21 14:33:44 +08:00
|
|
|
TestMonkeyBlackbox.run_exploitation_test(
|
|
|
|
island_client, depth_2_a_test_configuration, "Depth2A test suite"
|
|
|
|
)
|
2022-04-13 21:10:02 +08:00
|
|
|
|
2022-04-15 01:52:41 +08:00
|
|
|
def test_depth_1_a(self, island_client):
|
2022-07-21 14:33:44 +08:00
|
|
|
TestMonkeyBlackbox.run_exploitation_test(
|
|
|
|
island_client, depth_1_a_test_configuration, "Depth1A test suite"
|
|
|
|
)
|
2022-04-15 01:52:41 +08:00
|
|
|
|
2022-04-13 21:10:02 +08:00
|
|
|
def test_depth_3_a(self, island_client):
|
2022-07-21 14:33:44 +08:00
|
|
|
TestMonkeyBlackbox.run_exploitation_test(
|
|
|
|
island_client, depth_3_a_test_configuration, "Depth3A test suite"
|
|
|
|
)
|
2022-04-13 21:10:02 +08:00
|
|
|
|
2022-04-13 22:21:23 +08:00
|
|
|
# Not grouped because can only be ran on windows
|
|
|
|
@pytest.mark.skip_powershell_reuse
|
|
|
|
def test_powershell_exploiter_credentials_reuse(self, island_client):
|
|
|
|
TestMonkeyBlackbox.run_exploitation_test(
|
|
|
|
island_client,
|
2022-07-21 14:33:44 +08:00
|
|
|
powershell_credentials_reuse_test_configuration,
|
2022-04-13 22:21:23 +08:00
|
|
|
"PowerShell_Remoting_exploiter_credentials_reuse",
|
|
|
|
)
|
|
|
|
|
2022-04-13 21:10:02 +08:00
|
|
|
# Not grouped because it's slow
|
|
|
|
def test_zerologon_exploiter(self, island_client):
|
2021-03-08 19:58:11 +08:00
|
|
|
test_name = "Zerologon_exploiter"
|
2021-04-06 21:19:27 +08:00
|
|
|
expected_creds = [
|
|
|
|
"Administrator",
|
|
|
|
"aad3b435b51404eeaad3b435b51404ee",
|
|
|
|
"2864b62ea4496934a5d6e86f50b834a5",
|
|
|
|
]
|
2021-10-26 22:14:02 +08:00
|
|
|
zero_logon_analyzer = ZerologonAnalyzer(island_client, expected_creds)
|
|
|
|
communication_analyzer = CommunicationAnalyzer(
|
2022-07-21 15:22:39 +08:00
|
|
|
island_client,
|
2022-07-21 21:55:45 +08:00
|
|
|
TestConfigurationParser.get_target_ips(zerologon_test_configuration),
|
2021-10-26 22:14:02 +08:00
|
|
|
)
|
2021-04-06 21:19:27 +08:00
|
|
|
log_handler = TestLogsHandler(
|
|
|
|
test_name, island_client, TestMonkeyBlackbox.get_log_dir_path()
|
|
|
|
)
|
2021-03-08 17:07:24 +08:00
|
|
|
ExploitationTest(
|
|
|
|
name=test_name,
|
|
|
|
island_client=island_client,
|
2022-07-21 21:43:56 +08:00
|
|
|
test_configuration=zerologon_test_configuration,
|
2021-10-26 22:14:02 +08:00
|
|
|
analyzers=[zero_logon_analyzer, communication_analyzer],
|
2022-04-22 17:00:32 +08:00
|
|
|
timeout=DEFAULT_TIMEOUT_SECONDS + 30,
|
2021-04-06 21:19:27 +08:00
|
|
|
log_handler=log_handler,
|
|
|
|
).run()
|
2021-03-08 17:07:24 +08:00
|
|
|
|
2022-04-13 21:10:02 +08:00
|
|
|
# Not grouped because conflicts with SMB.
|
|
|
|
# Consider grouping when more depth 1 exploiters collide with group depth_1_a
|
|
|
|
def test_wmi_and_mimikatz_exploiters(self, island_client):
|
|
|
|
TestMonkeyBlackbox.run_exploitation_test(
|
2022-07-21 14:33:44 +08:00
|
|
|
island_client, wmi_mimikatz_test_configuration, "WMI_exploiter,_mimikatz"
|
2022-04-13 21:10:02 +08:00
|
|
|
)
|
2022-04-13 20:27:28 +08:00
|
|
|
|
2022-04-13 21:10:02 +08:00
|
|
|
# Not grouped because it's depth 1 but conflicts with SMB exploiter in group depth_1_a
|
|
|
|
def test_smb_pth(self, island_client):
|
2022-07-21 14:33:44 +08:00
|
|
|
TestMonkeyBlackbox.run_exploitation_test(
|
|
|
|
island_client, smb_pth_test_configuration, "SMB_PTH"
|
|
|
|
)
|