show low sevirity threat users

2018-04-17 15:54:03 +03:00 · 2018-04-17 15:54:03 +03:00 · c308532ff4
parent e17f9b8273
commit c308532ff4
1 changed files with 25 additions and 0 deletions
--- a/monkey_island/cc/resources/pthmap.py
+++ b/monkey_island/cc/resources/pthmap.py
@ -824,6 +824,11 @@ class PassTheHashMap(object):

        return machines

+    @cache
+    def GetNonCritialServers(self):
+        return self.machines - self.GetCritialServers()
+        
+    @cache
    def GetThreateningUsersByVictim(self, victim):
        threatening_users = set()
        
@ -874,6 +879,26 @@ def main():

        print """</ul></td></tr>"""
    print """</table>"""
+    
+    
+    print "<h2>Strong Users That Threat NonCritical Servers</h2>"
+    print "<h3>Administrators of non-critical servers that we could find thier secret cached somewhere</h3>"
+    
+    threatening = dict(map(lambda x: (x, len(pth.GetThreateningUsersByVictim(x))), pth.GetNonCritialServers()))
+    
+    print """<table>"""
+    print """<tr><th>Critical Server</th><th>Hostname</th><th>Domain</th><th>Threatening User Count</th><th>Threatening Users</th></tr>"""
+    for m, count in sorted(threatening.iteritems(), key=lambda (k,v): (v,k), reverse=True):
+        if count <= 0:
+            continue
+        print """<tr><td><a href="#{ip}">{ip}</a></td><td>{hostname}</td><td>{domain}</td><td>{count}</td>""".format(ip=m.GetIp(), hostname=m.GetHostName(), domain=m.GetDomainName(), count=count)
+        print """<td><ul>"""
+        
+        for sid in pth.GetThreateningUsersByVictim(m):
+            print """<li><a href="#{sid}">{username}</a></li>""".format(sid=sid, username=pth.GetUsernameBySid(sid))
+
+        print """</ul></td></tr>"""
+    print """</table>"""
   
    
    print "<h2>Cached Passwords</h2>"