Commit Graph

3963 Commits

Author SHA1 Message Date
ophirharpazg 8e14e74d94 add a path for Bitnami installations of Drupal 2020-09-01 15:20:22 +03:00
Shay Nehmad 113db81e55
Merge pull request #818 from guardicore/linter-cleanup
fix typo
2020-09-01 15:01:46 +03:00
Shay Nehmad e9a939e1f0 fix typo
(╯°□°)╯︵ ┻━┻
2020-09-01 15:00:39 +03:00
ophirharpazg ac731f5736 Remove redundant logs 2020-09-01 14:57:22 +03:00
ophirharpazg 4de9e92ce2 I seriously have no idea how this happened
(*/ω\*)
2020-09-01 14:51:01 +03:00
Shay Nehmad f990e1af39
Merge pull request #817 from guardicore/linter-cleanup
Bugfix - missing import
2020-09-01 14:48:05 +03:00
Shay Nehmad 33b9dae213 Bugfix - missing import 2020-09-01 14:46:53 +03:00
ophirharpazg afcbbb880c add to exploiter info 2020-09-01 14:23:52 +03:00
ophirharpazg 7288fb9814 fix Docs page and add to report 2020-09-01 14:16:22 +03:00
ophirharpazg 0eb31a927d add basic Drupal docs page 2020-09-01 14:00:58 +03:00
ophirharpazg a7b84b966c fix length check and add log 2020-09-01 12:43:20 +03:00
ophirharpazg bdba20133d retore the upper bound from the original exploit implementation 2020-09-01 12:39:36 +03:00
ophirharpazg 9fcf2fe0e6 improve the check of sufficient URLs for the attack 2020-09-01 12:39:14 +03:00
Shay Nehmad 5a00d5e5f9 Merge branch '669/drupal' of https://github.com/guardicore/monkey into 669/drupal 2020-09-01 12:17:33 +03:00
Shay Nehmad cf776063af Reformat + extract payload building to functions 2020-09-01 12:17:01 +03:00
ophirharpazg f31186272f fixed logic and name in finding exploitable nodes 2020-09-01 12:07:29 +03:00
VakarisZ 7107e963fb
Merge pull request #809 from VakarisZ/ms08-067
Added windows XP support for win_ms08_067
2020-09-01 11:56:02 +03:00
ophirharpazg 6e2678473c rename function that finds vulnerable node IDs 2020-09-01 11:53:49 +03:00
Shay Nehmad cec57c1604 Update minor things in order to pass CI build 2020-09-01 11:48:06 +03:00
Shay Nehmad e7ecaa1744 Merge branch 'develop' into 669/drupal 2020-09-01 11:42:42 +03:00
Shay Nehmad 1c5c31bc46
Merge pull request #814 from guardicore/snyk-upgrade-9a432504aecd5d03703176a441aa7986
[Snyk] Upgrade snyk from 1.369.3 to 1.372.0
2020-09-01 11:15:40 +03:00
snyk-bot ef64f4f122 fix: upgrade @emotion/core from 10.0.28 to 10.0.34
Snyk has created this PR to upgrade @emotion/core from 10.0.28 to 10.0.34.

See this package in npm:
https://www.npmjs.com/package/@emotion/core

See this project in Snyk:
https://app.snyk.io/org/guardicore/project/b4a24b2f-c0d4-474c-9f18-da5a77c685fe?utm_source=github&utm_medium=upgrade-pr
2020-09-01 07:03:46 +00:00
snyk-bot d0113285a7 fix: upgrade bootstrap from 4.5.1 to 4.5.2
Snyk has created this PR to upgrade bootstrap from 4.5.1 to 4.5.2.

See this package in npm:
https://www.npmjs.com/package/bootstrap

See this project in Snyk:
https://app.snyk.io/org/guardicore/project/b4a24b2f-c0d4-474c-9f18-da5a77c685fe?utm_source=github&utm_medium=upgrade-pr
2020-09-01 07:03:41 +00:00
snyk-bot 33be50a6e2 fix: upgrade snyk from 1.369.3 to 1.372.0
Snyk has created this PR to upgrade snyk from 1.369.3 to 1.372.0.

See this package in npm:
https://www.npmjs.com/package/snyk

See this project in Snyk:
https://app.snyk.io/org/guardicore/project/b4a24b2f-c0d4-474c-9f18-da5a77c685fe?utm_source=github&utm_medium=upgrade-pr
2020-09-01 07:03:36 +00:00
Shay Nehmad c79bc8f47b
Merge pull request #812 from guardicore/linter-cleanup
Linter cleanup
2020-09-01 09:15:05 +03:00
Shay Nehmad f084d84157 Fixed isort 2020-08-31 18:31:00 +03:00
Shay Nehmad 1a4d27d7ff Delete return value 2020-08-31 18:12:01 +03:00
Shay Nehmad 5696c3e536 Some more easy noqas or invalid escape fixes 2020-08-31 18:06:08 +03:00
ophirharpazg 6184400f51 mention Drupal REST API requirement 2020-08-31 17:55:24 +03:00
ophirharpazg b82a6e48b2 use ID_STRING instead of dashes 2020-08-31 17:55:04 +03:00
Shay Nehmad accd6bd0fa See https://eslint.org/docs/rules/no-prototype-builtins 2020-08-31 17:16:53 +03:00
ophirharpazg c9ea95110c remove unnecessary function and replace with urljoin 2020-08-31 16:52:10 +03:00
ophirharpazg 1ae8ecff62 Move remote_port to a designated file and add UT 2020-08-31 16:40:21 +03:00
Shreya Malviya 836647eadf
Merge pull request #796 from shreyamalviya/T1099
Add T1099 attack technique (timestomping)
2020-08-31 17:21:56 +05:30
Shay Nehmad 9d26b5698c Fix isort bug with comments 2020-08-31 14:47:47 +03:00
Shay Nehmad f23199c4a3 Fixed more warnings and lowered the linter upper limit to double digits 2020-08-31 14:40:03 +03:00
Shay Nehmad b26727d5e0 Fix isort formatting 2020-08-31 14:36:26 +03:00
Shreya fc7d5bf1b3 Merge remote-tracking branch 'upstream/develop' into T1099 2020-08-31 17:00:58 +05:30
Shay Nehmad 910e8355f9 Fix or noqa some python linter errors
Also, replace os.path with Path
2020-08-31 14:13:56 +03:00
Shay Nehmad db46134a60
Merge pull request #803 from guardicore/snyk-upgrade-7ac4a238c663fbd71e69edeed8729cd1
[Snyk] Upgrade bootstrap from 4.5.0 to 4.5.1
2020-08-31 12:13:06 +03:00
Shay Nehmad a1356a14b3 npm audit fix 2020-08-31 12:12:50 +03:00
Shay Nehmad 70ecd27ab1 Merge branch 'develop' into snyk-upgrade-7ac4a238c663fbd71e69edeed8729cd1 2020-08-31 12:04:34 +03:00
Shay Nehmad d9dbb6fcfa
Merge pull request #797 from guardicore/snyk-upgrade-3bcbcf02454033baa460afe021a37c03
[Snyk] Upgrade react-json-tree from 0.11.2 to 0.12.0
2020-08-31 12:04:11 +03:00
Shay Nehmad c01663c12f
Merge pull request #811 from guardicore/snyk-upgrade-675068a89f14975a8ee45d366b442b9d
[Snyk] Upgrade filepond from 4.19.0 to 4.19.2
2020-08-31 12:02:17 +03:00
Shay Nehmad 122c400c07 Merge branch 'develop' into snyk-upgrade-3bcbcf02454033baa460afe021a37c03 2020-08-31 12:00:04 +03:00
Shay Nehmad d5137c0309
Merge pull request #810 from guardicore/snyk-upgrade-d44523b2ce9bd417c69790101739ae1d
[Snyk] Upgrade snyk from 1.368.0 to 1.369.3
2020-08-31 11:54:10 +03:00
VakarisZ 0471229b13 Small os_compat readme improvement: added default debian login info 2020-08-31 10:36:47 +03:00
VakarisZ d8a0a6d7a8 More work on Run monkey page 2020-08-31 10:35:39 +03:00
ophirharpazg 4c9d0f2786 Add Drupal to the newly formed configuration 2020-08-30 18:04:40 +03:00
ophirharpazg 1e259fc131 Add a detailed issue to the security report 2020-08-30 18:04:26 +03:00