Commit Graph

10726 Commits

Author SHA1 Message Date
vakarisz 11318dad14 Island, Agent: Move local IP and interface retrieval to common
Both, island and agent needs to get local IP's/interfaces. We should also consider merging them, since interfaces also contain IP's
2022-09-16 15:45:07 +03:00
Mike Salvatore ae073de766
Merge pull request #2301 from guardicore/2180-credentials-event-encoding
2180 credentials event encoding
2022-09-16 08:35:45 -04:00
Ilija Lazoroski 7c554ec157 Agent: Relock Pipfile on windows 2022-09-16 14:35:40 +02:00
Mike Salvatore ec40a9c6ad Common: Inherit from InfectionMonkeyModelConfig in CredsStolenEvent 2022-09-16 08:34:46 -04:00
Mike Salvatore 54f1bd2197 Agent: Add more well-known ports 2022-09-16 08:27:42 -04:00
Mike Salvatore 1b4f1dba4e Agent: Change the order of COMMON_PORTS
COMMON_PORTS should be ordered with the the most likely to succeed ports
first.
2022-09-16 08:16:46 -04:00
Ilija Lazoroski ecccace870 Agent: Lock bcrypt to 3.2.2 2022-09-16 13:45:29 +02:00
vakarisz 46f7390a05 Common: Use SecretEncodingConfig in credentials_stolen_events.py 2022-09-16 14:26:36 +03:00
vakarisz 9577c5569e Common, Agent: Extract credential encoding related methods 2022-09-16 14:26:31 +03:00
Kekoa Kaaikala 017cce22d6 Agent: Add cryptography dependency 2022-09-15 19:15:25 +00:00
Mike Salvatore 004a543310 Common: Make Credentials.Config a subclass of InfectionMonkeyModelConfig 2022-09-15 12:23:52 -04:00
Mike Salvatore 729d2beee8 UT: Add missing tests for MongoAgentRepository
Increases code coverage to 100%
2022-09-15 12:10:14 -04:00
Mike Salvatore cbbd10dd71 Merge branch 'improve-mongo-credentials-repo' into develop 2022-09-15 12:05:04 -04:00
Mike Salvatore deacd18cbe Island: Make ICredentialsRepository methods abstract 2022-09-15 12:03:38 -04:00
Mike Salvatore a7a2968a99 Island: Remove superfluous "pass" from ICredentialsRepository 2022-09-15 12:03:23 -04:00
Mike Salvatore 3fd27c6503 Island: Add ICredentialsRepository.reset() 2022-09-15 12:03:21 -04:00
Mike Salvatore 07815eed93 Island: Wrap drop() Exceptions with RemovalError 2022-09-15 11:56:58 -04:00
Mike Salvatore 84c8de6a7c UT: Test error conditions in MongoCredentialsRepository
Increases test coverage to 100% for MongoCredentialsRepository
2022-09-15 11:55:48 -04:00
Mike Salvatore 5aff1c62c3 Island: Use drop() to clear mongo credentials collections 2022-09-15 11:54:06 -04:00
Mike Salvatore 6e47d3272d Island: Use monkey_island database in MongoCredentialsRepository 2022-09-15 11:48:12 -04:00
Mike Salvatore ef821f75e2 Agent: Add agent source to CredentialsStolenEvent in ZerologonExploiter 2022-09-15 08:01:58 -04:00
Mike Salvatore 4884313cba
Merge pull request #2297 from guardicore/2182-remove-credentialstelem
Remove CredentialsTelem
2022-09-15 07:42:37 -04:00
Shreya Malviya 75dddb0861 BB: Remove usage of CredentialComponentType in Zerologon analyzer 2022-09-15 14:07:18 +05:30
Shreya Malviya cf48189a07 BB: Use keyword parameters when creating Username/Password/NTHash objects 2022-09-15 14:00:14 +05:30
Shreya Malviya f57dad05c1 BB: Use keyword parameters when creating Credentials objects 2022-09-15 13:55:49 +05:30
Shreya Malviya 0b2039fb76 UT: Remove test_credentials_telem.py 2022-09-15 12:30:39 +05:30
Shreya Malviya 08fc1c6d39 Common: Remove CREDENTIALS from TelemCategoryEnum 2022-09-15 12:30:06 +05:30
Shreya Malviya eba94293d4 Agent: Remove CredentialsTelem 2022-09-15 12:29:18 +05:30
Shreya Malviya 775b0e69eb Island: Remove usage of credential telemetry 2022-09-15 12:28:37 +05:30
Shreya Malviya b00e0ff427 Agent: Remove usage of CredentialsTelem from master 2022-09-15 12:11:55 +05:30
Shreya Malviya 0a73ca717c Agent: Fix some mypy issues in zerologon.py 2022-09-15 12:07:03 +05:30
Shreya Malviya 97dcbe6168 Agent: Remove usage of CredentialsTelem from Zerologon exploiter 2022-09-15 11:53:22 +05:30
Mike Salvatore 51d5176986 UT: Improve MongoNodeRepository test coverage
Setting the MagicMock members to lambda's did not work as expected. A
look at the code coverage report revealed that not all branches were
covered. Setting them to new MagicMock objects with the correct return
type added coverage to branches that were previously skipped.
2022-09-14 15:58:35 -04:00
Mike Salvatore 4f29326da9
Merge pull request #2295 from guardicore/2180-mongo-event-repository
2180 mongo event repository
2022-09-14 15:49:13 -04:00
Kekoa Kaaikala 25c3552061 UT: Clarify mongo repository reset test 2022-09-14 19:35:37 +00:00
Kekoa Kaaikala 9ec91ec97a Island: Remove unneccessary call to list() 2022-09-14 19:35:05 +00:00
Kekoa Kaaikala cd84280e79 Island: Simplify event query and deserialization 2022-09-14 19:14:35 +00:00
Kekoa Kaaikala 8311fc79a9 Island: Add message to error on save 2022-09-14 18:43:52 +00:00
Kekoa Kaaikala 5f44204583 UT: Clean up mongo fixture 2022-09-14 18:38:56 +00:00
Kekoa Kaaikala 7e96c11204 Island: Add docstring to MongoEventRepository 2022-09-14 18:35:18 +00:00
Mike Salvatore 2155e9681e UT: Double sleep time to prevent false failures 2022-09-14 14:17:19 -04:00
Mike Salvatore 0ea1f9576f
Merge pull request #2296 from guardicore/2181-store-stolen-credentials-in-repo
2181 store stolen credentials in repo
2022-09-14 14:14:54 -04:00
Mike Salvatore 5742681b13 Island: Rename agent_event_subscribers -> agent_event_handlers 2022-09-14 13:58:12 -04:00
Mike Salvatore 03c49fe4da Island: Shorten subscription code 2022-09-14 13:55:13 -04:00
Mike Salvatore b3e9bbe05f Island: Subscribe save_stolen_credentials_to_repository() 2022-09-14 13:54:38 -04:00
Mike Salvatore 4db251dd7d Island: Add save_stolen_credentials_to_repository 2022-09-14 13:52:29 -04:00
Mike Salvatore d5979fae16 Island: Fix typo and grammar in save_event_to_event_repository() 2022-09-14 13:48:55 -04:00
Kekoa Kaaikala 5c762930bf Island: Search UUID by string value 2022-09-14 17:45:44 +00:00
Kekoa Kaaikala 89954223e8 Island: Match type based on __name__ 2022-09-14 17:45:44 +00:00
Kekoa Kaaikala ad5bba9e2f Island: Use EventSerializerRegistry 2022-09-14 17:45:44 +00:00