p59342861
/
monkey
forked from p15670423/monkey
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
7,845 Commits 30 Branches 0 Tags 47 MiB
Commit Graph

260 Commits

Author SHA1 Message Date
Mike Salvatore 394088e39d BB: Reduce DELAY_BETWEEN_ANALYSIS 2022-03-29 16:10:20 -04:00
Mike Salvatore 4e489ad62b
Merge pull request #1814 from guardicore/1801-fix-blackbox-tests 
1801 fix blackbox tests
 2022-03-25 07:18:22 -04:00
Mike Salvatore 35923c1eb1 BB: Reduce the timeouts for tunneling tests 2022-03-24 13:43:04 -04:00
vakarisz a92a8af96b BB: Remove smb-20 machine 2022-03-24 13:08:30 -04:00
Shreya Malviya cb51394439 BB: Add relevant TCP ports to PowerShell config template 2022-03-24 18:43:52 +05:30
Mike Salvatore f8b3b378d6 BB: Skip tests for deprecated exploiters 2022-03-23 14:50:38 -04:00
Mike Salvatore 5835a87d3c BB: Reduce the time that tunnels are held open in tunneling test 2022-03-23 14:50:38 -04:00
Mike Salvatore 123606f23d BB: Reduce time to wait for agents to finish 
Since the agents stop and start so much more quickly now, these delays
can be reduced.
 2022-03-23 14:50:38 -04:00
Mike Salvatore ef9c3f4f32 BB: Add ports 5985 and 5986 to PowerShell tests 2022-03-23 14:50:38 -04:00
Mike Salvatore 88422f9764 BB: Fix API call to kill all monkeys 2022-03-23 14:50:38 -04:00
Ilija Lazoroski 747365818f BB: Update documentation for PowerShell machines 2022-03-16 14:20:42 +01:00
Mike Salvatore c075fed2da BB: Remove 'PingScanner' from fingerprinters in config templates 2022-02-28 13:18:07 -05:00
Shreya Malviya 7d76d94959 Zoo: Remove Elastic machines from terraform scripts and docs 2022-02-24 15:16:19 +05:30
Shreya Malviya 6c7e630465 BB: Remove ElasticGroovyExploiter references 2022-02-24 15:14:32 +05:30
Ilija Lazoroski ddc77e6d6a Zoo: Remove ShellShock Exploiter 2022-02-23 13:50:12 +01:00
Shreya Malviya 7787984f4a BB: Remove ProcessListCollector from BB config templates 2022-02-16 17:31:40 +05:30
Mike Salvatore e1cf4fa9c2 Merge branch 'release/1.13.0' into agent-refactor 2022-01-25 13:35:49 -05:00
vakarisz 28cf8b55cf BB: modified performance config template to contain log4shell machines 2022-01-25 15:16:32 +02:00
Shreya Malviya ce8c178297 BB: Add Log4Shell zoo machines to table of contents, grammar fixes 2022-01-20 17:24:11 +05:30
vakarisz 212fb3a653 BB: black format config_generation_script.py 2022-01-18 15:23:59 +02:00
vakarisz e3f9312ff9 BB: change log4j exploit depth to 1 (default) 
This change is necessary to make sure that exploitation is successfull from a particular machine being tested.
 2022-01-18 11:44:47 +02:00
Ilija Lazoroski 311a721880 BB: Fix IP address for Tomcat machines 2022-01-17 16:34:56 +01:00
vakarisz 77eb3ce004 BB: Added log4j configs to the list of manually generatable configs 2022-01-17 11:40:31 +02:00
vakarisz be79f2bcdb BB: add log4j machines to gcp machine list 2022-01-14 14:51:18 +02:00
vakarisz a7b31dd9e4 BB: add log4shell BB tests 2022-01-13 16:11:10 +02:00
vakarisz aef7beedb3 Zoo: add logstash machines that test log4shell 2022-01-13 12:42:03 +02:00
Ilija Lazoroski dcc68914bd BB: Add log4j machines to monkey zoo 2022-01-10 14:17:48 +01:00
vakarisz 6782f806eb Zoo: add log4j solr machines to terraform scripts and docs 2022-01-07 15:27:50 +02:00
VakarisZ 86f2a0dc78 BB: remove deleted system info collectors from config templates 2021-11-17 12:59:34 +02:00
VakarisZ f5c8db979f Project: remove remaining sambacry exploiter references in performance.py config template, vulture_allowlist.py and monkey_config_standard.json unit test data file 2021-11-10 15:44:05 +02:00
VakarisZ 136a105e56 BB: remove sambacry machines from BB infrastructure and docs 2021-11-10 15:43:51 +02:00
Shreya Malviya b005946d88 BB: Remove VSFTPD exploiter from BB performance test's config template 2021-10-29 18:17:33 +05:30
VakarisZ 1ad74a4bff BB: fix zerologon test to check propagation via SMB as well 
ZeroLogon doesn't propagate to the machine it only steals the credentials. It's best to make sure that propagation is also possible by running SMB exploiter
 2021-10-26 10:21:36 -04:00
Mike Salvatore 8d7a5a410c BB: Remove ".\\m0nk3y" user from Powershell user list 
This user was added to work around issue #1486. Since d4a1c2bda resolves
that issue, this user can be removed from the config for this test.
 2021-10-19 08:23:07 -04:00
Ilija Lazoroski 6787cce1d0 Zoo: Change API registration parameter 2021-10-14 14:52:13 +02:00
VakarisZ 2d28c4e800 Zoo: fix the fullDocs.md by removing the outdated section about monkey configurations, add a sections about what to do with the island if you're a simple user 2021-10-07 16:56:10 +03:00
VakarisZ f7e0b4fef1 Zoo: add missing tunneling-12 image definition to terraform scripts 2021-10-07 13:55:48 +03:00
Ilija Lazoroski a438f3afb0 Zoo: Replace --os with --skip-powershell-reuse 
With this logic the powershell cached will run
if we don't provide the cli param --skip-powershell-reuse.
 2021-09-28 17:31:20 +02:00
Ilija Lazoroski 07c08ac0b6 Zoo: Reformat powershell cached credentials test 2021-09-27 19:02:13 +02:00
Ilija Lazoroski 689e6ac532 Zoo: Add os specific black box test. 
Add new --os flag to the blackbox tests.
If not specified it will skip all os marked tests.
 2021-09-27 13:08:52 +02:00
Ilija Lazoroski b90e9ccf21 Zoo: Add second hop bb test 
Added new powershell-3-48 machine for second hop test.
Explanation why cached are not working after the first hop.
Documentation for the zoo.
 2021-09-24 15:29:11 +02:00
VakarisZ b69916428b Remove T1129 attack technique from the codebase 2021-09-17 14:19:42 +03:00
VakarisZ dec2fc43c2
Merge pull request #1449 from guardicore/powershell-exploiter-ntlm-hashes 
Use LM and NT hashes in powershell exploiter
 2021-09-09 11:56:02 +03:00
Ilija Lazoroski d27194c568 Zoo: Fix powershell bb config for ntlm hash 2021-09-06 13:50:24 +02:00
VakarisZ 57908b94eb
Merge pull request #1452 from guardicore/1418/bb-to-use-credentials 
Zoo: Change island to use credentials
 2021-09-06 10:28:39 +03:00
Ilija Lazoroski 1e5d49024d Zoo: Change island to use credentials 2021-09-06 09:17:15 +02:00
Ilija Lazoroski 18c21513af Zoo: Add new machine for powershell exploiter 2021-09-02 17:06:22 +02:00
Shreya Malviya 13b1904cf7
Merge pull request #1427 from guardicore/1246/powershell-documentation 
Documentation for PowerShell exploiter
 2021-09-01 15:11:39 +05:30
Mike Salvatore d22c7813a5 BB: Switch the scanning order in tunneling tests 
Because the SMB exploiter deploys the 32-bit agent, which will then
upgrade itself to 64-bit, it takes a long time between when exploitation
is successful and the agent calls home. By switching the order that
hosts are scanned in, this test runs approximately 25 seconds quicker
and allows us to reduce the `keep_tunnel_open_time` setting by 30
seconds.
 2021-08-30 13:28:25 -04:00
Shreya Malviya 54f80df1f4 bb: Remove extra line from end of file 2021-08-30 15:12:35 +05:30