diff --git a/README-CyBOK-Scenarios-Indexed.md b/README-CyBOK-Scenarios-Indexed.md index 6272c1fc1..81a730d1a 100644 --- a/README-CyBOK-Scenarios-Indexed.md +++ b/README-CyBOK-Scenarios-Indexed.md @@ -86,12 +86,12 @@ Models | [introducing_attacks/4_dns_footprinting.xml](#introducing_attacks4_dns_ ### SS Scenarios -[introducing_attacks/6_exploitation.xml](#introducing_attacks6_exploitationxml)
[labtainers/bufoverflow.xml](#labtainersbufoverflowxml)
[labtainers/formatstring.xml](#labtainersformatstringxml)
[labtainers/pass-crack.xml](#labtainerspass-crackxml)
[labtainers/retlibc.xml](#labtainersretlibcxml)
[labtainers/sql-inject.xml](#labtainerssql-injectxml)
[labtainers/xforge.xml](#labtainersxforgexml)
[labtainers/xsite.xml](#labtainersxsitexml)
[software_security_exploitation/1_c_asm_iof.xml](#software_security_exploitation1_c_asm_iofxml)
[software_security_exploitation/2_race_conditions_format_str.xml](#software_security_exploitation2_race_conditions_format_strxml)
[software_security_exploitation/3_bug_hunting_and_fuzzing.xml](#software_security_exploitation3_bug_hunting_and_fuzzingxml)
[software_security_exploitation/4_exploit_development.xml](#software_security_exploitation4_exploit_developmentxml)
[software_security_exploitation/5_linux_stack_bof.xml](#software_security_exploitation5_linux_stack_bofxml)
[software_security_exploitation/6_linux_nx_bypass.xml](#software_security_exploitation6_linux_nx_bypassxml)
[software_security_exploitation/7_linux_aslr_bypass.xml](#software_security_exploitation7_linux_aslr_bypassxml)
[software_security_exploitation/8_linux_bof_format.xml](#software_security_exploitation8_linux_bof_formatxml)
[systems_security/7_apparmor.xml](#systems_security7_apparmorxml)
[web_security/websec_lab.xml](#web_securitywebsec_labxml)
+[introducing_attacks/6_exploitation.xml](#introducing_attacks6_exploitationxml)
[labtainers/bufoverflow.xml](#labtainersbufoverflowxml)
[labtainers/formatstring.xml](#labtainersformatstringxml)
[labtainers/pass-crack.xml](#labtainerspass-crackxml)
[labtainers/retlibc.xml](#labtainersretlibcxml)
[labtainers/sql-inject.xml](#labtainerssql-injectxml)
[labtainers/xforge.xml](#labtainersxforgexml)
[labtainers/xsite.xml](#labtainersxsitexml)
[software_security_exploitation/1_c_asm_iof.xml](#software_security_exploitation1_c_asm_iofxml)
[software_security_exploitation/2_race_conditions_format_str.xml](#software_security_exploitation2_race_conditions_format_strxml)
[software_security_exploitation/3_bug_hunting_and_fuzzing.xml](#software_security_exploitation3_bug_hunting_and_fuzzingxml)
[software_security_exploitation/4_exploit_development.xml](#software_security_exploitation4_exploit_developmentxml)
[software_security_exploitation/5_linux_stack_bof.xml](#software_security_exploitation5_linux_stack_bofxml)
[software_security_exploitation/6_linux_nx_bypass.xml](#software_security_exploitation6_linux_nx_bypassxml)
[software_security_exploitation/7_linux_aslr_bypass.xml](#software_security_exploitation7_linux_aslr_bypassxml)
[software_security_exploitation/8_linux_bof_format.xml](#software_security_exploitation8_linux_bof_formatxml)
[systems_security/8_apparmor.xml](#systems_security8_apparmorxml)
[web_security/websec_lab.xml](#web_securitywebsec_labxml)
### SS Scenarios by Topics | Topic | Scenario | | --- | --- | Categories of Vulnerabilities | [introducing_attacks/6_exploitation.xml](#introducing_attacks6_exploitationxml)
[labtainers/bufoverflow.xml](#labtainersbufoverflowxml)
[labtainers/formatstring.xml](#labtainersformatstringxml)
[labtainers/retlibc.xml](#labtainersretlibcxml)
[labtainers/sql-inject.xml](#labtainerssql-injectxml)
[software_security_exploitation/1_c_asm_iof.xml](#software_security_exploitation1_c_asm_iofxml)
[software_security_exploitation/2_race_conditions_format_str.xml](#software_security_exploitation2_race_conditions_format_strxml)
[software_security_exploitation/4_exploit_development.xml](#software_security_exploitation4_exploit_developmentxml)
[software_security_exploitation/5_linux_stack_bof.xml](#software_security_exploitation5_linux_stack_bofxml)
[software_security_exploitation/6_linux_nx_bypass.xml](#software_security_exploitation6_linux_nx_bypassxml)
[software_security_exploitation/7_linux_aslr_bypass.xml](#software_security_exploitation7_linux_aslr_bypassxml)
[software_security_exploitation/8_linux_bof_format.xml](#software_security_exploitation8_linux_bof_formatxml)
[web_security/websec_lab.xml](#web_securitywebsec_labxml)
-Mitigating Exploitation | [labtainers/bufoverflow.xml](#labtainersbufoverflowxml)
[labtainers/retlibc.xml](#labtainersretlibcxml)
[software_security_exploitation/6_linux_nx_bypass.xml](#software_security_exploitation6_linux_nx_bypassxml)
[software_security_exploitation/7_linux_aslr_bypass.xml](#software_security_exploitation7_linux_aslr_bypassxml)
[systems_security/7_apparmor.xml](#systems_security7_apparmorxml)
+Mitigating Exploitation | [labtainers/bufoverflow.xml](#labtainersbufoverflowxml)
[labtainers/retlibc.xml](#labtainersretlibcxml)
[software_security_exploitation/6_linux_nx_bypass.xml](#software_security_exploitation6_linux_nx_bypassxml)
[software_security_exploitation/7_linux_aslr_bypass.xml](#software_security_exploitation7_linux_aslr_bypassxml)
[systems_security/8_apparmor.xml](#systems_security8_apparmorxml)
Authentication | [labtainers/pass-crack.xml](#labtainerspass-crackxml)
Prevention of Vulnerabilities | [labtainers/sql-inject.xml](#labtainerssql-injectxml)
[labtainers/xforge.xml](#labtainersxforgexml)
[labtainers/xsite.xml](#labtainersxsitexml)
[software_security_exploitation/1_c_asm_iof.xml](#software_security_exploitation1_c_asm_iofxml)
[software_security_exploitation/2_race_conditions_format_str.xml](#software_security_exploitation2_race_conditions_format_strxml)
[web_security/websec_lab.xml](#web_securitywebsec_labxml)
Detection of Vulnerabilities | [software_security_exploitation/3_bug_hunting_and_fuzzing.xml](#software_security_exploitation3_bug_hunting_and_fuzzingxml)
@@ -100,11 +100,11 @@ Detection of Vulnerabilities | [software_security_exploitation/3_bug_hunting_and ### AAA Scenarios -[labtainers/acl-hackerbot-flags.xml](#labtainersacl-hackerbot-flagsxml)
[labtainers/acl.xml](#labtainersaclxml)
[labtainers/file-integrity.xml](#labtainersfile-integrityxml)
[labtainers/ldap.xml](#labtainersldapxml)
[labtainers/macs-hash.xml](#labtainersmacs-hashxml)
[labtainers/nix-commands.xml](#labtainersnix-commandsxml)
[labtainers/onewayhash.xml](#labtainersonewayhashxml)
[labtainers/radius.xml](#labtainersradiusxml)
[labtainers/setuid-env.xml](#labtainerssetuid-envxml)
[response_and_investigation/1_integrity_protection.xml](#response_and_investigation1_integrity_protectionxml)
[response_and_investigation/7_live_analysis.xml](#response_and_investigation7_live_analysisxml)
[response_and_investigation/8_dead_analysis.xml](#response_and_investigation8_dead_analysisxml)
[systems_security/1_authentication.xml](#systems_security1_authenticationxml)
[systems_security/2_pam.xml](#systems_security2_pamxml)
[systems_security/3_access_controls.xml](#systems_security3_access_controlsxml)
[systems_security/4_suid.xml](#systems_security4_suidxml)
[systems_security/5_facls.xml](#systems_security5_faclsxml)
[systems_security/6_containers.xml](#systems_security6_containersxml)
[systems_security/7_apparmor.xml](#systems_security7_apparmorxml)
+[labtainers/acl-hackerbot-flags.xml](#labtainersacl-hackerbot-flagsxml)
[labtainers/acl.xml](#labtainersaclxml)
[labtainers/file-integrity.xml](#labtainersfile-integrityxml)
[labtainers/ldap.xml](#labtainersldapxml)
[labtainers/macs-hash.xml](#labtainersmacs-hashxml)
[labtainers/nix-commands.xml](#labtainersnix-commandsxml)
[labtainers/onewayhash.xml](#labtainersonewayhashxml)
[labtainers/radius.xml](#labtainersradiusxml)
[labtainers/setuid-env.xml](#labtainerssetuid-envxml)
[response_and_investigation/1_integrity_protection.xml](#response_and_investigation1_integrity_protectionxml)
[response_and_investigation/7_live_analysis.xml](#response_and_investigation7_live_analysisxml)
[response_and_investigation/8_dead_analysis.xml](#response_and_investigation8_dead_analysisxml)
[systems_security/1_authentication.xml](#systems_security1_authenticationxml)
[systems_security/2_pam.xml](#systems_security2_pamxml)
[systems_security/4_access_controls.xml](#systems_security4_access_controlsxml)
[systems_security/5_suid.xml](#systems_security5_suidxml)
[systems_security/6_facls.xml](#systems_security6_faclsxml)
[systems_security/7_containers.xml](#systems_security7_containersxml)
[systems_security/8_apparmor.xml](#systems_security8_apparmorxml)
### AAA Scenarios by Topics | Topic | Scenario | | --- | --- | -Authorisation | [labtainers/acl-hackerbot-flags.xml](#labtainersacl-hackerbot-flagsxml)
[labtainers/acl.xml](#labtainersaclxml)
[labtainers/ldap.xml](#labtainersldapxml)
[labtainers/nix-commands.xml](#labtainersnix-commandsxml)
[labtainers/setuid-env.xml](#labtainerssetuid-envxml)
[response_and_investigation/1_integrity_protection.xml](#response_and_investigation1_integrity_protectionxml)
[systems_security/3_access_controls.xml](#systems_security3_access_controlsxml)
[systems_security/4_suid.xml](#systems_security4_suidxml)
[systems_security/5_facls.xml](#systems_security5_faclsxml)
[systems_security/6_containers.xml](#systems_security6_containersxml)
[systems_security/7_apparmor.xml](#systems_security7_apparmorxml)
+Authorisation | [labtainers/acl-hackerbot-flags.xml](#labtainersacl-hackerbot-flagsxml)
[labtainers/acl.xml](#labtainersaclxml)
[labtainers/ldap.xml](#labtainersldapxml)
[labtainers/nix-commands.xml](#labtainersnix-commandsxml)
[labtainers/setuid-env.xml](#labtainerssetuid-envxml)
[response_and_investigation/1_integrity_protection.xml](#response_and_investigation1_integrity_protectionxml)
[systems_security/4_access_controls.xml](#systems_security4_access_controlsxml)
[systems_security/5_suid.xml](#systems_security5_suidxml)
[systems_security/6_facls.xml](#systems_security6_faclsxml)
[systems_security/7_containers.xml](#systems_security7_containersxml)
[systems_security/8_apparmor.xml](#systems_security8_apparmorxml)
Authentication | [labtainers/file-integrity.xml](#labtainersfile-integrityxml)
[labtainers/ldap.xml](#labtainersldapxml)
[labtainers/macs-hash.xml](#labtainersmacs-hashxml)
[labtainers/onewayhash.xml](#labtainersonewayhashxml)
[labtainers/radius.xml](#labtainersradiusxml)
[systems_security/1_authentication.xml](#systems_security1_authenticationxml)
[systems_security/2_pam.xml](#systems_security2_pamxml)
Accountability | [response_and_investigation/7_live_analysis.xml](#response_and_investigation7_live_analysisxml)
[response_and_investigation/8_dead_analysis.xml](#response_and_investigation8_dead_analysisxml)
@@ -112,12 +112,12 @@ Accountability | [response_and_investigation/7_live_analysis.xml](#response_and_ ### OSV Scenarios -[labtainers/acl-hackerbot-flags.xml](#labtainersacl-hackerbot-flagsxml)
[labtainers/acl.xml](#labtainersaclxml)
[labtainers/capabilities.xml](#labtainerscapabilitiesxml)
[labtainers/setuid-env.xml](#labtainerssetuid-envxml)
[response_and_investigation/1_integrity_protection.xml](#response_and_investigation1_integrity_protectionxml)
[response_and_investigation/2_integrity_detection.xml](#response_and_investigation2_integrity_detectionxml)
[response_and_investigation/7_live_analysis.xml](#response_and_investigation7_live_analysisxml)
[systems_security/1_authentication.xml](#systems_security1_authenticationxml)
[systems_security/2_pam.xml](#systems_security2_pamxml)
[systems_security/3_access_controls.xml](#systems_security3_access_controlsxml)
[systems_security/4_suid.xml](#systems_security4_suidxml)
[systems_security/5_facls.xml](#systems_security5_faclsxml)
[systems_security/6_containers.xml](#systems_security6_containersxml)
[systems_security/7_apparmor.xml](#systems_security7_apparmorxml)
+[labtainers/acl-hackerbot-flags.xml](#labtainersacl-hackerbot-flagsxml)
[labtainers/acl.xml](#labtainersaclxml)
[labtainers/capabilities.xml](#labtainerscapabilitiesxml)
[labtainers/setuid-env.xml](#labtainerssetuid-envxml)
[response_and_investigation/1_integrity_protection.xml](#response_and_investigation1_integrity_protectionxml)
[response_and_investigation/2_integrity_detection.xml](#response_and_investigation2_integrity_detectionxml)
[response_and_investigation/7_live_analysis.xml](#response_and_investigation7_live_analysisxml)
[systems_security/1_authentication.xml](#systems_security1_authenticationxml)
[systems_security/2_pam.xml](#systems_security2_pamxml)
[systems_security/4_access_controls.xml](#systems_security4_access_controlsxml)
[systems_security/5_suid.xml](#systems_security5_suidxml)
[systems_security/6_facls.xml](#systems_security6_faclsxml)
[systems_security/7_containers.xml](#systems_security7_containersxml)
[systems_security/8_apparmor.xml](#systems_security8_apparmorxml)
### OSV Scenarios by Topics | Topic | Scenario | | --- | --- | -Primitives for Isolation and Mediation | [labtainers/acl-hackerbot-flags.xml](#labtainersacl-hackerbot-flagsxml)
[labtainers/acl.xml](#labtainersaclxml)
[labtainers/capabilities.xml](#labtainerscapabilitiesxml)
[labtainers/setuid-env.xml](#labtainerssetuid-envxml)
[response_and_investigation/1_integrity_protection.xml](#response_and_investigation1_integrity_protectionxml)
[systems_security/1_authentication.xml](#systems_security1_authenticationxml)
[systems_security/2_pam.xml](#systems_security2_pamxml)
[systems_security/3_access_controls.xml](#systems_security3_access_controlsxml)
[systems_security/4_suid.xml](#systems_security4_suidxml)
[systems_security/5_facls.xml](#systems_security5_faclsxml)
[systems_security/6_containers.xml](#systems_security6_containersxml)
[systems_security/7_apparmor.xml](#systems_security7_apparmorxml)
-Role of Operating Systems | [labtainers/acl-hackerbot-flags.xml](#labtainersacl-hackerbot-flagsxml)
[labtainers/acl.xml](#labtainersaclxml)
[systems_security/3_access_controls.xml](#systems_security3_access_controlsxml)
[systems_security/6_containers.xml](#systems_security6_containersxml)
+Primitives for Isolation and Mediation | [labtainers/acl-hackerbot-flags.xml](#labtainersacl-hackerbot-flagsxml)
[labtainers/acl.xml](#labtainersaclxml)
[labtainers/capabilities.xml](#labtainerscapabilitiesxml)
[labtainers/setuid-env.xml](#labtainerssetuid-envxml)
[response_and_investigation/1_integrity_protection.xml](#response_and_investigation1_integrity_protectionxml)
[systems_security/1_authentication.xml](#systems_security1_authenticationxml)
[systems_security/2_pam.xml](#systems_security2_pamxml)
[systems_security/4_access_controls.xml](#systems_security4_access_controlsxml)
[systems_security/5_suid.xml](#systems_security5_suidxml)
[systems_security/6_facls.xml](#systems_security6_faclsxml)
[systems_security/7_containers.xml](#systems_security7_containersxml)
[systems_security/8_apparmor.xml](#systems_security8_apparmorxml)
+Role of Operating Systems | [labtainers/acl-hackerbot-flags.xml](#labtainersacl-hackerbot-flagsxml)
[labtainers/acl.xml](#labtainersaclxml)
[systems_security/4_access_controls.xml](#systems_security4_access_controlsxml)
[systems_security/7_containers.xml](#systems_security7_containersxml)
OS Hardening | [response_and_investigation/2_integrity_detection.xml](#response_and_investigation2_integrity_detectionxml)
[response_and_investigation/7_live_analysis.xml](#response_and_investigation7_live_analysisxml)
## Forensics (F) @@ -148,13 +148,13 @@ Cyber-Physical Systems Domains | [labtainers/grassmarlin.xml](#labtainersgrassma ### WAM Scenarios -[labtainers/iptables-ics.xml](#labtainersiptables-icsxml)
[labtainers/iptables.xml](#labtainersiptablesxml)
[labtainers/iptables2.xml](#labtainersiptables2xml)
[labtainers/sql-inject.xml](#labtainerssql-injectxml)
[labtainers/webtrack.xml](#labtainerswebtrackxml)
[labtainers/xforge.xml](#labtainersxforgexml)
[labtainers/xsite.xml](#labtainersxsitexml)
[systems_security/6_containers.xml](#systems_security6_containersxml)
[web_security/websec_lab.xml](#web_securitywebsec_labxml)
+[labtainers/iptables-ics.xml](#labtainersiptables-icsxml)
[labtainers/iptables.xml](#labtainersiptablesxml)
[labtainers/iptables2.xml](#labtainersiptables2xml)
[labtainers/sql-inject.xml](#labtainerssql-injectxml)
[labtainers/webtrack.xml](#labtainerswebtrackxml)
[labtainers/xforge.xml](#labtainersxforgexml)
[labtainers/xsite.xml](#labtainersxsitexml)
[systems_security/7_containers.xml](#systems_security7_containersxml)
[web_security/websec_lab.xml](#web_securitywebsec_labxml)
### WAM Scenarios by Topics | Topic | Scenario | | --- | --- | FIREWALLS | [labtainers/iptables-ics.xml](#labtainersiptables-icsxml)
[labtainers/iptables.xml](#labtainersiptablesxml)
[labtainers/iptables2.xml](#labtainersiptables2xml)
Server-Side Vulnerabilities and Mitigations | [labtainers/sql-inject.xml](#labtainerssql-injectxml)
[labtainers/xforge.xml](#labtainersxforgexml)
[labtainers/xsite.xml](#labtainersxsitexml)
[web_security/websec_lab.xml](#web_securitywebsec_labxml)
-Fundamental Concepts and Approaches | [labtainers/webtrack.xml](#labtainerswebtrackxml)
[systems_security/6_containers.xml](#systems_security6_containersxml)
[web_security/websec_lab.xml](#web_securitywebsec_labxml)
+Fundamental Concepts and Approaches | [labtainers/webtrack.xml](#labtainerswebtrackxml)
[systems_security/7_containers.xml](#systems_security7_containersxml)
[web_security/websec_lab.xml](#web_securitywebsec_labxml)
Client-Side Vulnerabilities and Mitigations | [web_security/websec_lab.xml](#web_securitywebsec_labxml)
## Cryptography (C) @@ -3038,7 +3038,7 @@ Command to build VMs and start scenario: [View source](scenarios/labs/systems_security/2_pam.xml) - ## systems_security/3_access_controls.xml + ## systems_security/4_access_controls.xml ### Details @@ -3063,12 +3063,12 @@ Command to build VMs and start scenario: Command to build VMs and start scenario: -```ruby secgen.rb -s scenarios/labs/systems_security/3_access_controls.xml run``` +```ruby secgen.rb -s scenarios/labs/systems_security/4_access_controls.xml run``` -[View source](scenarios/labs/systems_security/3_access_controls.xml) +[View source](scenarios/labs/systems_security/4_access_controls.xml) - ## systems_security/4_suid.xml + ## systems_security/5_suid.xml ### Details @@ -3092,12 +3092,12 @@ Command to build VMs and start scenario: Command to build VMs and start scenario: -```ruby secgen.rb -s scenarios/labs/systems_security/4_suid.xml run``` +```ruby secgen.rb -s scenarios/labs/systems_security/5_suid.xml run``` -[View source](scenarios/labs/systems_security/4_suid.xml) +[View source](scenarios/labs/systems_security/5_suid.xml) - ## systems_security/5_facls.xml + ## systems_security/6_facls.xml ### Details @@ -3121,12 +3121,12 @@ Command to build VMs and start scenario: Command to build VMs and start scenario: -```ruby secgen.rb -s scenarios/labs/systems_security/5_facls.xml run``` +```ruby secgen.rb -s scenarios/labs/systems_security/6_facls.xml run``` -[View source](scenarios/labs/systems_security/5_facls.xml) +[View source](scenarios/labs/systems_security/6_facls.xml) - ## systems_security/6_containers.xml + ## systems_security/7_containers.xml ### Details @@ -3152,12 +3152,12 @@ Command to build VMs and start scenario: Command to build VMs and start scenario: -```ruby secgen.rb -s scenarios/labs/systems_security/6_containers.xml run``` +```ruby secgen.rb -s scenarios/labs/systems_security/7_containers.xml run``` -[View source](scenarios/labs/systems_security/6_containers.xml) +[View source](scenarios/labs/systems_security/7_containers.xml) - ## systems_security/7_apparmor.xml + ## systems_security/8_apparmor.xml ### Details @@ -3182,9 +3182,9 @@ Command to build VMs and start scenario: Command to build VMs and start scenario: -```ruby secgen.rb -s scenarios/labs/systems_security/7_apparmor.xml run``` +```ruby secgen.rb -s scenarios/labs/systems_security/8_apparmor.xml run``` -[View source](scenarios/labs/systems_security/7_apparmor.xml) +[View source](scenarios/labs/systems_security/8_apparmor.xml) ## web_security/websec_lab.xml diff --git a/scenarios/labs/systems_security/ss_conf.xml b/scenarios/labs/systems_security/3_ss_conf.xml similarity index 100% rename from scenarios/labs/systems_security/ss_conf.xml rename to scenarios/labs/systems_security/3_ss_conf.xml diff --git a/scenarios/labs/systems_security/3_access_controls.xml b/scenarios/labs/systems_security/4_access_controls.xml similarity index 100% rename from scenarios/labs/systems_security/3_access_controls.xml rename to scenarios/labs/systems_security/4_access_controls.xml diff --git a/scenarios/labs/systems_security/4_suid.xml b/scenarios/labs/systems_security/5_suid.xml similarity index 100% rename from scenarios/labs/systems_security/4_suid.xml rename to scenarios/labs/systems_security/5_suid.xml diff --git a/scenarios/labs/systems_security/5_facls.xml b/scenarios/labs/systems_security/6_facls.xml similarity index 100% rename from scenarios/labs/systems_security/5_facls.xml rename to scenarios/labs/systems_security/6_facls.xml diff --git a/scenarios/labs/systems_security/6_containers.xml b/scenarios/labs/systems_security/7_containers.xml similarity index 100% rename from scenarios/labs/systems_security/6_containers.xml rename to scenarios/labs/systems_security/7_containers.xml diff --git a/scenarios/labs/systems_security/7_apparmor.xml b/scenarios/labs/systems_security/8_apparmor.xml similarity index 100% rename from scenarios/labs/systems_security/7_apparmor.xml rename to scenarios/labs/systems_security/8_apparmor.xml