digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-21 19:28:02 +00:00
Code Issues Packages Projects Releases Wiki Activity

Commenting other VMS temporarily

Browse Source
This commit is contained in:
ts
2018-10-18 16:05:15 +01:00
parent 8368e73bcb
commit 6959bcef41
1 changed files with 212 additions and 131 deletions
Download Patch File Download Diff File Expand all files Collapse all files

343
scenarios/labs/4_ids.xml
View File

@@ -13,10 +13,150 @@
<type>lab-sheet</type>
<difficulty>intermediate</difficulty>
<system>
<system_name>desktop</system_name>
<base distro="Debian 9" type="desktop" name="KDE"/>
<!--<system>-->
<!--<system_name>desktop</system_name>-->
<!--<base distro="Debian 9" type="desktop" name="KDE"/>-->
<!--<input into_datastore="IP_addresses">-->
<!--<value>172.16.0.2</value>-->
<!--<value>172.16.0.3</value>-->
<!--<value>172.16.0.4</value>-->
<!--<value>172.16.0.5</value>-->
<!--</input>-->
<!--<input into_datastore="organisation">-->
<!--<generator type="organisation"/>-->
<!--</input>-->
<!--&lt;!&ndash;generate two accounts, YOU and someone else&ndash;&gt;-->
<!--<input into_datastore="accounts">-->
<!--<generator type="account">-->
<!--<input into="username">-->
<!--<generator type="random_word_generator">-->
<!--<input into="wordlist">-->
<!--<value>mythical_creatures</value>-->
<!--</input>-->
<!--</generator>-->
<!--</input>-->
<!--<input into="password">-->
<!--<value>tiaspbiqe2r</value>-->
<!--</input>-->
<!--<input into="super_user">-->
<!--<value>true</value>-->
<!--</input>-->
<!--<input into="leaked_filenames">-->
<!--<value></value>-->
<!--</input>-->
<!--<input into="strings_to_leak">-->
<!--<value></value>-->
<!--</input>-->
<!--</generator>-->
<!--<generator type="account">-->
<!--<input into="username">-->
<!--<generator type="random_word_generator">-->
<!--<input into="wordlist">-->
<!--<value>mythical_creatures</value>-->
<!--</input>-->
<!--</generator>-->
<!--</input>-->
<!--<input into="password">-->
<!--<value>test</value>-->
<!--</input>-->
<!--<input into="super_user">-->
<!--<value>false</value>-->
<!--</input>-->
<!--<input into="leaked_filenames">-->
<!--<value></value>-->
<!--</input>-->
<!--<input into="strings_to_leak">-->
<!--<value></value>-->
<!--</input>-->
<!--</generator>-->
<!--<generator type="account">-->
<!--<input into="username">-->
<!--<generator type="random_word_generator">-->
<!--<input into="wordlist">-->
<!--<value>mythical_creatures</value>-->
<!--</input>-->
<!--</generator>-->
<!--</input>-->
<!--<input into="password">-->
<!--<value>test</value>-->
<!--</input>-->
<!--<input into="super_user">-->
<!--<value>false</value>-->
<!--</input>-->
<!--<input into="leaked_filenames">-->
<!--<value></value>-->
<!--</input>-->
<!--<input into="strings_to_leak">-->
<!--<value></value>-->
<!--</input>-->
<!--</generator>-->
<!--</input>-->
<!--<input into_datastore="hackerbot_access_root_password">-->
<!--<generator type="strong_password_generator"/>-->
<!--</input>-->
<!--&lt;!&ndash;Create the users&ndash;&gt;-->
<!--<utility module_path=".*parameterised_accounts">-->
<!--<input into="accounts">-->
<!--<datastore>accounts</datastore>-->
<!--</input>-->
<!--</utility>-->
<!--<utility module_path=".*kde_minimal">-->
<!--<input into="autologin_user">-->
<!--<datastore access="0" access_json="['username']">accounts</datastore>-->
<!--</input>-->
<!--<input into="accounts">-->
<!--<datastore>accounts</datastore>-->
<!--</input>-->
<!--<input into="autostart_konsole">-->
<!--<value>true</value>-->
<!--</input>-->
<!--</utility>-->
<!--<utility module_path=".*handy_cli_tools"/>-->
<!--<utility module_path=".*nmap"/>-->
<!--<utility module_path=".*iceweasel">-->
<!--<input into="accounts">-->
<!--<datastore>accounts</datastore>-->
<!--</input>-->
<!--<input into="autostart">-->
<!--<value>true</value>-->
<!--</input>-->
<!--<input into="start_page">-->
<!--<datastore access="3">IP_addresses</datastore>-->
<!--</input>-->
<!--</utility>-->
<!--<utility module_path=".*pidgin">-->
<!--<input into="server_ip">-->
<!--<datastore access="3">IP_addresses</datastore>-->
<!--</input>-->
<!--<input into="accounts">-->
<!--<datastore access="0">accounts</datastore>-->
<!--</input>-->
<!--</utility>-->
<!--<vulnerability module_path=".*ssh_root_login">-->
<!--<input into="root_password">-->
<!--<datastore>hackerbot_access_root_password</datastore>-->
<!--</input>-->
<!--</vulnerability>-->
<!--<network type="private_network" >-->
<!--<input into="IP_address">-->
<!--<datastore access="0">IP_addresses</datastore>-->
<!--</input>-->
<!--</network>-->
<!--</system>-->
<system>
<system_name>ids_server</system_name>
<base distro="Debian 9" type="desktop" name="KDE"/>
<input into_datastore="IP_addresses">
<value>172.16.0.2</value>
<value>172.16.0.3</value>
@@ -99,65 +239,6 @@
<generator type="strong_password_generator"/>
</input>
<!--Create the users-->
<utility module_path=".*parameterised_accounts">
<input into="accounts">
<datastore>accounts</datastore>
</input>
</utility>
<utility module_path=".*kde_minimal">
<input into="autologin_user">
<datastore access="0" access_json="['username']">accounts</datastore>
</input>
<input into="accounts">
<datastore>accounts</datastore>
</input>
<input into="autostart_konsole">
<value>true</value>
</input>
</utility>
<utility module_path=".*handy_cli_tools"/>
<utility module_path=".*nmap"/>
<utility module_path=".*iceweasel">
<input into="accounts">
<datastore>accounts</datastore>
</input>
<input into="autostart">
<value>true</value>
</input>
<input into="start_page">
<datastore access="3">IP_addresses</datastore>
</input>
</utility>
<utility module_path=".*pidgin">
<input into="server_ip">
<datastore access="3">IP_addresses</datastore>
</input>
<input into="accounts">
<datastore access="0">accounts</datastore>
</input>
</utility>
<vulnerability module_path=".*ssh_root_login">
<input into="root_password">
<datastore>hackerbot_access_root_password</datastore>
</input>
</vulnerability>
<network type="private_network" >
<input into="IP_address">
<datastore access="0">IP_addresses</datastore>
</input>
</network>
</system>
<system>
<system_name>ids_server</system_name>
<base distro="Debian 9" type="desktop" name="KDE"/>
<utility module_path=".*parameterised_accounts">
<input into="accounts">
<datastore>accounts</datastore>
@@ -193,88 +274,88 @@
</network>
</system>
<system>
<system_name>web_server</system_name>
<base platform="linux" distro="Debian 7.8"/>
<!--<system>-->
<!--<system_name>web_server</system_name>-->
<!--<base platform="linux" distro="Debian 7.8"/>-->
<utility module_path=".*parameterised_accounts">
<input into="accounts">
<datastore>accounts</datastore>
</input>
</utility>
<!--<utility module_path=".*parameterised_accounts">-->
<!--<input into="accounts">-->
<!--<datastore>accounts</datastore>-->
<!--</input>-->
<!--</utility>-->
<vulnerability module_path=".*distcc_exec"/>
<!--<vulnerability module_path=".*distcc_exec"/>-->
<!--TODO: FIXME ftp modules are currently broken-->
<!--<service module_path=".*vsftpd"/>-->
<!--&lt;!&ndash;TODO: FIXME ftp modules are currently broken&ndash;&gt;-->
<!--&lt;!&ndash;<service module_path=".*vsftpd"/>&ndash;&gt;-->
<!--TODO: Fix the apache module -->
<service module_path=".*apache_wheezy.*"/>
<!--&lt;!&ndash;TODO: Fix the apache module &ndash;&gt;-->
<!--<service module_path=".*apache_wheezy.*"/>-->
<!--<service module_path="services/unix/http/parameterised_website">
<input into="organisation">
<datastore>organisation</datastore>
</input>
</service>-->
<!--&lt;!&ndash;<service module_path="services/unix/http/parameterised_website">-->
<!--<input into="organisation">-->
<!--<datastore>organisation</datastore>-->
<!--</input>-->
<!--</service>&ndash;&gt;-->
<vulnerability module_path=".*ssh_root_login">
<input into="root_password">
<datastore>hackerbot_access_root_password</datastore>
</input>
</vulnerability>
<!--<vulnerability module_path=".*ssh_root_login">-->
<!--<input into="root_password">-->
<!--<datastore>hackerbot_access_root_password</datastore>-->
<!--</input>-->
<!--</vulnerability>-->
<network type="private_network" >
<input into="IP_address">
<datastore access="2">IP_addresses</datastore>
</input>
</network>
</system>
<!--<network type="private_network" >-->
<!--<input into="IP_address">-->
<!--<datastore access="2">IP_addresses</datastore>-->
<!--</input>-->
<!--</network>-->
<!--</system>-->
<system>
<system_name>hackerbot_server</system_name>
<base distro="Kali" name="MSF"/>
<!--<system>-->
<!--<system_name>hackerbot_server</system_name>-->
<!--<base distro="Kali" name="MSF"/>-->
<service type="ircd"/>
<!--<service type="ircd"/>-->
<utility module_path=".*metasploit_framework"/>
<utility module_path=".*handy_cli_tools"/>
<utility module_path=".*nmap"/>
<!--<utility module_path=".*metasploit_framework"/>-->
<!--<utility module_path=".*handy_cli_tools"/>-->
<!--<utility module_path=".*nmap"/>-->
<service type="httpd"/>
<!--<service type="httpd"/>-->
<utility module_path=".*hackerbot">
<input into="hackerbot_configs">
<generator module_path=".*ids">
<input into="accounts">
<datastore>accounts</datastore>
</input>
<input into="root_password">
<datastore>hackerbot_access_root_password</datastore>
</input>
<input into="ids_server_ip">
<datastore access="1">IP_addresses</datastore>
</input>
<input into="web_server_ip">
<datastore access="2">IP_addresses</datastore>
</input>
<input into="hackerbot_server_ip">
<datastore access="3">IP_addresses</datastore>
</input>
</generator>
</input>
</utility>
<!--<utility module_path=".*hackerbot">-->
<!--<input into="hackerbot_configs">-->
<!--<generator module_path=".*ids">-->
<!--<input into="accounts">-->
<!--<datastore>accounts</datastore>-->
<!--</input>-->
<!--<input into="root_password">-->
<!--<datastore>hackerbot_access_root_password</datastore>-->
<!--</input>-->
<!--<input into="ids_server_ip">-->
<!--<datastore access="1">IP_addresses</datastore>-->
<!--</input>-->
<!--<input into="web_server_ip">-->
<!--<datastore access="2">IP_addresses</datastore>-->
<!--</input>-->
<!--<input into="hackerbot_server_ip">-->
<!--<datastore access="3">IP_addresses</datastore>-->
<!--</input>-->
<!--</generator>-->
<!--</input>-->
<!--</utility>-->
<network type="private_network" >
<input into="IP_address">
<datastore access="3">IP_addresses</datastore>
</input>
</network>
<!--<network type="private_network" >-->
<!--<input into="IP_address">-->
<!--<datastore access="3">IP_addresses</datastore>-->
<!--</input>-->
<!--</network>-->
<build type="cleanup">
<input into="root_password">
<generator type="strong_password_generator"/>
</input>
</build>
</system>
<!--<build type="cleanup">-->
<!--<input into="root_password">-->
<!--<generator type="strong_password_generator"/>-->
<!--</input>-->
<!--</build>-->
<!--</system>-->
</scenario>