mirror of
https://github.com/cliffe/SecGen.git
synced 2026-02-21 11:18:06 +00:00
scenarios/examples/vulnerability_examples/dirtycow.xml
This commit is contained in:
24
scenarios/examples/vulnerability_examples/dirtycow.xml
Normal file
24
scenarios/examples/vulnerability_examples/dirtycow.xml
Normal file
@@ -0,0 +1,24 @@
|
||||
<?xml version="1.0"?>
|
||||
|
||||
<scenario xmlns="http://www.github/cliffe/SecGen/scenario"
|
||||
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
|
||||
xsi:schemaLocation="http://www.github/cliffe/SecGen/scenario">
|
||||
|
||||
<system>
|
||||
<system_name>dirtycow</system_name>
|
||||
<base platform="linux" distro="Debian 7.8" />
|
||||
|
||||
<!-- DirtyCOW vulnerability module leaves the debian 7 bases unpatched by default. -->
|
||||
<vulnerability module_path=".*dirtycow.*"/>
|
||||
|
||||
<input into_datastore="IP_addresses">
|
||||
<value>172.16.0.12</value>
|
||||
</input>
|
||||
|
||||
<network type="private_network">
|
||||
<input into="IP_address">
|
||||
<datastore access="0">IP_addresses</datastore>
|
||||
</input>
|
||||
</network>
|
||||
</system>
|
||||
</scenario>
|
||||
@@ -5,9 +5,9 @@
|
||||
xsi:schemaLocation="http://www.github/cliffe/SecGen/scenario">
|
||||
<system>
|
||||
<system_name>testing</system_name>
|
||||
<base platform="linux" distro="Debian 9" type="server"/>
|
||||
<base platform="linux" distro="Debian 7.8" type="server"/>
|
||||
|
||||
<vulnerability module_path=".*setuid_nmap" />
|
||||
<vulnerability module_path=".*dirtycow.*"/>
|
||||
|
||||
<input into_datastore="IP_addresses">
|
||||
<value>172.16.0.12</value>
|
||||
|
||||
@@ -147,7 +147,7 @@ def build_vms(scenario, project_dir, options)
|
||||
Print.err "Not going to destroy #{vm_not_to_destroy}, since it does not exist"
|
||||
failures_to_destroy.delete_if {|x| x == vm_not_to_destroy}
|
||||
# TODO: not sure if there is a need to remove_uncreated_vms() here too? (I don't think so?)
|
||||
end
|
||||
end # TODO: Add another elsif here to check if any tests have failed, edit the output of the tests so that it has a unique string that captures the vm name
|
||||
end
|
||||
|
||||
failures_to_destroy = failures_to_destroy.uniq
|
||||
|
||||
Reference in New Issue
Block a user