digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-21 11:18:06 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update lab

Browse Source 
- Fix flags
- Improve time-based access control prompt
- Update regex matching for time configuration verification
- Refine instruction clarity for time-based login restrictions
This commit is contained in:
Z. Cliffe Schreuders
2025-02-04 11:24:03 +00:00
parent eda1dde7a3
commit be20e7497c
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
modules/generators/structured_content/hackerbot_config/hbpam/templates/lab.xml.erb
View File

@@ -155,7 +155,7 @@ Randomised instance generated by [SecGen](http://github.com/cliffe/SecGen)
</condition>
<condition>
<output_matches>locked</output_matches>
<message>:) Well done! <%= $flags.pop %></message>
<message>:) Well done! < %= $flags.pop %></message>
<trigger_next_attack />
</condition>
<else_condition>
@@ -188,9 +188,9 @@ Randomised instance generated by [SecGen](http://github.com/cliffe/SecGen)
days_range = days_standard
end
%>
<prompt>Set up time-based access control to only allow the user <%= $second_user %> to login between <%= start_hour %>:00 and <%= end_hour %>:00 on <%= selected_days.join(' and ') %>.</prompt>
<prompt>Set up time-based access control to only allow the user <%= $second_user %> to login between <%= start_hour %>:00 and <%= end_hour %>:00 on <%= selected_days.join(' and ') %>. Use a single line new rule.</prompt>
<post_command>
grep -qE "^\*;\*;<%=$second_user%>;.*((<%=start_time%>-<%=end_time%>.*(<%=days_standard%>|<%=days_range%>))|(<%=days_standard%>|<%=days_range%>).*<%=start_time%>-<%=end_time%>)" /etc/security/time.conf;
grep -qE "^[^;]*;([^;]|\||\!)*;<%=$second_user%>;.*((<%=start_time%>-<%=end_time%>\s*(<%=days_standard%>|<%=days_range%>))|(<%=days_standard%>|<%=days_range%>)\s*<%=start_time%>-<%=end_time%>|(<%=selected_days.join('|')%>)\s*<%=start_time%>-<%=end_time%>)" /etc/security/time.conf;
echo "p0-$?-";
grep -q "account.*required.*pam_time.so" /etc/pam.d/common-account;
echo "p1-$?-"
@@ -227,7 +227,7 @@ Randomised instance generated by [SecGen](http://github.com/cliffe/SecGen)
<condition>
<output_matches>currently blacklisted</output_matches>
<message>:) Well done! <%= $flags.pop %></message>
<message>:) Well done! < %= $flags.pop %></message>
<trigger_next_attack />
</condition>
<else_condition>