SecGen

mirror of https://github.com/cliffe/SecGen.git synced 2026-02-22 19:58:03 +00:00

Author	SHA1	Message	Date
thomashaw	9aaba7b135	parameterised_website, removed floating ' - ' character when no business_name is included	2017-06-19 14:17:51 +01:00
thomashaw	1a7540a83a	removed 'testing_' from mail module	2017-06-19 13:58:37 +01:00
thomashaw	467baf15fa	apache 2: changed the internals of puppet-labs/apache to prevent ports.conf being overwritten when apache is called from 2 modules	2017-06-16 11:50:53 +01:00
thomashaw	e973d89f90	2 apaches instances: parameterised_website + gitlist port changes	2017-06-15 17:18:06 +01:00
thomashaw	e7b777eb9a	2 apache instances: metadata updates	2017-06-15 17:17:12 +01:00
thomashaw	3a0f426842	utilities/mail module: creates system mail messages for a user on a linux system. generators/mail_message: hash containing the data for a mail message. generators/mail_id: outputs a randomly generated mail id string. generators/date: added mail format and option to pass a date in + have it formatted.	2017-06-13 19:34:53 +01:00
thomashaw	210f5cdfbe	new module: ctf/hidden_file - drops a hidden linux file prepended with a dot, containing a flag, into either the provided account's home directory OR the provided storage_directory	2017-06-08 11:24:23 +01:00
thomashaw	f59c18adf0	new module: ctf/java_decompile - based on picoctf-2013	2017-06-06 20:49:21 +01:00
thomashaw	2b4553020f	services/nfs: added storage_directory parameter	2017-06-06 16:22:31 +01:00
thomashaw	875524afc6	dc16_feedme: Reversing / pwnable module from defcon 2016 qualifiers	2017-06-06 16:20:24 +01:00
thomashaw	a4226665aa	dc16_b3s23: Reversing / programming module from defcon 2016 qualifiers	2017-06-06 15:02:18 +01:00
thomashaw	4e25e6a85c	dc16_amadhj: using new install_setuid_root_binary	2017-06-06 15:01:06 +01:00
thomashaw	fcda518504	setuid root binary fixes	2017-06-06 14:59:51 +01:00
thomashaw	ada45e9420	New function: secgen_functions::install_setuid_root_binary Updated dc16_amadhj to use this function	2017-06-06 11:26:34 +01:00
thomashaw	88265a1271	defcon16_amadhj: installing and has correct permissions -- refactor installation of setuid binary challenges into a secgen_function	2017-06-05 13:19:49 +01:00
thomashaw	03172d955c	WIP:: implementing defcon qualifier challenges -- amadhj (reversing challenge, leak a binary + expose a pwnable service running the binary)	2017-05-30 12:28:42 +01:00
thomashaw	2dc7d93d33	utilities/parameterised_accounts: adds an account with a strong password by default vulnerabilities/crackable_user_account: adds an account with a weak password by default	2017-05-30 11:23:58 +01:00
thomashaw	5e7689316b	vulnerabilities/parameterised_accounts => utilities/parameterised_accounts	2017-05-24 13:01:42 +01:00
thomashaw	333f259736	param_website: fixed re-assignment error	2017-05-24 13:01:16 +01:00
thomashaw	0b875871e0	uid_less_root/uid_vi_root: updating metadata	2017-05-24 09:58:43 +01:00
thomashaw	15d594144d	access control misconfigurations: uid_bash_root	2017-05-24 09:57:50 +01:00
thomashaw	48385db779	access control misconfiguration: writable_passwd -- enforced the order in accounts::users w/ multiple ac misconfigs at same time	2017-05-23 17:51:27 +01:00
thomashaw	c39ec63434	Enforce run order of parameterised_accounts and writable_groups	2017-05-22 16:47:24 +01:00
thomashaw	09abd74235	access control misconfiguration: readable shadow	2017-05-22 13:31:24 +01:00
thomashaw	152f59e3f1	access control misconfiguration: writable groups	2017-05-22 13:30:23 +01:00
thomashaw	e283775ed3	access control misconfiguration: writable shadow	2017-05-22 13:29:46 +01:00
thomashaw	0155018879	access control misconfiguration: readable /etc/shadow file	2017-05-22 12:45:45 +01:00
thomashaw	2b93c8c20d	access control misconfiguration: suid_root_nano	2017-05-22 11:53:25 +01:00
thomashaw	6e98c95504	Merge remote-tracking branch 'origin/randomise_service_ports'	2017-05-20 15:06:18 +01:00
thomashaw	05cd757f55	Fixed samba concat{} error with newer versions of puppet / stdlib	2017-05-20 14:02:22 +01:00
thomashaw	6b5c66f586	Parameterised port - vulnerabilities/unrealirc_3281_backdoor	2017-05-20 11:37:06 +01:00
thomashaw	bdc6c065de	Parameterised port - services/unrealirc	2017-05-20 11:37:06 +01:00
thomashaw	3c6e0a5a24	Parameterised port - vulnerabilities/proftpd_133c_backdoor	2017-05-20 11:37:06 +01:00
thomashaw	42966f4a43	Parameterised port - service/proftpd -- set default port to 21	2017-05-20 11:37:06 +01:00
thomashaw	3d4c0fa98a	Parameterised port - service/proftpd	2017-05-20 11:37:06 +01:00
thomashaw	e0a0e1f8d4	Parameterised port - service/vsftp -- fixed	2017-05-20 11:37:06 +01:00
thomashaw	a0949b57e5	Parameterised port - service/vsftp (WIP)	2017-05-20 11:37:06 +01:00
thomashaw	ae41400392	Parameterised port - vulnerability/vsftpd_backdoor	2017-05-20 11:37:06 +01:00
thomashaw	8d426c6580	services/parameterised_webiste: Business facts can be blank. no manager / employee data will hide the contacts page.	2017-05-14 23:04:47 +01:00
thomashaw	428d39a279	vulnerabilities/onlinestore: parameterised dealer_id / murderer_id / murdered_ids / murdered_on. Updated scenarios/../leeds_beckett_online_store.xml	2017-05-13 20:00:32 +01:00
thomashaw	5c24e13577	Date generator module_name fix	2017-05-13 17:46:22 +01:00
thomashaw	2686331510	encoders/string_selector_with_exclusions	2017-05-13 16:29:36 +01:00
thomashaw	034c2ec409	generators/date_generator: added mysql_datetime format	2017-05-13 16:29:19 +01:00
thomashaw	58907d171d	parameterised online_store	2017-05-11 15:02:56 +01:00
thomashaw	577272aa61	generators/compression/zip: Added optional password to zip file generator	2017-05-09 16:29:27 +01:00
thomashaw	2f05fd4797	undo accidental removal of rot13 puppet files	2017-05-09 16:21:31 +01:00
thomashaw	a15211822f	changed vignere to vigenere	2017-05-09 15:48:06 +01:00
thomashaw	22cfa3027e	removing special chars from b64 flag generator + changed qr code link	2017-05-09 15:24:46 +01:00
thomashaw	66aa51dd9d	Updating hints	2017-05-09 12:37:12 +01:00
thomashaw	e8d12deb0e	parameterised_website: changed error message	2017-05-08 13:11:00 +01:00

... 20 21 22 23 24 ...

1300 Commits