digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-21 19:28:02 +00:00
Code Issues Packages Projects Releases Wiki Activity
271 Commits 38 Branches 0 Tags
c_code
Commit Graph

73 Commits

Author SHA1 Message Date
thomashaw
e8f8dcece4 Team project work squashed + removed dead code 2017-02-17 14:59:07 +00:00
thomashaw
43c02f220f Updated for post-parameterisation 2017-01-17 16:27:18 +00:00
thomashaw
f8a97b2842 Parameterised Cleanup Module 2017-01-17 16:11:50 +00:00
thomashaw
1522fd3ac9 Enable static IP address network IP address resolution & a fix for the duplicate modules being output when using multiple systems in Vagrantfile bug 2017-01-17 14:49:24 +00:00
Z. Cliffe Schreuders
fcc4630187 desktop xfce 2017-01-08 01:20:04 +00:00
thomashaw
e7019afa86 Fixed shellshock 2016-12-20 15:26:21 +00:00
thomashaw
733c871072 Additional parameterisation. New modules: parameterised_accounts, generators and an account_encoder. Added plenty of parameters/default_inputs to currently existing vulnerability modules. 2016-11-30 18:09:22 +00:00
thomashaw
f724415cdf Privilege changes: More specific privilege levels. r, rw, rwx for root & user. 2016-11-14 14:34:04 +00:00
Tom
0920f6ef62 Merge pull request #79 from thomashaw/proftpd_service 
Service: ProFTPd
 2016-11-13 23:21:30 +00:00
thomashaw
9b797c7db2 Service: ProFTPd 
WIP: Renamed

proftpd service module cont.
 2016-11-13 22:53:21 +00:00
thomashaw
073483f91d Moving scenario files 2016-11-13 22:49:41 +00:00
thomashaw
b1ba6700d4 Vulnerability: chkrootkit 0.49 local privilege escalation 2016-11-13 22:48:21 +00:00
thomashaw
2cf329eeef Vulnerability: Gitlist 0.4.0 webapp with RCE 2016-11-13 22:43:47 +00:00
Z. Cliffe Schreuders
9ff06fce7e default values for parameters (modules and literal values) 2016-11-08 00:28:33 +00:00
Z. Cliffe Schreuders
d68f98e0da code cleanup 2016-10-18 22:38:22 +01:00
Z. Cliffe Schreuders
3724fc1c7c organise scenario files into directories 2016-10-18 21:51:33 +01:00
Z. Cliffe Schreuders
4421c7d99c Merge branch 'parameterisation' 2016-10-18 21:25:17 +01:00
Z. Cliffe Schreuders
e63aa00e0a parameterisation 2016-10-18 21:19:47 +01:00
Tom
7c5991e03f Merge pull request #76 from Jjk422/new_smbclient_service_module 
Smbclient utility module.
 2016-09-20 09:05:52 +01:00
Jjk422
880b42e200 Requested changes have been made: 
secgen_metadata.xml:7 :: Removed line
smbclient_utility.xml:8 :: Corrected smbclinet_utility to smbclient_utility.
 2016-09-20 08:53:24 +01:00
Jjk422
eb55b69dff Smbclient utility module. 
Scenario file found at '/home/user/RubymineProjects/SecGen/scenarios/simple_examples/smbclient_utility.xml'
 2016-09-13 12:05:08 +01:00
Jjk422
772b96436e Changed service module samba directory from file_share to smb. 
Changed scenario files that used the module.
Also changed the secgen.xml for samba vulnerabilities that required the module.

service::samba::secgen_metadata.xml:
Changed type in SecGen metadata for samba service module from file_share to smb, also added author.
Removed unneeded comments, changed comment from apache to samba.
scenarios::samba_service.xml
Changed comment to represent samba.

Tested and seems to be fully working for all modules/scenarios that require it.
 2016-09-13 11:10:59 +01:00
Jjk422
4f53a7f770 Merge pull request #70 from thomashaw/nmap_setuid_rebase 
Tested, exploitable although multiple exploits needed to exploit the box.
Ready to be merged.
 2016-09-07 15:01:58 +01:00
thomashaw
f82e554a7e Added network tag to scenario 2016-09-07 11:33:09 +01:00
thomashaw
4528467f04 Vulnerability: Nmap setuid local privilege escalation 2016-09-06 15:34:12 +01:00
Jjk422
18268af6c9 Merge pull request #69 from thomashaw/shellshock_rebase 
Tested and seems to be fully working.
 2016-09-06 15:17:28 +01:00
Jjk422
bc9db957e3 Merge pull request #67 from thomashaw/samba_overshare_rebase 
Happy with this branch, don't think we need to change anything so merging, although the samba service module versioning may come back to bite us, but we can deal with that when we get to it.
 2016-09-06 13:15:44 +01:00
Tom
27dc5c3b9e Merge pull request #66 from Jjk422/new_access_control_misconfigurations_uid_less_running_as_root 
Access control vulnerability, allows less to run as root for any user.
 2016-09-06 13:10:22 +01:00
thomashaw
264952a103 removed public writable share scenario 2016-09-06 13:04:06 +01:00
thomashaw
60cd05536d Vulnerability: Shellshock in bash & Service: apache server with cgi hosting a bash script 
New scenario combines the two & is exploitable with msf module: exploit/multi/http/apache_mod_cgi_bash_env_exec
 2016-09-04 22:15:28 +01:00
thomashaw
3f00728fd2 Vulnerability: samba anonymously writable share + symlink traversal 2016-09-02 19:55:42 +01:00
Tom
e7db9e1c2d Merge pull request #65 from Jjk422/new_user_account_module_pull_request 
Adds a user account module.
 2016-09-02 12:46:38 +01:00
Jjk422
bacf8f8278 Fix for errors in the pull request. 
Reverted the following:
documentation/yard/rakefile.rb
lib/schemas/service_metadata_schema.xsd
modules/services/unix/database/mysql/*

Removed comments in the following:
scenarios/simple_examples/user_test_scenario.xml:11
modules/utilities/unix/system/accounts/secgen_metadata.xml:20
 2016-09-01 16:14:04 +01:00
Jjk422
d49cb521cc Access control vulnerability, allows less to run as root for any user. 
Access_control_misconfigurations_uid_less_root.xml can be used to test this
 2016-09-01 10:06:00 +01:00
Jjk422
be636f7b42 Adds a user account module, currently not modifiable by facter or scenarios files but will be added when parametrization is merged. 
Currently creates a user account named user with the password as password.
Home directory in /home/user.
Shell as /bin/bash.
 2016-08-31 13:18:48 +01:00
Jjk422
94d6d00112 Access control misconfiguration module that ensures the vi text editor runs at root. 
Scenario file at access_control_misconfigurations_uid_vi_root.xml.
 2016-08-29 10:36:46 +01:00
thomashaw
8b32a8dc62 Feature: Utilities - extracted services which do not run on a network socket e.g. package manager update, firewall rules, java etc. into utilities 2016-08-01 18:55:50 +01:00
thomashaw
e14a0f75df post-dependencies tidy up 2016-08-01 18:13:30 +01:00
Jjk422
b46baf96bd Merge pull request #53 from thomashaw/moinmoin_vuln 
Vulnerability: MoinMoin-1.9.5 wiki
Checked and working
 2016-07-27 19:07:21 +01:00
thomashaw
a723226865 Vulnerability: MoinMoin-1.9.5 wiki 2016-07-27 12:37:19 +01:00
Tom
d0c464019f Merge pull request #50 from Jjk422/new_nginx_service_module 
Nginx service module, should be fully working and secure.
 2016-07-25 06:46:54 +01:00
Tom
d0e0a3c68c Merge pull request #46 from Jjk422/new_vsftpd_service_module 
Secure vsftpd module
 2016-07-23 08:59:07 +01:00
Tom
7d842e14f8 Merge pull request #40 from Jjk422/new_java_service_module 
Java install module
 2016-07-23 08:58:45 +01:00
Jjk422
4cc2e6b31c Nginx service module, should be fully working and secure. 
Default index.html file and directory used.
Can connect via browser on host machine via nginx_service.xml file.
 2016-07-22 11:26:07 +01:00
Jjk422
8bd2a502b7 Merge pull request #49 from cliffe/firewall_remove_update 
Firewall merge small changes to demonstrate scenario creation pre-dependencies.
Working and tested.
No errors stand out in the code
 2016-07-21 12:59:27 +01:00
Jjk422
49467bcd9e Merge pull request #45 from thomashaw/vsftpd_backdoor 
Vulnerability: vsftpd_234_backdoor rewrite:
Tested and exploitable with vsftpd_234_backdoor vulnerability
 2016-07-21 12:39:29 +01:00
Jjk422
6b09463f8a A few minor changes to comments: 
secgen_metadata.xml:20 - removed comment as not apache installation so not needed.
 java.pp:1-3 - update step removed here and example I used in #49 followed to allow for dependencies code to be used in the future.
java_service.xml:7 updated comment to reflect that the service is a java language installation
 2016-07-21 11:30:22 +01:00
Jjk422
24f4d4046d A few minor changes to comments: 
Removed secgen_metadata.xml line 20 comment as not apache installation so not needed.
Updated the vsftpd_service.xml line 7 comment to reflect that the service is a secure ftp service.
 2016-07-21 10:23:51 +01:00
thomashaw
6fd6de8aff Firewall merge small changes to demonstrate scenario creation pre-dependencies. 2016-07-19 15:01:51 +01:00
Tom
a3afb7e036 Merge pull request #38 from Jjk422/new_firewall_service_module 
Iptables firewall configure
 2016-07-19 14:34:23 +01:00