digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-21 19:28:02 +00:00
Code Issues Packages Projects Releases Wiki Activity
271 Commits 38 Branches 0 Tags
c_code
Commit Graph

271 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
egg82
28eb21a083 Update Vagrantfile.erb 2016-08-17 13:33:15 -06:00
egg82
49c19a0c21 Update project_files_creator.rb 2016-08-17 13:29:07 -06:00
thomashaw
535017058a unrealirc_3281_backdoor vulnerability refactored. 
Vulnerable code now held within the service module and conditionally run based on whether the unrealirc_3281_backdoor class has been included. Reduced duplicate code.

Going to follow this pattern for misconfiguration vulnerabilities as modifying the same resources from different classes/namespaces within puppet causes issues.
 2016-08-17 16:04:28 +01:00
Z. Cliffe Schreuders
0185837c7b Module dependencies 2016-08-16 23:44:44 +01:00
Jjk422
c63369f81f Fix for the samba module, merge of legacy code into Cliffe/master left module broken. 
Removed all legacy and non samba related code.
Tested and seems to be working.
 2016-08-15 17:19:39 +01:00
egg82
2b900f94d1 Allowing SecGen to be run on servers/droplets 2016-08-14 15:04:57 -06:00
thomashaw
f843bed1eb Removing old test 2016-08-08 16:17:23 +01:00
Z. Cliffe Schreuders
f314b141ec parameterisation - work in progress 2016-08-08 11:40:43 +01:00
Z. Cliffe Schreuders
f68ed2f4a7 parameterisation - work in progress 2016-08-08 11:40:36 +01:00
Cliffe
ed37d30996 Update README.md 2016-08-04 13:31:25 +01:00
Z. Cliffe Schreuders
8dfc34d0f4 README updates 2016-08-04 11:20:53 +01:00
Jjk422
96b5248512 Merge pull request #58 from thomashaw/utilities 
Feature: Utilities
 2016-08-02 17:19:53 +01:00
thomashaw
0eb38e1d1b Moved windows update to utilities 2016-08-01 23:59:14 +01:00
thomashaw
8b32a8dc62 Feature: Utilities - extracted services which do not run on a network socket e.g. package manager update, firewall rules, java etc. into utilities 2016-08-01 18:55:50 +01:00
thomashaw
e14a0f75df post-dependencies tidy up 2016-08-01 18:13:30 +01:00
Tom
29b58b325f Merge pull request #55 from cliffe/module_dependencies 
Module dependencies
 2016-07-30 11:45:29 +01:00
thomashaw
e9f1b87774 Removed testing comments 2016-07-30 11:45:06 +01:00
Jjk422
b46baf96bd Merge pull request #53 from thomashaw/moinmoin_vuln 
Vulnerability: MoinMoin-1.9.5 wiki
Checked and working
 2016-07-27 19:07:21 +01:00
thomashaw
a723226865 Vulnerability: MoinMoin-1.9.5 wiki 2016-07-27 12:37:19 +01:00
Cliffe
3df12d2295 README updates 2016-07-27 10:13:19 +01:00
Z. Cliffe Schreuders
6e6df008b9 Module dependencies 2016-07-27 09:51:13 +01:00
Tom
d0c464019f Merge pull request #50 from Jjk422/new_nginx_service_module 
Nginx service module, should be fully working and secure.
 2016-07-25 06:46:54 +01:00
Jjk422
8c7c2bac60 Changes: 
config/scenario.xml - old scenario file deleted
secgen_metadata.xml:18: removed comment from tag on this line
 2016-07-23 09:52:22 +01:00
Tom
d0e0a3c68c Merge pull request #46 from Jjk422/new_vsftpd_service_module 
Secure vsftpd module
 2016-07-23 08:59:07 +01:00
Tom
7d842e14f8 Merge pull request #40 from Jjk422/new_java_service_module 
Java install module
 2016-07-23 08:58:45 +01:00
Jjk422
4cc2e6b31c Nginx service module, should be fully working and secure. 
Default index.html file and directory used.
Can connect via browser on host machine via nginx_service.xml file.
 2016-07-22 11:26:07 +01:00
Jjk422
8bd2a502b7 Merge pull request #49 from cliffe/firewall_remove_update 
Firewall merge small changes to demonstrate scenario creation pre-dependencies.
Working and tested.
No errors stand out in the code
 2016-07-21 12:59:27 +01:00
Jjk422
49467bcd9e Merge pull request #45 from thomashaw/vsftpd_backdoor 
Vulnerability: vsftpd_234_backdoor rewrite:
Tested and exploitable with vsftpd_234_backdoor vulnerability
 2016-07-21 12:39:29 +01:00
Jjk422
6b09463f8a A few minor changes to comments: 
secgen_metadata.xml:20 - removed comment as not apache installation so not needed.
 java.pp:1-3 - update step removed here and example I used in #49 followed to allow for dependencies code to be used in the future.
java_service.xml:7 updated comment to reflect that the service is a java language installation
 2016-07-21 11:30:22 +01:00
Jjk422
24f4d4046d A few minor changes to comments: 
Removed secgen_metadata.xml line 20 comment as not apache installation so not needed.
Updated the vsftpd_service.xml line 7 comment to reflect that the service is a secure ftp service.
 2016-07-21 10:23:51 +01:00
thomashaw
6fd6de8aff Firewall merge small changes to demonstrate scenario creation pre-dependencies. 2016-07-19 15:01:51 +01:00
Tom
a3afb7e036 Merge pull request #38 from Jjk422/new_firewall_service_module 
Iptables firewall configure
 2016-07-19 14:34:23 +01:00
Jjk422
b36fe6070a Spelling mistake in file secgen_metadata.xml 
Spelling mistake in file secgen_metadata.xml, to small to warrant a pull request.
 2016-06-28 10:52:21 +01:00
Jjk422
98e9e2fd39 Secure vsftpd module. Login currently is via username:user and password:user. Has 2 test files and one test directory, shouldn't be able to log in as root or access root files .e.g '/etc/shadow'. 2016-06-23 11:33:36 +01:00
thomashaw
72dad41881 Vulnerability: vsftpd_234_backdoor rewrite 2016-06-21 20:35:16 +01:00
Connor Wilson
bc687a8cd6 Merge pull request #42 from Jjk422/new_ntp_service_module 
Ntp service module confirmed installed and running post-restart.
 2016-06-19 13:11:42 +01:00
Connor Wilson
90319741bb Merge pull request #44 from thomashaw/unreal_ircd_rework 
Confirmed both vulnerable and secure services running, vulnerable service is exploitable, secure service is secure. Merging.
 2016-06-19 12:48:31 +01:00
thomashaw
c12ff5c270 Service: UnrealIRCd module 2016-06-18 19:58:45 +01:00
thomashaw
31c49d81ff Vulnerability: UnrealIRCd backdoor 2016-06-18 19:58:33 +01:00
Connor Wilson
77cf34e769 Merge pull request #35 from thomashaw/vulnerability_proftpd_133c_backdoor 
Module now cleans up after itself. Merging.
 2016-06-18 18:49:38 +01:00
thomashaw
88db89c8ef now also removes tar.gz 2016-06-15 18:03:05 +01:00
thomashaw
ed5cdc56b7 Cleanup step 2016-06-15 18:00:58 +01:00
Connor Wilson
b195b6e0a2 Merge pull request #43 from Aviio/master 
Merged as can visibly see changes on any execution of the application
 2016-06-15 14:40:28 +01:00
Jjk422
69fb1494e5 Ntp service module. 2016-06-15 09:08:33 +01:00
Tom
69af83625a Merge pull request #36 from Jjk422/new_samba_module_secure_service 
Samba secure service module
 2016-06-15 02:53:49 +01:00
Jjk422
c0ed9b92b5 Java language install module and java system scenario file. Will use unix_update if/when dependencies added. 2016-06-14 20:05:21 +01:00
Tom
3c3cc94f00 Merge pull request #39 from Jjk422/change_vuln_xml_schema_to_include_apache_v2_licence 
Apache v2 licence for vulnerabilities
 2016-06-14 18:17:39 +01:00
Jjk422
a8803d3193 Add the Apache v2 licence to the vulnerabilities licences. 2016-06-14 16:29:43 +01:00
aviio
0f96cc5caa Changes output of build_config to output correct information about networks, was previously displaying all_availiable_services count instead of all_availiable_networks 2016-06-14 15:50:05 +01:00
Jjk422
c8c0976283 Changed secgen_metadata for firewall module to include author, and remove software name as module configures the iptable software without installing it. 2016-06-14 15:26:15 +01:00