digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-22 03:38:01 +00:00
Code Issues Packages Projects Releases Wiki Activity
575 Commits 38 Branches 0 Tags
live_lab
Commit Graph

94 Commits

Author SHA1 Message Date
Z. Cliffe Schreuders
c4d5561d86 lab updates 2017-11-10 01:15:57 +00:00
Z. Cliffe Schreuders
a560335744 lab update 2017-11-09 16:09:35 +00:00
Z. Cliffe Schreuders
f32d90fbf1 lab update 2017-11-09 00:26:40 +00:00
Z. Cliffe Schreuders
91e2bc6f9e lab updates 2017-11-07 17:31:15 +00:00
Z. Cliffe Schreuders
e78458c882 IDS lab 2017-10-20 16:52:17 +01:00
Z. Cliffe Schreuders
ce502abcdb Hackerbot, labs, and associated changes 2017-09-28 16:35:28 +01:00
thomashaw
06159f8d39 bugfix: smb share template 2017-08-20 12:56:23 +01:00
thomashaw
c6ee0316a1 vulnerabilities/samba_pws: now uses organisations 2017-08-16 19:09:05 +01:00
thomashaw
957212daff scenarios/ctf/nw_cyber_games.xml updated to use organisation 2017-08-16 17:37:01 +01:00
thomashaw
ef2ce0f986 team_project_scenario: updated to use structured_content/organisation 2017-08-16 16:37:30 +01:00
thomashaw
3b9c2f05b2 services/http/parameterised_website: update to use generators/structured_content/organisation 2017-08-16 14:00:55 +01:00
thomashaw
9d9c39bb6b parameterised_website: removed contact us from navbar on blank organisation 2017-08-14 17:21:23 +01:00
thomashaw
d791b15ad4 parameterised_website: now accepts blank organisation 2017-08-14 17:10:48 +01:00
thomashaw
6d8bc007f0 utilities/parameterised_website: additional pages and hidden flag in white_text 2017-06-23 23:30:10 +01:00
thomashaw
de0a689cdb parameterised_website update 2017-06-20 11:52:48 +01:00
thomashaw
9aaba7b135 parameterised_website, removed floating ' - ' character when no business_name is included 2017-06-19 14:17:51 +01:00
thomashaw
467baf15fa apache 2: changed the internals of puppet-labs/apache to prevent ports.conf being overwritten when apache is called from 2 modules 2017-06-16 11:50:53 +01:00
thomashaw
e973d89f90 2 apaches instances: parameterised_website + gitlist port changes 2017-06-15 17:18:06 +01:00
thomashaw
e7b777eb9a 2 apache instances: metadata updates 2017-06-15 17:17:12 +01:00
thomashaw
2b4553020f services/nfs: added storage_directory parameter 2017-06-06 16:22:31 +01:00
thomashaw
333f259736 param_website: fixed re-assignment error 2017-05-24 13:01:16 +01:00
thomashaw
6b5c66f586 Parameterised port - vulnerabilities/unrealirc_3281_backdoor 2017-05-20 11:37:06 +01:00
thomashaw
bdc6c065de Parameterised port - services/unrealirc 2017-05-20 11:37:06 +01:00
thomashaw
42966f4a43 Parameterised port - service/proftpd -- set default port to 21 2017-05-20 11:37:06 +01:00
thomashaw
3d4c0fa98a Parameterised port - service/proftpd 2017-05-20 11:37:06 +01:00
thomashaw
e0a0e1f8d4 Parameterised port - service/vsftp -- fixed 2017-05-20 11:37:06 +01:00
thomashaw
a0949b57e5 Parameterised port - service/vsftp (WIP) 2017-05-20 11:37:06 +01:00
thomashaw
8d426c6580 services/parameterised_webiste: Business facts can be blank. no manager / employee data will hide the contacts page. 2017-05-14 23:04:47 +01:00
thomashaw
66aa51dd9d Updating hints 2017-05-09 12:37:12 +01:00
thomashaw
e8d12deb0e parameterised_website: changed error message 2017-05-08 13:11:00 +01:00
thomashaw
366fe6cbdd Cleaning up some TODOs 2017-05-04 11:46:39 +01:00
thomashaw
313773bd57 moved to parameterised_website from /webapp/ to /http/ 2017-05-03 11:57:53 +01:00
thomashaw
815a5915e6 moved parameterised_website from vulnerabilities to services 2017-05-01 14:44:32 +01:00
thomashaw
d93d3fdfed samba symlink traversal, fixed the permissions error(cherry picked from commit b62a06f) 2017-04-04 16:30:26 +01:00
thomashaw
e8f8dcece4 Team project work squashed + removed dead code 2017-02-17 14:59:07 +00:00
thomashaw
373b0bc5dc Parameterised Website using datastores. Loads of generators and encoders. Check out the example scenarios. 2017-01-15 19:56:13 +00:00
thomashaw
4d6fb601b7 Revert: Updated puppetforge/apache to latest version 2016-12-30 01:10:33 +00:00
thomashaw
f78e2fc404 Updated puppetforge/apache to latest version 2016-12-21 17:57:52 +00:00
thomashaw
17f425b37f Multiple leaked files, new secgen_functions module encapsulating the file_leak and overshare.erb logic. Updated old modules to use the new resource type. 2016-12-08 10:43:48 +00:00
thomashaw
733c871072 Additional parameterisation. New modules: parameterised_accounts, generators and an account_encoder. Added plenty of parameters/default_inputs to currently existing vulnerability modules. 2016-11-30 18:09:22 +00:00
thomashaw
0ff5f5ba04 Added a requirement for the accounts module. 2016-11-13 23:19:55 +00:00
thomashaw
9b797c7db2 Service: ProFTPd 
WIP: Renamed

proftpd service module cont.
 2016-11-13 22:53:21 +00:00
thomashaw
2cf329eeef Vulnerability: Gitlist 0.4.0 webapp with RCE 2016-11-13 22:43:47 +00:00
Z. Cliffe Schreuders
4421c7d99c Merge branch 'parameterisation' 2016-10-18 21:25:17 +01:00
Z. Cliffe Schreuders
e63aa00e0a parameterisation 2016-10-18 21:19:47 +01:00
Jjk422
772b96436e Changed service module samba directory from file_share to smb. 
Changed scenario files that used the module.
Also changed the secgen.xml for samba vulnerabilities that required the module.

service::samba::secgen_metadata.xml:
Changed type in SecGen metadata for samba service module from file_share to smb, also added author.
Removed unneeded comments, changed comment from apache to samba.
scenarios::samba_service.xml
Changed comment to represent samba.

Tested and seems to be fully working for all modules/scenarios that require it.
 2016-09-13 11:10:59 +01:00
thomashaw
d3194f4d56 Fix: Added a file resource for the /usr/lib/cgi-bin/ directory. 2016-09-06 13:21:00 +01:00
thomashaw
60cd05536d Vulnerability: Shellshock in bash & Service: apache server with cgi hosting a bash script 
New scenario combines the two & is exploitable with msf module: exploit/multi/http/apache_mod_cgi_bash_env_exec
 2016-09-04 22:15:28 +01:00
thomashaw
e997c545f0 Removed 'Modulefile' as when unrealirc was selected puppet-librarian caused errors (as it tries to parse Modulefile's contents) 2016-09-03 00:31:47 +01:00
Tom
50e0c5d683 Merge pull request #62 from thomashaw/unreal_rework 
unrealirc_3281_backdoor vulnerability refactored.
 2016-08-31 15:08:02 +01:00