digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-21 11:18:06 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,525 Commits 38 Branches 0 Tags
master
Commit Graph

1557 Commits

Author SHA1 Message Date
Jjk422
b46baf96bd Merge pull request #53 from thomashaw/moinmoin_vuln 
Vulnerability: MoinMoin-1.9.5 wiki
Checked and working
 2016-07-27 19:07:21 +01:00
thomashaw
a723226865 Vulnerability: MoinMoin-1.9.5 wiki 2016-07-27 12:37:19 +01:00
Z. Cliffe Schreuders
6e6df008b9 Module dependencies 2016-07-27 09:51:13 +01:00
Tom
d0c464019f Merge pull request #50 from Jjk422/new_nginx_service_module 
Nginx service module, should be fully working and secure.
 2016-07-25 06:46:54 +01:00
Jjk422
8c7c2bac60 Changes: 
config/scenario.xml - old scenario file deleted
secgen_metadata.xml:18: removed comment from tag on this line
 2016-07-23 09:52:22 +01:00
Tom
d0e0a3c68c Merge pull request #46 from Jjk422/new_vsftpd_service_module 
Secure vsftpd module
 2016-07-23 08:59:07 +01:00
Tom
7d842e14f8 Merge pull request #40 from Jjk422/new_java_service_module 
Java install module
 2016-07-23 08:58:45 +01:00
Jjk422
4cc2e6b31c Nginx service module, should be fully working and secure. 
Default index.html file and directory used.
Can connect via browser on host machine via nginx_service.xml file.
 2016-07-22 11:26:07 +01:00
Jjk422
8bd2a502b7 Merge pull request #49 from cliffe/firewall_remove_update 
Firewall merge small changes to demonstrate scenario creation pre-dependencies.
Working and tested.
No errors stand out in the code
 2016-07-21 12:59:27 +01:00
Jjk422
49467bcd9e Merge pull request #45 from thomashaw/vsftpd_backdoor 
Vulnerability: vsftpd_234_backdoor rewrite:
Tested and exploitable with vsftpd_234_backdoor vulnerability
 2016-07-21 12:39:29 +01:00
Jjk422
6b09463f8a A few minor changes to comments: 
secgen_metadata.xml:20 - removed comment as not apache installation so not needed.
 java.pp:1-3 - update step removed here and example I used in #49 followed to allow for dependencies code to be used in the future.
java_service.xml:7 updated comment to reflect that the service is a java language installation
 2016-07-21 11:30:22 +01:00
Jjk422
24f4d4046d A few minor changes to comments: 
Removed secgen_metadata.xml line 20 comment as not apache installation so not needed.
Updated the vsftpd_service.xml line 7 comment to reflect that the service is a secure ftp service.
 2016-07-21 10:23:51 +01:00
thomashaw
6fd6de8aff Firewall merge small changes to demonstrate scenario creation pre-dependencies. 2016-07-19 15:01:51 +01:00
Tom
a3afb7e036 Merge pull request #38 from Jjk422/new_firewall_service_module 
Iptables firewall configure
 2016-07-19 14:34:23 +01:00
Jjk422
b36fe6070a Spelling mistake in file secgen_metadata.xml 
Spelling mistake in file secgen_metadata.xml, to small to warrant a pull request.
 2016-06-28 10:52:21 +01:00
Jjk422
98e9e2fd39 Secure vsftpd module. Login currently is via username:user and password:user. Has 2 test files and one test directory, shouldn't be able to log in as root or access root files .e.g '/etc/shadow'. 2016-06-23 11:33:36 +01:00
thomashaw
72dad41881 Vulnerability: vsftpd_234_backdoor rewrite 2016-06-21 20:35:16 +01:00
Connor Wilson
bc687a8cd6 Merge pull request #42 from Jjk422/new_ntp_service_module 
Ntp service module confirmed installed and running post-restart.
 2016-06-19 13:11:42 +01:00
Connor Wilson
90319741bb Merge pull request #44 from thomashaw/unreal_ircd_rework 
Confirmed both vulnerable and secure services running, vulnerable service is exploitable, secure service is secure. Merging.
 2016-06-19 12:48:31 +01:00
thomashaw
c12ff5c270 Service: UnrealIRCd module 2016-06-18 19:58:45 +01:00
thomashaw
31c49d81ff Vulnerability: UnrealIRCd backdoor 2016-06-18 19:58:33 +01:00
Connor Wilson
77cf34e769 Merge pull request #35 from thomashaw/vulnerability_proftpd_133c_backdoor 
Module now cleans up after itself. Merging.
 2016-06-18 18:49:38 +01:00
thomashaw
88db89c8ef now also removes tar.gz 2016-06-15 18:03:05 +01:00
thomashaw
ed5cdc56b7 Cleanup step 2016-06-15 18:00:58 +01:00
Jjk422
69fb1494e5 Ntp service module. 2016-06-15 09:08:33 +01:00
Tom
69af83625a Merge pull request #36 from Jjk422/new_samba_module_secure_service 
Samba secure service module
 2016-06-15 02:53:49 +01:00
Jjk422
c0ed9b92b5 Java language install module and java system scenario file. Will use unix_update if/when dependencies added. 2016-06-14 20:05:21 +01:00
Jjk422
c8c0976283 Changed secgen_metadata for firewall module to include author, and remove software name as module configures the iptable software without installing it. 2016-06-14 15:26:15 +01:00
Jjk422
e19cdf3160 Reverted the samba_config module, should be added in a pull request by itself. 2016-06-14 11:51:22 +01:00
Jjk422
29360d504d Fully completed firewall module and scenario file. Update code built into module, to be removed if/when dependency code is added. 2016-06-14 11:21:10 +01:00
Jjk422
c2e0e510dd Added update exec in module so it can function as a standalone module without the need for unix_update. However this can be removed if/when dependencies code is added. 2016-06-14 08:35:45 +01:00
thomashaw
52f7230e16 PR 33: Minor changes 2016-06-13 18:45:19 +01:00
Jjk422
824abed680 Samba secure service module and example scenario file. Requires update module to function and requires samba install module. 2016-06-13 16:14:40 +01:00
Jjk422
7a9edc68c2 Samba secure service module and example scenario file. Requires update module to function. 2016-06-13 16:08:50 +01:00
thomashaw
58a811a010 Vulnerability: ProFTPd 1.3.3c backdoor 2016-06-11 19:02:58 +01:00
Jjk422
b9086a48f2 Update service that performs the repository update for the created vm. Should be machine independent other then selecting whether windows or unix. Commands in the unix_update module need to be modified for different systems to be absolute paths. Added windows services directory and included a puppetforge module to control auto-updates within windows. 2016-06-10 10:52:09 +01:00
thomashaw
8d0a2d50c6 nfs_overshare post-merge fix 2016-06-09 11:43:04 +01:00
Z. Cliffe Schreuders
b5b19fe1c5 Major overhaul of code base! 2016-06-09 00:03:04 +01:00
aviio
dbb78104e7 Fixes distcc vulnerability issue and removes environment warnings 2016-05-12 18:13:56 +01:00
aviio
3e6a5916eb Relates to SG-11 - Now has the ability to generate a site that is specified in the scenario.xml - also improves upon the build times by using Puppet v4 Environments 2016-03-30 03:33:46 +01:00
Connor Wilson
e61374b620 Merge remote-tracking branch 'upstream/master' 2016-03-29 19:19:38 +01:00
Connor Wilson
d6b3ed18ab Relates to SG-11 : adds missing puppet module 2016-03-28 21:16:17 +01:00
Connor Wilson
67d58a1e1f Relates to SG-11 : Now able to generate a full wordpress site (Apache / SQL / Wordpress) 2016-03-28 21:07:27 +01:00
Connor Wilson
386810cab4 Relates to SG-11 : Now able to generate a full wordpress site (Apache / SQL / Wordpress) 2016-03-26 19:45:13 +00:00
Connor Wilson
6b1a798122 Relates to SG-11 : Pushes all new modules and dependencies 2016-03-26 03:54:18 +00:00
Connor Wilson
3a90059753 Relates to SG-11 : Pushes lowered concat dependency version as most recent is buggy 2016-03-26 03:52:37 +00:00
Connor Wilson
de9c278c1b Relates to SG-11 : Pushes code to repo for Tom to branch from 2016-03-26 03:33:50 +00:00
Connor Wilson
866de4d855 Relates to SG-11 : Pushes code to repo for Tom to branch from 2016-03-26 02:49:56 +00:00
thomashaw
16a77272ee SG-12: add to secgen_metadata and make filterable from scenario.xml 2016-03-23 23:52:35 +00:00
Connor Wilson
da9eda4602 Relates to SG-18 : Test commit 2016-03-23 19:20:54 +00:00