Commit Graph

412 Commits

Author SHA1 Message Date
Z. Cliffe Schreuders
7cf89236b7 forensic modules and content 2023-04-27 17:46:05 +01:00
Cliffe
ea03be1e5f Merge pull request #274 from JD2344/glpi_php_injection
fix glpi flag directory
2023-04-27 12:03:14 +01:00
JD
2d066a39bb fix glpi flag directory 2023-04-27 01:14:32 +01:00
Cliffe
951ba58233 Merge pull request #273 from JD2344/performance_ctf
New CTF scenario for linuxki
2023-04-26 21:19:40 +01:00
JD
38db46a768 CTF Scenario and Module fix 2023-04-22 03:18:08 +01:00
JD
361fa5269d remove extra s for pattern match 2023-04-21 00:35:20 +01:00
JD
e077efa3c5 rename jboss init file 2023-04-21 00:27:39 +01:00
Z. Cliffe Schreuders
b1a2bb3389 tidy and updates #267 couchdb 2023-04-20 16:25:20 +01:00
Z. Cliffe Schreuders
17b6292715 Merge branch 'master' of https://github.com/cliffe/SecGen 2023-04-20 11:30:03 +01:00
Cliffe
dee99479dc Merge pull request #267 from JD2344/apache_couchdb
Apache couchdb
2023-04-20 11:29:54 +01:00
Z. Cliffe Schreuders
79c0e20d77 more work on jboss #269 2023-04-20 11:26:10 +01:00
Z. Cliffe Schreuders
c815ac5914 tidy #247 lucee parameter name 2023-04-20 11:04:34 +01:00
Z. Cliffe Schreuders
d889363ddd tidy #248 linuxki 2023-04-20 11:03:15 +01:00
Z. Cliffe Schreuders
2919b2cf31 tidy #249 jenkins 2023-04-20 11:01:53 +01:00
Z. Cliffe Schreuders
9ec9277d13 metadata and tidy for #250 glpi 2023-04-20 11:01:08 +01:00
Z. Cliffe Schreuders
7aba804412 further tidy #252 druid 2023-04-20 11:00:08 +01:00
Z. Cliffe Schreuders
5ddee55366 Tidy and metadata updates for jboss #269 #261 2023-04-20 10:57:04 +01:00
Z. Cliffe Schreuders
081ae73450 Merge branch 'master' of https://github.com/cliffe/SecGen 2023-04-20 10:26:33 +01:00
JD2344
63de8b276a Merge branch 'cliffe:master' into jboss 2023-04-20 00:15:12 +01:00
JD
13357c3c0c Add user context exploit 2023-04-20 00:10:17 +01:00
Z. Cliffe Schreuders
357533dc32 parameter and metadata updates for #251 (and store the flag in a home dir) 2023-04-17 17:00:29 +01:00
Z. Cliffe Schreuders
2c58ec893c parameter and metadata updates for #252 2023-04-17 16:35:45 +01:00
Cliffe
30930d4176 Merge pull request #252 from JD2344/apache_druid
Add apache Druid Exploit
2023-04-17 09:55:24 +01:00
Cliffe
853b5428af Merge pull request #251 from JD2344/apache_spark
Add apache spark exploit
2023-04-17 09:43:20 +01:00
Cliffe
c118116079 Merge pull request #250 from JD2344/glpi_php_injection
Add glpi module
2023-04-17 09:38:34 +01:00
JD
a71d09d69f port and complete exploit 2023-04-17 03:54:09 +01:00
JD
b46645a3a8 All good to go 2023-04-17 02:47:37 +01:00
JD
aa21bf926a working, no custom port 2023-04-16 22:50:42 +01:00
JD
22b2410152 Initial Changes and working install 2023-04-12 03:03:51 +01:00
JD2344
b44e6ede5a Merge branch 'cliffe:master' into apache_couchdb 2023-04-12 02:53:00 +01:00
JD
ff562b3e30 update for merging 2023-04-12 01:25:06 +01:00
smarkusfeld
f1997dda09 UPDATE: Changed database variable from strings to leak to strings to preleak
TODO:
1. Team Testing
2. Remove Testing Variables
2023-04-12 01:16:33 +01:00
smarkusfeld
90a0212624 UPDATED: Added strings to leak to sample database file
To Do:
1. Team Testing
2. Remove Hard coding variables to replace with secgen generators
2023-04-12 01:16:33 +01:00
smarkusfeld
3487bd92ee New Module: Apache Couchdb
To Do:
1. Team Testing
2. Finalize secgen customization options from the following: (a) use sample json database -- current version uses sample opensource color dataset (b)create ruby file for more custom database using secgen generators (3) do not create a database but change the port to 0 so it defaults to any available port
2023-04-12 01:16:33 +01:00
JD
359d0ae7e8 finished and tested with user and custom port 2023-04-06 01:15:04 +01:00
Z. Cliffe Schreuders
f5e125fbc8 CyBOK metadata updates 2023-04-05 14:01:42 +01:00
Z. Cliffe Schreuders
858d74eb10 CyBOK metadata updates 2023-04-04 13:24:15 +01:00
Z. Cliffe Schreuders
ee72d98ee7 Default input updates 2023-04-04 13:00:57 +01:00
Z. Cliffe Schreuders
4df25c9627 metadata updates 2023-04-04 11:29:51 +01:00
Cliffe
f514cb637a Merge pull request #247 from JD2344/lucee_rce
Add lucee rce exploit
2023-04-04 11:03:35 +01:00
Cliffe
5941edfa89 Merge pull request #249 from JD2344/jenkins_cli
Add jenkins_cli Exploit
2023-04-04 10:59:42 +01:00
Cliffe
46a4af09f6 Merge pull request #248 from JD2344/linuxki_rce
Add LinuxKI RCE exploit
2023-04-04 10:54:32 +01:00
JD
3eebcc82b5 change exploit user from root 2023-04-02 21:37:21 +01:00
JD
a8375ff43a update to run dynamic port and on a user 2023-04-02 19:47:46 +01:00
JD
6e2140c444 port change and cleanups 2023-04-02 03:22:08 +01:00
JD
73559d5993 add random port 2023-04-02 01:24:23 +01:00
JD
c9d79cd9a1 final changes for review 2023-04-02 01:04:50 +01:00
JD
b3c0820572 final changes for integration acceptance 2023-04-02 00:34:10 +01:00
Z. Cliffe Schreuders
15cb17ac33 remove problematic suid man vulnerability 2023-03-24 16:25:32 +00:00
JD
78124171a6 Successful secgen param tests 2023-03-20 19:44:14 +00:00