digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-23 12:18:04 +00:00
Code Issues Packages Projects Releases Wiki Activity
169 Commits 38 Branches 0 Tags
42adbcb853c9808d5dd70a7b42abbc01ebdfd41d
Commit Graph

169 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jjk422
42adbcb853 Added extra command line options to modify generated vms, need to be separated into a ruby class to ensure max values are not set (max ram larger then system ram) and to make sure that large ruby blocks are not in Vagrantfile.erb. 
Options added are:
--memory-per-vm
--total-memory
--max-cpu-cores
--max-cpu-usage
 2016-08-19 19:35:47 +01:00
Tom
0e1f06bd5d Merge pull request #61 from Jjk422/new_samba_service_module_fix 
Fix for the samba service module
 2016-08-18 21:19:41 +01:00
Jjk422
97076b2537 Merge pull request #60 from egg82/patch-1 
Allowing SecGen to be run on servers/droplets
 2016-08-18 11:02:55 +01:00
egg82
d9325395d2 Update secgen.rb 2016-08-17 13:36:33 -06:00
egg82
28eb21a083 Update Vagrantfile.erb 2016-08-17 13:33:15 -06:00
egg82
49c19a0c21 Update project_files_creator.rb 2016-08-17 13:29:07 -06:00
Jjk422
c63369f81f Fix for the samba module, merge of legacy code into Cliffe/master left module broken. 
Removed all legacy and non samba related code.
Tested and seems to be working.
 2016-08-15 17:19:39 +01:00
egg82
2b900f94d1 Allowing SecGen to be run on servers/droplets 2016-08-14 15:04:57 -06:00
thomashaw
f843bed1eb Removing old test 2016-08-08 16:17:23 +01:00
Cliffe
ed37d30996 Update README.md 2016-08-04 13:31:25 +01:00
Z. Cliffe Schreuders
8dfc34d0f4 README updates 2016-08-04 11:20:53 +01:00
Jjk422
96b5248512 Merge pull request #58 from thomashaw/utilities 
Feature: Utilities
 2016-08-02 17:19:53 +01:00
thomashaw
0eb38e1d1b Moved windows update to utilities 2016-08-01 23:59:14 +01:00
thomashaw
8b32a8dc62 Feature: Utilities - extracted services which do not run on a network socket e.g. package manager update, firewall rules, java etc. into utilities 2016-08-01 18:55:50 +01:00
thomashaw
e14a0f75df post-dependencies tidy up 2016-08-01 18:13:30 +01:00
Tom
29b58b325f Merge pull request #55 from cliffe/module_dependencies 
Module dependencies
 2016-07-30 11:45:29 +01:00
thomashaw
e9f1b87774 Removed testing comments 2016-07-30 11:45:06 +01:00
Jjk422
b46baf96bd Merge pull request #53 from thomashaw/moinmoin_vuln 
Vulnerability: MoinMoin-1.9.5 wiki
Checked and working
 2016-07-27 19:07:21 +01:00
thomashaw
a723226865 Vulnerability: MoinMoin-1.9.5 wiki 2016-07-27 12:37:19 +01:00
Cliffe
3df12d2295 README updates 2016-07-27 10:13:19 +01:00
Z. Cliffe Schreuders
6e6df008b9 Module dependencies 2016-07-27 09:51:13 +01:00
Tom
d0c464019f Merge pull request #50 from Jjk422/new_nginx_service_module 
Nginx service module, should be fully working and secure.
 2016-07-25 06:46:54 +01:00
Jjk422
8c7c2bac60 Changes: 
config/scenario.xml - old scenario file deleted
secgen_metadata.xml:18: removed comment from tag on this line
 2016-07-23 09:52:22 +01:00
Tom
d0e0a3c68c Merge pull request #46 from Jjk422/new_vsftpd_service_module 
Secure vsftpd module
 2016-07-23 08:59:07 +01:00
Tom
7d842e14f8 Merge pull request #40 from Jjk422/new_java_service_module 
Java install module
 2016-07-23 08:58:45 +01:00
Jjk422
4cc2e6b31c Nginx service module, should be fully working and secure. 
Default index.html file and directory used.
Can connect via browser on host machine via nginx_service.xml file.
 2016-07-22 11:26:07 +01:00
Jjk422
8bd2a502b7 Merge pull request #49 from cliffe/firewall_remove_update 
Firewall merge small changes to demonstrate scenario creation pre-dependencies.
Working and tested.
No errors stand out in the code
 2016-07-21 12:59:27 +01:00
Jjk422
49467bcd9e Merge pull request #45 from thomashaw/vsftpd_backdoor 
Vulnerability: vsftpd_234_backdoor rewrite:
Tested and exploitable with vsftpd_234_backdoor vulnerability
 2016-07-21 12:39:29 +01:00
Jjk422
6b09463f8a A few minor changes to comments: 
secgen_metadata.xml:20 - removed comment as not apache installation so not needed.
 java.pp:1-3 - update step removed here and example I used in #49 followed to allow for dependencies code to be used in the future.
java_service.xml:7 updated comment to reflect that the service is a java language installation
 2016-07-21 11:30:22 +01:00
Jjk422
24f4d4046d A few minor changes to comments: 
Removed secgen_metadata.xml line 20 comment as not apache installation so not needed.
Updated the vsftpd_service.xml line 7 comment to reflect that the service is a secure ftp service.
 2016-07-21 10:23:51 +01:00
thomashaw
6fd6de8aff Firewall merge small changes to demonstrate scenario creation pre-dependencies. 2016-07-19 15:01:51 +01:00
Tom
a3afb7e036 Merge pull request #38 from Jjk422/new_firewall_service_module 
Iptables firewall configure
 2016-07-19 14:34:23 +01:00
Jjk422
b36fe6070a Spelling mistake in file secgen_metadata.xml 
Spelling mistake in file secgen_metadata.xml, to small to warrant a pull request.
 2016-06-28 10:52:21 +01:00
Jjk422
98e9e2fd39 Secure vsftpd module. Login currently is via username:user and password:user. Has 2 test files and one test directory, shouldn't be able to log in as root or access root files .e.g '/etc/shadow'. 2016-06-23 11:33:36 +01:00
thomashaw
72dad41881 Vulnerability: vsftpd_234_backdoor rewrite 2016-06-21 20:35:16 +01:00
Connor Wilson
bc687a8cd6 Merge pull request #42 from Jjk422/new_ntp_service_module 
Ntp service module confirmed installed and running post-restart.
 2016-06-19 13:11:42 +01:00
Connor Wilson
90319741bb Merge pull request #44 from thomashaw/unreal_ircd_rework 
Confirmed both vulnerable and secure services running, vulnerable service is exploitable, secure service is secure. Merging.
 2016-06-19 12:48:31 +01:00
thomashaw
c12ff5c270 Service: UnrealIRCd module 2016-06-18 19:58:45 +01:00
thomashaw
31c49d81ff Vulnerability: UnrealIRCd backdoor 2016-06-18 19:58:33 +01:00
Connor Wilson
77cf34e769 Merge pull request #35 from thomashaw/vulnerability_proftpd_133c_backdoor 
Module now cleans up after itself. Merging.
 2016-06-18 18:49:38 +01:00
thomashaw
88db89c8ef now also removes tar.gz 2016-06-15 18:03:05 +01:00
thomashaw
ed5cdc56b7 Cleanup step 2016-06-15 18:00:58 +01:00
Connor Wilson
b195b6e0a2 Merge pull request #43 from Aviio/master 
Merged as can visibly see changes on any execution of the application
 2016-06-15 14:40:28 +01:00
Jjk422
69fb1494e5 Ntp service module. 2016-06-15 09:08:33 +01:00
Tom
69af83625a Merge pull request #36 from Jjk422/new_samba_module_secure_service 
Samba secure service module
 2016-06-15 02:53:49 +01:00
Jjk422
c0ed9b92b5 Java language install module and java system scenario file. Will use unix_update if/when dependencies added. 2016-06-14 20:05:21 +01:00
Tom
3c3cc94f00 Merge pull request #39 from Jjk422/change_vuln_xml_schema_to_include_apache_v2_licence 
Apache v2 licence for vulnerabilities
 2016-06-14 18:17:39 +01:00
Jjk422
a8803d3193 Add the Apache v2 licence to the vulnerabilities licences. 2016-06-14 16:29:43 +01:00
aviio
0f96cc5caa Changes output of build_config to output correct information about networks, was previously displaying all_availiable_services count instead of all_availiable_networks 2016-06-14 15:50:05 +01:00
Jjk422
c8c0976283 Changed secgen_metadata for firewall module to include author, and remove software name as module configures the iptable software without installing it. 2016-06-14 15:26:15 +01:00