digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-22 03:38:01 +00:00
Code Issues Packages Projects Releases Wiki Activity
367 Commits 38 Branches 0 Tags
815a5915e68a0430a88d4034bee2a27c1925396d
Commit Graph

37 Commits

Author SHA1 Message Date
thomashaw
6f7b2f0edf generators/html_snippet: input header and paragraphs, wrap them in <h3> and <p> tags. 2017-04-27 20:00:42 +01:00
thomashaw
398ca4df47 vulnerabilities/unix/system/symlinks - CTF module with symlink (TOCTTOU) vulnerability with binary setgid shadow + crackable weak password 2017-04-18 14:37:16 +01:00
thomashaw
b245a168e5 leaked_filename reduced chance of clashes + consolidated both random filename modules into 1 2017-04-04 22:27:57 +01:00
thomashaw
5e852da39b word flag generator name update 2017-04-04 16:58:28 +01:00
thomashaw
eac3b86674 fixed word flag generator: remove non alpha-numerical characters from flag (umlauts were being interpreted incorrectly) 2017-04-04 16:49:36 +01:00
thomashaw
a0af1a5fef fixed random boolean conversion error 2017-04-04 16:38:53 +01:00
thomashaw
57a7dc69f6 ssh_leaked_keys - dynamically generated key 
(cherry picked from commit b3e248c)
 2017-04-04 16:30:52 +01:00
thomashaw
8977559f8a exif metadata challenge + jpg converter/generator (cherry picked from commit e51347f) 2017-04-04 16:29:17 +01:00
thomashaw
aad46803ca fixes / modifications - strong pw generator strip illegal characters, gitlist_040 changed leak flag position 
(cherry picked from commit dc7e77f)
 2017-04-04 16:26:53 +01:00
thomashaw
f6b7cc41cf removing final name="" from fortress 2017-03-31 21:29:06 +01:00
thomashaw
04399470f2 updated scenarios, metadata changes + updated qr code 2017-03-31 19:21:36 +01:00
thomashaw
39586af9a3 exif metadata module (WIP - needs some jpg files rather than png) 2017-03-31 13:29:50 +01:00
thomashaw
241e83a7a9 generators/random/random_hex: added number_of_lines and line_length params 
generators/challenges/encoded_diff: encodes a flag in hex, generates random_hex, shuffles the ordering, inserts a flag in a random position. accounts for line length vs flag length with random hex padding.
secgen_functions::leak_file.pp: Added division between data leaked to the same file
 2017-03-28 10:51:57 +01:00
thomashaw
75056b8bc8 Adding images_to_leak to appropriate modules. Use ::secgen_functions::leak_files to leak one or more images. Updated parameterised_website to leak multiple images. Updated gitlist to create a git repo with leaked strings and images. 2017-03-23 20:58:35 +00:00
thomashaw
6918eb1d3e Minor fixes - parameterised_website leaks multiple strings_to_leak & metadata corrections 2017-03-21 11:44:17 +00:00
thomashaw
b9395ac69a Selecting default_inputs on specific generators rather than string_generator 2017-03-21 11:28:26 +00:00
thomashaw
94aa36cb2b strong_password_generator 2017-03-20 14:31:56 +00:00
Mihai Ordean
cb0f6ac289 Merge https://github.com/cliffe/SecGen 2017-03-16 14:04:00 +00:00
thomashaw
53149f3fd5 Misc. changes / cleanup 2017-03-16 12:39:50 +00:00
thomashaw
7c4d21e942 generators/images/qr_code: creates a QR code out of a string(usually a flag) and outputs it as a .png represented as a base64 string. 2017-03-16 12:32:33 +00:00
thomashaw
638e87e571 generators/challenges/hidden_data_in_image_file: Appends strings_to_leak to a random image's raw data. 2017-03-16 12:22:03 +00:00
thomashaw
bb884e9ffc generators/image/random_image: Returns random image as a base64 string. leaks the image to the parameterised_website. Icons in the public domain - thanks to http://publicicons.org/ 2017-03-16 12:03:22 +00:00
thomashaw
895af9ae89 generators/challenges/bitwise_xor: input is a string_to_mask, output is 2 random bit streams that can, when bitwise xor'd together, reveal the string_to_mask. 2017-03-16 11:09:46 +00:00
Mihai Ordean
d9391d384f added check to verify if leaked files is empty 2017-03-13 15:10:17 +00:00
thomashaw
32091ed0fe Special Character work + generator/encoder superclass refactor. 
The full Vagrantfile facter string has been encoded in b64 for now, would be nice to b64 the individual arguments rather than the whole string.
 2017-03-01 19:19:54 +00:00
thomashaw
e8f8dcece4 Team project work squashed + removed dead code 2017-02-17 14:59:07 +00:00
Z. Cliffe Schreuders
9466f26f8e security audit remit generator 2017-02-08 00:41:14 +00:00
thomashaw
373b0bc5dc Parameterised Website using datastores. Loads of generators and encoders. Check out the example scenarios. 2017-01-15 19:56:13 +00:00
Z. Cliffe Schreuders
c6780f4a9e flag{generated_flag} format for flags 2017-01-15 16:12:08 +00:00
Z. Cliffe Schreuders
0548606f70 minor cleanup and directory restructuring 2017-01-07 21:55:26 +00:00
thomashaw
007863e05c weak_password_generator <type> added to the weak and common pw gens, fixed typo in account_hash_builder 2016-12-08 10:54:21 +00:00
thomashaw
2f58b35857 Temp fix: removed single quote from welcome_message generator 2016-12-06 18:56:45 +00:00
thomashaw
7d7d2e2677 Rework: Moved hello_world to messages. Changed write_fact to output_type. Updated PATH constants to DIR. Changed string generators to more specific message_generator in strings_to_leak. 2016-12-05 17:15:55 +00:00
thomashaw
733c871072 Additional parameterisation. New modules: parameterised_accounts, generators and an account_encoder. Added plenty of parameters/default_inputs to currently existing vulnerability modules. 2016-11-30 18:09:22 +00:00
Z. Cliffe Schreuders
03b739592b README update and some code cleanup 2016-11-08 23:28:52 +00:00
Z. Cliffe Schreuders
e63aa00e0a parameterisation 2016-10-18 21:19:47 +01:00
Z. Cliffe Schreuders
edc1e28d68 Parameterisation 2016-08-17 23:11:53 +01:00