digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-22 11:48:17 +00:00
Code Issues Packages Projects Releases Wiki Activity
367 Commits 38 Branches 0 Tags
815a5915e68a0430a88d4034bee2a27c1925396d
Commit Graph

95 Commits

Author SHA1 Message Date
thomashaw
815a5915e6 moved parameterised_website from vulnerabilities to services 2017-05-01 14:44:32 +01:00
thomashaw
4d6d2a1ed1 null check on tab parameters 2017-05-01 14:28:32 +01:00
thomashaw
f65d7a5d15 Moved js loading back to the to footer 2017-05-01 14:27:17 +01:00
thomashaw
288f70fbd2 Moved the images below the tabs 2017-05-01 14:00:17 +01:00
thomashaw
c7047e4e12 Parameterised 'Start here!' tab 2017-05-01 13:21:25 +01:00
thomashaw
4d34a7a89d Changed the tab position and updated the scenario.xml 2017-05-01 11:57:40 +01:00
thomashaw
f2df7485ba Added hidden_tabs to parameterised website 2017-04-29 12:06:50 +01:00
thomashaw
fa88a0fc6b Tabbed pane now displays in main_container.html.erb + generate the tab pages from new read_fact = visible_tabs. 
Also added read_fact = hidden_tabs which needs implementing next. The hidden tabs names should begin with tab_0.html, then increment from tab_(visible_tabs.length+1).html. The hidden tabs should not be indexed on the main page.
 2017-04-27 20:02:43 +01:00
thomashaw
9781976467 active tab changes on click 2017-04-27 13:48:40 +01:00
thomashaw
25e3065768 AJAX loading data into <div> from from html files. 2017-04-27 13:13:03 +01:00
thomashaw
a78af06f9b Added JQuery + custom .js file, updated bootstrap / css 2017-04-27 12:28:28 +01:00
thomashaw
ce61074bf1 vulnerabilities/unix/webapp/onlinestore - db_password is now dynamically generated 2017-04-18 16:22:52 +01:00
thomashaw
0b99e58c27 CTF module - vulnerabilities/unix/webapp/onlinestore (by Meehein @ University of Birmingham) 2017-04-18 15:46:13 +01:00
thomashaw
398ca4df47 vulnerabilities/unix/system/symlinks - CTF module with symlink (TOCTTOU) vulnerability with binary setgid shadow + crackable weak password 2017-04-18 14:37:16 +01:00
thomashaw
ce9a6f3de7 CTF module - vulnerabilities/unix/system/two_shell_calls (by Meehein @ University of Birmingham) 2017-04-14 12:44:58 +01:00
thomashaw
b245a168e5 leaked_filename reduced chance of clashes + consolidated both random filename modules into 1 2017-04-04 22:27:57 +01:00
thomashaw
f4a0f54758 symlink traversal, better handling of 1 flag 2017-04-04 21:53:36 +01:00
thomashaw
57a7dc69f6 ssh_leaked_keys - dynamically generated key 
(cherry picked from commit b3e248c)
 2017-04-04 16:30:52 +01:00
thomashaw
d93d3fdfed samba symlink traversal, fixed the permissions error(cherry picked from commit b62a06f) 2017-04-04 16:30:26 +01:00
thomashaw
f068d698d0 leaked_file privilege changes (cherry picked from commit 3f4ddad) 2017-04-04 16:30:03 +01:00
thomashaw
aad46803ca fixes / modifications - strong pw generator strip illegal characters, gitlist_040 changed leak flag position 
(cherry picked from commit dc7e77f)
 2017-04-04 16:26:53 +01:00
thomashaw
bf8d15e395 added a flag drop in root directory to samba_symlink_traversal 2017-03-31 14:57:06 +01:00
thomashaw
464d266bfe Revert: adding breakthenet xss web vulnerability -- Now registers the mysql db + allows www-data to connect with password 'example', change this! register.php claims that registration was successful but logging in does not work... investigate further. 2017-03-31 14:12:14 +01:00
thomashaw
42ac95b3ab ssh_leaked_keys: adding strings_to_leak flag read_fact 2017-03-31 13:31:35 +01:00
thomashaw
98cc8aa5c8 Fixing metadata 2017-03-31 13:28:49 +01:00
thomashaw
fa10962295 adding breakthenet xss web vulnerability -- Now registers the mysql db + allows www-data to connect with password 'example', change this! register.php claims that registration was successful but logging in does not work... investigate further. 2017-03-30 11:21:33 +01:00
thomashaw
9f41e42381 vsftpd_backdoor: updated metadata, is actually root_rwx not user_rwx 2017-03-29 12:09:23 +01:00
thomashaw
c09341188b gitlist_040 fixed, removed bootstrap repo + added a hyperlink to /gitlist 2017-03-29 12:00:04 +01:00
thomashaw
03aaae2bc3 xfce desktop environment: extracted out auto login as root into vulnerability module 2017-03-24 15:30:30 +00:00
thomashaw
75056b8bc8 Adding images_to_leak to appropriate modules. Use ::secgen_functions::leak_files to leak one or more images. Updated parameterised_website to leak multiple images. Updated gitlist to create a git repo with leaked strings and images. 2017-03-23 20:58:35 +00:00
thomashaw
6918eb1d3e Minor fixes - parameterised_website leaks multiple strings_to_leak & metadata corrections 2017-03-21 11:44:17 +00:00
Mihai Ordean
46827cd22c added ssh_leaked_keys module 2017-03-17 16:32:59 +00:00
thomashaw
3028e076d9 parameterise local root level vulnerabilities -- added strings_to_leak 2017-03-16 13:20:32 +00:00
thomashaw
53149f3fd5 Misc. changes / cleanup 2017-03-16 12:39:50 +00:00
thomashaw
bb884e9ffc generators/image/random_image: Returns random image as a base64 string. leaks the image to the parameterised_website. Icons in the public domain - thanks to http://publicicons.org/ 2017-03-16 12:03:22 +00:00
thomashaw
32091ed0fe Special Character work + generator/encoder superclass refactor. 
The full Vagrantfile facter string has been encoded in b64 for now, would be nice to b64 the individual arguments rather than the whole string.
 2017-03-01 19:19:54 +00:00
thomashaw
e8f8dcece4 Team project work squashed + removed dead code 2017-02-17 14:59:07 +00:00
thomashaw
373b0bc5dc Parameterised Website using datastores. Loads of generators and encoders. Check out the example scenarios. 2017-01-15 19:56:13 +00:00
thomashaw
e7019afa86 Fixed shellshock 2016-12-20 15:26:21 +00:00
thomashaw
0d890ee535 Corrected proftpd_133c_backdoor as it gives you a root_rwx privilege, not user_rwx privilege, shell when exploiting this vulnerability. 2016-12-20 14:55:58 +00:00
thomashaw
ad49319447 Removed leftover comment 2016-12-14 13:50:49 +00:00
thomashaw
007863e05c weak_password_generator <type> added to the weak and common pw gens, fixed typo in account_hash_builder 2016-12-08 10:54:21 +00:00
thomashaw
17f425b37f Multiple leaked files, new secgen_functions module encapsulating the file_leak and overshare.erb logic. Updated old modules to use the new resource type. 2016-12-08 10:43:48 +00:00
thomashaw
1595b4f3e3 NFS /etc/exports updated to allow all networks 2016-12-06 10:09:57 +00:00
thomashaw
7d7d2e2677 Rework: Moved hello_world to messages. Changed write_fact to output_type. Updated PATH constants to DIR. Changed string generators to more specific message_generator in strings_to_leak. 2016-12-05 17:15:55 +00:00
thomashaw
733c871072 Additional parameterisation. New modules: parameterised_accounts, generators and an account_encoder. Added plenty of parameters/default_inputs to currently existing vulnerability modules. 2016-11-30 18:09:22 +00:00
thomashaw
f724415cdf Privilege changes: More specific privilege levels. r, rw, rwx for root & user. 2016-11-14 14:34:04 +00:00
thomashaw
b1ba6700d4 Vulnerability: chkrootkit 0.49 local privilege escalation 2016-11-13 22:48:21 +00:00
thomashaw
2cf329eeef Vulnerability: Gitlist 0.4.0 webapp with RCE 2016-11-13 22:43:47 +00:00
Z. Cliffe Schreuders
9ff06fce7e default values for parameters (modules and literal values) 2016-11-08 00:28:33 +00:00