Commit Graph

  • 518485f61d cleanup Vagrantfile output Z. Cliffe Schreuders 2016-10-18 22:31:58 +01:00
  • 3724fc1c7c organise scenario files into directories Z. Cliffe Schreuders 2016-10-18 21:51:33 +01:00
  • 4421c7d99c Merge branch 'parameterisation' Z. Cliffe Schreuders 2016-10-18 21:25:17 +01:00
  • e282dde855 Merge branch 'master' of https://github.com/cliffe/SecGen Z. Cliffe Schreuders 2016-10-18 21:23:02 +01:00
  • e63aa00e0a parameterisation Z. Cliffe Schreuders 2016-09-05 13:59:39 +01:00
  • 7c5991e03f Merge pull request #76 from Jjk422/new_smbclient_service_module Tom 2016-09-20 09:05:52 +01:00
  • 880b42e200 Requested changes have been made: secgen_metadata.xml:7 :: Removed line smbclient_utility.xml:8 :: Corrected smbclinet_utility to smbclient_utility. Jjk422 2016-09-20 08:53:24 +01:00
  • 24f06e9f5c Merge pull request #72 from Jjk422/new_list_scenarios_command Tom 2016-09-18 15:49:40 +01:00
  • 133f5ee7d0 Corrected all mentioned changes: Added a line into the 'usage' method's commands section (at secgen.rb:23-27). Extracted lines 191-195 into a method called list_scenarios. Jjk422 2016-09-13 14:24:08 +01:00
  • eb55b69dff Smbclient utility module. Scenario file found at '/home/user/RubymineProjects/SecGen/scenarios/simple_examples/smbclient_utility.xml' Jjk422 2016-09-13 12:05:08 +01:00
  • 3c1a82472c Merge pull request #75 from Jjk422/new_changed_file_share_to_samba Tom 2016-09-13 11:55:06 +01:00
  • 772b96436e Changed service module samba directory from file_share to smb. Jjk422 2016-09-13 11:10:59 +01:00
  • bbf4ce1ed2 Added command line option to list all SecGen scenarios in scenarios directory. Jjk422 2016-09-08 13:24:37 +01:00
  • 4f53a7f770 Merge pull request #70 from thomashaw/nmap_setuid_rebase Jjk422 2016-09-07 15:01:58 +01:00
  • f82e554a7e Added network tag to scenario thomashaw 2016-09-07 11:33:09 +01:00
  • 4528467f04 Vulnerability: Nmap setuid local privilege escalation thomashaw 2016-09-06 15:34:12 +01:00
  • 18268af6c9 Merge pull request #69 from thomashaw/shellshock_rebase Jjk422 2016-09-06 15:17:28 +01:00
  • d9d785f335 Metadata: Updated shellshock privilege = none, access = local thomashaw 2016-09-06 13:46:31 +01:00
  • d3194f4d56 Fix: Added a file resource for the /usr/lib/cgi-bin/ directory. thomashaw 2016-09-06 13:21:00 +01:00
  • bc9db957e3 Merge pull request #67 from thomashaw/samba_overshare_rebase Jjk422 2016-09-06 13:15:44 +01:00
  • 27dc5c3b9e Merge pull request #66 from Jjk422/new_access_control_misconfigurations_uid_less_running_as_root Tom 2016-09-06 13:10:22 +01:00
  • 264952a103 removed public writable share scenario thomashaw 2016-09-06 13:04:06 +01:00
  • 8bbdc885a3 Merge branches 'master' and 'parameterisation' of https://github.com/cliffe/SecGen Z. Cliffe Schreuders 2016-09-05 08:56:59 +01:00
  • 60cd05536d Vulnerability: Shellshock in bash & Service: apache server with cgi hosting a bash script thomashaw 2016-09-04 22:15:28 +01:00
  • 060fbab612 updated install instructions as default ubuntu apt repository has an old incompatible vagrant version thomashaw 2016-09-03 00:49:52 +01:00
  • e997c545f0 Removed 'Modulefile' as when unrealirc was selected puppet-librarian caused errors (as it tries to parse Modulefile's contents) thomashaw 2016-09-03 00:31:47 +01:00
  • 3f00728fd2 Vulnerability: samba anonymously writable share + symlink traversal thomashaw 2016-09-02 19:55:42 +01:00
  • e7db9e1c2d Merge pull request #65 from Jjk422/new_user_account_module_pull_request Tom 2016-09-02 12:46:38 +01:00
  • 51bbf5c7c3 Should fix all errors in branch 'Access control vulnerability, allows less to run as root for any user'. Jjk422 2016-09-01 16:36:13 +01:00
  • bacf8f8278 Fix for errors in the pull request. Jjk422 2016-09-01 16:14:04 +01:00
  • f7161dbe4e Merge pull request #63 from Jjk422/new_options_rework_and_additional_options Tom 2016-09-01 12:52:42 +01:00
  • d49cb521cc Access control vulnerability, allows less to run as root for any user. Access_control_misconfigurations_uid_less_root.xml can be used to test this Jjk422 2016-09-01 10:06:00 +01:00
  • c37d88e7e5 Merge pull request #64 from Jjk422/new_access_control_vulnerability_vi_running_as_root Tom 2016-08-31 15:57:34 +01:00
  • 50e0c5d683 Merge pull request #62 from thomashaw/unreal_rework Tom 2016-08-31 15:08:02 +01:00
  • be636f7b42 Adds a user account module, currently not modifiable by facter or scenarios files but will be added when parametrization is merged. Currently creates a user account named user with the password as password. Home directory in /home/user. Shell as /bin/bash. Jjk422 2016-08-31 13:18:48 +01:00
  • b29c08a8b5 Fixed mislabeled secgen_metadata.xml <privilege> tag from user to root. Jjk422 2016-08-31 09:42:02 +01:00
  • f9b2cd548f Correcting pull request errors, only one out of --total-memory or --memory-per-vm is selected (first to be inputted) and shows error message if both inputted. Also removed defaults so that vms automatically decide on values if not specified. Jjk422 2016-08-31 09:37:01 +01:00
  • 9f0bd61726 Parameterisation Z. Cliffe Schreuders 2016-08-30 23:18:31 +01:00
  • 6b96ef6476 Parameterisation Z. Cliffe Schreuders 2016-08-29 23:06:57 +01:00
  • 94d6d00112 Access control misconfiguration module that ensures the vi text editor runs at root. Jjk422 2016-08-29 10:36:46 +01:00
  • 42adbcb853 Added extra command line options to modify generated vms, need to be separated into a ruby class to ensure max values are not set (max ram larger then system ram) and to make sure that large ruby blocks are not in Vagrantfile.erb. Options added are: --memory-per-vm --total-memory --max-cpu-cores --max-cpu-usage Jjk422 2016-08-19 19:35:47 +01:00
  • 0e1f06bd5d Merge pull request #61 from Jjk422/new_samba_service_module_fix Tom 2016-08-18 21:19:41 +01:00
  • b8cc50b549 separated the vulnerable code out and used require to manipulate order thomashaw 2016-08-18 20:58:04 +01:00
  • 97076b2537 Merge pull request #60 from egg82/patch-1 Jjk422 2016-08-18 11:02:55 +01:00
  • d8d624cd03 Merge remote-tracking branch 'origin/parameterisation' into parameterisation Z. Cliffe Schreuders 2016-08-17 23:13:28 +01:00
  • edc1e28d68 Parameterisation Z. Cliffe Schreuders 2016-08-17 23:10:31 +01:00
  • d9325395d2 Update secgen.rb egg82 2016-08-17 13:36:33 -06:00
  • 28eb21a083 Update Vagrantfile.erb egg82 2016-08-17 13:33:15 -06:00
  • 49c19a0c21 Update project_files_creator.rb egg82 2016-08-17 13:29:07 -06:00
  • 535017058a unrealirc_3281_backdoor vulnerability refactored. thomashaw 2016-08-17 16:04:28 +01:00
  • 0185837c7b Module dependencies Z. Cliffe Schreuders 2016-08-16 23:44:44 +01:00
  • c63369f81f Fix for the samba module, merge of legacy code into Cliffe/master left module broken. Removed all legacy and non samba related code. Tested and seems to be working. Jjk422 2016-08-15 17:19:39 +01:00
  • 2b900f94d1 Allowing SecGen to be run on servers/droplets egg82 2016-08-14 15:04:57 -06:00
  • f843bed1eb Removing old test thomashaw 2016-08-08 16:17:23 +01:00
  • f314b141ec parameterisation - work in progress Z. Cliffe Schreuders 2016-06-12 13:45:53 +01:00
  • f68ed2f4a7 parameterisation - work in progress Z. Cliffe Schreuders 2016-06-12 00:21:12 +01:00
  • ed37d30996 Update README.md Cliffe 2016-08-04 13:31:25 +01:00
  • 8dfc34d0f4 README updates Z. Cliffe Schreuders 2016-08-04 11:20:53 +01:00
  • 96b5248512 Merge pull request #58 from thomashaw/utilities Jjk422 2016-08-02 17:19:53 +01:00
  • 0eb38e1d1b Moved windows update to utilities thomashaw 2016-08-01 23:59:14 +01:00
  • 8b32a8dc62 Feature: Utilities - extracted services which do not run on a network socket e.g. package manager update, firewall rules, java etc. into utilities thomashaw 2016-08-01 18:55:50 +01:00
  • e14a0f75df post-dependencies tidy up thomashaw 2016-08-01 18:13:30 +01:00
  • 29b58b325f Merge pull request #55 from cliffe/module_dependencies Tom 2016-07-30 11:45:29 +01:00
  • e9f1b87774 Removed testing comments thomashaw 2016-07-30 11:45:06 +01:00
  • b46baf96bd Merge pull request #53 from thomashaw/moinmoin_vuln Jjk422 2016-07-27 19:07:21 +01:00
  • a723226865 Vulnerability: MoinMoin-1.9.5 wiki thomashaw 2016-07-27 12:37:19 +01:00
  • 3df12d2295 README updates Cliffe 2016-07-27 10:13:19 +01:00
  • 6e6df008b9 Module dependencies Z. Cliffe Schreuders 2016-06-10 23:01:16 +01:00
  • d0c464019f Merge pull request #50 from Jjk422/new_nginx_service_module Tom 2016-07-25 06:46:54 +01:00
  • 8c7c2bac60 Changes: config/scenario.xml - old scenario file deleted secgen_metadata.xml:18: removed comment from tag on this line Jjk422 2016-07-23 09:52:22 +01:00
  • d0e0a3c68c Merge pull request #46 from Jjk422/new_vsftpd_service_module Tom 2016-07-23 08:59:07 +01:00
  • 7d842e14f8 Merge pull request #40 from Jjk422/new_java_service_module Tom 2016-07-23 08:58:45 +01:00
  • 4cc2e6b31c Nginx service module, should be fully working and secure. Default index.html file and directory used. Can connect via browser on host machine via nginx_service.xml file. Jjk422 2016-07-22 11:26:07 +01:00
  • 8bd2a502b7 Merge pull request #49 from cliffe/firewall_remove_update Jjk422 2016-07-21 12:59:27 +01:00
  • 49467bcd9e Merge pull request #45 from thomashaw/vsftpd_backdoor Jjk422 2016-07-21 12:39:29 +01:00
  • 6b09463f8a A few minor changes to comments: secgen_metadata.xml:20 - removed comment as not apache installation so not needed. java.pp:1-3 - update step removed here and example I used in #49 followed to allow for dependencies code to be used in the future. java_service.xml:7 updated comment to reflect that the service is a java language installation Jjk422 2016-07-21 11:30:22 +01:00
  • 24f4d4046d A few minor changes to comments: Removed secgen_metadata.xml line 20 comment as not apache installation so not needed. Updated the vsftpd_service.xml line 7 comment to reflect that the service is a secure ftp service. Jjk422 2016-07-21 10:23:51 +01:00
  • 6fd6de8aff Firewall merge small changes to demonstrate scenario creation pre-dependencies. thomashaw 2016-07-19 15:01:51 +01:00
  • a3afb7e036 Merge pull request #38 from Jjk422/new_firewall_service_module Tom 2016-07-19 14:34:23 +01:00
  • b36fe6070a Spelling mistake in file secgen_metadata.xml Jjk422 2016-06-28 10:52:21 +01:00
  • 98e9e2fd39 Secure vsftpd module. Login currently is via username:user and password:user. Has 2 test files and one test directory, shouldn't be able to log in as root or access root files .e.g '/etc/shadow'. Jjk422 2016-06-23 11:33:36 +01:00
  • cf00ee8d1b Merge pull request #2 from cliffe/master Cliffe 2016-06-23 10:52:49 +01:00
  • 72dad41881 Vulnerability: vsftpd_234_backdoor rewrite thomashaw 2016-06-21 20:35:16 +01:00
  • bc687a8cd6 Merge pull request #42 from Jjk422/new_ntp_service_module Connor Wilson 2016-06-19 13:11:42 +01:00
  • 90319741bb Merge pull request #44 from thomashaw/unreal_ircd_rework Connor Wilson 2016-06-19 12:48:31 +01:00
  • c12ff5c270 Service: UnrealIRCd module thomashaw 2016-06-15 02:38:56 +01:00
  • 31c49d81ff Vulnerability: UnrealIRCd backdoor thomashaw 2016-06-15 02:32:28 +01:00
  • 77cf34e769 Merge pull request #35 from thomashaw/vulnerability_proftpd_133c_backdoor Connor Wilson 2016-06-18 18:49:38 +01:00
  • 88db89c8ef now also removes tar.gz thomashaw 2016-06-15 18:03:05 +01:00
  • ed5cdc56b7 Cleanup step thomashaw 2016-06-15 18:00:58 +01:00
  • b195b6e0a2 Merge pull request #43 from Aviio/master Connor Wilson 2016-06-15 14:40:28 +01:00
  • 69fb1494e5 Ntp service module. Jjk422 2016-06-15 09:08:33 +01:00
  • 69af83625a Merge pull request #36 from Jjk422/new_samba_module_secure_service Tom 2016-06-15 02:53:49 +01:00
  • c0ed9b92b5 Java language install module and java system scenario file. Will use unix_update if/when dependencies added. Jjk422 2016-06-14 20:05:21 +01:00
  • 3c3cc94f00 Merge pull request #39 from Jjk422/change_vuln_xml_schema_to_include_apache_v2_licence Tom 2016-06-14 18:17:39 +01:00
  • a8803d3193 Add the Apache v2 licence to the vulnerabilities licences. Jjk422 2016-06-14 16:29:43 +01:00
  • 0f96cc5caa Changes output of build_config to output correct information about networks, was previously displaying all_availiable_services count instead of all_availiable_networks aviio 2016-06-14 15:50:05 +01:00
  • c8c0976283 Changed secgen_metadata for firewall module to include author, and remove software name as module configures the iptable software without installing it. Jjk422 2016-06-14 15:26:15 +01:00
  • e19cdf3160 Reverted the samba_config module, should be added in a pull request by itself. Jjk422 2016-06-14 11:51:22 +01:00
  • 29360d504d Fully completed firewall module and scenario file. Update code built into module, to be removed if/when dependency code is added. Jjk422 2016-06-14 11:21:10 +01:00