Commit Graph

  • 2c077c46af Merge pull request #269 from JD2344/jboss Cliffe 2023-04-20 10:17:17 +01:00
  • 63de8b276a Merge branch 'cliffe:master' into jboss JD2344 2023-04-20 00:15:12 +01:00
  • 13357c3c0c Add user context exploit JD 2023-04-20 00:10:17 +01:00
  • af4a41021b Merge pull request #239 from JBiggs610/bashhistory Cliffe 2023-04-18 10:51:56 +01:00
  • 1359ca54b3 Clarify apache module names (now that Kali and Stretch have separate modules for this) Z. Cliffe Schreuders 2023-04-18 10:51:06 +01:00
  • b43a6d776e Merge branch 'master' of https://github.com/cliffe/SecGen Z. Cliffe Schreuders 2023-04-18 10:49:20 +01:00
  • 38509a76cb Merge pull request #268 from JD2344/apache-service Cliffe 2023-04-18 10:47:51 +01:00
  • c9fc88af32 update to modulepath JD 2023-04-18 01:34:29 +01:00
  • b1bc40a5da modified: modules/generators/content/bash_history/secgen_local/local.rb Fixed password issue Jack Biggs 2023-04-17 20:39:39 +01:00
  • 357533dc32 parameter and metadata updates for #251 (and store the flag in a home dir) Z. Cliffe Schreuders 2023-04-17 17:00:29 +01:00
  • 2c58ec893c parameter and metadata updates for #252 Z. Cliffe Schreuders 2023-04-17 16:35:45 +01:00
  • 30930d4176 Merge pull request #252 from JD2344/apache_druid Cliffe 2023-04-17 09:55:24 +01:00
  • 853b5428af Merge pull request #251 from JD2344/apache_spark Cliffe 2023-04-17 09:43:20 +01:00
  • c118116079 Merge pull request #250 from JD2344/glpi_php_injection Cliffe 2023-04-17 09:38:34 +01:00
  • 820a713f52 Apache base fix JD 2023-04-17 03:57:29 +01:00
  • a71d09d69f port and complete exploit JD 2023-04-17 03:54:09 +01:00
  • b46645a3a8 All good to go JD 2023-04-17 02:47:37 +01:00
  • aa21bf926a working, no custom port JD 2023-04-16 22:50:42 +01:00
  • 4a725f3072 new file: lib/resources/linelists/top_100_websites modified: modules/generators/content/password_file/secgen_local/local.rb modified: modules/generators/content/password_file/secgen_metadata.xml modified: modules/generators/content/password_file/templates/password_file.md.erb Added top_100_websites and set the program to take in 5 passwords from inputs Jack Biggs 2023-04-16 15:41:31 +01:00
  • 4f05e8b223 modified: modules/generators/content/bash_history/secgen_local/local.rb Will only put sudo commands in if password is present Jack Biggs 2023-04-16 14:26:57 +01:00
  • 94e341585f new file: lib/resources/linelists/top_50_sudo_commands new file: lib/resources/linelists/top_90_linux_commands modified: modules/generators/content/bash_history/secgen_local/local.rb modified: modules/generators/content/bash_history/secgen_metadata.xml Sudo commands are now randomly inputted and password is taken in from a parameter Jack Biggs 2023-04-16 14:15:31 +01:00
  • 22b2410152 Initial Changes and working install JD 2023-04-12 02:49:19 +01:00
  • b44e6ede5a Merge branch 'cliffe:master' into apache_couchdb JD2344 2023-04-12 02:53:00 +01:00
  • ff562b3e30 update for merging JD 2023-04-12 01:25:06 +01:00
  • f1997dda09 UPDATE: Changed database variable from strings to leak to strings to preleak smarkusfeld 2023-02-26 17:41:35 +00:00
  • 90a0212624 UPDATED: Added strings to leak to sample database file smarkusfeld 2023-02-26 17:24:57 +00:00
  • 3487bd92ee New Module: Apache Couchdb smarkusfeld 2023-02-12 18:01:50 +00:00
  • 359d0ae7e8 finished and tested with user and custom port JD 2023-04-06 01:15:04 +01:00
  • 19d187c3d6 scenario updates Z. Cliffe Schreuders 2023-04-05 14:03:00 +01:00
  • 5f899ebac2 resource update Z. Cliffe Schreuders 2023-04-05 14:01:56 +01:00
  • f5e125fbc8 CyBOK metadata updates Z. Cliffe Schreuders 2023-04-05 14:01:42 +01:00
  • 858d74eb10 CyBOK metadata updates Z. Cliffe Schreuders 2023-04-04 13:24:15 +01:00
  • 1f64948e4e Merge branch 'master' of https://github.com/cliffe/SecGen Z. Cliffe Schreuders 2023-04-04 13:01:01 +01:00
  • ee72d98ee7 Default input updates Z. Cliffe Schreuders 2023-04-04 13:00:57 +01:00
  • 4e451d25ff Default input updates Z. Cliffe Schreuders 2023-04-04 11:47:47 +01:00
  • 4df25c9627 metadata updates Z. Cliffe Schreuders 2023-04-04 11:29:51 +01:00
  • b35b6a333d ChatGPT-enhanced content Z. Cliffe Schreuders 2023-04-04 11:29:29 +01:00
  • 79e78aa3c5 Output files -- admin passwords for vms, IP addresses, CyBOK per flag challenge and project, and simplified hints Z. Cliffe Schreuders 2023-04-04 11:27:52 +01:00
  • b19a20bc38 CyBOK updates Z. Cliffe Schreuders 2023-04-04 11:24:18 +01:00
  • d0e557a835 Merge branch 'master' of https://github.com/cliffe/SecGen Z. Cliffe Schreuders 2023-04-04 11:14:25 +01:00
  • f514cb637a Merge pull request #247 from JD2344/lucee_rce Cliffe 2023-04-04 11:03:35 +01:00
  • 5941edfa89 Merge pull request #249 from JD2344/jenkins_cli Cliffe 2023-04-04 10:59:42 +01:00
  • 46a4af09f6 Merge pull request #248 from JD2344/linuxki_rce Cliffe 2023-04-04 10:54:32 +01:00
  • 3eebcc82b5 change exploit user from root JD 2023-04-02 21:37:21 +01:00
  • d2603d6ff7 add scenario test JD 2023-04-02 19:56:18 +01:00
  • a8375ff43a update to run dynamic port and on a user JD 2023-04-02 19:47:46 +01:00
  • 6e2140c444 port change and cleanups JD 2023-04-02 03:22:08 +01:00
  • 73559d5993 add random port JD 2023-04-02 01:24:23 +01:00
  • c9d79cd9a1 final changes for review JD 2023-04-02 01:04:50 +01:00
  • b3c0820572 final changes for integration acceptance JD 2023-04-02 00:34:10 +01:00
  • 5e1b3bf1e1 CyBOK for CSL labs Z. Cliffe Schreuders 2023-03-27 11:46:48 +01:00
  • 0a1859f161 Labsheet links Z. Cliffe Schreuders 2023-03-27 10:30:27 +01:00
  • 02a9eb935c Minor gem fix Z. Cliffe Schreuders 2023-03-24 17:08:30 +00:00
  • 803ac99983 Output files with ip_addresses, admin password, and lab sheets in project dir Z. Cliffe Schreuders 2023-03-24 17:08:11 +00:00
  • ee5ac27c9f Gemfile updates Z. Cliffe Schreuders 2023-03-24 17:02:36 +00:00
  • 15cb17ac33 remove problematic suid man vulnerability Z. Cliffe Schreuders 2023-03-24 16:25:32 +00:00
  • 8d865d9b49 add example scenario JD 2023-03-20 19:49:17 +00:00
  • 78124171a6 Successful secgen param tests JD 2023-03-20 19:44:14 +00:00
  • 0e66707b46 successful secgen test changes JD 2023-03-20 01:01:03 +00:00
  • 0b56c71bbe changes to linuxki for secgen testing JD 2023-03-18 18:16:57 +00:00
  • 137bec39cf Merge branch 'cliffe:master' into linuxki_rce JD2344 2023-03-18 17:09:09 +00:00
  • 92edb0ac1b README updates: grants Z. Cliffe Schreuders 2023-03-14 10:05:15 +00:00
  • 44f04aa84b README updates: grants and dev team Z. Cliffe Schreuders 2023-03-14 10:01:42 +00:00
  • b860b8e5cc Additional lab sheets Z. Cliffe Schreuders 2023-02-27 12:52:00 +00:00
  • 63f8acdfbf Merge branch 'master' of https://github.com/cliffe/SecGen Z. Cliffe Schreuders 2023-02-27 12:10:25 +00:00
  • 44ac63e5eb lab sheet google doc urls linked from metadata Z. Cliffe Schreuders 2023-02-27 12:09:09 +00:00
  • cdd1358664 Future proofing Faker modules with symbol parameters (deprecated calls break with faker gem newer than 3.0.0). auto_grading_dev thomashaw 2023-02-17 10:24:26 +00:00
  • 7a30703348 Future proofing Faker modules with symbol parameters (deprecated calls break with faker gem newer than 3.0.0). thomashaw 2023-02-17 10:24:26 +00:00
  • b61a5bdd3f Remove proxy from jboss enviornment variables Harry James Hall 2023-02-15 09:03:59 +00:00
  • 95ce56d507 add module jboss Harry James Hall 2023-02-15 06:01:57 +00:00
  • 6b2d1d136b Add apache Druid Exploit JD 2023-02-11 18:07:36 +00:00
  • 1f4950ed7a Add apache spark exploit JD 2023-02-11 17:46:38 +00:00
  • cde9ad16ca Add glpi exploit JD 2023-02-11 17:44:16 +00:00
  • 5c8ad67795 Add jenkins_cli Exploit JD 2023-02-11 17:41:38 +00:00
  • 918ca4e044 Add LinuxKI RCE exploit JD 2023-02-11 17:39:13 +00:00
  • 1b11851218 Add lucee rce exploit JD 2023-02-11 17:35:47 +00:00
  • 9d4d3a39bc Bash History File Generator Jack Biggs 2023-02-10 14:23:23 +00:00
  • 3373971e4d Password List Generator Jack Biggs 2023-02-10 14:22:23 +00:00
  • 7b7daf83ce Filezilla Config File Generator Jack Biggs 2023-02-10 14:20:25 +00:00
  • 52658c518d Merge branch 'master' of https://github.com/cliffe/SecGen Z. Cliffe Schreuders 2023-02-07 14:44:34 +00:00
  • 3c274b8045 Gemfile of a working secgen install, might help #231 #228 #226 Z. Cliffe Schreuders 2023-02-07 14:44:05 +00:00
  • bb80f434bc updating samba 3_5_0_RCE secgen_metadata.xml info 2 anass_modules thomashaw 2023-02-02 19:55:00 +00:00
  • 353039b419 updating samba 3_5_0_RCE secgen_metadata.xml info 2 thomashaw 2023-02-02 19:51:06 +00:00
  • db0b264c94 updating samba 3_5_0_RCE secgen_metadata.xml info thomashaw 2023-02-02 19:50:22 +00:00
  • f91ed4b482 updating test scenario thomashaw 2023-02-02 19:12:58 +00:00
  • db428e1762 webmin_1_890_unauthenticated_remote_code_execution (wip): Added secgen_metadata.xml, removed helper zip, added scenario for testing. thomashaw 2023-02-02 18:53:23 +00:00
  • e7da5fd560 samba_3_5_0_remote_code_execution (wip): Added secgen_metadata.xml, removed helper modules, created example scenario thomashaw 2023-02-02 18:50:32 +00:00
  • 1220b340fe Added test scenario that generates 4 vms, one with each of anaas' modules for ease of development testing. thomashaw 2023-02-02 18:43:41 +00:00
  • dbfcc70026 apache_http_server_2_4_4_9_path_traversal_and_remote_code_execution (wip): added secgen_metadata and an example scenario. Removed helpful puppet modules zip file. Next: parameterise me. thomashaw 2023-02-02 18:38:28 +00:00
  • e4e1dde5e8 proftpd_1_3_5.*: updated TODO thomashaw 2023-02-02 18:37:19 +00:00
  • 8e5bd7ab6c typo thomashaw 2023-02-02 18:32:52 +00:00
  • 8cf251f061 proftpd_1_3_5_mod_copy_remote_command_execution (wip): added secgen_metadata and an example scenario. Removed helpful puppet modules zip file. Next: parameterise me. thomashaw 2023-02-02 18:30:58 +00:00
  • 02cdd6ceef Merge pull request #233 from tvergilio/rema_lab_adjustment Cliffe 2023-02-02 13:20:36 +00:00
  • 999a60fc26 Removed broken challenge from anti-sre week: Ch15AntiDis_PushRet. Thalita 2023-02-01 17:46:43 +00:00
  • c64a95156d vagrant executed directly (without gem) Z. Cliffe Schreuders 2023-01-30 17:49:20 +00:00
  • 112f7712a9 proxmox support improvements Z. Cliffe Schreuders 2023-01-30 17:48:58 +00:00
  • 3fd6b74bf5 Merge branch 'master' of https://github.com/cliffe/SecGen Z. Cliffe Schreuders 2023-01-10 14:03:10 +00:00
  • 0ee48347ed Merge branch 'master' of https://github.com/cliffe/SecGen Z. Cliffe Schreuders 2023-01-10 14:02:25 +00:00
  • c5e91b1eae Merge pull request #230 from tolly765/fix-gemfile Cliffe 2023-01-10 11:54:19 +00:00
  • 0b51720cdc Merge branch 'fix-gemfile' of github.com:tolly765/SecGen into fix-gemfile Tom Harrison 2023-01-10 10:35:19 +00:00