Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Migrate the SSH exploiter to a plugin #3170

Closed
20 tasks done
mssalvatore opened this issue Mar 28, 2023 · 2 comments
Closed
20 tasks done

Migrate the SSH exploiter to a plugin #3170

mssalvatore opened this issue Mar 28, 2023 · 2 comments
Labels
Complexity: Medium Impact: High Plugins Refactor sp/13

Comments

@mssalvatore
Copy link
Collaborator

mssalvatore commented Mar 28, 2023
edited by ilija-lazoroski
Loading

Description

Replace the hard-coded SSH exploiter with a new and improved, fully tested, SSH exploiter plugin with high code quality. Leverage the BruteForceExploiter to minimize code duplication.

Use the SMBExploiter as a template.

Tasks

  • Plugin skeleton (0d) - @shreyamalviya
    • options (pydantic)
      • determine what options SSH should have
      • create a pydantic model for SSH options
    • Create plugin manifest
    • Create config schema
  • Create a Pipfile for dependencies (0d) - @shreyamalviya
  • Update Jenkins (0.25d)
    • Add a jenkins job to build the plugin - @shreyamalviya
    • Update the island build jobs on Jenkins to copy the artifacts from the SSH plugin build job
  • plugin.py (0d) - @shreyamalviya
  • command builder (0d) - @shreyamalviya
  • exploit client (0d) @ilija-lazoroski
    • Don't forget to add MITRE tags
    • Check preconditions in plugin.py
  • Update ETE test configurations (0d) @cakekoa
  • Remove the hard-coded SSH plugin (0d) @cakekoa
    • Remove vulture entries
    • Fix command builder OS check (0d)
  • Extra and ETE testing (0d)
This was referenced Jul 3, 2023
Merged
Merged
shreyamalviya added a commit that referenced this issue Jul 4, 2023
@shreyamalviya
Merge branch '3170-ssh-plugin-skeleton' into develop
a7467f1 
Issue #3170
PR #3453
shreyamalviya added a commit that referenced this issue Jul 4, 2023
@shreyamalviya
Merge branch '3170-ssh-command-builder' into develop
6153402 
Issue #3170
PR #3455
@shreyamalviya shreyamalviya mentioned this issue Jul 5, 2023
Merged
10 tasks
@ilija-lazoroski ilija-lazoroski mentioned this issue Jul 5, 2023
Merged
10 tasks
mssalvatore added a commit that referenced this issue Jul 5, 2023
@mssalvatore
Merge branch '3170-ssh-plugin-dot-py' into develop
c46692a 
Issue #3170
PR #3458
cakekoa added a commit that referenced this issue Jul 5, 2023
@cakekoa
Merge branch '3170-exploit-client' into develop
00cc12a 
Issue #3170
PR #3459
This was referenced Jul 5, 2023
Merged
Merged
Merged
@shreyamalviya
Copy link
Contributor

shreyamalviya commented Jul 6, 2023
edited
Loading

Remove cryptography.hazmat.primitives.padding from hidden imports in monkey.spec; test and make sure nothing is broken

Removing cryptography from the Agent dependencies (which we need to do so that PowerShell doesn't use the Agent's cryptography) stops the Agent from running at all, it throws this error

Traceback (most recent call last):
  File “infection_monkey/main.py”, line 25, in <module>
  File “<frozen importlib._bootstrap>“, line 1178, in _find_and_load
  File “<frozen importlib._bootstrap>“, line 1149, in _find_and_load_unlocked
  File “<frozen importlib._bootstrap>“, line 690, in _load_unlocked
  File “PyInstaller/loader/pyimod02_importers.py”, line 385, in exec_module
  File “infection_monkey/dropper.py”, line 15, in <module>
  File “<frozen importlib._bootstrap>“, line 1178, in _find_and_load
  File “<frozen importlib._bootstrap>“, line 1149, in _find_and_load_unlocked
  File “<frozen importlib._bootstrap>“, line 690, in _load_unlocked
  File “PyInstaller/loader/pyimod02_importers.py”, line 385, in exec_module
  File “infection_monkey/utils/commands.py”, line 7, in <module>
  File “<frozen importlib._bootstrap>“, line 1178, in _find_and_load
  File “<frozen importlib._bootstrap>“, line 1149, in _find_and_load_unlocked
  File “<frozen importlib._bootstrap>“, line 690, in _load_unlocked
  File “PyInstaller/loader/pyimod02_importers.py”, line 385, in exec_module
  File “infection_monkey/exploit/__init__.py”, line 2, in <module>
  File “<frozen importlib._bootstrap>“, line 1178, in _find_and_load
  File “<frozen importlib._bootstrap>“, line 1149, in _find_and_load_unlocked
  File “<frozen importlib._bootstrap>“, line 690, in _load_unlocked
  File “PyInstaller/loader/pyimod02_importers.py”, line 385, in exec_module
  File “infection_monkey/exploit/caching_agent_binary_repository.py”, line 7, in <module>
  File “<frozen importlib._bootstrap>“, line 1178, in _find_and_load
  File “<frozen importlib._bootstrap>“, line 1149, in _find_and_load_unlocked
  File “<frozen importlib._bootstrap>“, line 690, in _load_unlocked
  File “PyInstaller/loader/pyimod02_importers.py”, line 385, in exec_module
  File “infection_monkey/island_api_client/__init__.py”, line 12, in <module>
  File “<frozen importlib._bootstrap>“, line 1178, in _find_and_load
  File “<frozen importlib._bootstrap>“, line 1149, in _find_and_load_unlocked
  File “<frozen importlib._bootstrap>“, line 690, in _load_unlocked
  File “PyInstaller/loader/pyimod02_importers.py”, line 385, in exec_module
  File “infection_monkey/island_api_client/configuration_validator_decorator.py”, line 3, in <module>
  File “<frozen importlib._bootstrap>“, line 1178, in _find_and_load
  File “<frozen importlib._bootstrap>“, line 1149, in _find_and_load_unlocked
  File “<frozen importlib._bootstrap>“, line 690, in _load_unlocked
  File “PyInstaller/loader/pyimod02_importers.py”, line 385, in exec_module
  File “jsonschema/__init__.py”, line 17, in <module>
  File “<frozen importlib._bootstrap>“, line 1178, in _find_and_load
  File “<frozen importlib._bootstrap>“, line 1149, in _find_and_load_unlocked
  File “<frozen importlib._bootstrap>“, line 690, in _load_unlocked
  File “PyInstaller/loader/pyimod02_importers.py”, line 385, in exec_module
  File “jsonschema/validators.py”, line 19, in <module>
  File “<frozen importlib._bootstrap>“, line 1178, in _find_and_load
  File “<frozen importlib._bootstrap>“, line 1149, in _find_and_load_unlocked
  File “<frozen importlib._bootstrap>“, line 690, in _load_unlocked
  File “PyInstaller/loader/pyimod02_importers.py”, line 385, in exec_module
  File “jsonschema_specifications/__init__.py”, line 11, in <module>
  File “referencing/_core.py”, line 297, in __rmatmul__
  File “jsonschema_specifications/_core.py”, line 27, in _schemas
  File “pathlib.py”, line 931, in iterdir
FileNotFoundError: [Errno 2] No such file or directory: ‘/tmp/_MEIdptIST/jsonschema_specifications/schemas’

PR to update the comment in monkey.spec

@shreyamalviya shreyamalviya mentioned this issue Jul 6, 2023
Merged
10 tasks
shreyamalviya added a commit that referenced this issue Jul 6, 2023
@shreyamalviya
Agent: Update comment in monkey.spec about cryptography
9a52b8b 
Issue #3170
PR #3467
shreyamalviya added a commit that referenced this issue Jul 6, 2023
@shreyamalviya
Agent: Update comment in monkey.spec about cryptography
a56f522 
Issue #3170
PR #3467
mssalvatore added a commit that referenced this issue Jul 6, 2023
@mssalvatore
Merge branch '3170-ssh-client' into develop
d728536 
Issue #3170
PR #3463
mssalvatore added a commit that referenced this issue Jul 6, 2023
@mssalvatore
Merge branch '3170-ete' into develop
bc4b489 
Issue #3170
PR #3464
mssalvatore added a commit that referenced this issue Jul 6, 2023
@mssalvatore
Changelog: Add an entry for #3170
6d6ca1f
mssalvatore added a commit that referenced this issue Jul 6, 2023
@mssalvatore
Changelog: Add an entry for #3170
8d5d655
mssalvatore added a commit that referenced this issue Jul 7, 2023
@mssalvatore
Changelog: Add an entry for #3170
0cdaf3b
mssalvatore added a commit that referenced this issue Jul 7, 2023
@mssalvatore
Merge branch '3170-remove-hard-coded-plugin' into develop
f17f779 
Issue #3170
PR #3465
@ilija-lazoroski
Copy link
Contributor

Closed by #3465

mssalvatore added a commit that referenced this issue Nov 15, 2023
@mssalvatore
Agent: Remove disused paramiko dependency
77a59d8 
This was missed in #3170
@mssalvatore mssalvatore mentioned this issue Nov 15, 2023
Merged
10 tasks
mssalvatore added a commit that referenced this issue Nov 16, 2023
@mssalvatore
Agent: Remove disused paramiko dependency
c3ac12e 
This was missed in #3170
PR #3869
mssalvatore added a commit that referenced this issue Nov 16, 2023
@mssalvatore
Agent: Remove disused paramiko dependency
34836e4 
This was missed in #3170
PR #3869
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Complexity: Medium Impact: High Plugins Refactor sp/13
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@ilija-lazoroski @mssalvatore @shreyamalviya