Description

Replace the hard-coded ZeroLogon exploiter with ZeroLogon exploiter plugin.

Use the SMBExploiter and/or HadoopExploiter as templates.

A note on scope

The ZeroLogon exploiter is large and complex. There's lots of room for improvement in its code quality, however, the time it would take to reimplement it is probably not worth the value on such an old vulnerability. We can make small improvements, but should avoid getting sucked into a large refactor of this exploiter. In other words, if we can simply wrap the existing exploiter with a plugin.py, let's do that (as much as is possible).

Tasks

• options (pydantic) (0d) @cakekoa
  • determine what options ZeroLogon should have
  • create a pydantic model for ZeroLogon options
  • Create plugin manifest
  • Create config schema
• Create a Pipfile for dependencies (0d) @mssalvatore
• Add a jenkins job to build the plugin (0.25d) @cakekoa
  • Update the island build jobs on Jenkins to copy the artifacts from the ZeroLogon plugin build job
• exploiter (0d) @cakekoa
  • Check any preconditions
  • Don't forget to add MITRE tags
• Update ETE test configurations and run tests (0d) @cakekoa
• Remove the hard-coded ZeroLogon plugin (0d) @mssalvatore
• Test and fix bugs (0.5d) @shreyamalviya