Skip to content

Configuration UI improvements #707

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 48 commits into from
Jul 27, 2020
Merged

Configuration UI improvements #707

merged 48 commits into from
Jul 27, 2020

Conversation

VakarisZ
Copy link
Contributor

@VakarisZ VakarisZ commented Jul 3, 2020
edited
Loading

What is this?

Fixes #637

Checklist

  • Ask Shreya to add descriptions to PBA's she added.

  • Synch links with new documentation framework.

  • Instead of "Basic - ..." we should highlight essential tabs with green colour (DONE)

  • Create an advanced selector, that allows to select/deselect on click. On click
    information about clicked property is shown in selectors info pane. Advanced selector
    also has space for custom buttons. (DONE)

Basic - Exploits

  • Should be renamed to Exploits (DONE)

General

  • Renamed to "Exploiters" (DONE)
  • Exploiter selector moved here from "Exploits" tab. (DONE)
  • "Exploit network machines" is removed (you can deselect all exploiters) (DONE)

Basic - Network

  • Should be renamed to Network (DONE)

General

  • Should be renamed to "Scope" (DONE)

Monkey

Behaviour

  • "Self delete on cleanup" - moved to Internal/Monkey (on by default). (DONE)
  • "Serialize config" - moved to Internal/Monkey (off by default). (DONE)
  • "Use file logging" - moved to Internal/Monkey (on by default). (DONE)
  • Renamed to "Post breach" (DONE)

General

  • "Is monkey alive" - hidden, moved to internal->monkey. (DONE)
  • "Post breach actions" - advanced selector with info pane that displays
    what each post breach action does. (DONE)
  • PBA selector moved to "Post breach" (DONE)

Lifecycle

  • Renamed to "Persistent scanning"
  • "Max victims to exploit" - Moved to internal, increased default to 100. (DONE)
  • "Max victims to find" - Moved to internal. (DONE)

System info

  • "System info collectors" refactored into advanced selector component. (DONE)
  • "Collect system info" - removed. Same can be achieved by disabling all collectors. (DONE)
  • "Should use mimikatz" - refactored into Mimikatz system info collector. (DONE)
  • "Harvest Azure credentials" - refactored into system info collector. (DONE)

Monkey Island

Servers

  • Whole "Servers" section moved to Internal. "Command servers" uses all local interfaces
    which is a reasonable default. "Current server" is also chosen automatically/doesn't matter. (DONE)

Internet services

  • Section moved to "Internal -> Monkey" (DONE)

Network

  • Whole tab moved to internal (DONE)

Exploits

  • Tab moved to be after "Network" (DONE)
  • Everything in this tab except "Exploits" are moved to "Internal". (DONE)

General

Exploits

  • "Exploits" made into advanced selector. Info pane displays information about exploiters, there is a button
    that de-selects all exploiters. (DONE)

Internal

  • Refactored into sub-tabs or dropdowns for each section. (DONE)

Proof that it works

image

@VakarisZ VakarisZ requested a review from ShayNehmad July 3, 2020 14:59
@ShayNehmad ShayNehmad mentioned this pull request Jul 16, 2020
Merged
3 tasks
VakarisZ added 18 commits July 20, 2020 15:10
@VakarisZ
Added advanced selector component to all config definitions, refactor…
fb9428b 
…ed it in a way that allows to define all advanced selector properties on config_schema.py
@VakarisZ
Added style that allows hiding config input component title and descr…
35e90fc 
…iption (because advanced multi select has title and description built in)
@VakarisZ
Changed the style in configuration page to differentiate config value…
f790750 
… title from description
@VakarisZ
Merge remote-tracking branch 'upstream/develop' into feature/configur…
c88488c 
…ation_improvements

# Conflicts:
#	monkey/monkey_island/cc/ui/package-lock.json
@VakarisZ
Removed hidden descriptions
167d1f5
@VakarisZ
Changed important tabs to be highlighted rather than having text in t…
9f21ce0 
…he front
@VakarisZ
Hid "Is monkey alive" field in configuration
f70b224
@VakarisZ
Removed should exploit network machines config param - same will be a…
eb4056a 
…chieved by removing all exploiters.
@VakarisZ
Merge remote-tracking branch 'upstream/develop' into feature/configur…
8c356d9 
…ation_improvements

# Conflicts:
#	monkey/monkey_island/cc/ui/package-lock.json
@VakarisZ
Merge remote-tracking branch 'upstream/develop' into feature/configur…
eba779c 
…ation_improvements
@VakarisZ
Renamed values in config: Network->General to Network->Scope, Exploit…
3fec6ac 
…s->General to Exploits->Exploiters
@VakarisZ
Split up config_schema.py into separate files
8b27973
@VakarisZ
Mimikatz, Azure collectors moved to system info collectors in config,…
2c96ace 
… "Behaviour" renamed to "Post breach" in config
@VakarisZ
Moved "is monkey alive" into internal(still hidden) config, fixed PBA UI
57ee55d
@VakarisZ
Removed "Monkey island" config tab (moved everything into internal)
b2eb5a4
@VakarisZ
"Network" config section moved to "Internal"
2506fdc
@VakarisZ
"Exploits" config section moved to "Internal", UI fix for other moved…
bca5ad9 
… sections
@VakarisZ
Moved "victims_max_exploit" and "victims_max_find" to "internal", inc…
db6552a 
…reased "victims_max_exploit" default to 100
@VakarisZ VakarisZ marked this pull request as ready for review July 23, 2020 07:58
VakarisZ added 13 commits July 24, 2020 09:45
@VakarisZ
Changed exploiter documentation links in config
696dd83
@VakarisZ
Merge branch 'feature/configuration_improvement' of https://github.co…
c1717d0 
…m/guardicore/monkey into feature/configuration_improvements
@VakarisZ
Added hostname's to IP range validation
cc78076
@VakarisZ
Added descriptions to post breach actions, where it was missing
a1c11df
@VakarisZ
Fixed double (( typo in WMI exploiter documentation
09734df
@VakarisZ
Merge remote-tracking branch 'upstream/develop' into feature/configur…
d049b88 
…ation_improvements
@VakarisZ
Merge remote-tracking branch 'upstream/develop' into feature/configur…
e8d210f 
…ation_improvements
@VakarisZ
Typo fixes and improvements
cf45ec9
@VakarisZ
Rolled back server_config.json to a clean one
76401f0
@VakarisZ
Separated InternalConfig into separate tabs for easier navigation
ecea415
@VakarisZ
Linting fixes
b366d12
@VakarisZ
Bugfix in HeightCalculator.js
49825d4
@VakarisZ
More linting fixes
951794a
@codecov
Copy link

codecov bot commented Jul 26, 2020
edited
Loading

Codecov Report

Merging #707 into develop will increase coverage by 0.19%.
The diff coverage is 85.00%.

Impacted file tree graph

@@             Coverage Diff             @@
##           develop     #707      +/-   ##
===========================================
+ Coverage    59.85%   60.04%   +0.19%     
===========================================
  Files          147      157      +10     
  Lines         4795     4818      +23     
===========================================
+ Hits          2870     2893      +23     
  Misses        1925     1925
Impacted Files Coverage Δ
...ection_monkey/system_info/system_info_collector.py 70.58% <0.00%> (ø)
monkey/monkey_island/cc/services/config.py 28.57% <33.33%> (ø)
monkey/infection_monkey/system_info/__init__.py 42.18% <50.00%> (+0.91%) ⬆️
...key/monkey_island/cc/services/post_breach_files.py 40.00% <50.00%> (ø)
monkey/common/data/system_info_collectors_names.py 100.00% <100.00%> (ø)
monkey/common/data/validation_formats.py 100.00% <100.00%> (ø)
monkey/infection_monkey/config.py 63.88% <100.00%> (-0.74%) ⬇️
...y/monkey_island/cc/services/config_schema/basic.py 100.00% <100.00%> (ø)
..._island/cc/services/config_schema/basic_network.py 100.00% <100.00%> (ø)
..._island/cc/services/config_schema/config_schema.py 100.00% <100.00%> (ø)
... and 18 more

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 5370743...fade717. Read the comment docs.

ShayNehmad
ShayNehmad reviewed Jul 26, 2020
View reviewed changes
monkey/monkey_island/cc/services/config_schema/basic.py Outdated
Comment on lines 61 to 64
"Password1!",
"1234",
"password",
"12345678"
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
"Password1!",
"1234",
"password",
"12345678"
"Password1!",
"password",
"root",
"12345678",
"qwerty",
"iloveyou"

Probably time to update the default passwords list? Just an idea

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good idea, updated a bit. Shame that we have limited brute forcing capabilities due to performance and noise generation

ShayNehmad
ShayNehmad suggested changes Jul 26, 2020
View reviewed changes
Copy link
Contributor

@ShayNehmad ShayNehmad left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

A few small comments, and some more that that came up while testing:

Unsubmitted changes

When clicking on the tabs after unchanged changes I don't get a warning for unsubmitted changes UNTIL I click on the ATT&CK tab.

Validation in the network tab

Warning format

image
We should make the warning grammatically correct (start with a capital letter, end with .).

Validation misses

123.123.123/1.123.1 match for ip-range validation.

monkey/monkey_island/cc/ui/src/components/configuration-components/ValidationFormats.js Outdated
'^'+ipRegex+'$|', // Single IP
'^'+ipRegex+'-'+ipRegex+'$|', // IP range IP-IP
'^'+ipRegex+'/'+cidrNotationRegex+'$|', // IP range with cidr notation: IP/cidr
hostnameRegex, // IP range with cidr notation: IP/cidr
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

copy-pasta documentation

monkey/monkey_island/cc/ui/src/components/pages/ConfigurePage.js Outdated
Comment on lines 382 to 386
return (<div className='alert alert-info'>
<FontAwesomeIcon icon={faInfoCircle} style={{'marginRight': '5px'}}/>
The Monkey scans its subnet if 'Local network scan' is ticked. Additionally the monkey scans machines
according to its range class.
The Monkey scans its subnet if "Local network scan" is ticked. Additionally the monkey scans machines
according to "Scan target list".
</div>)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We should move this warning into the "scope" section of the configuration page. It's out of place at the top of the page.

ShayNehmad
ShayNehmad reviewed Jul 26, 2020
View reviewed changes
monkey/monkey_island/cc/ui/src/components/configuration-components/ValidationFormats.js Outdated
@@ -0,0 +1,21 @@
const ipRegex = '((25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)'
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more. 

monkey\monkey\monkey_island\cc\ui\src\components\configuration-components\ValidationFormats.js
  1:57  warning  Unnecessary escape character: \.  no-useless-escape

@VakarisZ VakarisZ merged commit c1c412f into develop Jul 27, 2020
@ShayNehmad ShayNehmad deleted the feature/configuration_improvement branch July 27, 2020 17:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
1 more reviewer

@ShayNehmad ShayNehmad ShayNehmad approved these changes

Reviewers whose approvals may not affect merge requirements
Assignees

@VakarisZ VakarisZ

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Improve current Configuration UI
2 participants
@VakarisZ @ShayNehmad