Data

Tools

Indexes

Applications

Experiments

Open Source Science

Recent Releases of socbed

socbed - SOCBED v1.3.11

Fixes: * Update Kali signing key (see https://www.kali.org/blog/new-kali-archive-signing-key/) * Update setuptools due to critical vulnerability (see https://huntr.com/bounties/d6362117-ad57-4e83-951f-b8141c6e7ca5)

- Python
Published by ru37z 9 months ago

socbed - SOCBED v1.3.10

Fixes: - Unpin all package versions installed on the Attacker during the provisioning step.

Note: While we generally aim to pin OS and package versions in SOCBED for better reproducibility, we dismiss this practice for packages on the Attacker since Kali is a rolling release distribution and removes older packages from their default repo after a while, leading to failing SOCBED builds. If reproducibility is of higher importance to you than being able to access up-to-date Kali packages, you might replace its default repo with a point release repo (see https://old.kali.org/).

- Python
Published by ru37z about 1 year ago

socbed - SOCBED v1.3.9

Fixes: - Fix missing firewall rule to allow auditbeat logs to reach the log server through the company router

- Python
Published by ru37z about 1 year ago

socbed - SOCBED v1.3.8

Fixes: * Change download source for python3-aiosmtpd to Kali archive for longer availability

- Python
Published by ru37z about 1 year ago

socbed - SOCBED v1.3.7

Fixes: * Fix DNS configuration on the Internet Router, which occasionally caused internet outages for the entire network * Fix DNS configuration and expired certificates on the Attacker * Fix missing requirements on the Attacker preventing the external mail handler from running * Replace deprecated ssl.wrap_socket() calls in the vmconsole with their modern counterparts * Assign a unique VRDP port to each client clone upon session creation to enable access via VRDP

- Python
Published by ru37z about 1 year ago

socbed - SOCBED v1.3.6

Fixes: - Fix filename of file created by screenshot attack not being displayed correctly in the attackconsole

- Python
Published by ru37z over 1 year ago

socbed - SOCBED v1.3.5

Fixes: * Fix incomplete setup of environment in GitHub workflow * Fix bug in sqlmap_attack test, which could fail due to incorrect terminal size on monitors >27"

Misc: * Change minimum Python version to 3.9 and support up to 3.12 at least * Update several package versions * Replace deprecated package smtpd with aiosmptd

- Python
Published by ru37z over 1 year ago

socbed - SOCBED v1.3.4

Fixes: * Update binutils to prevent version conflicts on Attacker VM

- Python
Published by ru37z almost 2 years ago

socbed - SOCBED v1.3.3

Fixes: * Update deprecating versions for GitHub actions retry and checkout

- Python
Published by ru37z almost 2 years ago

socbed - SOCBED v1.3.2

Fixes: - Update Ansible script URL due to change in Ansible repositories - Increase timeout for Ansible task spark

Misc: - Use newer Windows 10 version by default (22H2) - Add tox to CI requirements in docs

- Python
Published by ru37z over 2 years ago

socbed - SOCBED v1.3.1

Fixes: - Download Kali public key during setup - Explicitly set time zone to CET on the Client to fix NTP time sync - Include nmap attacks in system tests

- Python
Published by ru37z about 3 years ago

socbed - SOCBED v1.3.0

Features: - Add nmap attacks - Add grc (color output) - Add tab completion for attack options

Fixes: - Use checkout@v3 instead of v2 to fix pipelines

Misc: - Upgrade paramiko from 2.10.1 to 2.11.0 - Cleanup code - Impose PEP 8 in various files - Remove unused imports in various files - Use f-string instead of older str.format() syntax where appropriate

- Python
Published by ru37z over 3 years ago

socbed - SOCBED v1.2.0

Features: - Add user emulation code to repo (was encapsulated in a hardly editable PEX file before) - Add support for keyboard interrupt (Ctrl-C) in attackconsole while attacks are running - Show executed commands in attackconsole - Change execute_malware attack to run exe as current user instead of SYSTEM

Fixes: - Update deprecated Kali image URL and switch to version 2021.4a (from 2021.4) - Fix race condition in attacks system test (sometimes resulted in failed tests) - Fix kill_reverse_connection attack to only kill actual meterpreter binaries (not the browser) - Increase system test timeouts

Misc: - Add Python version to requirements - Add longtest tox marker to unit tests that take >10 seconds to complete - Improve some code formatting and add license where missing

- Python
Published by ru37z over 3 years ago

socbed - SOCBED v1.1.7

  • [attackconsole] Add KeyboardInterrupt propagation to remote host and continuous console output
  • [attackconsole] Add more specific output on timeout errors
  • [pipeline] Increase certain runner timeout values
  • [documentation] Improve description of Windows ISO download

- Python
Published by ru37z over 3 years ago

socbed - SOCBED v1.1.6

  • Increase timeout for certain attacker provisioning steps to prevent cancellation on slower machines
  • Increase timeout for systests running on the dev pipeline to prevent cancellation on slower machines

- Python
Published by ru37z almost 4 years ago

socbed - SOCBED v1.1.5

  • Add systest to check if userbehavior is running
  • Include logging systests in default test runs (including nightly build)
  • Improve error handling of attack console
  • Update paramiko version
  • Update license
  • Update some comments

- Python
Published by ru37z almost 4 years ago

socbed - SOCBED v1.1.4

  • Fix occasionally failing downloads from artifacts.elastic.co
  • Increase Packer's "bootkeygroupinterval" on the Attacker to avoid build errors on slower runners
  • Increase workflow timeout values to prevent unnecessary cancellation
  • Fix minor mistakes in the runner setup documentation
  • Update network documentation
  • Update Ansible from 2.8.0 to 5.1.0
  • Delete deprecated files

- Python
Published by Maspital almost 4 years ago

socbed - SOCBED v1.1.3

  • Fix infectflashdriveexe attack and add it to the system tests
  • Increase RAM on Company Router to avoid occasional Suricata crashes

- Python
Published by ru37z about 4 years ago

socbed - SOCBED v1.1.2

  • Increase attacker build timeout to three hours due to large ISO download
  • Revise readme

- Python
Published by ru37z about 4 years ago

socbed - SOCBED v1.1.1

  • Fix miscdownloadmalware attack for current Windows version (21H2)
  • Fix cleanupfailedsession script (powering off VMs failed)
  • Revise readme and fix incorrect client SSH username
  • Rename confusing pytest mark "longtest" to "unstable"

- Python
Published by ru37z about 4 years ago

socbed - SOCBED v1.1.0

  • Update Windows 10 version to current 21H2
  • Add action to clear pipeline cache once a week (mainly to detect dead ISO download links)
  • Add link to actions in readme build status badges

- Python
Published by ru37z about 4 years ago

socbed - SOCBED v1.0.0

SOCBED as presented at ACSAC 2021

- Python
Published by ru37z over 4 years ago