Infection Monkey v1.6.3 released: An automated pentest tool

Infection Monkey

Welcome to the Infection Monkey!

The Infection Monkey is an open source security tool for testing a data center’s resiliency to perimeter breaches and internal server infection. The Monkey uses various methods to self-propagate across a data center and reports success to a centralized Command and Control(C&C) server.

Image: guardicore

The Infection Monkey is comprised of two parts:

• Monkey – A tool which infects other machines and propagates to them
• Monkey Island – A C&C server with a dedicated UI to visualize the Chaos Monkey’s progress inside the data center

To read more about the Monkey, visit http://infectionmonkey.com

Main Features

The Infection Monkey uses the following techniques and exploits to propagate to other machines.

• Multiple propagation techniques:
  • Predefined passwords
  • Common logical exploits
  • Password stealing using mimikatz
• Multiple exploit methods:
  • SSH
  • SMB
  • RDP
  • WMI
  • Shellshock
  • Conficker
  • SambaCry
  • Elastic Search (CVE-2015-1427)

Changelog v1.6.2

New Features

• The UI can now optionally be password protected. For more information check our wiki and #260
• The Monkey can now run actions after breaching the machine. For now, we’ve only implemented the option to create a disabled backdoor user. #242
• Export to AWS security hub. The monkey now knows to export security findings to the AWS security hub. #221
• We can now remotely run commands on AWS EC2 instances, giving you more methods to start a simulating breach. #259
• Attack according to host names rather than IPs #189
• We can now carry our own version of traceroute for linux machines #229
• Add option to sleep between scans #240
• The monkey now also pings machines to check if they’re alive, possibly bypassing some segmentation rules #243
• We have an experimental new attack. An MS-SQL exploiter that brute forces authentication and uses xp_cmdshell to attack. #147

We also improved our deployment, making it easier for developers to set up their own instance of the Monkey (#225 and #227 )

Fixes

• Moved to wget instead of curl #238
• Make Mongo URL easy to redirect (using env variable) #197
• UI improvements #211
• Improvements to exploiters #212, #224, #249, #269,#207,#224
• Handle timeout when communicating with Island #202
  And many more small bug fixes 🙂

Download

Setup

Copyright (c) 2017 Guardicore Ltd

Source: https://github.com/guardicore/