vulnerable machines with ansible
play

Vulnerable Machines with Ansible Nathaniel Beckstead whoami - PowerPoint PPT Presentation

Vulnerable Machines with Ansible Nathaniel Beckstead whoami Nathaniel Beckstead Automation Infrastructure Tooling scriptingis.life 2 Why Vulnerable Machines? King of the Hill Practice Red team - scan and exploit Blue team


  1. Vulnerable Machines with Ansible Nathaniel Beckstead

  2. whoami Nathaniel Beckstead Automation Infrastructure Tooling scriptingis.life 2

  3. Why Vulnerable Machines? ▰ King of the Hill ▰ Practice ▰ Red team - scan and exploit ▰ Blue team - audit configs ▰ Testing tools Vulnerability scanner ▰ 3

  4. 1. Molecule Manager

  5. Molecule ▰ Manage execution and testing of roles ▰ Write best roles possible 6

  6. Rapidly Build & Test Ansible Roles with Molecule + Docker 7

  7. 2. Vagrant Virtual machine creation

  8. Vagrant ▰ Infrastructure as code ▰ Automated virtual machines 9

  9. Vagrant 10

  10. 3. Ansible Vulnerability automation

  11. Ansible ▰ Automate configuration of software ▰ Manage fleet of servers from your laptop 12

  12. Ansible Roles ▰ Single role for each service ▰ HTTP ▰ SQL ▰ Cron ▰ Random Shells ▰ New Users 13

  13. PHP Web Shell Random Bind Shells Anonymous FTP Open SMB Shares Shellshock SMTP Backdoor Random Users Trickshot Apache Tomcat Telnet Unauthenticated SSH 14

  14. Ansible Playbooks ▰ Combine roles to create a useful configuration 15

  15. Ansible Playbooks Create cron job to open shells on ❏ random ports Install telnet ❏ Edit PAM module to disable SSH ❏ authentication. Allow everyone in. 16

  16. Demo 17

  17. Thanks! https:/ /github.com/becksteadn/Bytes-Of-Swiss/

Recommend


More recommend