CyberSecurityUP
|
2e25809a93
|
v3.5.5 — cloud infrastructure testing + REPL polish
Cloud testing:
- +17 cloud agents (agents_md/infra/) for AWS/GCP/Azure: IAM/RBAC privesc,
storage exposure (S3/GCS/Blob), compute & network exposure + IMDS, secrets
(Secrets Manager / Secret Manager / Key Vault), SA/SP key abuse, Entra ID
enum, and a multi-cloud footprint/identity recon agent. Library 348 -> 365.
- creds.yaml gains aws:/gcp:/azure: blocks (Creds::cloud). The harness exports
provider env vars (AWS_*, GOOGLE_APPLICATION_CREDENTIALS, AZURE_* SP) so
aws/gcloud/az authenticate automatically, and injects a cloud directive. GCP
inline JSON is written to a temp file. Best-practice auth per provider.
REPL polish:
- /chain <n> (attack-chain depth, wired to Session.chain_depth), /agents list
(library category counts incl. infra/cloud); /show now shows chain-depth and
enabled integrations. Tab-completion + help updated.
Docs: README badges (365 agents / 14 providers), new "Cloud credentials" section;
RELEASE notes. Version 3.5.4 -> 3.5.5.
|
2026-07-01 22:38:27 -03:00 |
|
CyberSecurityUP
|
f8d70ce9c5
|
v3.5.1: infra/host engagements — IP + SSH/Windows-AD creds + Linux/Win/AD agents + REPL context bar
Infra:
- creds.yaml gains `ssh:` (host/port/user/password/key) and `windows:`/`ad:`
(host/user/password/domain/ntlm-hash) blocks; multi-block YAML parser.
host_instruction() tells agents how to authenticate to the host.
- 14 infra agents (agents_md/infra/): port/service scan, SMB enum, Linux privesc/
sudo/cron/SSH, Windows privesc/SMB-signing/WinRM, AD kerberoast/asreproast/ACL/
DCSync/default-creds. Loader gains `infra` category → 317 agents total.
- run_host pipeline + `neurosploit host <ip> --creds creds.yaml` (and Mode::Host
in run_mode/TUI): host recon (nmap/netexec) → infra agent selection → test →
validate → chain → report, with host tooling doctrine + supplied creds.
REPL:
- Context/status bar above the prompt: "model auth · cwd · mode▸target"
(e.g. claude-opus-4-8 sub · /opt/projeto · black-box▸app.acme.com).
Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
|
2026-06-24 22:17:14 -03:00 |
|