Merge branch 'master' of https://github.com/RhinoSecurityLabs/contain…

…er-scripts

README.md

@@ -1,9 +1,9 @@
 # Cloud Container Attack Tool (CCAT :cloud::cat2:) 
-[![Rhino](https://img.shields.io/badge/rhino-offensive%20%7C%20tool-red?logo=data:image/png;base64,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)](https://rhinosecuritylabs.com) [![PyPI](https://img.shields.io/badge/python-3.5%20%7C%203.6%20%7C%203.7-blue.svg)](https://github.com/RhinoSecurityLabs/container-hack) [![GitHub license](https://img.shields.io/badge/license-BSD-brightgreen.svg)](https://github.com/RhinoSecurityLabs/container-hack/blob/master/LICENSE) [![PRs Welcome](https://img.shields.io/badge/PRs-welcome-brightgreen.svg)](https://github.com/RhinoSecurityLabs/ccat/pulls)
+[![Rhino](https://img.shields.io/badge/rhino-offensive%20%7C%20tool-red?logo=data:image/png;base64,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)](https://rhinosecuritylabs.com) [![PyPI](https://img.shields.io/badge/python-3.5%20%7C%203.6%20%7C%203.7-blue.svg)](https://github.com/RhinoSecurityLabs/ccat) [![GitHub license](https://img.shields.io/badge/license-BSD-brightgreen.svg)](https://github.com/RhinoSecurityLabs/ccat/blob/master/LICENSE) [![PRs Welcome](https://img.shields.io/badge/PRs-welcome-brightgreen.svg)](https://github.com/RhinoSecurityLabs/ccat/pulls)
 
 _Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments._
 
-<img src="https://raw.githubusercontent.com/RhinoSecurityLabs/ccat/master/docs/images/ccat_main_menu.png" width="1000"/>
+<img src="https://raw.githubusercontent.com/RhinoSecurityLabs/ccat/master/docs/images/ccat_new_main_menu.png" width="1000"/>
 
 ## Quick reference
 - **Where to get help**:
@@ -18,13 +18,11 @@ _Cloud Container Attack Tool (CCAT) is a tool for testing security of container
 ## Requirements
 * Python 3.5+ is required.
 * Docker is required. Note: CCAT is tested with Docker Engine 19.03.1 version.
-* AWS named profile is required.
+* Named profile is required for using AWS functionality.
+* A service account or access token is required for using GCP functionality.
 
 ## Installation
-<!-- Install CCAT with pip
-```
- $ pip install ccat
-``` -->
+> We recommend using the provided Docker image to run CCAT, so that you will not face any difficulty with the required dependencies on your own system.
 
 Install CCAT from source
 

ccat.py

@@ -1,6 +1,7 @@
 #!/usr/bin/env python3
 import json
 import sys
+import pathlib
 
 
 import boto3
@@ -9,20 +10,36 @@
 from PyInquirer import (prompt, Separator, style_from_dict, Token)
 from tabulate import tabulate
 
-
+# AWS
 import modules.ecr__enum_repos.main as ecr__enum_repos
 import modules.ecr__pull_repos.main as ecr__pull_repos
-import modules.docker__backdoor.main as docker__backdoor
 import modules.ecr__push_repos.main as ecr__push_repos
 
+# GCP
+import modules.gcr__enum_repos.main as gcr__enum_repos
+import modules.gcr__pull_repos.main as gcr__pull_repos
+import modules.gcr__push_repos.main as gcr__push_repos
 
+# Docker
+import modules.docker__backdoor.main as docker__backdoor
+
+# AWS words
 ENUMERATE_ECR = 'Enumerate ECR'
 PULL_ECR_REPOS = 'Pull Repos from ECR'
 PUSH_ECR_REPOS = 'Push Repos to ECR'
-DOCKER_BACKDOOR = 'Docker Backdoor'
 LIST_ECR_REPOS = 'List Enumerated ECR Repos'
 SWAP_AWS_PROFILE = 'Swap AWS Profile'
 
+# GCP words
+ENUMERATE_GCR = 'Enumerate GCR'
+PULL_GCR_REPOS = 'Pull Repos from GCR'
+PUSH_GCR_REPOS = 'Push Repos to GCR'
+LIST_GCR_REPOS = 'List Enumerated GCR Repos'
+SWAP_GCP_CREDS = 'Swap GCP Credentials'
+
+# Docker words
+DOCKER_BACKDOOR = 'Docker Backdoor'
+
 
 custom_style = style_from_dict({
     Token.Separator: '#6C6C6C',
@@ -35,13 +52,16 @@
     Token.Question: '',
 })
 
+
 class CLI(object):
     def __init__(self):
         aws = AWS()
+        gcp = GCP()
         docker = Docker()
 
         self.extentions = {
             'aws': aws,
+            'gcp': gcp,
             'docker': docker
         }
 
@@ -83,6 +103,7 @@ def print_module_summary(self, data, module):
             print('MODULE SUMMARY:\n\n{}\n'.format(summary.strip('\n')))  
 
     def run_module(self, answers):
+        # AWS
         if ENUMERATE_ECR in answers['main_menu']:
             cli_answers = self.extentions['aws'].ask_ecr_enum_repos()
             self.print_module_running(ecr__enum_repos.module_info['name'])
@@ -105,15 +126,42 @@ def run_module(self, answers):
             data = ecr__push_repos.main(cli_answers)
             self.print_module_summary(data, ecr__push_repos)
 
+        elif SWAP_AWS_PROFILE in answers['main_menu']:
+            self.extentions['aws'].swap_profile()
+
+        # GCP
+        elif ENUMERATE_GCR in answers['main_menu']:
+            cli_answers = self.extentions['gcp'].ask_gcr_enum_repos()
+            self.print_module_running(gcr__enum_repos.module_info['name'])
+            data = gcr__enum_repos.main(cli_answers)
+            self.extentions['gcp'].data.update({'gcr_repos': data})
+            self.print_module_summary(data, gcr__enum_repos)
+
+        elif LIST_GCR_REPOS in answers['main_menu']:
+            self.extentions['gcp'].print_gcr_repos()
+
+        elif PULL_GCR_REPOS in answers['main_menu']:
+            cli_answers = self.extentions['gcp'].ask_gcr_pull_repos()
+            self.print_module_running(gcr__pull_repos.module_info['name'])
+            data = gcr__pull_repos.main(cli_answers)
+            self.print_module_summary(data, gcr__pull_repos)
+
+        elif PUSH_GCR_REPOS in answers['main_menu']:
+            cli_answers = self.extentions['gcp'].ask_gcr_push_repos()
+            self.print_module_running(gcr__push_repos.module_info['name'])
+            data = gcr__push_repos.main(cli_answers)
+            self.print_module_summary(data, gcr__push_repos)
+
+        elif SWAP_GCP_CREDS in answers['main_menu']:
+            self.extentions['gcp'].swap_service_account()
+
+        # Docker
         elif DOCKER_BACKDOOR in answers['main_menu']:
             cli_answers = self.extentions['docker'].ask_docker_backdoor()
             self.print_module_running(docker__backdoor.module_info['name'])
             data = docker__backdoor.main(cli_answers)
             self.print_module_summary(data, docker__backdoor)
 
-        elif SWAP_AWS_PROFILE in answers['main_menu']:
-            self.extentions['aws'].swap_profile()
-
         else:
             self.exit_cli()
 
@@ -354,6 +402,234 @@ def append_configuration(self, answers):
         })
 
 
+class GCP(object):
+    def __init__(self, service_account_json_file_path=None, access_token=None):
+        self.configuration = {
+            'service_account_json_file_path': service_account_json_file_path,
+            'access_token': access_token,
+        }
+
+        self.data = {}
+
+    def get_menu_choices_registries(self, gcp_registries=[]):
+        choices = []
+        for registry in gcp_registries:
+            choices.append({
+                'name': registry
+            })
+
+        return choices
+
+    def get_menu(self):
+        return [
+            Separator('= GCP ='),
+            ENUMERATE_GCR,
+            LIST_GCR_REPOS,
+            PULL_GCR_REPOS,
+            PUSH_GCR_REPOS,
+            SWAP_GCP_CREDS
+        ]
+
+    def swap_service_account(self):
+        if self.configuration.get('service_account_json_file_path'):
+            print('Current Service Account: {}'.format(self.configuration.get('service_account_json_file_path')))
+        self.set_configuration()
+
+    def ask_configuration(self):
+        if not self.configuration.get('service_account_json_file_path') and not self.configuration.get('access_token'):
+            print('Did not find GCP configuration!')
+
+        questions = [
+            {
+                'type': 'list',
+                'name': 'creds_choice',
+                'message': 'What GCP credential would you like to setup?',
+                'choices': ['Service Account', 'Access Token']
+            }
+        ]
+
+        answers = prompt(questions)
+
+        if answers['creds_choice'] == 'Service Account':
+            # service account
+            questions = [
+                {
+                    'type': 'input',
+                    'name': 'service_account_json_file_path',
+                    'message': 'Enter GCP Service Account json file path',
+                    'validate': lambda profile: len(profile) != 0 or 'GCP Service Account can not be empty!'
+                }
+            ]
+
+            while True:
+                answers = prompt(questions)
+                path = pathlib.Path(answers.get('service_account_json_file_path'))
+                if path.exists():
+                    break
+                else:
+                    print("Service account json file does not exist")
+        else:
+            # access token
+            questions = [
+                {
+                    'type': 'input',
+                    'name': 'access_token',
+                    'message': 'Enter GCP Access Token',
+                    'validate': lambda profile: len(profile) != 0 or 'GCP Access Token can not be empty!'
+                }
+            ]
+
+            answers = prompt(questions)
+
+        return answers
+
+
+    def is_configured(self):
+        return self.configuration.get('service_account_json_file_path') is not None or self.configuration.get('access_token') is not None
+
+    def set_configuration(self):
+        answers = self.ask_configuration()
+
+        print('Configuring GCP...')    
+
+        self.configuration.update({
+            'service_account_json_file_path': answers.get('service_account_json_file_path'),
+            'access_token': answers.get('access_token')
+        })
+
+        print('Successfully configured GCP\n')
+
+    def ask_gcr_enum_repos(self):
+        if self.is_configured() is False:
+            self.set_configuration()
+
+        gcp_registries = ['gcr.io','us.gcr.io','eu.gcr.io','asia.gcr.io']
+
+        questions = [
+            {
+                'type': 'checkbox',
+                'name': 'gcp_registries',
+                'message': 'Select GCP registeries to enumerate',
+                'choices': self.get_menu_choices_registries(gcp_registries)
+            }
+        ]
+
+        answers = prompt(questions)
+        self.append_configuration(answers)
+
+        return answers
+
+    def ask_gcr_pull_repos(self):
+        if self.is_configured() is False:
+            self.set_configuration()
+
+        # gcr_pull_all
+        questions = [
+            {
+                'type': 'list',
+                'name': 'gcr_pull_options',
+                'message': 'GCR Pull Options',
+                'choices': [
+                    'Pull all enumerated repos',
+                    'Pull single repo with multiple tags'
+                ]
+            }
+        ]
+
+        answers = prompt(questions)
+
+        if 'Pull all enumerated repos' == answers.get('gcr_pull_options'):
+            if self.data.get('gcr_repos') and self.data.get('gcr_repos').get('payload'):
+                gcr_repos = []
+                repositories_by_registry = self.data.get('gcr_repos').get('payload').get('repositories_by_registry')
+                for repos in repositories_by_registry.values():
+                    for repo in repos:
+                        gcr_repos.append(repo.get('repositoryUri'))
+
+                answers.update({
+                    'repositories': gcr_repos
+                })
+        else:
+            questions = [
+                {
+                    'type': 'input',
+                    'name': 'repositories',
+                    'message': 'Enter GCP GCR repository URI'
+                },
+                {
+                    'type': 'input',
+                    'name': 'repository_tags',
+                    'message': 'Enter GCP GCR repository tags seperated by comma'
+                }
+            ]
+
+            answers = prompt(questions)
+
+            # strip(',') remove leading or trailing (,)
+            # replace(' ', '') remove spaces
+            # split by comma to generate a list of tags
+            answers['repository_tags'] = answers['repository_tags'].strip(',').replace(' ', '').split(',')
+            answers['repositories'] = [answers['repositories']] 
+
+        self.append_configuration(answers)
+
+        return answers
+
+    def ask_gcr_push_repos(self):
+        if self.is_configured() is False:
+            self.set_configuration()
+
+        questions = [
+            {
+                'type': 'input',
+                'name': 'repository_uri',
+                'message': 'Enter GCP GCR repository URI'
+            },
+            {
+                'type': 'input',
+                'name': 'repository_tag',
+                'message': 'Enter GCP GCR repository tag'
+            }
+        ]
+
+        answers = prompt(questions)
+        self.append_configuration(answers)
+
+        return answers
+
+    def append_configuration(self, answers):
+        answers.update({
+            'service_account_json_file_path': self.configuration['service_account_json_file_path'],
+            'access_token': self.configuration['access_token']
+        })
+
+
+    def print_gcr_repos(self):
+        headers = ['Repo Name', 'Repo Uri', 'Latest Tag', 'Number of Tags', 'Registry']
+        rows = []
+
+        if self.data.get('gcr_repos') and self.data.get('gcr_repos').get('count') > 0:
+            for registry in self.data['gcr_repos']['payload']['gcp_registries']:
+                repos = self.data['gcr_repos']['payload']['repositories_by_registry'][registry]
+                for repo in repos:
+                    row = []
+                    row.append(repo['repositoryName'])
+                    row.append(repo['repositoryUri'])
+
+                    tag_latest = ''
+                    if repo.get('tags'):
+                        tag_latest = repo.get('tags')[0]
+                        row.append(tag_latest)
+                        row.append(len(repo.get('tags')))
+                    else:
+                        row.append(0)
+
+                    row.append(registry)
+                    rows.append(row)
+
+        print(tabulate(rows, headers=headers,  tablefmt='orgtbl'), '\n') 
+
+
 class Docker(object):
     def get_menu(self):
         return [