oxbrbtx/PrimAITE
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge branch 'feature/3075_Migrate_notebooks_to_MilPac_(Core_changes)' of ssh.dev.azure.com:v3/ma-dev-uk/PrimAITE/PrimAITE into feature/3075_Migrate_notebooks_to_MilPac_(Core_changes)

Browse Source
This commit is contained in:
Nick Todd
2025-02-25 14:28:17 +00:00
parent 892cdb82b9 f5cfaeedab
commit ea2c018b82
1 changed files with 28 additions and 38 deletions
Download Patch File Download Diff File Expand all files Collapse all files

66
src/primaite/notebooks/Command-and-Control-E2E-Demonstration.ipynb
View File

@@ -120,6 +120,9 @@
" options:\n", " options:\n",
" node_name: web_server\n", " node_name: web_server\n",
" c2_server_ip_address: 192.168.10.21\n", " c2_server_ip_address: 192.168.10.21\n",
" keep_alive_frequency: 10\n",
" masquerade_protocol: tcp\n",
" masquerade_port: dns\n",
" 9:\n", " 9:\n",
" action: configure-c2-beacon\n", " action: configure-c2-beacon\n",
" options:\n", " options:\n",
@@ -235,23 +238,18 @@
"The yaml snippet below shows all the relevant agent options for this action:\n", "The yaml snippet below shows all the relevant agent options for this action:\n",
"\n", "\n",
"```yaml\n", "```yaml\n",
"\n",
" action_space:\n", " action_space:\n",
" options:\n",
" nodes: # Node List\n",
" - node_name: web_server\n",
" ...\n",
" ...\n",
" action_map:\n", " action_map:\n",
" ...\n",
" 2:\n", " 2:\n",
" action: configure-c2-beacon\n", " action: configure-c2-beacon\n",
" options:\n", " options:\n",
" node_id: 0 # Node Index\n", " node_name: web_server\n",
" config: # Further information about these config options can be found at the bottom of this notebook.\n", " c2_server_ip_address: 192.168.10.21 # Further information about these config options can be found at the bottom of this notebook.\n",
" c2_server_ip_address: 192.168.10.21\n", " keep_alive_frequency:\n",
" keep_alive_frequency:\n", " masquerade_protocol:\n",
" masquerade_protocol:\n", " masquerade_port:\n",
" masquerade_port:\n", "\n",
"```" "```"
] ]
}, },
@@ -279,20 +277,12 @@
"\n", "\n",
"```yaml\n", "```yaml\n",
" action_space:\n", " action_space:\n",
" options:\n",
" nodes: # Node List\n",
" - node_name: web_server\n",
" applications: \n",
" - application_name: c2-beacon\n",
" ...\n",
" ...\n",
" action_map:\n", " action_map:\n",
" ...\n",
" 3:\n", " 3:\n",
" action: node-application-execute\n", " action: node-application-execute\n",
" options:\n", " options:\n",
" node_id: 0\n", " node_name: web_server\n",
" application_id: 0\n", " application_name: c2-beacon\n",
"```" "```"
] ]
}, },
@@ -346,7 +336,6 @@
"``` yaml\n", "``` yaml\n",
" action_space:\n", " action_space:\n",
" action_map:\n", " action_map:\n",
" ...\n",
" 4:\n", " 4:\n",
" action: c2-server-terminal-command\n", " action: c2-server-terminal-command\n",
" options:\n", " options:\n",
@@ -396,14 +385,12 @@
"``` yaml\n", "``` yaml\n",
" action_space:\n", " action_space:\n",
" action_map:\n", " action_map:\n",
" ...\n",
" 5:\n", " 5:\n",
" action: c2-server-ransomware-configure\n", " action: c2-server-ransomware-configure\n",
" options:\n", " options:\n",
" node_id: 1\n", " node_name: client_1\n",
" config:\n", " server_ip_address: 192.168.1.14\n",
" server_ip_address: 192.168.1.14\n", " payload: ENCRYPT\n",
" payload: ENCRYPT\n",
"```\n" "```\n"
] ]
}, },
@@ -442,7 +429,6 @@
"``` yaml\n", "``` yaml\n",
" action_space:\n", " action_space:\n",
" action_map:\n", " action_map:\n",
" ...\n",
" 6:\n", " 6:\n",
" action: c2-server-data-exfiltrate\n", " action: c2-server-data-exfiltrate\n",
" options:\n", " options:\n",
@@ -451,7 +437,7 @@
" target_folder_name: \"database\"\n", " target_folder_name: \"database\"\n",
" exfiltration_folder_name: \"spoils\"\n", " exfiltration_folder_name: \"spoils\"\n",
" target_ip_address: \"192.168.1.14\"\n", " target_ip_address: \"192.168.1.14\"\n",
" username: \"admin\",\n", " username: \"admin\"\n",
" password: \"admin\"\n", " password: \"admin\"\n",
"\n", "\n",
"```" "```"
@@ -500,7 +486,6 @@
"\n", "\n",
"``` yaml\n", "``` yaml\n",
" action_space:\n", " action_space:\n",
" ...\n",
" action_map:\n", " action_map:\n",
" 7:\n", " 7:\n",
" action: c2-server-ransomware-launch\n", " action: c2-server-ransomware-launch\n",
@@ -1313,13 +1298,18 @@
"source": [ "source": [
"As demonstrated earlier, red agents can use the ``configure-c2-beacon`` action to configure these settings mid episode through the configuration options:\n", "As demonstrated earlier, red agents can use the ``configure-c2-beacon`` action to configure these settings mid episode through the configuration options:\n",
"\n", "\n",
"``` YAML\n", "```YAML\n",
"...\n", "\n",
" action: configure-c2-beacon\n", " action_space:\n",
" options:\n", " action_map:\n",
" node_name: web_server\n", " 8:\n",
" config:\n", " action: configure-c2-beacon\n",
" options:\n",
" node_name: web_server\n",
" c2_server_ip_address: 192.168.10.21\n", " c2_server_ip_address: 192.168.10.21\n",
" keep_alive_frequency: 10\n",
" masquerade_protocol: tcp\n",
" masquerade_port: dns\n",
"```" "```"
] ]
}, },
@@ -1684,7 +1674,7 @@
], ],
"metadata": { "metadata": {
"kernelspec": { "kernelspec": {
"display_name": "Python 3 (ipykernel)", "display_name": ".venv",
"language": "python", "language": "python",
"name": "python3" "name": "python3"
}, },