From d35bf7f3c52f5719558f73b77ed1fc34e6997e89 Mon Sep 17 00:00:00 2001 From: Dan Fedele Date: Sun, 6 Nov 2022 17:14:38 -0500 Subject: Post CFC version test --- parrot.yml | 265 ------------------------------------------------------------- 1 file changed, 265 deletions(-) delete mode 100644 parrot.yml (limited to 'parrot.yml') diff --git a/parrot.yml b/parrot.yml deleted file mode 100644 index c599d63..0000000 --- a/parrot.yml +++ /dev/null @@ -1,265 +0,0 @@ ---- - - hosts: localhost - become: yes - vars: - docker_repo_key: "https://download.docker.com/linux/debian/gpg" - docker_repo: "deb [arch=amd64] https://download.docker.com/linux/debian buster stable" - sublime_repo_key: "https://download.sublimetext.com/sublimehq-pub.gpg" - sublime_repo: "deb https://download.sublimetext.com/ apt/stable/" - ysoserial_jar: "https://github.com/frohoff/ysoserial/releases/latest/download/ysoserial-all.jar" - # good_repo: - # - "deb https://mirror.clarkson.edu/parrot/ rolling main contrib non-free" - # - "deb-src https://mirror.clarkson.edu/parrot/ rolling main contrib non-free" - # bad_repo: - # - "deb https://deb.parrot.sh/parrot/ rolling main contrib non-free" - # - "deb-src https://deb.parrot.sh/parrot/ rolling main contrib non-free" - tasks: - - name: Add Docker Repo Key - ansible.builtin.apt_key: - url: "{{ docker_repo_key }}" - state: present - - - name: Add Docker Repo - ansible.builtin.apt_repository: - repo: "{{ docker_repo }}" - state: present - - - name: Add Sublime Text Repo Key - ansible.builtin.apt_key: - url: "{{ sublime_repo_key }}" - state: present - - - name: Add Sublime Text Repo - ansible.builtin.apt_repository: - repo: "{{ sublime_repo }}" - state: present - - # - name: Not using auto-repo (this may work for you, but not for me) - # apt_repository: - # repo: "{{ item }}" - # state: absent - # loop: "{{ bad_repo }}" - - # - name: Specifying a better repo - # apt_repository: - # repo: "{{ item }}" - # state: present - # loop: "{{ good_repo }}" - - - name: Ensuring all packages are up to date - ansible.builtin.apt: - update_cache: yes - upgrade: dist - - - name: Get this neovim crap outta here (╯°□°)╯︵ ┻━┻ - ansible.builtin.apt: - name: neovim - state: absent - - - name: Installing one-off packages from package manager - ansible.builtin.apt: - update_cache: yes - name: - - vim - - gawk - - terminator - - gobuster - - python3-dev - - python3-pip - - pipx - - neo4j - - rlwrap - - eog - - xclip - - steghide - - git - - ltrace - - strace - - gdb - - gdbserver - - docker - - docker-compose - - forensics-extra - - ncat - - jq - - powershell - - samba - - tmux - - libssl-dev - - libffi-dev - - build-essential - - open-vm-tools - - open-vm-tools-desktop - - remmina - - sublime-text - state: latest - force_apt_get: yes - - - name: Install CrackMapExec - community.general.pipx: - name: crackmapexec - - - name: Install ShellUp! - ansible.builtin.git: - repo: 'https://github.com/AgroDan/shellup.git' - dest: /opt/shellup - - - name: Install Seclists (Kali has this in the repos) - ansible.builtin.git: - repo: 'https://github.com/danielmiessler/SecLists.git' - dest: /opt/seclists - - - name: Install pwntools - ansible.builtin.pip: - name: git+https://github.com/Gallopsled/pwntools.git@dev - - - name: Clone Invoke-Obfuscation (•_•) ( •_•)>⌐■-■ (⌐■_■) - ansible.builtin.git: - repo: 'https://github.com/danielbohannon/Invoke-Obfuscation' - dest: /opt/Invoke-Obfuscation - - - name: Clone JumboJohn - ansible.builtin.git: - repo: 'https://github.com/magnumripper/JohnTheRipper' - dest: /opt/JohnTheRipper - - - name: Compiling JumboJohn, hold onto yer butts... - ansible.builtin.command: chdir=/opt/JohnTheRipper/src {{ item }} - with_items: - - ./configure - - make - - make install - - - name: Clone Nishang - ansible.builtin.git: - repo: 'https://github.com/samratashok/nishang' - dest: /opt/nishang - - - name: Clone Chisel - ansible.builtin.git: - repo: 'https://github.com/jpillora/chisel' - dest: /opt/chisel - - - name: Clone LinEnum - ansible.builtin.git: - repo: 'https://github.com/rebootuser/LinEnum' - dest: /opt/LinEnum - - - name: Clone PEASS - ansible.builtin.git: - repo: 'https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite' - dest: /opt/privilege-escalation-awesome-scripts-suite - - - name: Clone PowerSploit - ansible.builtin.git: - repo: 'https://github.com/PowerShellMafia/PowerSploit' - dest: /opt/PowerSploit - - - name: Clone Impacket - ansible.builtin.git: - repo: 'https://github.com/SecureAuthCorp/impacket' - dest: /opt/impacket - - - name: Clone Bloodhound - ansible.builtin.git: - repo: 'https://github.com/BloodHoundAD/BloodHound' - dest: /opt/BloodHound - - - name: Clone Gef - ansible.builtin.git: - repo: 'https://github.com/hugsy/gef.git' - dest: /opt/gef - - - name: Clone Static Binaries - ansible.builtin.git: - repo: 'https://github.com/andrew-d/static-binaries' - dest: /opt/static-binaries - - - name: Clone Ysoserial - ansible.builtin.git: - repo: 'https://github.com/frohoff/ysoserial' - dest: /opt/ysoserial - - - name: Downloading Ysoserial JAR file - ansible.builtin.get_url: - url: "{{ ysoserial_jar }}" - dest: /opt/ysoserial/ysoserial-all.jar - mode: '0644' - - - name: Get Evil-WinRM via gem installer - ansible.builtin.gem: - name: evil-winrm - state: latest - user_install: no - - - name: Disable mouse interactivity in vim (╯°□°)╯︵ ┻━┻ - ansible.builtin.blockinfile: - path: /etc/vim/vimrc - marker: "\" {mark} ANSIBLE MANAGED BLOCK" - insertafter: EOF - state: present - block: | - set mouse= - set ttymouse= - - - name: Getting all interactive users <> - ansible.builtin.shell: "awk -F: '{ if (($3 >= 1000 && $3 != 65534) || $3 == 0) print $1}' /etc/passwd" - register: users - - - name: Initialize Gef for all users - ansible.builtin.script: /opt/gef/scripts/gef.sh - become_user: "{{ item }}" - loop: "{{ users.stdout_lines }}" - - - name: Copying over bashrc file to all users - ansible.builtin.copy: - src: /tmp/master-bashrc - dest: "~{{ item }}/.bashrc" - owner: "{{ item }}" - group: "{{ item }}" - mode: '0640' - loop: "{{ users.stdout_lines }}" - - - name: Copying over bash functions file for all users - ansible.builtin.copy: - src: /tmp/master-bash_functions - dest: "~{{ item }}/.bash_functions" - owner: "{{ item }}" - group: "{{ item }}" - mode: '0640' - loop: "{{ users.stdout_lines }}" - - - name: Copying over tmux config to all users - ansible.builtin.copy: - src: /tmp/master-tmux_conf - dest: "~{{ item }}/.tmux.conf" - owner: "{{ item }}" - group: "{{ item }}" - mode: '0640' - loop: "{{ users.stdout_lines }}" - - - name: Create /srv/smb/ directory for payload population - ansible.builtin.file: - path: /srv/smb - state: directory - mode: '0755' - - - name: Creating IWR share in samba config - ansible.builtin.blockinfile: - path: /etc/samba/smb.conf - insertafter: EOF - state: present - block: | - [iwr] - comment = Invoke-WebReq'd em? Damn near killed em! - path = /srv/smb - guest ok = yes - browseable = yes - create mask = 0600 - directory mask = 0755 - - - name: Ensure that samba doesn't start on boot - ansible.builtin.systemd: - name: smbd - enabled: no - state: stopped -- cgit v1.2.3