STRLCPY/GOAD

■ ■ ■ ■ ■ ■

.gitignore

		skipped 5 lines
6	6		ansible/.venv/
7	7		ansible/collections/
8	8		ansible/test.yml
	9	+	VBoxHeadless.log
9	10

■ ■ ■ ■ ■ ■

README.md

		skipped 26 lines
27	27		- vagrant from their official site [vagrant](https://www.vagrantup.com/downloads). The version you can install through your favourite package manager (apt, yum, ...) is probably not the latest one.
28	28		- Install vagrant plugin vbguest: `vagrant plugin install vagrant-vbguest` (not needed anymore)
29	29
	30	+	- Vagrant install with hashicorp repository example :
	31	+
30	32		```bash
31	33		wget -O- https://apt.releases.hashicorp.com/gpg \| gpg --dearmor \| sudo tee /usr/share/keyrings/hashicorp-archive-keyring.gpg
32	34		echo "deb [signed-by=/usr/share/keyrings/hashicorp-archive-keyring.gpg] https://apt.releases.hashicorp.com $(lsb_release -cs) main" \| sudo tee /etc/apt/sources.list.d/hashicorp.list
		skipped 54 lines
87	89
88	90		```bash
89	91		pwd
90		-	/opt/GOAD
91		-	vagrant up # this will create the vms
	92	+	/opt/GOAD # place yourself in the GOAD folder (where you cloned the project)
	93	+	vagrant up # this will create the vms (this command must be run in the folder where the Vagrantfile is present)
92	94		```
93	95
94	96		- VMs provisionning
		skipped 213 lines
308	310		- [X] Printerbug
309	311		- [X] Drop the mic
310	312		- [X] Shadow credentials
	313	+	- [X] Mitm6
	314	+	- [ ] Add Webdav
	315	+	- [ ] Add Applocker
311	316		- [ ] Add LAPS
312		-	- [ ] Add Applocker
313	317		- [ ] Zone transfert
314	318		- [ ] GPO abuse
315		-	- [ ] Mitm6
316	319		- [ ] Wsus
317	320		- [ ] Sccm
318	321		- [ ] Exchange
		skipped 43 lines
362	365		#### Play only an ansible part
363	366		- only play shares of member_server.yml :
364	367		```
365		-	ansible-playbook member_server.yml --tags "shares"
	368	+	ansible-playbook member_server.yml --tags "data,shares"
366	369		```
367	370
368	371		#### Play only on some server
		skipped 81 lines
450	453
451	454		```
452	455		solution : re-run Ansible script
	456	+
	457	+	### mssql : Unable to install SQL Server
	458	+	```
	459	+	TASK [mssql : Install the database]
	460	+	fatal: [192.168.56.22]: FAILED! => {"attempts": 3, "changed": true, "cmd": "c:\\setup\\mssql\\sql_installer.exe /configurationfile=c:\\setup\\mssql\\sql_conf.ini /IACCEPTSQLSERVERLICENSETERMS /MEDIAPATH=c:\\setup\\mssql\\media /QUIET /HIDEPROGRESSBAR", "delta": "0:00:34.891185", "end": "2022-08-17 21:26:53.976793", "msg": "non-zero return code", "rc": 2226323458, "start": "2022-08-17 21:26:19.085608", "stderr": "", "stderr_lines": [], "stdout": "Microsoft (R) SQL Server Installer\r\nCopyright (c) 2019 Microsoft. All rights reserved.\r\n\r\nDownloading install package...\r\n\r\n\r\nOperation finished with result: Failure\r\n\r\nOops...\r\n\r\nUnable to install SQL Server (setup.exe).\r\n\r\n Exit code (Decimal): -2068643838\r\n Exit message: No features were installed during the setup execution. The requested features may already be installed. Please review the summary.txt log for further details.\r\n\r\n SQL SERVER INSTALL LOG FOLDER\r\n c:\\Program Files\\Microsoft SQL Server\\150\\Setup Bootstrap\\Log\\20220817_142624\r\n\r\n", "stdout_lines": ["Microsoft (R) SQL Server Installer", "Copyright (c) 2019 Microsoft. All rights reserved.", "", "Downloading install package...", "", "", "Operation finished with result: Failure", "", "Oops...", "", "Unable to install SQL Server (setup.exe).", "", " Exit code (Decimal): -2068643838", " Exit message: No features were installed during the setup execution. The requested features may already be installed. Please review the summary.txt log for further details.", "", " SQL SERVER INSTALL LOG FOLDER", " c:\\Program Files\\Microsoft SQL Server\\150\\Setup Bootstrap\\Log\\20220817_142624", ""]}
	461	+	```
	462	+
	463	+	solution : re-run Ansible server script: `ansible-playbook servers.yml`
453	464
454	465		## Special Thanks to
455	466
		skipped 21 lines

■ ■ ■ ■ ■ ■

ad/sevenkingdoms.local/data/config.json

		skipped 78 lines
79	79		"NORTH\\arya.stark" : "dbo"
80	80		},
81	81		"linked_servers": {
82		-	"braavos.essos.local" : {
	82	+	"BRAAVOS" : {
	83	+	"data_src": "braavos.essos.local",
83	84		"users_mapping": [
84	85		{"local_login": "NORTH\\jon.snow","remote_login": "sa", "remote_password": "sa_P@ssw0rd!Ess0s"}
85	86		]
		skipped 41 lines
127	128		},
128	129		"executeasuser" : {},
129	130		"linked_servers": {
130		-	"castelblack.north.sevenkingdoms.local" : {
	131	+	"CASTELBLACK" : {
	132	+	"data_src": "castelblack.north.sevenkingdoms.local",
131	133		"users_mapping": [
132		-	{"local_login": "north\\jorah.mormont","remote_login": "sa", "remote_password": "Sup1_sa_P@ssw0rd!"}
	134	+	{"local_login": "ESSOS\\khal.drogo","remote_login": "sa", "remote_password": "Sup1_sa_P@ssw0rd!"}
133	135		]
134	136		}
135	137		}
		skipped 400 lines

■ ■ ■ ■ ■ ■

ansible/ad-acl.yml

		skipped 2 lines
3	3		- import_playbook: data.yml
4	4		vars:
5	5		data_path: "../ad/{{domain_name}}/data/"
	6	+	tags: 'data'
	7	+
6	8		# set AD datas ==================================================================================================
7	9
8	10		- name: ACL inside AD
		skipped 5 lines

■ ■ ■ ■ ■ ■

ansible/ad-data.yml

		skipped 2 lines
3	3		- import_playbook: data.yml
4	4		vars:
5	5		data_path: "../ad/{{domain_name}}/data/"
	6	+	tags: 'data'
6	7
7	8		# set AD datas ==================================================================================================
8	9		- name: DCs AD data configuration
		skipped 22 lines

■ ■ ■ ■ ■ ■

ansible/ad-relations.yml

		skipped 2 lines
3	3		- import_playbook: data.yml
4	4		vars:
5	5		data_path: "../ad/{{domain_name}}/data/"
	6	+	tags: 'data'
	7	+
6	8		# set AD datas ==================================================================================================
7	9
8	10		- name: "Adjust rights configuration"
		skipped 19 lines

■ ■ ■ ■ ■ ■

ansible/ad-servers.yml

		skipped 2 lines
3	3		- import_playbook: data.yml
4	4		vars:
5	5		data_path: "../ad/{{domain_name}}/data/"
	6	+	tags: 'data'
6	7
7	8		# set AD datas ==================================================================================================
8	9
		skipped 41 lines

■ ■ ■ ■ ■ ■

ansible/ad-trusts.yml

		skipped 2 lines
3	3		- import_playbook: data.yml
4	4		vars:
5	5		data_path: "../ad/{{domain_name}}/data/"
	6	+	tags: 'data'
6	7		# set AD trusts ==================================================================================================
7	8
8	9		- name: Trusts configuration
		skipped 12 lines

■ ■ ■ ■ ■ ■

ansible/adcs.yml

		skipped 2 lines
3	3		- import_playbook: data.yml
4	4		vars:
5	5		data_path: "../ad/{{domain_name}}/data/"
	6	+	tags: 'data'
6	7		# set AD datas ==================================================================================================
7	8
8	9		- name: ADCS
		skipped 20 lines

■ ■ ■ ■ ■ ■

ansible/onlyusers.yml

		skipped 2 lines
3	3		- import_playbook: data.yml
4	4		vars:
5	5		data_path: "../ad/{{domain_name}}/data/"
	6	+	tags: 'data'
6	7
7	8		# set AD datas ==================================================================================================
8	9		- name: DCs AD data configuration
		skipped 13 lines

■ ■ ■ ■ ■ ■

ansible/roles/child_domain/tasks/main.yml

1	1		- name: "Set configure dns to {{dns_domain}}"
2	2		win_dns_client:
3		-	adapter_names: '*'
	3	+	adapter_names: 'Ethernet 2'
4	4		ipv4_addresses:
5	5		- "{{dns_domain}}"
6	6		log_path: C:\dns_log.txt
		skipped 117 lines

■ ■ ■ ■ ■ ■

ansible/roles/domain_controller_slave/tasks/main.yml

1	1		- name: Set configure dns
2	2		win_dns_client:
3		-	adapter_names: '*'
	3	+	adapter_names: 'Ethernet 2'
4	4		ipv4_addresses:
5	5		- "{{dns_domain}}"
6	6		log_path: C:\dns_log.txt
		skipped 17 lines

■ ■ ■ ■ ■ ■

ansible/roles/member_server/tasks/main.yml

1	1		- name: "Set configure dns to {{dns_domain}}"
2	2		win_dns_client:
3		-	adapter_names: '*'
	3	+	adapter_names: 'Ethernet 2'
4	4		ipv4_addresses:
5	5		- "{{dns_domain}}"
6	6		log_path: C:\dns_log.txt
		skipped 21 lines

■ ■ ■ ■ ■ ■

ansible/roles/mssql_link/tasks/main.yml

1	1		- name: Create SQL Linked server and enable RPC
2	2		win_shell: \|
3		-	SqlCmd -E -Q "EXEC master.dbo.sp_addlinkedserver @server = N'{{item.key}}', @srvproduct=N'', @provider=N'SQLOLEDB'"
	3	+	SqlCmd -E -Q "EXEC master.dbo.sp_addlinkedserver @server = N'{{item.key}}', @srvproduct=N'', @provider=N'SQLOLEDB', @datasrc=N'{{item.value.data_src}}'"
4	4		SqlCmd -E -Q "EXEC master.dbo.sp_serveroption @server=N'{{item.key}}', @optname=N'rpc', @optvalue=N'true'"
5	5		SqlCmd -E -Q "EXEC master.dbo.sp_serveroption @server=N'{{item.key}}', @optname=N'rpc out', @optvalue=N'true'"
6	6		become: yes
		skipped 33 lines

■ ■ ■ ■ ■ ■

ansible/security.yml

		skipped 2 lines
3	3		- import_playbook: data.yml
4	4		vars:
5	5		data_path: "../ad/{{domain_name}}/data/"
	6	+	tags: 'data'
6	7
7	8		- name: "Setup enable defender"
8	9		hosts: dc01,dc02,dc03,srv01,srv03
		skipped 11 lines

■ ■ ■ ■ ■ ■

ansible/servers.yml

		skipped 2 lines
3	3		- import_playbook: data.yml
4	4		vars:
5	5		data_path: "../ad/{{domain_name}}/data/"
	6	+	tags: 'data'
6	7
7	8		- name: "Install IIS"
8	9		hosts: srv02
		skipped 4 lines
13	14		hosts: srv02, srv03
14	15		roles:
15	16		- { role: 'mssql', tags: 'mssql'}
16		-	- { role: 'mssql_link', tags: 'mssql'}
	17	+	- { role: 'mssql_link', tags: 'mssql, mssql_link'}
17	18		vars:
18	19		domain: "{{lab.hosts[dict_key].domain}}"
19	20		SQLSVCACCOUNT_NAME: "{{lab.hosts[dict_key].mssql.svcaccount}}"
		skipped 12 lines

Merge pull request #32 from Orange-Cyberdefense/v2