Ability to choose a service account on linux #1179

jborozco · 2024-07-02T06:46:27Z

Use case

To reproduce real attack environment, I want to be able to execute a custom payload through a non-system user.

After doing a POC and for a first MVP, we want to be able to define a Service Account (first on Linux) for the ability to:

-CRUD a Service account to be used for executing injects on endpoints as an admin
-Execute a payload with elevated privilege by default

savacano28 · 2024-09-10T12:02:00Z

Scope: Paylaod custom, windows, openbas agent : https://www.notion.so/filigran/Ability-to-choose-non-system-user-to-execute-a-payload-91f0f341848e431895a8bfb463703082.
Prs:
Just include elevation_request:
Openbas: #1410
Collector: OpenBAS-Platform/collectors#41

Prs POC:
Openbas: #1396
Agent: OpenBAS-Platform/agent#14
Collector: OpenBAS-Platform/collectors#41

jborozco · 2024-11-15T10:14:07Z

We changed our appraoch to this feature, closing this issue as duplicate of #1860 + #1861

jborozco added feature use for describing a new feature to develop needs triage use to identify issue needing triage from Filigran Product team and removed needs triage use to identify issue needing triage from Filigran Product team labels Jul 2, 2024

jborozco modified the milestones: Release 1.4.0, Release 1.5.0 Jul 2, 2024

savacano28 self-assigned this Aug 19, 2024

Jipegien modified the milestones: Release 1.5.0, Release 1.6.0 Aug 22, 2024

savacano28 removed their assignment Aug 22, 2024

Jipegien self-assigned this Aug 23, 2024

jborozco changed the title ~~Ability to choose non-system user to execute a custom payload~~ Ability to choose non-system user to execute a payload Aug 30, 2024

damgouj self-assigned this Aug 30, 2024

Dimfacion self-assigned this Sep 2, 2024

guillaumejparis self-assigned this Sep 2, 2024

RomuDeuxfois assigned savacano28 Sep 2, 2024

savacano28 mentioned this issue Sep 11, 2024

[backend] Add payload elevation required #1410

Merged

5 tasks

RomuDeuxfois modified the milestones: Release 1.6.0, Release 1.7.0, Release 1.8.0 Sep 12, 2024

RomuDeuxfois closed this as completed in OpenBAS-Platform/collectors#41 Sep 17, 2024

RomuDeuxfois reopened this Sep 17, 2024

EllynBsc mentioned this issue Sep 25, 2024

Distinguish custom payloads and injects with elevated privilege #1531

Open

EllynBsc modified the milestones: Release 1.8.0, Release 1.9.0 Sep 25, 2024

EllynBsc changed the title ~~Ability to choose non-system user to execute a payload~~ Ability to choose non-system user to execute a payload - define a Service Account Sep 25, 2024

RomuDeuxfois modified the milestones: Release 1.8.0, Release 1.9.0 Oct 15, 2024

EllynBsc changed the title ~~Ability to choose non-system user to execute a payload - define a Service Account~~ Chunk 1: define a Service Account, first step of having the ability to choose non-system user to execute a payload Oct 17, 2024

EllynBsc changed the title ~~Chunk 1: define a Service Account, first step of having the ability to choose non-system user to execute a payload~~ Ability to choose a service account on linux Oct 17, 2024

guillaumejparis removed their assignment Oct 21, 2024

jborozco closed this as not planned Won't fix, can't repro, duplicate, stale Nov 15, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Ability to choose a service account on linux #1179

Ability to choose a service account on linux #1179

jborozco commented Jul 2, 2024 •

edited by EllynBsc

Loading

savacano28 commented Sep 10, 2024 •

edited

Loading

jborozco commented Nov 15, 2024

Ability to choose a service account on linux #1179

Ability to choose a service account on linux #1179

Comments

jborozco commented Jul 2, 2024 • edited by EllynBsc Loading

Use case

savacano28 commented Sep 10, 2024 • edited Loading

jborozco commented Nov 15, 2024

jborozco commented Jul 2, 2024 •

edited by EllynBsc

Loading

savacano28 commented Sep 10, 2024 •

edited

Loading