Hadoop Exploiter is an Agent Plugin for Infection Monkey that uses remote code execution to exploit Hadoop server by submitting a new application to the YARN ResourceManager.
For more information, see the Hadoop Exploiter Plugin documentation.
To create the resulting Hadoop archive, follow these steps:
-
Clone the Repository
$ git clone https://github.com/guardicode/hadoop-exploiter.git $ cd hadoop-exploiter -
Install development dependencies
This project uses Poetry for managing dependencies and virtual environments, and pre-commit for managing pre-commit hooks.
$ pip install pre-commit poetry $ pre-commit install -t pre-commit $ poetry install
The test suite can be run with the following command:
poetry run pytestTo build the plugin, run the Agent Plugin Builder.
poetry run build_agent_plugin .The build tool will create Hadoop-exploiter.tar, which can be installed in
the Monkey Island.