search

mitre / caldera

Automated Adversary Emulation Platform
https://caldera.mitre.org
Apache License 2.0
5.64k stars 1.07k forks source link

No plugins working and agents as well. #3052

Open Krazzy11 opened 1 month ago

Krazzy11 commented 1 month ago

Describe the bug A clear and concise description of what the bug is. No information on the http server, screenshots will be posted below. I was trying to reinstall it for a few hours trying to solve all the issues generated using via -l DEBUG ( no success )

To Reproduce Steps to reproduce the behavior:

Installing step by step the caldera and is getting the same issue Expected behavior

Having abilities/adversaries/operations and the options of agents/plugins.

Screenshots image image

Desktop (please complete the following information):

Additional context root@root:/home/infosec/Desktop/caldera# python3 server.py --insecure -l DEBUG 2024-09-17 16:21:45 - WARNING (server.py:202 ) --insecure flag set. Caldera will use the default.yml config file. 2024-09-17 16:21:45 - INFO (server.py:211 ) Using main config from conf/default.yml 2024-09-17 16:21:46 - DEBUG (learning_svc.py:20 init) Loaded 2 parsers 2024-09-17 16:21:46 - DEBUG (c_ability.py:103 store) Collision in ability name detected for b1d41972-3ad9-4aa1-8f7f-05f049a2980e and 10a9d979-e342-418a-a9b0-002c483e0fa6 (Start 54ndc47). Modifying name of the second ability to Start 54ndc47 (2)... 2024-09-17 16:21:46 - DEBUG (c_ability.py:103 store) Collision in ability name detected for 7db784562afbea0265fcafc4243b66de and 5ac7f6ec1898d8d408f9cdc687262cc7 (Exfiltration Over Alternative Protocol - SSH). Modifying name of the second ability to Exfiltration Over Alternative Protocol - SSH (2)... 2024-09-17 16:21:46 - DEBUG (c_ability.py:103 store) Collision in ability name detected for 4d4b29abb6b1e580e33c0035c1fc37ad and f674301b84ea3344f119270bf7bb97cd (rm -rf). Modifying name of the second ability to rm -rf (2)... 2024-09-17 16:21:46 - DEBUG (c_ability.py:103 store) Collision in ability name detected for 3838447b079b302fe75b700a70163815 and fcf71ee3-d1a9-4136-b919-9e5f6da43608 (Clear Logs). Modifying name of the second ability to Clear Logs (2)... 2024-09-17 16:21:46 - DEBUG (c_ability.py:103 store) Collision in ability name detected for 9bd1997d793d0ac5b1aea4888c75c932 and 3bfd3a51f3c7352d7c6c6c785d01e5f7 (Loadable Kernel Module based Rootkit). Modifying name of the second ability to Loadable Kernel Module based Rootkit (2)... 2024-09-17 16:21:46 - DEBUG (c_ability.py:103 store) Collision in ability name detected for 4370001012f5f0df001269627b4737e9 and 942316dc6a362e44b248a872e5f42c92 (System Owner/User Discovery). Modifying name of the second ability to System Owner/User Discovery (2)... 2024-09-17 16:21:46 - DEBUG (c_ability.py:103 store) Collision in ability name detected for 26d3702887944abcc64b406baf8f8e43 and 68a0a328719faa26fff5b92e18108b3f (Enumerate users and groups). Modifying name of the second ability to Enumerate users and groups (2)... 2024-09-17 16:21:46 - DEBUG (c_ability.py:103 store) Collision in ability name detected for 1d3cb1429f530cb89f41c65e57f03db4 and 2488245e-bcbd-405d-920e-2de27db882b3 (Query Registry). Modifying name of the second ability to Query Registry (2)... 2024-09-17 16:21:46 - DEBUG (c_ability.py:103 store) Collision in ability name detected for b73d58b20bcb138a26175f240cca9de2 and dca8b042fcdffcc1f5cddcff4122c434 (System Information Discovery). Modifying name of the second ability to System Information Discovery (2)... 2024-09-17 16:21:46 - DEBUG (c_ability.py:103 store) Collision in ability name detected for 44705da4b28c8fa57fc2a2940b34565a and dca8b042fcdffcc1f5cddcff4122c434 (System Information Discovery). Modifying name of the second ability to System Information Discovery (2)... 2024-09-17 16:21:46 - DEBUG (c_ability.py:103 store) Collision in ability name detected for e0c75b4cc32124ef4c61508694fd0808 and c84a57391dbc724dc51436deb3e0ca00 (Get-DomainUser with PowerView). Modifying name of the second ability to Get-DomainUser with PowerView (2)... 2024-09-17 16:21:46 - DEBUG (c_ability.py:103 store) Collision in ability name detected for 5e3512c73a461c17ddcb1cc0bbdbeef9 and 52928f462ea8f5fa617aa8c815f5598b (WinPwn - PowerSharpPack - Kerberoasting Using Rubeus). Modifying name of the second ability to WinPwn - PowerSharpPack - Kerberoasting Using Rubeus (2)... 2024-09-17 16:21:46 - DEBUG (c_ability.py:103 store) Collision in ability name detected for ab44803d5a9c299258efff185b0f70b5 and 9bd17863cd45f82002a6f011de139363 (rc.common). Modifying name of the second ability to rc.common (2)... 2024-09-17 16:21:46 - DEBUG (data_svc.py:116 restore_state) Restored data from persistent storage 2024-09-17 16:21:46 - DEBUG (data_svc.py:117 restore_state) There are 0 jobs in the scheduler 2024-09-17 16:21:46 - DEBUG (base_knowledge_svc.py:308 _restore_state) Restored data from persistent storage 2024-09-17 16:21:46 - DEBUG (contact_svc.py:38 register_contact) Registered contact: ftp 2024-09-17 16:21:46 - DEBUG (contact_svc.py:38 register_contact) Registered contact: tcp 2024-09-17 16:21:46 - DEBUG (contact_svc.py:38 register_contact) Registered contact: http 2024-09-17 16:21:46 - DEBUG (contact_svc.py:38 register_contact) Registered contact: udp 2024-09-17 16:21:46 - DEBUG (contact_svc.py:38 register_contact) Registered contact: gist 2024-09-17 16:21:46 - DEBUG (contact_svc.py:38 register_contact) Registered contact: html 2024-09-17 16:21:46 - DEBUG (contact_svc.py:38 register_contact) Registered contact: slack 2024-09-17 16:21:46 - DEBUG (contact_svc.py:38 register_contact) Registered contact: dns 2024-09-17 16:21:46 - DEBUG (contact_svc.py:38 register_contact) Registered contact: websocket 2024-09-17 16:21:47 - DEBUG (contact_svc.py:53 register_tunnel) Registered contact tunnel: ssh_tunneling 2024-09-17 16:21:47 - INFO (contact_gist.py:70 start) Invalid Github Gist personal API token provided. Gist C2 contact will not be started. 2024-09-17 16:21:47 - INFO (tunnel_ssh.py:26 start) Generating temporary SSH private key. Was unable to use provided SSH private key 2024-09-17 16:21:47 - INFO (app_svc.py:116 load) Enabled plugin: debrief 2024-09-17 16:21:47 - DEBUG (sand_svc.py:94 load_sandcat_extension_modules) Loaded gocat extension module: donut 2024-09-17 16:21:47 - DEBUG (sand_svc.py:94 load_sandcat_extension_modules) Loaded gocat extension module: native 2024-09-17 16:21:47 - DEBUG (sand_svc.py:94 load_sandcat_extension_modules) Loaded gocat extension module: shells 2024-09-17 16:21:47 - DEBUG (sand_svc.py:94 load_sandcat_extension_modules) Loaded gocat extension module: shellcode 2024-09-17 16:21:47 - DEBUG (sand_svc.py:94 load_sandcat_extension_modules) Loaded gocat extension module: proxy_http 2024-09-17 16:21:47 - DEBUG (sand_svc.py:94 load_sandcat_extension_modules) Loaded gocat extension module: shared 2024-09-17 16:21:47 - DEBUG (sand_svc.py:94 load_sandcat_extension_modules) Loaded gocat extension module: slack 2024-09-17 16:21:47 - DEBUG (sand_svc.py:94 load_sandcat_extension_modules) Loaded gocat extension module: dns_tunneling 2024-09-17 16:21:47 - INFO (app_svc.py:116 load) Enabled plugin: sandcat 2024-09-17 16:21:47 - INFO (app_svc.py:116 load) Enabled plugin: access 2024-09-17 16:21:47 - INFO (app_svc.py:116 load) Enabled plugin: stockpile 2024-09-17 16:21:47 - INFO (app_svc.py:116 load) Enabled plugin: atomic 2024-09-17 16:21:47 - INFO (app_svc.py:116 load) Enabled plugin: manx 2024-09-17 16:21:47 - INFO (app_svc.py:116 load) Enabled plugin: training 2024-09-17 16:21:47 - INFO (app_svc.py:116 load) Enabled plugin: fieldmanual 2024-09-17 16:21:47 - DEBUG (base_world.py:46 set_config) Configuration (agents) update, setting deployments=['1837b43e-4fff-46b2-a604-a602f7540469', '0ab383be-b819-41bf-91b9-1bd4404d83bf', '2f34977d-9558-4c12-abad-349716777c6b', '356d1722-7784-40c4-822b-0cf864b0b36d'] 2024-09-17 16:21:47 - INFO (app_svc.py:116 load) Enabled plugin: response 2024-09-17 16:21:47 - INFO (app_svc.py:116 load) Enabled plugin: compass 2024-09-17 16:21:47 - INFO (logging.py:92 log) Creating SSH listener on 0.0.0.0, port 8022 2024-09-17 16:21:47 - INFO (server.py:756 start) serving on 0.0.0.0:2222 2024-09-17 16:21:47 - INFO (file_util.py:137 copy_file) copying /home/infosec/Desktop/caldera/plugins/debrief/docs/debrief1.png -> /home/infosec/Desktop/caldera/plugins/fieldmanual/sphinx-docs/plugins/debrief 2024-09-17 16:21:47 - INFO (file_util.py:137 copy_file) copying /home/infosec/Desktop/caldera/plugins/debrief/docs/debrief3.png -> /home/infosec/Desktop/caldera/plugins/fieldmanual/sphinx-docs/plugins/debrief 2024-09-17 16:21:47 - INFO (file_util.py:137 copy_file) copying /home/infosec/Desktop/caldera/plugins/debrief/docs/debrief_2023-02-24_17-08-14.pdf -> /home/infosec/Desktop/caldera/plugins/fieldmanual/sphinx-docs/plugins/debrief 2024-09-17 16:21:47 - INFO (file_util.py:137 copy_file) copying /home/infosec/Desktop/caldera/plugins/debrief/docs/debrief2.png -> /home/infosec/Desktop/caldera/plugins/fieldmanual/sphinx-docs/plugins/debrief 2024-09-17 16:21:47 - INFO (file_util.py:137 copy_file) copying /home/infosec/Desktop/caldera/plugins/sandcat/docs/Sandcat-Details.md -> /home/infosec/Desktop/caldera/plugins/fieldmanual/sphinx-docs/plugins/sandcat 2024-09-17 16:21:47 - INFO (file_util.py:137 copy_file) copying /home/infosec/Desktop/caldera/plugins/magma/docs/skeleton.md -> /home/infosec/Desktop/caldera/plugins/fieldmanual/sphinx-docs/plugins/magma 2024-09-17 16:21:47 - INFO (file_util.py:137 copy_file) copying /home/infosec/Desktop/caldera/plugins/stockpile/docs/Exfiltration-How-Tos.md -> /home/infosec/Desktop/caldera/plugins/fieldmanual/sphinx-docs/plugins/stockpile 2024-09-17 16:21:54 - WARNING (c_adversary.py:90 verify) Ability referenced in adversary ef4d997c-a0d1-4067-9efa-87c58682db71 but not found: ff78708e0e18d31c0be7a2be295158ec 2024-09-17 16:21:54 - WARNING (c_adversary.py:90 verify) Ability referenced in adversary ef4d997c-a0d1-4067-9efa-87c58682db71 but not found: 6fdc9037290299164d52b65219d628ef 2024-09-17 16:21:54 - WARNING (c_adversary.py:90 verify) Ability referenced in adversary ef4d997c-a0d1-4067-9efa-87c58682db71 but not found: ae21aefd2d9933df45a4e55485fbc333 2024-09-17 16:21:54 - WARNING (c_adversary.py:90 verify) Ability referenced in adversary ef4d997c-a0d1-4067-9efa-87c58682db71 but not found: d8f4e4e10f4d6da1b174bb18cb859e6c 2024-09-17 16:21:54 - WARNING (c_adversary.py:90 verify) Ability referenced in adversary ef4d997c-a0d1-4067-9efa-87c58682db71 but not found: 86ab6d7ecc05b7dabc7699a9e6a0a173 2024-09-17 16:21:54 - WARNING (c_adversary.py:90 verify) Ability referenced in adversary ef4d997c-a0d1-4067-9efa-87c58682db71 but not found: 5c922d92f383656401d5633ca23db497 2024-09-17 16:21:54 - WARNING (c_adversary.py:95 verify) Objective referenced in adversary ef4d997c-a0d1-4067-9efa-87c58682db71 but not found: c495a9828-cab1-44dd-a0ca-66e58177d8c. Setting default objective. 2024-09-17 16:21:54 - INFO (hook.py:58 build_docs) Docs built successfully. 2024-09-17 16:21:54 - DEBUG (auth_svc.py:209 set_login_handlers) Using default login handler. 2024-09-17 16:21:54 - DEBUG (auth_svc.py:72 apply) Created authentication group: blue 2024-09-17 16:21:54 - DEBUG (auth_svc.py:72 apply) Created authentication group: red 2024-09-17 16:21:54 - DEBUG (protocol.py:255 init) = connection is CONNECTING 2024-09-17 16:21:54 - DEBUG (client.py:115 write_http_request) > GET /system/ready HTTP/1.1 2024-09-17 16:21:54 - DEBUG (client.py:117 write_http_request) > Host: 0.0.0.0:7012 2024-09-17 16:21:54 - DEBUG (client.py:117 write_http_request) > Upgrade: websocket 2024-09-17 16:21:54 - DEBUG (client.py:117 write_http_request) > Connection: Upgrade 2024-09-17 16:21:54 - DEBUG (client.py:117 write_http_request) > Sec-WebSocket-Key: +prDzomUzvdK+BWXMUvZeg== 2024-09-17 16:21:54 - DEBUG (client.py:117 write_http_request) > Sec-WebSocket-Version: 13 2024-09-17 16:21:54 - DEBUG (client.py:117 write_http_request) > Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits 2024-09-17 16:21:54 - DEBUG (client.py:117 write_http_request) > User-Agent: Python/3.12 websockets/11.0.3 2024-09-17 16:21:54 - DEBUG (client.py:148 read_http_response) < HTTP/1.1 101 Switching Protocols 2024-09-17 16:21:54 - DEBUG (client.py:150 read_http_response) < Upgrade: websocket 2024-09-17 16:21:54 - DEBUG (client.py:150 read_http_response) < Connection: Upgrade 2024-09-17 16:21:54 - DEBUG (client.py:150 read_http_response) < Sec-WebSocket-Accept: BARGWsZaBQ8n8yJORH01zf9qAHc= 2024-09-17 16:21:54 - DEBUG (client.py:150 read_http_response) < Sec-WebSocket-Extensions: permessage-deflate; server_max_window_bits=12; client_max_window_bits=12 2024-09-17 16:21:54 - DEBUG (client.py:150 read_http_response) < Date: Tue, 17 Sep 2024 13:21:54 GMT 2024-09-17 16:21:54 - DEBUG (client.py:150 read_http_response) < Server: Python/3.12 websockets/11.0.3 2024-09-17 16:21:54 - DEBUG (protocol.py:356 connection_open) = connection is OPEN 2024-09-17 16:21:54 - DEBUG (protocol.py:1168 read_frame) < CLOSE 1000 (OK) [2 bytes] 2024-09-17 16:21:54 - DEBUG (protocol.py:1223 write_close_frame) = connection is CLOSING 2024-09-17 16:21:54 - DEBUG (protocol.py:1174 write_frame_sync) > CLOSE 1000 (OK) [2 bytes] 2024-09-17 16:21:54 - DEBUG (protocol.py:1494 connection_lost) = connection is CLOSED 2024-09-17 16:21:54 - INFO (server.py:90 run_tasks) All systems ready. 2024-09-17 16:21:54 - INFO (server.py:91 run_tasks) 2024-09-17 16:28:09 - DEBUG (auth_svc.py:101 login_user) Using login handler "Default Login Handler" for login 2024-09-17 16:28:09 - DEBUG (auth_svc.py:155 handle_successful_login) red logging in

github-actions[bot] commented 1 month ago

Looks like your first issue -- we aim to respond to issues as quickly as possible. In the meantime, check out our documentation here: http://caldera.readthedocs.io/

elegantmoose commented 1 month ago

Did you build the UI components on first run? (with --build flag)

ns0r commented 1 month ago

Also have this problem.. Yes built the UI components with the --build flag.

Krazzy11 commented 1 month ago

Yes, I build it with --build flag

uruwhy commented 1 month ago

what exact steps did you take to install?