Infection Monkey is an open source security tool code to test a data center's resilience to perimeter breaches and internal server compromise.
Monkey uses various methods to self-propagate to a data center and reports success to a central server Command and Control (C&C).
Infection Monkey consists of two parts:
- Monkey - A tool that infects other machines and spreads on them
- Monkey Island - One server C&C with a dedicated UI to visualize Chaos Monkey's progress in the data center
Specifications
- Multiple techniques:
- Predefined passwords
- Common logical exploits
- Password stealing using mimikatz
- Multiple exploits:
- SSH
- SMB
- RDP
- WMI
- Shellshock
- Conficker
- SambaCry
- Elastic Search (CVE-2015-1427)
Snapshots applicationς
You will find instructions for installing the program here.
You can download the program from here.