-
Notifications
You must be signed in to change notification settings - Fork 2
/
texts.py
109 lines (84 loc) · 3.52 KB
/
texts.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
HAZPRONE = '''
HazProne is a Cloud Pentesting Framework that emulates close to
Real-World Scearios by deploying Vulnerable-By-Demand aws resources
enabling you to pentest Vulnerabilities within, and hence, gain
a better understanding of what could go wrong and why!!
USAGE: Hazprone <operation> <quest> <profile>
operation : This argument is required to either start or stop
the quest.
OPTIONS:
[] start
[] stop
quest : This argument is required to identify the quest
you wish to start or stop.
OPTIONS:
[] q1-openworld
[] q2-up
[] q3-infiltrate
[] q4-finals
profile : This argument is required to use the profile
configured using the aws cli tool.
You could also get detailed information on the Quests by
following the syntax given below:
Hazprone quest <quest-name>
<quest-name> : [] q1-openworld
[] q2-up
[] q3-infiltrate
[] q4-finals
'''
OPENWORLD = '''
QUEST 1 - openworld :
==================================================================
The openworld quest is the first quest in version 0.1.0
of Hazprone. On starting this quest you are provided
access-key-id and secret-key of a user nikolas, using which
you must get the top-secret file stored in a private
S3 bucket.
==================================================================
'''
UP = '''
QUEST 2 - up :
==================================================================
The up quest is the second quest in version 0.1.0
of Hazprone. On starting this quest you are provided
access-key-id and secret-key of two users, weaver and
starker, using which you must try to escalate your
privileges to get an administrator account.
===================================================================
'''
INFILTRATE = '''
QUEST 3 - infiltrate :
===================================================================
The infiltrate quest is the third quest in version
0.1.0 of Hazprone. On starting this quest you are
provided the public ip of a website where you must
try to access the secret file stored within a private
EC2 Instance.
===================================================================
'''
FINALS = '''
QUEST 4 - finals :
===================================================================
The finals quest is the fourth quest in version
0.1.0 of Hazprone. On starting this quest you are
provided the public ip of a website where you must
try to access the secret flag stored within a dynamodb
table.
===================================================================
'''
QUESTS = '''
Include any one of the following quests to know more about it!
OPTIONS:
[] q1-openworld
[] q2-up
[] q3-infiltrate
[] q4-finals
'''
QUESTS_WRONG = '''
Quest must be any one of the following!
OPTIONS:
[] q1-openworld
[] q2-up
[] q3-infiltrate
[] q4-finals
'''