-
Notifications
You must be signed in to change notification settings - Fork 4
Releases: ByteTheCookies/CookieFarm
Releases · ByteTheCookies/CookieFarm
CookieFarm release v1.3.2
Welcome to this new release of CookieFarm! 🍪
Changelog
- 9635ab2 Add exploit test stub and import json
- 2cde5cb Bump version to 1.3.2
- 514166a Merge branch 'release/1.3.2'
- 37f0689 Merge tag 'v1.3.1' into dev
- f92a05b Normalize flag IDs and relax Python requirement
- 7d150fb Remove INFO log of flag IDs response
- 035c6b7 Update layout.tsx
Full Changelog: v1.3.1...v1.3.2
Made by ByteTheCookies with ❤️ and cookies
Assets 9
CookieFarm release v1.3.1
Welcome to this new release of CookieFarm! 🍪
Release 1.3.1 includes several fixes and behavioral adjustments for client commands, along with multiple improvements to ensure compliance with SonarQube standards. A new Dockerfile has been introduced to emulate an attacker machine for testing purposes. Additionally, all workflows have been updated to improve correctness and overall reliability.
What's Changed
- Prepare release 1.3.0 with updates to workflows and scripts by @akiidjk in #183
- Refactor scripts, improve safety, and update Dockerfile by @akiidjk in #184
- Feature/vympel7 attacker container by @vympel7 in #186
- Refactor config handling and improve timeout settings by @akiidjk in #185
Full Changelog: v1.3.0...v1.3.1
Made by ByteTheCookies with ❤️ and cookies
Assets 9
CookieFarm release v1.3.0
Welcome to this new release of CookieFarm! 🍪
New Features
- New web UI dashboard
- New exploit management system with a dashboard for easy sharing between teammates
- New custom TCP-based communication protocol for sending flags to the server
- New dynamic flag ID parser adaptable to any scenario
- New documentation based on Fumadocs, including OpenAPI support
- Improved exploit file handling for easier editing
- New installation scripts for the server-side components
- New function to generate random strings within exploits
Breaking Changes
ckc config loginhas been renamed tockc loginCONFIG_FILEis now a string instead of a boolean, allowing a custom config path to be specifiedckc config updatehas been renamed tockc config edit- A server connection is now required for all commands except
ckc config edit
What's Changed
- Add login API route and improve login form with validation by @jose-sgariglia in #126
- Add authentication middleware and backend verification endpoint by @akiidjk in #127
- Add server config API, protocols API, and SWR integration by @jose-sgariglia in #128
- Add paginated flag logs table with advanced filtering by @akiidjk in #129
- Add flag details modal and improve flag table actions by @jose-sgariglia in #130
- Revamp logs UI: improve pagination, add status, update layout by @jose-sgariglia in #131
- Add configuration API and enhance settings page by @akiidjk in #132
- Refactored all go modules structure using go.work by @akiidjk in #133
- General Refactoring + Some fixies by @akiidjk in #134
- Feature/suga refactoring by @jose-sgariglia in #135
- Add SonarQube workflow and project configs by @akiidjk in #136
- Merge dev with main, and start after variuos refactoting and improvments by @akiidjk in #137
- Tweak the sonarcube configuration by @akiidjk in #139
- Refactor database handling and enhance testing infrastructure by @akiidjk in #138
- Add Go test coverage and Sonar integration by @akiidjk in #140
- Use Go coverage.out and JSON test report for Sonar by @akiidjk in #141
- Exclude frontend files from Sonar analysis and introduce constants by @akiidjk in #143
- Done some changes inside some function inside the core package + Others small changes by @akiidjk in #145
- Refactor client code for improved structure and performance by @giovanni-iannaccone in #146
- Refactor server configuration and internal module structure by @akiidjk in #147
- Feature/giovanni client by @giovanni-iannaccone in #148
- Enhance behavior with example flag IDs, context, and logging by @akiidjk in #151
- Refactor client and server structure with configuration improvements by @akiidjk in #149
- Add GHCR build workflow and created an install script by @akiidjk in #152
- Refactor TUI handling, banner management, and config checks by @akiidjk in #153
- Restructure and rename Python package to cookiefarm with CLI by @jose-sgariglia in #154
- Add login command to root with backcompatibilty to the old version by @akiidjk in #155
- List exploits from filesystem and update CLI by @akiidjk in #156
- Revamp documentation structure and enhance CookieFarm UI by @akiidjk in #157
- Rename update command to edit and add listrun subcommand by @akiidjk in #158
- Migrate to Fiber v3, update dependencies, and add OpenAPI docs by @akiidjk in #159
- Improve logging and parse output formatting by @akiidjk in #161
- Add random_string util and update package metadata by @jose-sgariglia in #160
- Update documentation for ckc configuration and exploit commands by @akiidjk in #162
- Add flags stats endpoint and remove internal/controllers package by @akiidjk in #164
- Add frontend dashboard, API logout, and shared config updates by @akiidjk in #165
- Enhance flag submission simulation and update documentation by @akiidjk in #167
- Add exploit upload endpoints and enhance API with management features by @akiidjk in #169
- Migrate to SWR data fetching and remove custom cache by @akiidjk in #170
- Implement CKP server and client with configuration improvements by @akiidjk in #171
- Refactor frontend build, integrate TanStack Table, and improve performance by @akiidjk in #172
- Update README.md for clarity and formatting by @akiidjk in #173
- Database performance improvements by @akiidjk in #174
- Add database seeding script and refactor logging and flag filtering by @akiidjk in #176
- Enhance benchmark suite with new services and improved metrics by @akiidjk in #177
- Feature/flagids parser by @jose-sgariglia in #178
- Change CONFIG_FILE type from boolean to string by @akiidjk in #179
- Update exploiter.just and publish new pypi test version by @akiidjk in #180
- Add PyPI CI workflow and update release workflow by @akiidjk in #181
New Contributors
- @giovanni-iannaccone made their first contribution in #146
Full Changelog: v1.2.1...v1.3.0
Made by ByteTheCookies with ❤️ and cookies
Contributors
giovanni-iannaccone, jose-sgariglia, and akiidjk
Assets 9
CookieFarm release v1.2.1
Welcome to the latest release of CookieFarm! 🍪
In this release, we have made some minor improvements and fixed a few bugs.
Add:
- Implemented endpoint /stats (subject to change).
- Guide for setting up Graphana for performance monitoring and consumption
Fixed:
- PIP binary handling for cross-platform support (Windows, Linux, Darwin)
- Fixed config handling in the server docker
Changed:
- In the test command, all prints are displayed.
- In debug mode, when running tests or the shared configuration from the server, the exploit manager is also displayed.
- Moved from mattn/go-sqlite3 to crawshaw.io/sqlite (more perfomance).
- Some refactoring and code improvements
- Removed the static HTMX library to save RAM usage (up to 40 MB).
- Removed the useless server building in the Gorelaser action.
Changelog
- e954b05 Add Prettier and Tailwind plugin, unify code style across frontend
- 870b5ef Add debug status handling to exploit client parsing and logging
- 4aa7a2a Add monitoring setup with Grafana, Prometheus, and exporters
- d8e4bf7 Add note about print statement visibility in exploit test command
- 790190a Add some go tools for remove deadcode
- 72d2a48 Create update_bin_ckc.sh
- 2e66886 Fix server-run to pass config file flag without argument
- 4e1f78f Merge branch 'release/1.2.1'
- 47aefba Merge pull request #124 from ByteTheCookies/bugfix/akiidjk-new_fix_config_from_file
- 5bf0556 Merge pull request #125 from ByteTheCookies/bugfix/akiidjk-big_refactoring_improvements
- c3d56d4 Move ConfigManager and ConfigSnapshot types to types.go
- 0d79f4e Move isCompletionCommand to logger package and reuse in main files
- 2ee8b02 Pulizia file non destinati alla produzione
- 6e429f7 Refactor HandleGetStats to use StatsController
- 8049680 Refactor TUI update logic and improve error handling
- fb9f30e Refactor config and exploit handling, centralize version constant
- ada5394 Refactor config file flag to boolean CONFIG_FILE env var
- 8890466 Refactor error handling for exploit client statuses
- 25cd6cd Refactor status strings to named constants in exploit client
- e12e68b Rename EXPLOIT_INFO constant to EXPLOIT
- cb448b1 Switch to crawshaw.io/sqlite and refactor DB access layer, better perfomance
- 159a964 Update .gitignore
- 9abc7f9 Update GoReleaser build config with new env vars and ldflags
- d6c96a5 Update README.md
- 648ff20 Update README.md
- cfecfcc Update database.go
- 0291414 Update root.go
- 5d9b7df Use CDN for htmx and remove local htmx assets, saved 40mb of RAM (lol)
Full Changelog: v1.2.0...v1.2.1
Make by ByteTheCookies with ❤️ and cookies
Assets 9
CookieFarm release v1.2.0
Welcome to this new release of CookieFarm! 🍪
We are excited to release CookieFarm version 1.2.0, which is focused on Client side update for better user experience.
Added:
- New interactive TUI
- New repository structure
- New client side feature like exploit testing and direct flag submission
- Improved general presentation
- Add a more easy installation with pip
- Changed name of binaries for fast type
- And more...
Full Changelog: v1.1.0...v1.2.0
Make by ByteTheCookies with ❤️ and cookies
Assets 9
v1.1.0
Cookiefarm Release v1.1.0 🍪 - Client Release
We are excited to release CookieFarm version 1.1.0, which includes several client and server improvements.
Added:
- Websocket communication from CookieClient to CookieServer
- Start adding a new client CLI to manage login and global configuration.
- Created a Python package for the exploit manager to simplify installation
- Reload button
- Configuration update button
- Add the ability to send and remove flags from the queue and database via the UI.
- Add autoreload to the table to update results and other UI features.
- New installation method
- Standard monitoring setup with Graphana and Prometheus
Fixed:
- Improved error handling
- Other minor changes and fixes
New Contributors
Big thanks
Big thanks to the team of ByteTheCookies for the support specially @akiidjk @jose-sgariglia and @vympel7
Full Changelog: https://github.com/ByteTheCookies/CookieFarm/commits/public-release-1.1
Contributors
vympel7, jose-sgariglia, and 2 other contributors
Assets 3
v1.0.1
@akiidjk
akiidjk
b5f80d4
This commit was created on GitHub.com and signed with GitHub’s verified signature.
🎉 CookieFarm v1.0.1 🍪🐮 – Initial Stable Release
We’re excited to introduce the first stable release of CookieFarm, an Attack/Defense CTF framework inspired by DestructiveFarm, designed with one clear goal in mind: focus entirely on writing effective exploits — no distractions.
Added
- Responsive dashboard in HTMX and tailwindcss
- Backend in golang with Fiber framework
- Dynamic protocol loader
- Shared configuration
- Client golang with python exploiter manager integration
- Backend authentication for make sure to not have snitch
- Docker configuration for fast and easy server deploy
- Sqlite3 database for portability and efficiency
❤️ Special Thanks
Huge shoutout to the ByteTheCookie team for building a performance-driven, distraction-free environment tailored for real CTF scenarios in particular to @akiidjk @jose-sgariglia @vympel7 @Dabi1290.
What's Changed
- added contributing page by @jose-sgariglia in #7
- Dev by @jose-sgariglia in #8
- Initialize backend structure with Go and Fiber framework by @akiidjk in #11
- Rename project from cookiefarm-backend to backend by @akiidjk in #12
- refactor: Update project structure and configuration files by @akiidjk in #14
- Nuxt Setup by @jose-sgariglia in #16
- Dev-akiidjk-router_declarations by @akiidjk in #17
- Refactor flag submission system and enhance security features by @akiidjk in #27
- Add flag submission endpoint and database method by @akiidjk in #32
- Add login functionality and new color theme by @akiidjk in #33
- Update Docker setup and enhance protocol handling by @akiidjk in #39
- Simplify protocol plugin build process in Dockerfile by @akiidjk in #40
- Dev suga exploiter by @jose-sgariglia in #43
- Add command line options for threads and tick interval by @akiidjk in #45
- Add configuration from FE by @akiidjk in #47
- Add TagsInput component for service configuration by @akiidjk in #48
- Exploiter Feature by @jose-sgariglia in #49
- Add features documentation and improve error handling by @akiidjk in #51
- Improve logging and error handling in client and server by @akiidjk in #52
- Aiutotoooooo by @jose-sgariglia in #53
- Refactor exploit framework with asyncio and improved architecture by @jose-sgariglia in #54
- Remove threads functionality and improve logging by @jose-sgariglia in #55
- Add DestructiveFarm setup and update configuration by @jose-sgariglia in #57
- Migrate from Nuxt to HTMX with TailwindCSS integration by @akiidjk in #58
- Refactor command-line argument handling and improve build process by @akiidjk in #60
- Dev suga exploiter opt by @jose-sgariglia in #61
- Add pagination and authentication to flag dashboard by @akiidjk in #63
- Dev suga exploiter opt by @jose-sgariglia in #64
- Refactor project structure and rename to cookieclient by @akiidjk in #65
- Add profiling support and optimize memory and database operations by @akiidjk in #67
- Dev suga adv testing by @jose-sgariglia in #68
- Run exploit functions in threads via asyncio.to_thread by @jose-sgariglia in #69
- Dev akiidjk UI improvement by @jose-sgariglia in #73
- Dev suga UI improvement by @jose-sgariglia in #74
- Enhance documentation and refactor configuration handling by @akiidjk in #75
- Improve error handling and logging in flag parsing by @akiidjk in #76
- Dev suga exploit adv by @jose-sgariglia in #77
- Dev suga docs by @jose-sgariglia in #78
- Dev suga final readme by @jose-sgariglia in #81
- Reorganize project roadmap and feature versioning by @akiidjk in #80
- last change by @jose-sgariglia in #82
- Public release 1.0 by @jose-sgariglia in #83
- Sync stuff by @akiidjk in #85
- Update README.md by @jose-sgariglia in #86
- Dev-akiidjk-fix-server-duplication-flag by @akiidjk in #88
- Add vulnify service to tests by @vympel7 in #89
- Add set instead of list by @jose-sgariglia in #90
- Add netcat service for exploitation with pwntools by @akiidjk in #91
- Add Docker Compose configuration for monitoring stack by @akiidjk in #92
- Enhance Go tooling and add monitoring configuration by @akiidjk in #93
- Vulnify with files to prevent race conditions by @vympel7 in #94
- Release 1.0.1 by @jose-sgariglia in #95
New Contributors
- @jose-sgariglia made their first contribution in #7
- @akiidjk made their first contribution in #11
- @vympel7 made their first contribution in #89
Full Changelog: https://github.com/ByteTheCookies/CookieFarm/commits/v1.0.1
Contributors
Dabi1290, vympel7, and 2 other contributors