Skip to content

v0.3.0

Latest
Latest

Choose a tag to compare

View all tags
@github-actions github-actions released this 18 May 04:41
· 2 commits to main since this release
v0.3.0
383db3a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Changes

  • refactor: remove legacy Python compatibility comments and dead code (#331) (383db3a)
  • feat: add stall-recovery cold-start fallback for automated op recovery (#330) (e1ee8a6)
  • chore(deps): update dependency community.general to v12.6.1 (#329) (b9d7530)
  • chore(deps): update rust crate hickory-resolver to 0.26 (#328) (bedcd99)
  • chore(deps): update actions/create-github-app-token action to v3.2.0 (#327) (e3f668a)
  • chore(deps): update renovatebot/github-action action to v46.1.14 (#326) (aac2bbb)
  • feat: improve credential domain reconciliation for low-trust sources (#325) (9b262a7)
  • refactor: remove localuser_spray automation and update domain naming to contoso.local (#324) (3374f01)
  • refactor: centralize and enforce domain domination checks in orchestrator automation (#323) (1f2d24c)
  • refactor: improve domain/credential logic and result processing for multi-domain ops (#322) (716599a)
  • fix: harden NTLM hash validation and improve cross-forest secretsdump (#320) (3b4d36e)
  • style: remove redundant comments and clarify phase labels in automation and tooling (#321) (1d75078)
  • feat: improve credential handling and trust enumeration robustness (5282fbe)
  • fix: normalize ntlm hash output for compatibility with external parsers (#319) (0eb1c74)
  • refactor: implement ttl-based assist-abandon dedup and improve credential relay logic (#318) (ef9b34c)
  • refactor: switch ec2 deploy logic from BCP_BUCKET to S3_BUCKET (#317) (a05b8ab)
  • fix: correct domain assignment for text-extracted credentials (#316) (b147f59)
  • refactor: extract, document, and test pure work selection and payload builders (#233) (95f48cb)
  • feat: add automated krbtgt hash extraction and impacket failure recovery (#295) (c68c69e)
  • chore(deps): update github/codeql-action action to v4.35.4 (#288) (e773f3f)
  • chore(deps): update actions/labeler action to v6.1.0 (#289) (7215727)
  • chore(deps): update dependency amazon.aws to v11.3.0 (#290) (16cfa1a)
  • feat: implement operation state event log with JetStream and Postgres projection (#279) (f59bb9e)
  • ci: automate pre-commit autofix application for renovate bot PRs (#276) (837b46e)
  • chore: update infrastructure automation and agent deployment for reliability and GPU support (#275) (67bcb16)
  • fix: improve ssm failure diagnostics and opentelemetry dependency management (#274) (a67b9e8)
  • chore: group opentelemetry and tracing-opentelemetry updates in renovate config (#271) (21666fc)
  • feat: enforce operation scope for tool invocations and improve credential attribution (#272) (2cb9af0)
  • feat: inject real operation values into agent prompt templates and reporting (#270) (adee1a1)
  • chore(deps): update returntocorp/semgrep docker digest to 326e5f4 (#266) (a1a30f3)
  • chore(deps): update rust crate async-nats to 0.48 (#269) (c96aa1b)
  • chore(deps): update rust crate tokio to v1.52.3 (#267) (37a60e7)
  • feat: migrate task queues to nats jetstream and add nats broker integration (#244) (22476d6)
  • test: improve tracing span attribution and add span regression tests (#264) (fb65972)
  • refactor: improve tracing and context propagation in orchestrator automation (#263) (670e4f9)
  • feat: add OpenTelemetry task and operation IDs to agent telemetry spans (#261) (846a1da)
  • feat: add CLI commands for inspecting and replaying session logs (#260) (93706f8)
  • feat: add azure variant of ares golden image and update source repo (#249) (032d59c)
  • chore(deps): update dependency cowdogmoo/warpgate to v4.6.0 (#255) (231a47f)
  • chore(deps): update github/codeql-action action to v4 (#259) (ce317a4)
  • feat: wrap provider.chat in llm.call span with timing and tokens (#262) (7b261fa)
  • chore(deps): update github/codeql-action action to v3.35.3 (#258) (33bad63)
  • chore(deps): update rust crate tokio to v1.52.2 (#257) (dc6ac63)
  • chore(deps): update rust crate redis to v1.2.1 (#256) (344d701)
  • chore(deps): update renovatebot/github-action action to v46.1.13 (#254) (0560cbb)
  • chore(deps): update actions/cache action to v5.0.5 (#253) (85166eb)
  • chore(deps): update returntocorp/semgrep docker digest to 7810f1d (#252) (3cca22d)
  • chore(deps): update actions/upload-artifact digest to 043fb46 (#251) (341ad19)
  • chore(deps): update actions/setup-go digest to 4a36011 (#250) (6fc181d)
  • feat: add systemd memory and OOM protection for SSM agent and Redis worker (#248) (af12103)
  • fix: exclude machine accounts from reuse candidate detection (#246) (60b2915)
  • docs: overhaul and expand GOAD deployment checklist for clarity and completeness (#247) (64ab0c0)
  • feat: add token budget circuit breaker and session log to agent loop (#245) (ff10d2b)
  • docs: improve ansible development documentation and harden goad attack box (#243) (53ca3c9)
  • chore(deps): update dependency grafana.grafana to v6.1.0 (#242) (4ae7f6b)
  • chore(deps): update actions/create-github-app-token action to v3.1.1 (#240) (dc3b5d8)
  • chore(deps): update rust crate reqwest to v0.13.3 (#241) (d750941)
  • ci: expand build workflow to monitor ansible directory changes (#239) (07cb503)
  • feat: enforce lockout-safe password spraying and expand multi-domain credential access (#238) (7899d61)
  • feat: add rpcclient as required tool and clarify pass-the-hash handling (#237) (30415fd)
  • refactor: unify redis key usage and collection loading for op data (#236) (d4a3569)
  • chore(deps): update renovatebot/github-action action to v46.1.10 (#235) (130ee5e)
  • docs: update warpgate template README for ares project and new agent structure (#234) (9157164)
  • test: add comprehensive unit and integration tests for all modules (#232) (8a7b1b8)
  • feat: add comprehensive attack strategy system with technique prioritization (#231) (19dde80)
  • feat: add advanced automation for ADCS, GPO, shadow creds, RBCD, LAPS, MSSQL, and expand test coverage (#227) (edf0076)
  • chore(deps): update dependency community.general to v12.6.0 (#229) (2b08a58)
  • chore(deps): update dependency pre-commit to v4.6.0 (#230) (a4ee342)
  • chore(deps): update dependency ansible-core to v2.20.5 (#228) (fad9d53)
  • refactor: remove rust-based agent templates and standardize worker unit naming (#226) (e22c8cf)
  • build: update base images, dependencies, and security patches for faster and safer builds (#225) (f9fb1e4)
  • test: add comprehensive unit tests for credential, hash, user, and trust extraction logic (#223) (f337b6a)

Checksums

15df38d7d0002adf8319f82efd617e39f1de02980e6c13111a9da037a18ae4f3  ares-v0.3.0-aarch64-unknown-linux-gnu.tar.gz
41f88dd0a07646d241a72417e53954fb50da49d56f2b7273e3b1c42eb62de574  ares-v0.3.0-x86_64-apple-darwin.tar.gz
45aea8f3ab1c22f8c6a5fd7e3aea06cf70c5b5455079e66578ebb191adbdeedf  ares-v0.3.0-x86_64-unknown-linux-gnu.tar.gz
ccf1366da70b9e5e44e0ed8eee988d2eebda150b0ca66a2b565ff6c746524907  ares-v0.3.0-aarch64-apple-darwin.tar.gz

What's Changed

  • test: add comprehensive unit tests for credential, hash, user, and trust extraction logic by @l50 in #223
  • build: update base images, dependencies, and security patches for faster and safer builds by @l50 in #225
  • refactor: remove rust-based agent templates and standardize worker unit naming by @l50 in #226
  • chore(deps): update dependency ansible-core to v2.20.5 by @dreadnode-renovate-bot[bot] in #228
  • chore(deps): update dependency pre-commit to v4.6.0 by @dreadnode-renovate-bot[bot] in #230
  • chore(deps): update dependency community.general to v12.6.0 by @dreadnode-renovate-bot[bot] in #229
  • feat: add comprehensive attack strategy system with technique prioritization by @l50 in #231
  • docs: update warpgate template README for ares project and new agent structure by @l50 in #234
  • chore(deps): update renovatebot/github-action action to v46.1.10 by @dreadnode-renovate-bot[bot] in #235
  • refactor: unify redis key usage and collection loading for op data by @l50 in #236
  • feat: add rpcclient as required tool and clarify pass-the-hash handling by @l50 in #237
  • feat: enforce lockout-safe password spraying and expand multi-domain credential access by @l50 in #238
  • ci: expand build workflow to monitor ansible directory changes by @l50 in #239
  • chore(deps): update rust crate reqwest to v0.13.3 by @dreadnode-renovate-bot[bot] in #241
  • chore(deps): update actions/create-github-app-token action to v3.1.1 by @dreadnode-renovate-bot[bot] in #240
  • chore(deps): update dependency grafana.grafana to v6.1.0 by @dreadnode-renovate-bot[bot] in #242
  • docs: improve ansible development documentation and harden goad attack box by @l50 in #243
  • feat: add token budget circuit breaker and session log to agent loop by @l50 in #245
  • docs: overhaul and expand GOAD deployment checklist for clarity and completeness by @l50 in #247
  • fix: exclude machine accounts from reuse candidate detection by @l50 in #246
  • feat: add systemd memory and OOM protection for SSM agent and Redis worker by @l50 in #248
  • chore(deps): update actions/setup-go digest to 4a36011 by @dreadnode-renovate-bot[bot] in #250
  • chore(deps): update actions/upload-artifact digest to 043fb46 by @dreadnode-renovate-bot[bot] in #251
  • chore(deps): update returntocorp/semgrep docker digest to 7810f1d by @dreadnode-renovate-bot[bot] in #252
  • chore(deps): update actions/cache action to v5.0.5 by @dreadnode-renovate-bot[bot] in #253
  • chore(deps): update renovatebot/github-action action to v46.1.13 by @dreadnode-renovate-bot[bot] in #254
  • chore(deps): update rust crate redis to v1.2.1 by @dreadnode-renovate-bot[bot] in #256
  • chore(deps): update rust crate tokio to v1.52.2 by @dreadnode-renovate-bot[bot] in #257
  • chore(deps): update github/codeql-action action to v3.35.3 by @dreadnode-renovate-bot[bot] in #258
  • chore(deps): update rust crate tokio to v1.52.3 by @dreadnode-renovate-bot[bot] in #267
  • chore(deps): update rust crate async-nats to 0.48 by @dreadnode-renovate-bot[bot] in #269
  • chore(deps): update returntocorp/semgrep docker digest to 326e5f4 by @dreadnode-renovate-bot[bot] in #266
  • feat: inject real operation values into agent prompt templates and reporting by @l50 in #270
  • feat: enforce operation scope for tool invocations and improve credential attribution by @l50 in #272
  • chore: group opentelemetry and tracing-opentelemetry updates in renovate config by @l50 in #271
  • fix: improve ssm failure diagnostics and opentelemetry dependency management by @l50 in #274
  • chore: update infrastructure automation and agent deployment for reliability and GPU support by @l50 in #275
  • ci: automate pre-commit autofix application for renovate bot PRs by @l50 in #276
  • feat: implement operation state event log with JetStream and Postgres projection by @l50 in #279
  • chore(deps): update dependency amazon.aws to v11.3.0 by @dreadnode-renovate-bot[bot] in #290
  • chore(deps): update actions/labeler action to v6.1.0 by @dreadnode-renovate-bot[bot] in #289
  • chore(deps): update github/codeql-action action to v4.35.4 by @dreadnode-renovate-bot[bot] in #288
  • feat: add automated krbtgt hash extraction and impacket failure recovery by @l50 in #295
  • refactor: extract, document, and test pure work selection and payload builders by @l50 in #233
  • fix: correct domain assignment for text-extracted credentials by @l50 in #316
  • refactor: switch ec2 deploy logic from BCP_BUCKET to S3_BUCKET by @l50 in #317
  • refactor: implement ttl-based assist-abandon dedup and improve credential relay logic by @l50 in #318
  • fix: normalize ntlm hash output for compatibility with external parsers by @l50 in #319
  • style: remove redundant comments and clarify phase labels in automation and tooling by @l50 in #321
  • fix: harden NTLM hash validation and improve cross-forest secretsdump by @l50 in #320
  • refactor: improve domain/credential logic and result processing for multi-domain ops by @l50 in #322
  • refactor: centralize and enforce domain domination checks in orchestrator automation by @l50 in #323
  • refactor: remove localuser_spray automation and update domain naming to contoso.local by @l50 in #324
  • feat: improve credential domain reconciliation for low-trust sources by @l50 in #325
  • chore(deps): update renovatebot/github-action action to v46.1.14 by @dreadnode-renovate-bot[bot] in #326
  • chore(deps): update actions/create-github-app-token action to v3.2.0 by @dreadnode-renovate-bot[bot] in #327
  • chore(deps): update rust crate hickory-resolver to 0.26 by @dreadnode-renovate-bot[bot] in #328
  • chore(deps): update dependency community.general to v12.6.1 by @dreadnode-renovate-bot[bot] in #329
  • feat: add stall-recovery cold-start fallback for automated op recovery by @l50 in #330
  • refactor: remove legacy Python compatibility comments and dead code by @l50 in #331

Full Changelog: v0.2.0...v0.3.0

Contributors

l50
Assets 11
Loading