RTO
75c6c241e6
QoL update
|
2 yıl önce | |
|---|---|---|
| .. | ||
| README.md | 2 yıl önce | |
| beacon.h | 2 yıl önce | |
| bofcompile.bat | 2 yıl önce | |
| enumexclusions.c | 2 yıl önce | |
| enumexclusions.cna | 2 yıl önce | |
| enumexclusions.h | 2 yıl önce | |
| enumexclusions.o | 2 yıl önce | |
README.md
EnumExclusions
Enumerate Windows Defender for excluded files, folders, extentions and processes.
This operation requires elevated privileges. Furthermore, currently only Windows Defender exclusions are supported. However, this code is easily enhanced to also support other AV products that communicate via WMI.
Usage
enumexclusions
Compile
- 1. Make sure Visual Studio is installed and supports C/C++.
- 2. Open the
x64 Native Tools Command Prompt for VS <2019/2022>terminal. - 3. Run the
bofcompile.batscript to compile the object file. - 4. In Cobalt strike, use the script manager to load the .cna script to import the tool.