Etusivu Tutki Apua
Kirjaudu sisään
zhensolid
/
OperatorsKit
1
0
Haarauta 0
Tiedostot Esitykset 0 Vetopyynnöt 0 Wiki
Haara: main
Haarat Tunnisteet
OperatorsKit
/
KIT
/
EnumExclusions
/
enumexclusions.cna

enumexclusions.cna 672 B
Pysyvä linkki Historia Raaka

1234567891011121314151617181920212223242526 
  1. # author REDMED-X
    2. 

  2. 

  3. beacon_command_register(
    4. 

  4. 	"enumexclusions", "Check the AV for excluded files, folders, extentions and processes.",
    5. 

  5. 	"INFO:\nCheck the AV for excluded files, folders, extentions and processes. Currently only Windows Defender exclusions are supported.\n\n" .
    6. 

  6. 	"USAGE:\nenumexclusions\n\n");
    7. 

  7. 	
    8. 

  8. alias enumexclusions {
    9. 

  9.     $bid = $1;
    10. 

  10. 	
    11. 

  11.     # Read in the right BOF file
    12. 

  12.     $handle = openf(script_resource("enumexclusions.o"));
    13. 

  13.     $data   = readb($handle, -1);
    14. 

  14.     closef($handle);
    15. 

  15. 

  16.     # Pack our arguments
    17. 

  17.     $arg_data  = bof_pack($bid);
    18. 

  18. 

  19.     blog($bid, "Tasked to enumerate exclusions..");
    20. 

  20.     beacon_inline_execute($bid, $data, "go", $arg_data);
    21. 

  21. }
    22. 

  22. 

  23. 

  24. 

  25. 

  26.