unknown
6316994674
Bug fix
|
%!s(int64=2) %!d(string=hai) anos | |
|---|---|---|
| .. | ||
| README.md | %!s(int64=2) %!d(string=hai) anos | |
| beacon.h | %!s(int64=2) %!d(string=hai) anos | |
| bofcompile.bat | %!s(int64=2) %!d(string=hai) anos | |
| enumsecproducts.c | %!s(int64=2) %!d(string=hai) anos | |
| enumsecproducts.cna | %!s(int64=2) %!d(string=hai) anos | |
| enumsecproducts.h | %!s(int64=2) %!d(string=hai) anos | |
| enumsecproducts.o | %!s(int64=2) %!d(string=hai) anos | |
README.md
EnumSecProducts
Get a list of security products like AV/EDR that are running on the current- or remote host. This is done by comparing running processes against a hardcoded list of 130 security products.
Arguments
[hostname]: The hostname/FQDN/IP of the remote host OR leave empty for the current system.\n\n" .
Usage
enumsecproducts <(optional) hostname>
Examples
enumsecproductsenumsecproducts WS01.example.local
Compile
- 1. Make sure Visual Studio is installed and supports C/C++.
- 2. Open the
x64 Native Tools Command Prompt for VS <2019/2022>terminal. - 3. Run the
bofcompile.batscript to compile the object file. - 4. In Cobalt strike, use the script manager to load the .cna script to import the tool.