diff --git a/yml/OSScripts/gatherNetworkInfo.yml b/yml/OSScripts/gatherNetworkInfo.yml new file mode 100644 index 0000000..2110cf6 --- /dev/null +++ b/yml/OSScripts/gatherNetworkInfo.yml @@ -0,0 +1,20 @@ +--- +Name: gatherNetworkInfo.vbs +Description: Network Information Collector Script +Author: Kyaw Pyiyt Htet (@KyawPyiytHtet) +Created: 2023-08-25 +Commands: + - Command: "wscript gatherNetworkInfo.vbs", "wscript gatherNetworkInfo.vbs 'GetOSInfo'" + Description: The script "gathernetworkinfo.vbs" is employed to collect system information such as the operating system, DNS details, firewall configuration, etc. Outputs are stored in "c:\Windows\System32\config" or "c:\Windows\System32\reg". + Usecase: Execute proxied payload with Microsoft signed binary + Category: Execute + Privileges: User + MitreID: T1082 + OperatingSystem: Windows 10, Windows 11 +Full_Path: + - Path: c:\Windows\System32\gatherNetworkInfo.vbs +Resources: + - Link: https://www.verboon.info/2011/06/the-gathernetworkinfo-vbs-script/ +Acknowledgement: + - Person: Kyaw Pyiyt Htet + Handle: '@KyawPyiytHtet' \ No newline at end of file