public-mirrors/LOLBAS
1
0
Fork 0
mirror of https://github.com/LOLBAS-Project/LOLBAS synced 2025-07-26 12:12:31 +02:00
Code Issues Projects Releases Wiki Activity

Major changes to Web portal - Small fixes to source files to adjust

Browse Source
This commit is contained in:
Oddvar Moe
2018-12-10 14:28:12 +01:00
parent 2b77add5b4
commit 94368c1e69
113 changed files with 233 additions and 232 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
yml/OtherMSBinaries/Appvlp.yml
View File

@@ -28,10 +28,10 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows 10 w/Office 2016
Full Path:
Full_Path:
- Path: C:\Program Files\Microsoft Office\root\client\appvlp.exe
- Path: C:\Program Files (x86)\Microsoft Office\root\client\appvlp.exe
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Bginfo.yml
View File

@@ -52,9 +52,9 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
Full Path:
Full_Path:
- Path: No fixed path
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Cdb.yml
View File

@@ -12,10 +12,10 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
Full Path:
Full_Path:
- Path: C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\cdb.exe
- Path: C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\cdb.exe
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Csi.yml
View File

@@ -12,10 +12,10 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
Full Path:
Full_Path:
- Path: c:\Program Files (x86)\Microsoft Visual Studio\2017\Community\MSBuild\15.0\Bin\Roslyn\csi.exe
- Path: c:\Program Files (x86)\Microsoft Web Tools\Packages\Microsoft.Net.Compilers.X.Y.Z\tools\csi.exe
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Dnx.yml
View File

@@ -12,9 +12,9 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
Full Path:
Full_Path:
- Path: N/A
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Dxcap.yml
View File

@@ -12,10 +12,10 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
Full Path:
Full_Path:
- Path: C:\Windows\System32\dxcap.exe
- Path: C:\Windows\SysWOW64\dxcap.exe
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Mftrace.yml
View File

@@ -20,12 +20,12 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
Full Path:
Full_Path:
- Path: C:\Program Files (x86)\Windows Kits\10\bin\10.0.16299.0\x86
- Path: C:\Program Files (x86)\Windows Kits\10\bin\10.0.16299.0\x64
- Path: C:\Program Files (x86)\Windows Kits\10\bin\x86
- Path: C:\Program Files (x86)\Windows Kits\10\bin\x64
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Msdeploy.yml
View File

@@ -12,9 +12,9 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
Full Path:
Full_Path:
- Path: C:\Program Files (x86)\IIS\Microsoft Web Deploy V3\msdeploy.exe
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Msxsl.yml
View File

@@ -36,9 +36,9 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
Full Path:
Full_Path:
- Path:
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Rcsi.yml
View File

@@ -20,9 +20,9 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
Full Path:
Full_Path:
- Path:
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Sqldumper.yml
View File

@@ -20,10 +20,10 @@ Commands:
MitreID: T1003
MitreLink: https://attack.mitre.org/wiki/Technique/T1003
OperatingSystem: Windows
Full Path:
Full_Path:
- Path: C:\Program Files\Microsoft SQL Server\90\Shared\SQLDumper.exe
- Path: C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesX86\Microsoft Analysis\AS OLEDB\140\SQLDumper.exe
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Sqlps.yml
View File

@@ -12,9 +12,9 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
Full Path:
Full_Path:
- Path: C:\Program files (x86\Microsoft SQL Server\100\Tools\Binn\sqlps.exe
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Sqltoolsps.yml
View File

@@ -12,9 +12,9 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
Full Path:
Full_Path:
- Path: C:\Program files (x86)\Microsoft SQL Server\130\Tools\Binn\sqlps.exe
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Te.yml
View File

@@ -12,9 +12,9 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
Full Path:
Full_Path:
- Path:
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Tracker.yml
View File

@@ -20,9 +20,9 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
Full Path:
Full_Path:
- Path:
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC:

4
yml/OtherMSBinaries/Vsjitdebugger.yml
View File

@@ -12,9 +12,9 @@ Commands:
MitreID: T1218
MitreLink: https://attack.mitre.org/wiki/Technique/T1218
OperatingSystem: Windows
Full Path:
Full_Path:
- Path: c:\windows\system32\vsjitdebugger.exe
Code Sample:
Code_Sample:
- Code:
Detection:
- IOC: