EDR-Testing-Script
security
EDR-Testing-Script | security | |
---|---|---|
1 | 2 | |
278 | 74 | |
- | - | |
0.0 | 0.0 | |
over 2 years ago | almost 2 years ago | |
Batchfile | Shell | |
MIT License | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
EDR-Testing-Script
-
Kaspersky Endpoint Security issue
I downloaded and executed script from GitHub, EDR Testing Script and it failed miserably. It allowed everything to be downloaded and executed, let remote shell scripts to be run, files to install, and it did that as a user. I didn't even run that script as an admin. Worse thing is, KES uninstalled itself afterwards.
security
-
https://securityledger.com/2021/04/deere-john-researcher-warns-ag-giants-site-provides-a-map-to-customers-equipment/
The researcher known as “Sick Codes” (@sickcodes) published two advisories on Thursday warning about the flaws in the myjohndeere.com web site and the John Deere Operations Center web site and mobile applications. In a conversation with Security Ledger, the researcher said that a he was able to use VINs (vehicle identification numbers) taken from a farm equipment auction site to identify the name and physical address of the owner. Furthermore, a flaw in the myjohndeere.com website could allow an unauthenticated user to carry out automated attacks against the site, possibly revealing all the user accounts for that site.
-
Finding a Vulnerability in Teamwork Cloud Server (NoMagic, 3DS), Which Is Used By Gov/Enterprise to Design Rockets, Missiles, and Satellites.
fix the critical file permissions as per NoMagic's updated instructions at the bottom of the article, or here: https://github.com/sickcodes/security/blob/master/advisories/SICK-2020-002.md
What are some alternatives?
iMonitorSDK - 系统监控开发套件(sysmon、procmon、edr、终端安全、主机安全、零信任、上网行为管理、沙箱)
sbt-dependency-check - SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). :rainbow:
Incident-Playbook - GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
atomic-red-team - Small and highly portable detection tests based on MITRE's ATT&CK.
WhiteBeam - WhiteBeam: Transparent endpoint security
Sn1per - Attack Surface Management Platform
plgx-esp - Community Edition of the PolyLogyx Endpoint Security Platform; An open source and extensible platform to manage and monitor endpoints, based on osqery agent
MultiBUGS - Multi-core BUGS for fast Bayesian inference of large hierarchical models
Atlas - 🚀 An open and lightweight modification to Windows, designed to optimize performance, privacy and security.
Wazuh - Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.