DANΞ

Update osquery-configuration repository to reflect latest configurations. **ETA: Jan/Feb 2021.**

**What tool would you like added?** Google's GRR Agent **What does this tool do?** Agent-based hunting tool **How does this tool improve DARKSURGEON?** Would be nice to have recent binaries...

**Is your feature request related to a problem? Please describe.** No. **Describe the solution you'd like** Enable applocker auditing for additional telemetry for defenders. Additionally increase the size of the...

**Is your feature request related to a problem? Please describe.** No. **Describe the solution you'd like** Enable Windows Defender Application Control in audit mode to provide defenders additional telemetry. Additionally,...

**Describe the bug** I forgot to enable the osquery scheduled queries. **Additional context** Need to update the powershell script to appropriately copy over the osquery.flags and osquery.conf files, ensure that...

**What tool would you like added?** Mandiant redline **What does this tool do?** Memory/system analysis with automated IOC/IOA checking **How does this tool improve DARKSURGEON?** Useful for IR workflows **Dependencies...

**What tool would you like added?** Network Miner **What does this tool do?** GUI for analyzing network traffic/pcaps **How does this tool improve DARKSURGEON?** Network analysis is weak **Dependencies and...

**What tool would you like added?** Maltego **What does this tool do?** Visualization and graph searching **How does this tool improve DARKSURGEON?** Needs a good visualization tool **Dependencies and configuration.**...

**What tool would you like added?** Bulkextractor **What does this tool do?** bulk_extractor is a computer forensics tool that scans a disk image, a file, or a directory of files...

**Is your feature request related to a problem? Please describe.** Yes. WSL is installed, but no WSL environment is configured or installed by default. **Describe the solution you'd like** Automatically...