Mathieu Geli
Mathieu Geli
Hi, You can find an attempt to match exploitation of the vmware vmdir CVE-2020-3952 by checking for ldap modify operation on Administrators built-in group here https://github.com/gelim/CVE-2020-3952/blob/master/vmware.rules That may require some...
Hey, in order to be able to tweak an `external.yaml` and assess its efficiency, I feel there is a good need of a simulation mode where the code will read...
Yo, Thanks for this nice tool by the way. Here I'm adding a "simulate" mode to benchmark a bit the external.yaml policy from a static file (for instance with already...
Hello, I would like to assess the difficulty to have external provider authenticating the pwndoc users and passing along the identity via the HTTP header `REMOTE_USER`. How do you see...
Hello, Please find a proposal for improving the observables exact search by using the `.read()` API call with a proper `filters` set. A dictionary is used with main Cortex observable...
Hello, by following the doc I stumbled on those `curl` commands that will yield an `{"error":"Content-Type header [application/x-www-form-urlencoded] is not supported","status":406}` because of the missing proper `Content-Type` header. Here is...
Hello, I'm not able to see the user / author for a given finding. I don't see any references of it in the API call (`GET /api/audits/$AID/findings/$FID`). Am I missing...
**What type of file would you like magika to detect?** - "Apache Parquet file" **What software can create/open these files?** - [apache parquet](https://parquet.apache.org/) **Where can these files be found?** -...
**What type of file would you like magika to detect?** - REG Windows Registry **What software can create/open these files?**: - Windows Registry compatible viewer/editor **Where can these files be...
**What type of file would you like magika to detect?** - "Mac OS X icon" **What software can create/open these files?** - "Any image viewer/editor" **Where can these files be...