DetectRaptor
DetectRaptor copied to clipboard
mgreen27
A repository to share publicly available Velociraptor detection content
The base artifacts for Windows.Detection.Webhistory have been depreciated. Need to refactor this for SQLitehunter or hardcode the old artifacts into this. (likley eisiest solution to hardcode but will scope)
The collection takes very long. Is there any possibility to collect and analyse on the Velo server? This would be especially nice if using an offline collector.
Im finding edge regex cases where I or someone forgets to add "" which breaks a line here and there. II want to think about some tests of built content...
