Vikman Fernandez-Castro
Vikman Fernandez-Castro
@JSON-HSB I've provided an answer for you at: - https://github.com/wazuh/wazuh/issues/25424 Hope it helps. Let me close this issue.
## Status change Blocked by management: we need to define the requirements.
## Schedule change We're rescheduling this task to Q3.
## Testing PoC timestamp.cpp ```cpp #include #include #include #include #include using namespace std; #ifdef WIN32 static struct tm* gmtime_r(const time_t* timep, struct tm* result) { errno = gmtime_s(result, timep); return...
## Manual tests I replaced every `getTimestamp()` function info with `0x8fffffffll`. This way, the Windows agent detected the error and transformed the scan time into: ```json { "scan_id": 0, "scan_time":...
# Capabilities Below is a summary of the capabilities of the Rootcheck module. ## File check ```xml yes etc/rootcheck/rootkit_files.txt regex ``` Detects rootkits by checking for the presence of file...
## Rule summary | Rule | Level | Description | Origin | | -------- | ----: | -------------------------------------------- | ----------------------------------------------------------------------------------------------------------------------------- | | **510** | `7` | Host-based anomaly detection event...
## Proposed changes | Rule | From | To | Description | | -------- | ---: | --: | ---------------------------------------- | | **510** | `7` | `2` | Possible kernel...
## Proposed changes (update) | Rule | Level | Description | | -------- | ----: | ------------------------------------------------------ | | **522** | `2` | File owned by root with global write...
Hi, I'm having the same problem. It fails consistently while I manually open the browser and login there. - **Version:** gh version 2.57.0 (2024-09-16) - **Host:** Bash @ Ubuntu 24.04...