Giter Site home page Giter Site logo

Comments (5)

FunnyWolf avatar FunnyWolf commented on June 17, 2024

viper有相关的自动化功能,参考如下文档
https://www.yuque.com/vipersec/help/gh60e1
只不过用的少所以没有进行优化,如果推荐的场景进一步回复.

from viper.

FunnyWolf avatar FunnyWolf commented on June 17, 2024

@xizyy

from viper.

xizyy avatar xizyy commented on June 17, 2024

感谢回复,已有的这个自动编排是在获取新session时执行。一般用在获取初始权限后的自动信息收集、自动提权、维权。而在需要持续监控session状态,持续收集信息的场景下:比如管理员登陆提醒,文件变动提醒,以及更多的需要持续观察管理员操作以场景下,需要一个能定时执行模块或者命令的东西。但是为了减少暴露风险这个定时执行不能使用已攻陷的服务器上的计划任务。废话有点多。。。一句话概括就是,自动编排能加个定时执行就好了

from viper.

FunnyWolf avatar FunnyWolf commented on June 17, 2024

@xizyy
理解了,这个可以拆分成两块来做

  1. (管理员登陆提醒,文件变动提醒,以及更多的需要持续观察管理员操作以场景下),这个需要编写viper的模块来实现每一个功能,现有的模块框架已经很成熟,可以做.需要进一步分析的就是具体功能是什么样的,具体监控指定文件还是用户自定义文件
  2. 自动编排加个定时执行的功能,这个是新功能,可以做.
    如果有更详细的需求可以根据以下联系方式联系我
    https://www.yuque.com/vipersec/install/py5fqc

from viper.

xizyy avatar xizyy commented on June 17, 2024

@FunnyWolf 啊,补充。当前自动编排作用范围是所有新session。上述场景中的定时执行一般是针对部分session的。也就是这种持续监控,抓数据的场景下不同的session通常会有不同的定时任务编排需求。之前说的“自动编排能加个定时执行就好了”比较片面。也许也可以考虑在模块中去实现。如果在自动编排中实现可能得考虑session切换及相应的前端显示。

from viper.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.