Living off the land¶

25日前に更新

• 目次
• Living off the land
  • LOLBAS(Living Off The Land Binaries, Scripts and Libraries)
  • LOLDrivers(Living Off The Land Drivers)
  • LOOBins(Living Off the Orchard: macOS Binaries)
  • GTFOBins
    • splunk Detection: Curl Download and Bash Execution
  • LOLESXi(Living Off The Land ESXi)
  • LOTS(Living Off Trusted Sites)
  • LOLC2
  • LOTTunnels(Living Off The Tunnels)

LOLBAS(Living Off The Land Binaries, Scripts and Libraries)¶

https://lolbas-project.github.io

Windows

LOLDrivers(Living Off The Land Drivers)¶

https://www.loldrivers.io

Windowsのドライバ

LOOBins(Living Off the Orchard: macOS Binaries)¶

https://www.loobins.io

MacOS

GTFOBins¶

https://gtfobins.github.io

Unix,Linux

splunk Detection: Curl Download and Bash Execution¶

splunkで検出するための情報
https://research.splunk.com/endpoint/900bc324-59f3-11ec-9fb4-acde48001122/#implementation

LOLESXi(Living Off The Land ESXi)¶

https://lolesxi-project.github.io/LOLESXi/

ESXi

LOTS(Living Off Trusted Sites)¶

https://lots-project.com

ドメイン

LOLC2¶

https://lolc2.github.io

C2

LOTTunnels(Living Off The Tunnels)¶

https://lottunnels.github.io

検知