Skip to content

v0.4.9 -- WinRM/SSH Detection, Report Hardening

Choose a tag to compare

View all tags
@TMHSDigital TMHSDigital released this 15 Mar 23:54
· 2 commits to main since this release
v0.4.9
c849a85

Added

  • WinRM listener detection -- flags ports 5985/5986 if not in TrustedPorts (WARNING, T1021.006)
  • SSH listener detection -- flags port 22 if not in TrustedPorts (INFO, T1021.004)
  • Test assertions -- Assert-FindingCount for Network and DefenseEvasion modules

Fixed

  • TrustedCompanies config drift -- Get-DefaultConfig expanded from 9 to 38 entries, synced with config.example.json
  • Report HTML injection hardening -- finding details now use [System.Net.WebUtility]::HtmlEncode() instead of manual </> replacement
  • Score formula documented -- added comment explaining penalty weights and cap behavior
Assets 2
Loading