From c27385cfa4c855653fbeb2b1cbfb40f5a7d2ff7f Mon Sep 17 00:00:00 2001 From: Deborah Servili Date: Mon, 7 Oct 2019 14:38:16 +0200 Subject: [PATCH] jq --- clusters/tool.json | 15 +++++++++------ 1 file changed, 9 insertions(+), 6 deletions(-) diff --git a/clusters/tool.json b/clusters/tool.json index 940a094..577e752 100644 --- a/clusters/tool.json +++ b/clusters/tool.json @@ -7846,16 +7846,19 @@ "value": "Reductor" }, { - "value": "ProcDump", - "description": "Legitimate tool - command-line tool used to monitor a running process and dump memory depending on customcriteria. The attackers use this tool to dump the LSASS process to gatherWINDOWScredentials hashes" + "description": "Legitimate tool - command-line tool used to monitor a running process and dump memory depending on customcriteria. The attackers use this tool to dump the LSASS process to gatherWINDOWScredentials hashes", + "uuid": "1ae22855-c343-4ae9-8cab-522c9da938aa", + "value": "ProcDump" }, { - "value": "CertMig", - "description": "Legitimate tool - command-line tool used to import and export certificates on a machine. The attackers use this toolto gather credentials used for VPN authentication to the clients’ networks" + "description": "Legitimate tool - command-line tool used to import and export certificates on a machine. The attackers use this toolto gather credentials used for VPN authentication to the clients’ networks", + "uuid": "fadd0d1f-b098-43ea-b7a6-50fb58aef9f6", + "value": "CertMig" }, { - "value": "Netscan", - "description": "Legitimate tool - tool used to scan IPv4/IPv6 networks and remotely execute PowerShell commands." + "description": "Legitimate tool - tool used to scan IPv4/IPv6 networks and remotely execute PowerShell commands.", + "uuid": "bbba3a35-5064-4e60-ad4b-0ba16cc81a23", + "value": "Netscan" } ], "version": 126