search

mandiant / ioc-scanner-CVE-2019-19781

Indicator of Compromise Scanner for CVE-2019-19781
https://www.fireeye.com/blog/products-and-services/2020/01/fireeye-and-citrix-tool-scans-for-iocs-related-to-vulnerability.html
Apache License 2.0
92 stars 25 forks source link

Missing version.sh #32

Open jwantland opened 4 years ago

jwantland commented 4 years ago

script fails with missing script version.sh

 bash ./ioc-scanner-CVE-2019-19781.sh > "/tmp/ADC_FS_results-$(date).txt"
[info]: **********************************************************************
[info]: * Indicator of Compromise Scanner for CVE-2019-19781                 *
[info]: * Copyright 2020 FireEye, Inc. and Citrix Systems, Inc.              *
[info]: *                                                                    *
[info]: * https://github.com/fireeye/ioc-scanner-CVE-2019-19781              *
[info]: **********************************************************************
[info]:
[info]:
[info]: Since you are running the tool in live mode,
[info]:  the tool will now emit metadata, such as timestamp and hostname.
[info]:
[info]:
[info]: Next, the tool will emit first and last entries from select log files.
[info]: This will show the time ranges that the logs cover.
[info]: If the logs have rolled since scanning and exploitation began (~Jan 7),
[info]:  then the tool may not identify all compromise.
[info]: Likewise, if the logs have been modified by an attacker,
[info]:  then this tool may not recognize compromise.
[info]:
[erro]: missing script: /root/ioc-scanner-CVE-2019-19781-master/version.sh
williballenthin commented 4 years ago

please use the script published on the releases tab. the script found in the root of the repository is not packaged to be run standalone.