issues
search
tclahr
/
uac
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
https://tclahr.github.io/uac-docs
Apache License 2.0
732
stars
113
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Add modifiers
#278
tclahr
closed
15 hours ago
0
artif: new systemd journal artifacts
#277
mnrkbys
opened
2 days ago
0
artif: collect coredump files
#276
mnrkbys
opened
3 days ago
0
Suggestion: add basic command artifacts to ir_triage.yaml
#275
mnrkbys
closed
3 days ago
2
artif: collect .lesshst
#274
mnrkbys
closed
6 days ago
0
Collection of FreeBSD installed packages database
#273
Herbert-Karl
closed
1 week ago
0
Revealing hidden processes
#272
tclahr
opened
2 weeks ago
4
refactor: split get_bin_path function
#271
tclahr
closed
2 weeks ago
0
artif: replace cat with strings
#270
mnrkbys
closed
2 weeks ago
0
fix: xargs max-procs concurrency
#269
tclahr
closed
3 weeks ago
0
artif: collect /proc/*/stat
#268
mnrkbys
closed
3 weeks ago
0
Some records in bodyfile.txt have the wrong format
#267
mnrkbys
closed
3 weeks ago
2
artif: new Btrfs artifacts
#266
mnrkbys
closed
1 week ago
2
artif: new eBPF artifacts
#265
mnrkbys
closed
1 week ago
3
artif: update kernel_tainted_state.yaml artifact
#264
tclahr
closed
1 month ago
0
artif: new artifact
#263
tclahr
closed
1 month ago
0
An artifact does not work in kernel_tainted_state.yaml
#262
mnrkbys
closed
1 month ago
4
Duplicate artifacts in sys_modules.yaml and kernel_modules.yaml
#261
mnrkbys
closed
1 month ago
2
artif: merge artifacts in ps.yaml
#260
mnrkbys
closed
1 month ago
0
The command of some artifacts in ps.yaml doesn't match their output_file
#259
mnrkbys
closed
1 month ago
4
artif: collect /proc/*/mounts for all processes
#257
halpomeranz
closed
3 weeks ago
0
Collect /proc/*/mounts
#256
halpomeranz
closed
1 month ago
0
refactor: replace for by while
#255
tclahr
closed
1 month ago
0
artif: new artifacts
#254
tclahr
closed
1 month ago
0
Updated to collect dpkg.log and verify installed files. Also, search for package name that contains installed files.
#253
mnrkbys
opened
1 month ago
4
refactor: add verbose message
#252
tclahr
closed
1 month ago
0
fix: zip binary segmentation fault
#251
tclahr
closed
1 month ago
0
Cannot find command with "collector: command"
#250
mnrkbys
closed
1 month ago
2
Fix bodyfile btime
#248
tclahr
closed
1 month ago
0
Systemd config file directory for collection is missing
#247
mnrkbys
closed
1 month ago
2
refactor: optimize hash collected code
#246
tclahr
closed
1 month ago
0
Regex to extract %user_home% fail with old version of grep
#245
william-billaud
closed
1 month ago
5
Mac OS 12 - nothing from Files/Shell collected
#244
tmill-strt
closed
1 month ago
6
FreeBSD: information on jails (FreeBSD specific containers)
#243
Herbert-Karl
closed
1 month ago
0
initial v3 code
#242
tclahr
closed
2 months ago
0
Fixed deleted.yaml
#241
mnrkbys
closed
2 months ago
2
refactor: v2.9.1
#240
tclahr
closed
2 months ago
0
Release/2.9.1
#239
tclahr
closed
2 months ago
0
BSD related artifacts
#238
Herbert-Karl
closed
2 months ago
2
Docker.yaml - docker stats ContainerId run into loop
#237
tuzux8
closed
2 months ago
2
Fix docker stats configuration
#236
0xtter
closed
2 months ago
0
Update sessions.yaml
#235
randomaccess3
closed
2 months ago
0
Merge pull request #233 from tclahr/release/2.9.0
#234
tclahr
closed
3 months ago
0
refactor: v2.9.0
#233
tclahr
closed
3 months ago
0
Release/2.9.0
#232
tclahr
closed
3 months ago
0
New artifacts
#231
tclahr
closed
3 months ago
0
add http put upload capability
#230
rbcrwd
closed
3 months ago
5
extending data collection on solaris
#229
sec-hbaer
closed
3 months ago
1
Systemd timers
#228
halpomeranz
closed
3 months ago
1
Update var_log.yaml esxi
#227
Pierre-Gronau-ndaal
closed
4 months ago
0
Next