Update generated site files

magicsword-io · Sep 18, 2024 · 7140bf6 · 7140bf6
1 parent f0c28f5
commit 7140bf6
Show file tree

Hide file tree

Showing 11 changed files with 7,688 additions and 7,693 deletions.
diff --git a/website/pages/tools/chrome_remote_desktop.mdx b/website/pages/tools/chrome_remote_desktop.mdx
@@ -36,7 +36,7 @@ Chrome Remote Desktop is a remote monitoring and management (RMM) tool. More inf
 
 #### Network Artifacts
 <EuiSpacer size="xl"/>
-<NetworkArtifactsTable data={ [{"Description": "Known remote domains", "Domains": ["*remotedesktop-pa.googleapis.com", "*remotedesktop.google.com", "remotedesktop.google.com"], "Ports": []}] }/>
+<NetworkArtifactsTable data={ [{"Description": "Known remote domains", "Domains": ["*remotedesktop.google.com", "*remotedesktop-pa.googleapis.com", "remotedesktop.google.com"], "Ports": []}] }/>
 
 
 

diff --git a/website/pages/tools/distant_desktop.mdx b/website/pages/tools/distant_desktop.mdx
@@ -23,7 +23,7 @@ Distant Desktop is a remote monitoring and management (RMM) tool. More informati
 />
 
 #### Installation Paths
-<Card code={ ["ddsystem.exe", "dd.exe", "distant-desktop.exe"] }/>
+<Card code={ ["distant-desktop.exe", "dd.exe", "ddsystem.exe"] }/>
 
 
 

diff --git a/website/pages/tools/dw_service.mdx b/website/pages/tools/dw_service.mdx
@@ -23,7 +23,7 @@ DW Service is a remote monitoring and management (RMM) tool. More information wi
 />
 
 #### Installation Paths
-<Card code={ ["dwagsvc.exe", "dwagent.exe", "dwagsvc.exe"] }/>
+<Card code={ ["dwagent.exe", "dwagsvc.exe"] }/>
 
 
 

diff --git a/website/pages/tools/eset_remote_administrator.mdx b/website/pages/tools/eset_remote_administrator.mdx
@@ -23,7 +23,7 @@ ESET Remote Administrator is a remote monitoring and management (RMM) tool. More
 />
 
 #### Installation Paths
-<Card code={ ["era.exe", "einstaller.exe", "ezhelp*.exe", "eratool.exe", "ERAAgent.exe"] }/>
+<Card code={ ["einstaller.exe", "era.exe", "ERAAgent.exe", "ezhelp*.exe", "eratool.exe"] }/>
 
 
 

diff --git a/website/pages/tools/isl_online.mdx b/website/pages/tools/isl_online.mdx
@@ -23,7 +23,7 @@ ISL Online is a remote monitoring and management (RMM) tool. More information wi
 />
 
 #### Installation Paths
-<Card code={ ["islalwaysonmonitor.exe", "isllight.exe", "isllightservice.exe", "ISLLightClient.exe", "C:\\Program Files (x86)\\ISL Online\\ISL Light*", "*\\ISL Online\\ISL Light*", "*\\ISLLight.exe"] }/>
+<Card code={ ["*\\ISLLight.exe", "isllight.exe", "ISLLightClient.exe", "C:\\Program Files (x86)\\ISL Online\\ISL Light*", "*\\ISL Online\\ISL Light*", "ISLLight.exe", "isllightservice.exe", "islalwaysonmonitor.exe"] }/>
 
 
 

diff --git a/website/pages/tools/microsoft_tsc.mdx b/website/pages/tools/microsoft_tsc.mdx
@@ -23,7 +23,7 @@ Microsoft TSC is a remote monitoring and management (RMM) tool. More information
 />
 
 #### Installation Paths
-<Card code={ ["termsrv.exe"] }/>
+<Card code={ ["termsrv.exe", "mstsc.exe"] }/>
 
 
 

diff --git a/website/pages/tools/n-able_advanced_monitoring_agent.mdx b/website/pages/tools/n-able_advanced_monitoring_agent.mdx
@@ -23,7 +23,7 @@ N-Able Advanced Monitoring Agent is a remote monitoring and management (RMM) too
 />
 
 #### Installation Paths
-<Card code={ ["BASupSrvc.exe", "winagent.exe", "BASupApp.exe", "BASupTSHelper.exe", "Agent_*_RW.exe", "BASEClient.exe", "BASupSrvcCnfg.exe"] }/>
+<Card code={ ["Agent_*_RW.exe", "BASEClient.exe", "BASupApp.exe", "BASupSrvc.exe", "BASupSrvcCnfg.exe", "BASupTSHelper.exe"] }/>
 
 
 
@@ -36,7 +36,7 @@ N-Able Advanced Monitoring Agent is a remote monitoring and management (RMM) too
 
 #### Network Artifacts
 <EuiSpacer size="xl"/>
-<NetworkArtifactsTable data={ [{"Description": "Known remote domains", "Domains": ["*.beanywhere.com ", "systemmonitor.co.uk", "*system-monitor.com", "cloudbackup.management", "*systemmonitor.co.uk", "n-able.com", "systemmonitor.us", "*systemmonitor.eu.com", "*.logicnow.com", "*.swi-tc.com", "*remote.management", "systemmonitor.us.cdn.cloudflare.net", "*cloudbackup.management", "remote.management", "logicnow.com", "system-monitor.com", "*systemmonitor.us", "systemmonitor.eu.com", "*.n-able.com"], "Ports": []}] }/>
+<NetworkArtifactsTable data={ [{"Description": "Known remote domains", "Domains": ["*remote.management", "*.logicnow.com", "*systemmonitor.us", "*systemmonitor.eu.com", "*system-monitor.com", "systemmonitor.us.cdn.cloudflare.net", "*cloudbackup.management", "*systemmonitor.co.uk", "*.n-able.com", "*.beanywhere.com ", "*.swi-tc.com"], "Ports": []}] }/>
 
 
 

diff --git a/website/pages/tools/quick_assist.mdx b/website/pages/tools/quick_assist.mdx
@@ -34,16 +34,11 @@ Quick Assist is a remote monitoring and management (RMM) tool. More information
 
 
 
-#### Network Artifacts
-<EuiSpacer size="xl"/>
-<NetworkArtifactsTable data={ [{"Description": "Known remote domains", "Domains": ["*.support.services.microsoft.com"], "Ports": []}] }/>
 
 
 
 
 ### Detections
-- Detects potential network activity of Quick Assist RMM tool
-  - [Sigma Rule](https://github.com/magicsword-io/LOLRMM/blob/main/detections/sigma/quick_assist_network_sigma.yml)
 - Detects potential processes activity of Quick Assist RMM tool
   - [Sigma Rule](https://github.com/magicsword-io/LOLRMM/blob/main/detections/sigma/quick_assist_processes_sigma.yml)
 

diff --git a/website/public/api/rmm_tools.csv b/website/public/api/rmm_tools.csv
-Original file line number
+Diff line change
@@ Expand Up @@
     />
     #### Installation Paths
-    <Card code={ ["ddsystem.exe", "dd.exe", "distant-desktop.exe"] }/>
+    <Card code={ ["distant-desktop.exe", "dd.exe", "ddsystem.exe"] }/>
@@ Expand Down @@