From 615c129376c4a050777f31d1e12772419daf2fb9 Mon Sep 17 00:00:00 2001
From: KrakenTech <ehosinski@krakensec.tech>
Date: Sat, 11 Oct 2025 23:39:06 -0400
Subject: [PATCH] Update README.md

---
 README.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/README.md b/README.md
index 7612f68..153631c 100644
--- a/README.md
+++ b/README.md
@@ -21,6 +21,8 @@ The hunt module performs deep system analysis across multiple detection vectors:
 - **Network Connection Monitoring** - Identifies active outbound connections to known RMM infrastructure
 - **Scheduled Task Detection** - Discovers RMM-related scheduled tasks used for persistence
 - **Directory Scanning** - Searches for RMM installation directories and artifacts
+- **AutoRun Analysis** - Searches for RMM persistence using Windows AutoRuns utilzing COM Services and Registry Keys
+
 
 ![](.gif/sample_hunt.gif)