Add eliminate package with functions for removing suspicious artifacts (files, directories, processes, services, scheduled tasks) and enhance detection logic to include whitelist checks and multi-indicator scoring

2025-10-11 17:22:44 -04:00
parent e835629643
commit b855f0eaec
15 changed files with 346 additions and 114 deletions
@@ -50,12 +50,6 @@ AutoRun
 The object used to resemble the auto run methods used by the Suspicious software.
 */
 type AutoRun struct {
-	//Name        string `json:"name"`
-	//Command     string `json:"command"`
-	//Location    string `json:"location"`
-	//Enabled     bool   `json:"enabled"`
-	//Description string `json:"description"`
-
 	Type         string `json:"type"`
 	Location     string `json:"location"`
 	ImagePath    string `json:"image_path"`