3f50f20892
Enhance API error responses with JSON format, improve suspicious directory detection with worker pool implementation, and refine elimination logic with better index validation and data flow updates. Update UI for active report indicators, item expansion, and eliminated state tracking.
2025-10-12 21:58:11 -04:00
25d99c265d
Add elimination API handler, update browser logic for process tracking, and refine UI animations and modal handling.
2025-10-12 20:58:53 -04:00
0b09092973
Refine comments in index.html for clarity, update alert message in elimination workflow, and adjust UI text for improved consistency.
2025-10-12 20:07:16 -04:00
adcad167df
Add support for dynamic hosts file management, browser opening, and new favicon handling in web server. Add elimination workflow UI enhancements with better state management and design.
...
TODO: Test elimination per finding type in web view
Figure out where RustDesk registry persistence is located. The installer is aware of it somehow
2025-10-12 20:02:49 -04:00
15fb9eb510
Add web-based user interface with hunting, reporting, and elimination workflow for RMM-Hunter
2025-10-12 18:53:07 -04:00
01113551fb
Add web server implementation for RMM-Hunter with API endpoints and WebSocket support
2025-10-12 18:46:59 -04:00
b47351f4ee
Remove placeholder text from action descriptions in UI and clarify performEliminate function behavior.
2025-10-11 21:08:58 -04:00
c9e2e8dff8
Refactor suspicious artifact data structures, enhance eliminated state tracking, and update UI rendering for eliminated items. Add JSON marshal/unmarshal support for Binary and Directory types.
2025-10-11 21:01:07 -04:00
bde1b23753
Enhance detection logic to include process-based suspicious connection checks and refine firewall rule attributes in eliminate package. Add PID-to-process name mapping functionality.
2025-10-11 19:49:21 -04:00
d14b2837d0
Update eliminate connection logic to refine firewall rules and upgrade Scurvy library to latest version
2025-10-11 18:42:58 -04:00
9c54a22bcf
Update eliminate connection logic to refine firewall rules and upgrade Scurvy library to latest version
2025-10-11 18:06:42 -04:00
b855f0eaec
Add eliminate package with functions for removing suspicious artifacts (files, directories, processes, services, scheduled tasks) and enhance detection logic to include whitelist checks and multi-indicator scoring
2025-10-11 17:22:44 -04:00
e835629643
Improve AutoRun and service detection with enhanced vendor/token matching, reduced false positives, and isolated changes
2025-10-11 15:26:42 -04:00
53f527feff
Refactor AutoRun detection to use Scurvy library, enhance suspicious entry checks, and update UI rendering for detailed info
2025-10-11 15:15:35 -04:00
02ed2ce046
Initialize web package with placeholder file
2025-10-10 23:00:13 -04:00
192ce28d89
Add warning modal support and checks for blocked binaries and directories
...
Introduce `WarnBlock` to handle non-fatal warnings displayed in a warning modal. Add pre-elimination checks to identify blocked binaries and directories based on running processes or enabled services. Enhance path normalization for robust comparisons.
2025-10-10 22:53:20 -04:00
2b6c4eb4cd
Implement TUI for managing suspicious artifacts (FilePicker, TypePicker, ListView, and DetailView)
...
Introduce Bubble Tea-based terminal UI to manage suspicious artifact findings, including file selection, type filtering, list view, and details.
2025-10-10 22:43:47 -04:00
9d385bb6b0
Update htmlTemplate.go
2025-10-10 18:03:35 -04:00
d28b8b1211
Refine AutoRun logging to display key counts, remove redundant entry count log
2025-10-10 17:01:14 -04:00
7cdee4b62c
Enhance directory detection to handle prefix matching and eliminate duplicates
...
Helps to discover directories with a prefix instead of just by exact match
2025-10-10 16:57:12 -04:00
f48178f450
Add README, .gitignore, and refactor common detection constants
2025-10-10 16:20:55 -04:00
e2015b3df2
Add JSON and HTML writers for reporting Hunter findings
2025-10-10 16:06:48 -04:00
10b1bb7ed6
Implement initial detection and data structures for suspicious artifacts
2025-10-10 15:35:17 -04:00
Evan Hosinski