Skip to content

Commit

Permalink
Merge pull request #903 from mandiant/category-cleanup
Browse files Browse the repository at this point in the history
Clean up categories for better organization
  • Loading branch information
emtuls committed Mar 1, 2024
2 parents 047c8ad + 46dcfff commit 87e43bf
Show file tree
Hide file tree
Showing 133 changed files with 167 additions and 165 deletions.
19 changes: 7 additions & 12 deletions .github/ISSUE_TEMPLATE/new_metapackage.yml
Original file line number Diff line number Diff line change
Expand Up @@ -50,39 +50,34 @@ body:
label: Category
description: Which category should this tool be installed to?
options:
- Active Directory
- Cloud
- Command & Control
- Credential Access
- Debuggers
- Delphi
- Disassemblers
- dotNet
- Evasion
- Documents
- Exploitation
- File Information
- Forensic
- Hex Editors
- Information Gathering
- InnoSetup
- Java & Android
- Javascript
- Lateral Movement
- Memory
- Networking
- Office
- Packers
- Password Attacks
- Payload Development
- PDF
- PE
- Persistence
- PowerShell
- Privilege Escalation
- Python
- Productivity Tools
- Reconnaissance
- Text Editors
- Registry
- Shellcode
- Utilities
- VB
- Vulnerability Analysis
- Visual Basic
- Web Application
- Wordlists
- type: input
Expand Down
19 changes: 7 additions & 12 deletions .github/ISSUE_TEMPLATE/new_package.yml
Original file line number Diff line number Diff line change
Expand Up @@ -69,39 +69,34 @@ body:
label: Category
description: Which category should this tool be installed to?
options:
- Active Directory
- Cloud
- Command & Control
- Credential Access
- Debuggers
- Delphi
- Disassemblers
- dotNet
- Evasion
- Documents
- Exploitation
- File Information
- Forensic
- Hex Editors
- Information Gathering
- InnoSetup
- Java & Android
- Javascript
- Lateral Movement
- Memory
- Networking
- Office
- Packers
- Password Attacks
- Payload Development
- PDF
- PE
- Persistence
- PowerShell
- Privilege Escalation
- Python
- Productivity Tools
- Reconnaissance
- Text Editors
- Registry
- Shellcode
- Utilities
- VB
- Vulnerability Analysis
- Visual Basic
- Web Application
- Wordlists
- type: input
Expand Down
20 changes: 8 additions & 12 deletions categories.txt
Original file line number Diff line number Diff line change
@@ -1,35 +1,31 @@
Active Directory
Cloud
Command & Control
Credential Access
Debuggers
Delphi
Disassemblers
Documents
dotNet
Evasion
Exploitation
File Information
Forensic
Hex Editors
Information Gathering
InnoSetup
Java & Android
Javascript
Lateral Movement
Memory
Networking
Office
Packers
Password Attacks
Payload Development
PDF
PE
Persistence
PowerShell
Privilege Escalation
Python
Productivity Tools
Reconnaissance
Text Editors
Registry
Shellcode
Utilities
VB
Vulnerability Analysis
Visual Basic
Web Application
Wordlists
Wordlists
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
<package xmlns="http://schemas.microsoft.com/packaging/2015/06/nuspec.xsd">
<metadata>
<id>arsenalimagemounter.vm</id>
<version>3.11.279.20240222</version>
<version>3.11.279.20240226</version>
<authors>Arsenal Recon</authors>
<description>Mounts the contents of disk images as complete disks in Windows.</description>
<dependencies>
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ Import-Module vm.common -Force -DisableNameChecking

try {
$toolName = 'ArsenalImageMounter'
$category = 'Utilities'
$category = 'Forensic'
$shimPath = "\bin\${toolName}.exe"

$shortcutDir = Join-Path ${Env:TOOL_LIST_DIR} $category
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,6 @@ $ErrorActionPreference = 'Continue'
Import-Module vm.common -Force -DisableNameChecking

$toolName = 'ArsenalImageMounter'
$category = 'Utilities'
$category = 'Forensic'

VM-Remove-Tool-Shortcut $toolName $category
2 changes: 1 addition & 1 deletion packages/blobrunner.vm/blobrunner.vm.nuspec
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
<package xmlns="http://schemas.microsoft.com/packaging/2015/06/nuspec.xsd">
<metadata>
<id>blobrunner.vm</id>
<version>0.0.5</version>
<version>0.0.5.20240217</version>
<authors>OALabs</authors>
<description>BlobRunner is a simple tool to quickly debug shellcode extracted during malware analysis.</description>
<dependencies>
Expand Down
2 changes: 1 addition & 1 deletion packages/blobrunner.vm/tools/chocolateyinstall.ps1
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@ $ErrorActionPreference = 'Stop'
Import-Module vm.common -Force -DisableNameChecking

$toolName = 'blobrunner'
$category = 'Utilities'
$category = 'Shellcode'

$zipUrl = 'https://github.com/OALabs/BlobRunner/releases/download/v0.0.5/blobrunner.zip'
$zipSha256 = '369ed39086e40fe9ae5404b52cafe0a9b747abb11f2d33d73e5a51097d0ae2a4'
Expand Down
2 changes: 1 addition & 1 deletion packages/blobrunner.vm/tools/chocolateyuninstall.ps1
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,6 @@ $ErrorActionPreference = 'Continue'
Import-Module vm.common -Force -DisableNameChecking

$toolName = 'blobrunner'
$category = 'Utilities'
$category = 'Shellcode'

VM-Uninstall $toolName $category
2 changes: 1 addition & 1 deletion packages/blobrunner64.vm/blobrunner64.vm.nuspec
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
<package xmlns="http://schemas.microsoft.com/packaging/2015/06/nuspec.xsd">
<metadata>
<id>blobrunner64.vm</id>
<version>0.0.5</version>
<version>0.0.5.20240217</version>
<authors>OALabs</authors>
<description>BlobRunner is a simple tool to quickly debug shellcode extracted during malware analysis.</description>
<dependencies>
Expand Down
2 changes: 1 addition & 1 deletion packages/blobrunner64.vm/tools/chocolateyinstall.ps1
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@ $ErrorActionPreference = 'Stop'
Import-Module vm.common -Force -DisableNameChecking

$toolName = 'blobrunner64'
$category = 'Utilities'
$category = 'Shellcode'

$zipUrl = 'https://github.com/OALabs/BlobRunner/releases/download/v0.0.5/blobrunner64.zip'
$zipSha256 = '325e3e26ccdce53cdd8b6665c7ed7d1765fc1c56cd088a5b4433593682c9f503'
Expand Down
2 changes: 1 addition & 1 deletion packages/blobrunner64.vm/tools/chocolateyuninstall.ps1
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,6 @@ $ErrorActionPreference = 'Continue'
Import-Module vm.common -Force -DisableNameChecking

$toolName = 'blobrunner64'
$category = 'Utilities'
$category = 'Shellcode'

VM-Uninstall $toolName $category
2 changes: 1 addition & 1 deletion packages/burp-free.vm/burp-free.vm.nuspec
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
<package xmlns="http://schemas.microsoft.com/packaging/2015/06/nuspec.xsd">
<metadata>
<id>burp-free.vm</id>
<version>0.0.0.20230711</version>
<version>0.0.0.20240217</version>
<authors>PortSwigger Ltd.</authors>
<description>Burp Suite Community Edition is PortSwigger's free integrated platform for performing security testing of web applications.</description>
<dependencies>
Expand Down
2 changes: 1 addition & 1 deletion packages/burp-free.vm/tools/chocolateyinstall.ps1
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ Import-Module vm.common -Force -DisableNameChecking

try {
$toolName = 'BurpSuiteCommunity'
$category = 'Utilities'
$category = 'Web Application'
$shimPath = 'BurpSuiteCommunity\BurpSuiteCommunity.exe'

$shortcutDir = Join-Path ${Env:TOOL_LIST_DIR} $category
Expand Down
2 changes: 1 addition & 1 deletion packages/burp-free.vm/tools/chocolateyuninstall.ps1
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,6 @@ $ErrorActionPreference = 'Continue'
Import-Module vm.common -Force -DisableNameChecking

$toolName = 'BurpSuiteCommunity'
$category = 'Utilities'
$category = 'Web Application'

VM-Remove-Tool-Shortcut $toolName $category
2 changes: 1 addition & 1 deletion packages/cmder.vm/cmder.vm.nuspec
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
<package xmlns="http://schemas.microsoft.com/packaging/2015/06/nuspec.xsd">
<metadata>
<id>cmder.vm</id>
<version>1.3.24</version>
<version>1.3.24.20240217</version>
<description>Metapackage for cmder</description>
<authors>Mandiant, Samuel Vasko</authors>
<dependencies>
Expand Down
2 changes: 1 addition & 1 deletion packages/cmder.vm/tools/chocolateyinstall.ps1
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ Import-Module vm.common -Force -DisableNameChecking

try {
$toolName = 'cmder'
$category = 'Utilities'
$category = 'Productivity Tools'
$shortcutDir = Join-Path ${Env:TOOL_LIST_DIR} $category

$toolDir = Join-Path ${Env:RAW_TOOLS_DIR} $toolName -Resolve
Expand Down
2 changes: 1 addition & 1 deletion packages/cmder.vm/tools/chocolateyuninstall.ps1
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
$ErrorActionPreference = 'Continue'
$category = 'Utilities'
$category = 'Productivity Tools'
$shortcutDir = Join-Path ${Env:TOOL_LIST_DIR} $category
$shortcut = Join-Path $shortcutDir 'cmder.lnk'
Remove-Item $shortcut -Force -ea 0 | Out-Null
2 changes: 1 addition & 1 deletion packages/common.vm/common.vm.nuspec
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
<package xmlns="http://schemas.microsoft.com/packaging/2015/06/nuspec.xsd">
<metadata>
<id>common.vm</id>
<version>0.0.0.20240220</version>
<version>0.0.0.20240229</version>
<description>Common libraries for VM-packages</description>
<authors>Mandiant</authors>
</metadata>
Expand Down
14 changes: 14 additions & 0 deletions packages/common.vm/tools/vm.common/vm.common.psm1
Original file line number Diff line number Diff line change
Expand Up @@ -281,7 +281,9 @@ function VM-Install-Shortcut{
)
$shortcutDir = Join-Path ${Env:TOOL_LIST_DIR} $category
$shortcut = Join-Path $shortcutDir "$toolName.lnk"
$extension = [System.IO.Path]::GetExtension($executablePath)

# Set the default icon to be the executable's icon
if (-Not $iconLocation) {$iconLocation = $executablePath}

if ($consoleApp) {
Expand Down Expand Up @@ -320,6 +322,18 @@ function VM-Install-Shortcut{
Install-ChocolateyShortcut @shortcutArgs
}
VM-Assert-Path $shortcut

# If the file targets a .bat, we should set the shortcut to match (requires shortcut to have been created already)
if ($extension -eq ".bat") {
$Shell = New-Object -ComObject ("WScript.Shell")
$Shortcut = $Shell.CreateShortcut($shortcut)

$IconArrayIndex = -68 # This is the specific icon that Windows uses for .bat files by default
$IconLocation = "C:\WINDOWS\system32\imageres.dll"
$Shortcut.IconLocation = "$IconLocation,$IconArrayIndex"

$Shortcut.Save()
}
}

# This functions returns $toolDir (outputed by Install-ChocolateyZipPackage) and $executablePath
Expand Down
2 changes: 1 addition & 1 deletion packages/cygwin.vm/cygwin.vm.nuspec
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
<package xmlns="http://schemas.microsoft.com/packaging/2015/06/nuspec.xsd">
<metadata>
<id>cygwin.vm</id>
<version>3.5.0</version>
<version>3.5.0.20240217</version>
<description>Wrapper for cygwin and useful cygwin packages</description>
<authors>Red Hat Inc.</authors>
<dependencies>
Expand Down
2 changes: 1 addition & 1 deletion packages/cygwin.vm/tools/chocolateyinstall.ps1
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ Import-Module vm.common -Force -DisableNameChecking

try {
$toolName = 'cygwin'
$category = 'Utilities'
$category = 'Productivity Tools'

# install additional cygwin packages
$packages = @(
Expand Down
2 changes: 1 addition & 1 deletion packages/cygwin.vm/tools/chocolateyuninstall.ps1
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
$ErrorActionPreference = 'Continue'

$toolName = 'cygwin'
$category = 'Utilities'
$category = 'Productivity Tools'

$shortcutDir = Join-Path ${Env:TOOL_LIST_DIR} $category
$shortcut = Join-Path $shortcutDir "$toolName.lnk"
Expand Down
2 changes: 1 addition & 1 deletion packages/dcode.vm/dcode.vm.nuspec
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
<package xmlns="http://schemas.microsoft.com/packaging/2015/06/nuspec.xsd">
<metadata>
<id>dcode.vm</id>
<version>5.5.21194.20231212</version>
<version>5.5.21194.20240217</version>
<authors>Digital Detective Group</authors>
<description>Utility for converting data found on desktop and mobile devices into human-readable timestamps.</description>
<dependencies>
Expand Down
2 changes: 1 addition & 1 deletion packages/dcode.vm/tools/chocolateyinstall.ps1
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@ $ErrorActionPreference = 'Stop'
Import-Module vm.common -Force -DisableNameChecking

$toolName = 'DCode'
$category = 'Utilities'
$category = 'Forensic'

$url = 'https://www.digital-detective.net/download/download.php?downcode=ae2znu5994j1lforlh03'
$sha256 = 'dbb23d6ea4f572fbaec017fb8acc2a8b62b74fafa81ea4a388966ec14087a9e4'
Expand Down
2 changes: 1 addition & 1 deletion packages/dcode.vm/tools/chocolateyuninstall.ps1
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,6 @@ $ErrorActionPreference = 'Continue'
Import-Module vm.common -Force -DisableNameChecking

$toolName = 'DCode'
$category = 'Utilities'
$category = 'Forensic'

VM-Uninstall $toolName $category
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
<package xmlns="http://schemas.microsoft.com/packaging/2015/06/nuspec.xsd">
<metadata>
<id>didier-stevens-beta.vm</id>
<version>0.0.0.20240122</version>
<version>0.0.0.20240226</version>
<authors>Didier Stevens</authors>
<description>Beta versions of Didier Stevens's software</description>
<dependencies>
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@ $ErrorActionPreference = 'Stop'
Import-Module vm.common -Force -DisableNameChecking

try {
$category = 'Office'
$category = 'Documents'
$zipUrl = 'https://github.com/DidierStevens/Beta/archive/cbb1d5c32d02b4e07128a197c8b8fb6ea597916a.zip'
$zipSha256 = 'e9d83063f45f8e2791d33de194a46850bd7f1921e755bd4651c769cbcdbd5052'

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@ $ErrorActionPreference = 'Continue'
Import-Module vm.common -Force -DisableNameChecking

# Remove shortcuts
$category = 'Office'
$category = 'Documents'
ForEach ($toolName in @('onedump')) {
VM-Remove-Tool-Shortcut $toolName $category
}
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
<package xmlns="http://schemas.microsoft.com/packaging/2015/06/nuspec.xsd">
<metadata>
<id>didier-stevens-suite.vm</id>
<version>0.0.0.20240122</version>
<version>0.0.0.20240226</version>
<authors>Didier Stevens</authors>
<description>Tools collection by Didier Stevens</description>
<dependencies>
Expand Down
Loading

0 comments on commit 87e43bf

Please sign in to comment.