Look for hidden directories #67
Closed
halpomeranz
started this conversation in
Ideas
Replies: 1 comment
-
|
Ok, I will convert this into an issue. Thank you for all your suggestions! |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Outside of user home directories, directory names starting with "." are uncommon. But we'll often see attackers staging tools in directories like "/tmp/.ICEd-unix". How about adding a check to list hidden directories that are not in user profile directories?
find / -path /root -prune -o -path /home/\* -prune -o -type d -name .\* -printBeta Was this translation helpful? Give feedback.
All reactions