Skip to content

Release 0.5.8
Compare
Choose a tag to compare
@scudette scudette released this 01 Apr 07:25
v0.5.8
e468f54
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

This is the next point release for Velociraptor - Digging deeper!

This change addresses a number of bug fixes and new features:

  • Artifact preconditions are now supported by clients natively (Fixes #930 )
  • Added column_filter() plugin to be able to remove columns from SELECT * FROM expressions
  • Added a process accessor which allows directly operating on process memory (e.g. yara scan, upload etc).
  • Added Windows.Forensics.ProcessInfo to extract process information from the process PEB

As always please file issues on the Github bug tracker or ask questions on our mailing list [email protected] . You can also chat with us directly on discord https://www.velocidex.com/discord

Assets 7
Loading