Skip to content

Anamico/McAfee-MVISION-EDR-Custom

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
collectors
collectors
 
 
reactions
reactions
 
 
utilities
utilities
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

McAfee-MVISION-EDR-Custom

Examples of custom collector and reaction scripts

The McAfee MVision EDR platform allows the organisation to essentially trigger arbitrary processes on any endpoint.

This powerful feature means you can essentially do anything you like on a remote endpoint simply by clicking a couple of buttons.

This repository contains a number of examples of how you can leverage this power to achieve various results. A primary feature demonstrated here currently is the ability to pull down any remote tool and execute it to achieve complex outcomes and push results to various external services (such as a McAfee Advanced Threat Defence sandbox, or ATD, and push evidence collected to an FTP site).

  • Collections
  • Reactions
  • Utilities

About

Examples of custom collector and reaction scripts

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

3 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages