Skip to content

v0.3.0

Choose a tag to compare

View all tags
@github-actions github-actions released this 14 Feb 00:30
· 17 commits to main since this release
v0.3.0
0b5d9db
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

What's Changed

  • Implemented the ForestRootIdentifier & InheritanceHashes fields.
  • Implemented the Status field in Computers to report errors when availability checks fail.
  • Implemented the GPOLocalGroup collection method.
  • Many improvements and fixes to remote collection logic, including:
    1. Removed the DNS lookups step (changed RPC/SMB code to use the specified resolver instead);
    2. Guardrails to avoid/warn about currently unsupported cross-domain authentications in specific cases;
    3. Partial results if a computer timeouts due to network hangs during specific methods;
    4. Better reuse of RPC clients for the same RPC flavor, making overall computer collections faster;
    5. Remote collection now saves separate files per domain. This is a breaking change from v0.2.0, but it should be for the better.
  • Fixed a bug where a deadlock would occur when -w was set to a low value.
  • Updated dependencies go-smb2.fork and go-msrpc.
  • Improved logging & error messages in several flows.
  • Refactored code to improve readability & consistency.
  • In ingest2json, fixed a bug when parsing remote collection results in which it was stopping at the first entry, removed the -in option in favor of a positional argument, and changed -out into either -o or --output (optional, assumed as inputname.json if not provided).
  • Removed TODO.md as roadmap will be managed in the FlashIngestor Development project.

Full Changelog: v0.2.0...v0.3.0

Assets 7
Loading