GitHub - PrometheanInfoSec/simple-pivot-detect: Uses python to do a simple pivot detection by hopping processes with established connections to find if the process was spawned remotely.

#Simple Pivot Detect Simple pivot detect functions in an incredibly straightforward way. It takes a look at all the processes that are currently running on your system with an established conection. It then runs up the chain, looking for that process'es first parent. It then checks to see if the first parent is a process with an established connection. If it is, then an alert is triggered.

In short, this SPD will check if anyone connected to your box remotely, and with that connection spawned another connection. Pretty simple.

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
linux		linux
windows		windows
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

linux

linux

windows

windows

README.md

README.md

Repository files navigation

About

Releases

Packages

Languages

PrometheanInfoSec/simple-pivot-detect

Folders and files

Latest commit

History

Repository files navigation

About

Resources

Stars

Watchers

Forks

Languages