Permalink
Switch branches/tags
Commits on Jan 12, 2018
  1. Merge pull request #9 from redcanaryco/target-hostname

    keithmccammon committed Jan 12, 2018
    Add option to target a specific username
Commits on Dec 5, 2017
  1. Merge pull request #8 from redcanaryco/target-hostname

    keithmccammon committed Dec 5, 2017
    Run Surveyor against a single endpoint
  2. Run Surveyor against a single endpoint

    keithmccammon committed Dec 5, 2017
    Use the --hostname option to target a single endpoint, instead of an entire Cb
    Response environment.
Commits on Nov 5, 2017
  1. Merge pull request #7 from redcanaryco/ktneely-master

    keithmccammon committed Nov 5, 2017
    Minor changes to ktneely-master
  2. Formatting changes, revert .gitignore

    keithmccammon committed Nov 5, 2017
    - Explicit ignore for survey.csv is not required, as *.csv is already ignored
    - Expand tabstops
    - Changes to indentation for readability
Commits on Nov 4, 2017
Commits on May 3, 2017
  1. Update surveyor.py

    keithmccammon committed May 3, 2017
  2. Fix output character encoding error

    keithmccammon committed May 3, 2017
    No need to call encode() when using Python 3.X.
Commits on May 2, 2017
  1. More file I/O fixes

    keithmccammon committed May 2, 2017
  2. Add crude support for IOC search

    keithmccammon committed May 2, 2017
    You can now feed Surveyor a list of indicators, one per line, and a
    corresponding indicator type (ip, domain, md5). It will report the unique set
    of attributes associated with the indicator.
Commits on Dec 19, 2016
Commits on Sep 23, 2016
  1. Add pushd

    keithmccammon committed Sep 23, 2016
Commits on Sep 10, 2016
Commits on Sep 6, 2016
  1. Change my email. Very important.

    keithmccammon committed Sep 6, 2016
    Not actually important at all.
Commits on Sep 2, 2016
  1. Merge pull request #1 from MHaggis/master

    keithmccammon committed Sep 2, 2016
    New definition files
Commits on Jun 27, 2016
  1. Join criteria for fewer total queries

    keithmccammon committed Jun 27, 2016
    Given something like:
    
        "TeamViewer Service": {
            "process_name": ["teamviewer.exe",
                             "teamviewer_service.exe"]
        }
    
    Where we used to run one query for each process name, we now do:
    
        (process_name:teamviewer.exe OR process_name:teamviewer_service.exe)
Commits on Jun 10, 2016
  1. Typo.

    keithmccammon committed Jun 10, 2016
Commits on Jun 7, 2016
  1. Moar remotey things.

    keithmccammon committed Jun 7, 2016
Commits on Jun 1, 2016
  1. Open output file in binary mode

    keithmccammon committed Jun 1, 2016
    To account for Windowsy Windowness (and probably for other really good reasons
    that are escaping me).
Commits on May 23, 2016
  1. Add filezilla

    keithmccammon committed May 23, 2016
Commits on May 21, 2016
Commits on May 20, 2016
Commits on May 18, 2016
  1. Definition updates.

    keithmccammon committed May 18, 2016
Commits on May 15, 2016
  1. Updated docstrings

    keithmccammon committed May 15, 2016
Commits on May 12, 2016