Create Windows.Applications.Edge.History2023.yaml#709
Create Windows.Applications.Edge.History2023.yaml#709AdrianX21 wants to merge 1 commit intoVelocidex:masterfrom
Conversation
Good morning, I have detected that the plugin to review Edge's history was not working correctly, as it was not displaying all the fields. I have modified the query to display all the consulted URLs by selecting the URL field within the history file. In my case, I use it for my own phishing process, and this makes it much easier.
|
Those specific sqlite based artifacts are getting phased out in favour of the sqlitehunter artifact. Would you like to make the changes there? |
|
Hello, I have tested it, but in this case, that plugin better suits our company's needs. We have implemented an automated workflow focused on phishing (in the near future, we will implement a V2, which will be an evolved virtual SOC that automatically generates a ticket and self-analyzes as if it were a level 1 technician). The operation is as follows: When a user reports an email as suspicious, it is analyzed with an in-house tool, and when it is determined to be malicious, a query is made on our corporate browsers, and that's when we call the plugin I shared. I can program in the new version, but for now, what I mentioned aligns more optimally with our company's needs. |
2 participants
Good morning, I have detected that the plugin to review Edge's history was not working correctly, as it was not displaying all the fields. I have modified the query to display all the consulted URLs by selecting the URL field within the history file. In my case, I use it for my own phishing process, and this makes it much easier.
