LivingInSyn · LivingInSyn · Apr 11, 2025 · Sep 17, 2024 · Sep 18, 2024 · Sep 18, 2024
diff --git a/.github/workflows/build_release.yml b/.github/workflows/build_release.yml
@@ -20,9 +20,11 @@ jobs:
     - name: execute py script # run file
       run: |
         python JsonOutput/JsonOutput.py
+        python SigmaOutput/SigmaOutput.py
+        zip -r ./ci-output/sigma_rules.zip ./ci-output/sigma
     - name: create release
       run: |
-        gh release create $TITLE ./ci-output/rmms.json -F CHANGELOG.md
+        gh release create $TITLE ./ci-output/rmms.json ./ci-output/sigma_rules.zip -F CHANGELOG.md
       env:
         GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         TITLE: ${{ github.ref_name }}
diff --git a/README.md b/README.md
@@ -53,6 +53,13 @@ NetConn:
     Ports:
         - 443
         - 8080
+Meta:
+  ID: <a guid>
+  Description: A description of the RMM/access tool
+  Date: YYYY-MM-DD
+  Modified: YYYY-MM-DD
+  References:
+  - https://Some_Link.com
 ```
 
 Example (from `./RMMs/TeamViewer.yml`):
@@ -73,6 +80,13 @@ NetConn:
   - '*.teamviewer.com'
   Ports:
   - 5938
+Meta:
+  ID: 85F6550F-8693-4B68-A081-5DBDA0913014
+  Description: Teamviewer allows for remote connections to a machine
+  Date: 2023-11-18
+  Modified: 2023-11-18
+  References:
+  - 'https://www.teamviewer.com/en-us/'
 ```
 
 A blank to make life easy for creating PRs:
@@ -92,4 +106,11 @@ NetConn:
     - 
   Ports:
     - 443
+Meta:
+  ID:
+  Description:
+  Date:
+  Modified:
+  References:
+  - ''
 ```
diff --git a/RMMs/AnyDesk.yml b/RMMs/AnyDesk.yml
@@ -18,3 +18,10 @@ NetConn:
   - 50001
   - 50002
   - 50003
+Meta:
+  ID: de7dd0b8-b924-4a6a-b433-3428b529119a
+  Description: AnyDesk is a remote desktop tool
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'https://anydesk.com'
diff --git a/RMMs/Atera.yml b/RMMs/Atera.yml
@@ -33,3 +33,10 @@ NetConn:
   - a32dl55qcodech-ats.iot.eu-west-1.amazonaws.com
   Ports:
   - 443
+Meta:
+  ID: 8A1D7AE2-4613-49DB-B7DC-B6BCD88F48C7
+  Description: Atera is a RMM solution
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'https://www.atera.com'
diff --git a/RMMs/ChromeRemoteDesktop.yml b/RMMs/ChromeRemoteDesktop.yml
@@ -35,4 +35,11 @@ NetConn:
         - remotedesktop.google.com
     Ports:
         - 443
-        - 3478
+        - 3478
+Meta:
+  ID: 69c85e30-48c9-4072-937a-c467e2511eeb
+  Description: Chrome Remote Desktop is a chrome plugin that provides remote access
+  Date: 2024-10-21
+  Modified: 2024-10-21
+  References:
+  - 'https://chromewebstore.google.com/detail/chrome-remote-desktop/inomeogfingihgjfjlpeplalcfajhgai?hl=en'
diff --git a/RMMs/FleetDeck.yml b/RMMs/FleetDeck.yml
@@ -17,3 +17,10 @@ NetConn:
   - fleetdm.com
   Ports:
   - 443
+Meta:
+  ID: 64B024F1-C219-497D-98E0-F2DD198B32F3
+  Description: FleetDeck is a remote desktop and remote terminal solution
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'https://fleetdeck.io'
diff --git a/RMMs/GoToMyPC.yml b/RMMs/GoToMyPC.yml
@@ -22,3 +22,10 @@ NetConn:
   Ports:
   - 80
   - 443
+Meta:
+  ID: 48D7D443-787B-431C-A528-5BA5C2C75301
+  Description: GoToMyPC is a remote desktop solution
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'https://get.gotomypc.com/'
diff --git a/RMMs/GoToResolve.yml b/RMMs/GoToResolve.yml
@@ -32,3 +32,10 @@ NetConn:
   Ports:
   - 3489
   - 443
+Meta:
+  ID: CCE2B119-8CBB-45CE-AFE8-5BA4D7057E3D
+  Description: GoToResolve is an RMM from goto
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'https://www.goto.com/it-management/resolve'
diff --git a/RMMs/Level.io.yml b/RMMs/Level.io.yml
@@ -18,3 +18,10 @@ NetConn:
   - 80
   - 3478
   - 5349
+Meta:
+  ID: D3ABD31D-D490-474B-B62A-625906037A6C
+  Description: Level.io is an RMM
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'level.io'
diff --git a/RMMs/MeshCentral.yml b/RMMs/MeshCentral.yml
@@ -10,3 +10,10 @@ Executables:
 NetConn:
   Domains:
   Ports:
+Meta:
+  ID: 55EC5C27-A1C8-473F-BE51-4979EC10A7DA
+  Description: MeshCentral allows for 'full computer management'
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'https://github.com/Ylianst/MeshCentral'
diff --git a/RMMs/N-Able.yml b/RMMs/N-Able.yml
@@ -36,3 +36,10 @@ NetConn:
   - 443
   - 20
   - 21
+Meta:
+  ID: E37B1F63-542E-46EF-965C-92189AFFEA71
+  Description: N-Able is an RMM
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'https://www.n-able.com/'
diff --git a/RMMs/NetSupport.yml b/RMMs/NetSupport.yml
@@ -14,3 +14,10 @@ NetConn:
   Domains: null
   Ports:
   - 443
+Meta:
+  ID: 9B9E5782-E7CC-4525-A933-427030E1725E
+  Description: NetSupport is an RMM 
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'https://www.netsupportsoftware.com/'
diff --git a/RMMs/NinjaRMM.yml b/RMMs/NinjaRMM.yml
@@ -18,3 +18,10 @@ NetConn:
   Ports:
   - 80
   - 443
+Meta:
+  ID: 3507D8B2-6C1B-4468-9057-6F17703EE0D4
+  Description: NinjaRMM is a RMM
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'https://www.ninjaone.com/'
diff --git a/RMMs/NoMachine.yml b/RMMs/NoMachine.yml
@@ -77,3 +77,10 @@ NetConn:
   - 4022
   - 4080
   - 4443
+Meta:
+  ID: 68305084-9944-462C-B3BF-ACD17D235EEB
+  Description: NoMachine is a remote desktop tool
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'www.nomachine.com'
diff --git a/RMMs/Pulseway.yml b/RMMs/Pulseway.yml
@@ -13,3 +13,11 @@ NetConn:
   - pulseway.com
   Ports:
   - 443
+Meta:
+  ID: 436E7F78-12D3-4379-A6E6-870671F95590
+  Description: Pulseway is a RMM
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'https://www.pulseway.com/'
+
diff --git a/RMMs/QuickAssist.yml b/RMMs/QuickAssist.yml
@@ -13,3 +13,10 @@ NetConn:
     - remoteassistanceprodacs*
   Ports:
     - 443
+Meta:
+  ID: 1E21B1CA-DD6D-4505-9018-C9F8C3F40ACC
+  Description: quickassist is a tool from microsoft that can be used for remote control
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'https://support.microsoft.com/en-us/windows/install-quick-assist-c17479b7-a49d-4d12-938c-dbfb97c88bca'
diff --git a/RMMs/RustDesk.yml b/RMMs/RustDesk.yml
@@ -18,3 +18,10 @@ NetConn:
   - 21117
   - 21118
   - 21119
+Meta:
+  ID: 074EC611-F61F-4C12-8404-DEADE627F490
+  Description: RustDesk is an open source remote access tool
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'https://rustdesk.com/'
diff --git a/RMMs/ScreenConnect.yml b/RMMs/ScreenConnect.yml
@@ -22,3 +22,10 @@ NetConn:
   - 80
   - 443
   - 8041
+Meta:
+  ID: 0B1D916C-A462-4BC9-A0D7-B416DF45E8A6
+  Description: Screenconnect is a remote access tool from connectwise
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'https://screenconnect.connectwise.com/'
diff --git a/RMMs/SimpleHelp.yml b/RMMs/SimpleHelp.yml
@@ -14,3 +14,10 @@ Executables:
 NetConn:
     Domains:
     Ports:
+Meta:
+    ID: E3CF0B3A-E263-41FA-8D14-BF10CA721A06
+    Description: Simplehelp is a remote access tool
+    Date: 2024-09-19
+    Modified: 2024-09-19
+    References:
+    - 'simple-help.com'
diff --git a/RMMs/Splashtop.yml b/RMMs/Splashtop.yml
@@ -21,3 +21,10 @@ NetConn:
   - '*.splashtop.eu'
   Ports:
   - 443
+Meta:
+  ID: 532F8698-8390-4A8E-B9E6-DA244BEF341C
+  Description: Splashtop is a remote access tool
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'splashtop.com'
diff --git a/RMMs/Supremo.yml b/RMMs/Supremo.yml
@@ -19,3 +19,10 @@ NetConn:
   - 80
   - 443
   - 5938
+Meta:
+  ID: 506CBD0D-4A9C-43D6-AE13-301CA4E0EF49
+  Description: Supremo is a remote access tool
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'https://www.supremocontrol.com/'
diff --git a/RMMs/TacticalRMM.yml b/RMMs/TacticalRMM.yml
@@ -11,3 +11,10 @@ NetConn:
   Domains: null
   Ports:
   - 443
+Meta:
+  ID: 47B135F7-39E8-4916-8793-ACC1160EC6E4
+  Description: Tactical RMM is a free RMM utility
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'tacticalrmm.com'
diff --git a/RMMs/Tailscale.yml b/RMMs/Tailscale.yml
@@ -21,3 +21,11 @@ NetConn:
   UDPPorts:
   - 41641
   - 3478
+Meta:
+  ID: F5B51A06-5803-4AAF-AE63-CEAB89238BD7
+  Description: Tailscale is a VPN provider
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'tailscale.com'
+
diff --git a/RMMs/TeamViewer.yml b/RMMs/TeamViewer.yml
@@ -13,3 +13,10 @@ NetConn:
   - '*.teamviewer.com'
   Ports:
   - 5938
+Meta:
+  ID: 85F6550F-8693-4B68-A081-5DBDA0913014
+  Description: Teamviewer allows for remote connections to a machine
+  Date: 2023-11-18
+  Modified: 2023-11-18
+  References:
+  - 'https://www.teamviewer.com/en-us/'
diff --git a/RMMs/VSCodeTunnel.yml b/RMMs/VSCodeTunnel.yml
@@ -14,3 +14,10 @@ NetConn:
     - '*.devtunnels.ms'
   Ports:
     - 443
+Meta:
+  ID: 088B75D2-9CC5-4288-A695-2B05B46DCC72
+  Description: VSCode tunnels allow connection from remote hosts
+  Date: 2024-09-10
+  Modified: 2024-09-10
+  References:
+  - 'https://code.visualstudio.com/docs/remote/tunnels'
diff --git a/RMMs/ZohoAssist.yml b/RMMs/ZohoAssist.yml
@@ -28,3 +28,10 @@ NetConn:
   Ports:
   - 80
   - 443
+Meta:
+  ID: 4D4BB5A6-CA27-499A-A6B4-3C7BE4971525
+  Description: Zoho assist is free remote assistance tool
+  Date: 2023-11-18
+  Modified: 2023-11-18
+  References:
+  - 'https://www.zoho.com/assist/'
diff --git a/RMMs/ngrok.yml b/RMMs/ngrok.yml
@@ -16,3 +16,10 @@ NetConn:
   - 'tunnel.*.ngrok.com'
   Ports:
   - 443
+Meta:
+  ID: 71D2CA02-3905-4DD7-AD0E-C5443F5AC81B
+  Description: ngrok is a tunneling tool
+  Date: 2024-09-19
+  Modified: 2024-09-19
+  References:
+  - 'ngrok.com'