Manual
Search
⌃K
Manual
Search
⌃K
BluSapphire Manuals
BluSapphire
Detections
BluSniper
Untitled
BluArmour
Introduction
BluGenie
Full Function List
Functions by Category
Artifacts
Example Template
Tactical Artifacts by Category
Combination Query
EventLog Query
File and Folder Query
Query for malicious file types in all users and system temp directories
Query Malicious file types from any directory not including the default OS and Install directories
Query all users for their Powershell Profile content for Powershell, Powershell_ISE, and VS Code
Query to Determine if any lolbin files are installed outside the normal OS and Program Files dir's
Network Query
Process Query
Registry Query
Powered By GitBook

File and Folder Query

Here are the articles in this section:
Query for malicious file types in all users and system temp directories
Query Malicious file types from any directory not including the default OS and Install directories
Query all users for their Powershell Profile content for Powershell, Powershell_ISE, and VS Code
Query to Determine if any lolbin files are installed outside the normal OS and Program Files dir's
Previous
Query the Windows System Log for 104, 517, 1102
Next
Query for malicious file types in all users and system temp directories
Last modified 1yr ago