Merge branch 'salu90-master'

PwnDexter · Nov 24, 2020 · 4b36839 · 4b36839
2 parents b80e2e3 + 1e36c56
commit 4b36839
Show file tree

Hide file tree

Showing 5 changed files with 12 additions and 12 deletions.
diff --git a/SharpEDRChecker/DirectoryChecker.cs b/SharpEDRChecker/DirectoryChecker.cs
@@ -63,8 +63,8 @@ private static string CheckSubDirectory(string subdirectory)
                 if (matches.Count > 0)
                 {
                     Console.WriteLine($"[-] Suspicious directory found: {subdirectory}");
-                    Console.WriteLine($"[!] Matched on: {string.Join(", ", matches)}\n");
-                    return $"\t[-] {subdirectory} : {string.Join(", ", matches)}\n";
+                    Console.WriteLine($"[!] Matched on: {string.Join(", ", matches.ToArray())}\n");
+                    return $"\t[-] {subdirectory} : {string.Join(", ", matches.ToArray())}\n";
                 }
                 return "";
             } 

diff --git a/SharpEDRChecker/DriverChecker.cs b/SharpEDRChecker/DriverChecker.cs
@@ -113,8 +113,8 @@ internal static string CheckDriver(string driverFileName, string driverBaseName)
                     Console.WriteLine("[-] Suspicious driver found:" +
                                 $"\n\tSuspicious Module: {driverBaseName}" +
                                 $"\n\tFile Metadata: {metadata}" +
-                                $"\n[!] Matched on: {string.Join(", ", matches)}\n");
-                    return $"\t[-] {driverBaseName} : {string.Join(", ", matches)}\n";
+                                $"\n[!] Matched on: {string.Join(", ", matches.ToArray())}\n");
+                    return $"\t[-] {driverBaseName} : {string.Join(", ", matches.ToArray())}\n";
                 }
                 return "";
             }

diff --git a/SharpEDRChecker/ProcessChecker.cs b/SharpEDRChecker/ProcessChecker.cs
@@ -78,8 +78,8 @@ private static string CheckProcess(ManagementBaseObject process)
                                 $"\n\tParent Process: {processParent}" +
                                 $"\n\tProcess CmdLine: {processCmdLine}" +
                                 $"\n\tFile Metadata: {metadata}" +
-                                $"\n[!] Matched on: {string.Join(", ", matches)}\n");
-                    return $"\t[-] {processName} : {string.Join(", ", matches)}\n";
+                                $"\n[!] Matched on: {string.Join(", ", matches.ToArray())}\n");
+                    return $"\t[-] {processName} : {string.Join(", ", matches.ToArray())}\n";
                 }
                 return "";
             }
@@ -137,8 +137,8 @@ private static string CheckModule(ProcessModule module)
                     Console.WriteLine("[-] Suspicious modload found in your process:" +
                                 $"\n\tSuspicious Module: {module.FileName}" +
                                 $"\n\tFile Metadata: {metadata}" +
-                                $"\n[!] Matched on: {string.Join(", ", matches)}\n");
-                    return $"\t[-] {module.FileName} : {string.Join(", ", matches)}\n";
+                                $"\n[!] Matched on: {string.Join(", ", matches.ToArray())}\n");
+                    return $"\t[-] {module.FileName} : {string.Join(", ", matches.ToArray())}\n";
                 }
                 return "";
             }

diff --git a/SharpEDRChecker/Program.cs b/SharpEDRChecker/Program.cs
@@ -2,9 +2,9 @@
 
 namespace SharpEDRChecker
 {
-    class Program
+    public class Program
     {
-        static void Main(string[] args)
+        public static void Main(string[] args)
         {
             try
             {

diff --git a/SharpEDRChecker/ServiceChecker.cs b/SharpEDRChecker/ServiceChecker.cs
@@ -79,8 +79,8 @@ private static string CheckService(ManagementBaseObject service)
                            $"\n\tStatus: {serviceState}" +
                            $"\n\tProcess ID: {servicePID}" +
                            $"\n\tFile Metadata: {metadata}" +
-                           $"\n[!] Matched on: {string.Join(", ", matches)}\n");
-                    return $"\t[-] {serviceName} : {string.Join(", ", matches)}\n";
+                           $"\n[!] Matched on: {string.Join(", ", matches.ToArray())}\n");
+                    return $"\t[-] {serviceName} : {string.Join(", ", matches.ToArray())}\n";
                 }
                 return "";
             }