-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path.gitignore
More file actions
227 lines (209 loc) · 3.42 KB
/
.gitignore
File metadata and controls
227 lines (209 loc) · 3.42 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
# Recon / web recon outputs
target.txt
target_ip.txt
env_web_recon.txt
env.out
env_*.txt
# DNS / network text outputs
dig_*.txt
dig_any.txt
dig_a.txt
dig_ns.txt
dig_soa.txt
nslookup.txt
host.txt
whois.txt
reverse_ip.txt
# ICMP / traceroute / ping
ping.txt
traceroute.txt
tracepath.txt
traceroute_*.txt
# HTTP / page captures / headers / certs
curl_*.txt
curl_http_headers.txt
curl_https_headers.txt
page_http.html
page_https.html
httprobe.out
whatweb_*.txt
whatweb*.txt
gowitness_http/
gowitness_*
openssl_sclient.pem
openssl_*.pem
openssl_cert.txt
openssl_*.txt
sslscan.txt
sslyze.txt
ssl_lookup.txt
# Scanners & brute tools
nmap_full.*
nmap_*.txt
nmap_*.gnmap
nmap_*.xml
nmap_ip_top_ports.txt
nmap_web_services.txt
masscan.out
masscan.*
nikto*.txt
nikto.out
gobuster*.txt
gobuster_*.txt
hydra.out
# SMB / enumeration outputs
enum4linux.out
smbclient.out
smbmap.out
# SNMP / LDAP / other tools
snmpwalk.out
ldapsearch.out
# Generic outputs/logs
*.out
*.log
*/logs/
*/output/
*.tmp
*.temp
*.cache
*.bak
# Certificates / keys discovered during scans (do not commit)
*.pem
*.key
*.crt
# Windows-specific outputs
curl_http_headers.txt
curl_https_headers.txt
page_http.html
page_https.html
openssl_sclient.pem
ssl_lookup.txt
nikto_http.txt
nikto.out
nmap_full.*
# Tool directories / DBs
/.gowitness/
/.gowitness/
/tools-output/
/recon-output/
/recon_results/
/reports/
/screenshots/
/screenshots_*/
# Ignore common OS/editor files
.DS_Store
Thumbs.db
.vscode/
.idea/
*.swp
# === Forensic output directories ===
/forensic_output/
/forensic_output_varlog/
forensic_output_*/
forensic_output.zip
forensic_output_varlog.tar.gz
# === Windows forensic exports ===
*.evtx
nettrace.etl
pfirewall.log
event_files_listing.txt
Security.txt
System.txt
Application.txt
Sysmon.txt
dns_cache.txt
usn_journal.txt
wmic_*.txt
tasklist_*.txt
firewall_rules.txt
installed_programs.txt
users.txt
local_administrators.txt
mountvol.txt
iis_logs_listing.txt
# === Linux forensic logs and archives ===
dmesg.txt
journalctl_*.txt
syslog
messages
auth.log
secure
audit.log
ps_aux.txt
ss_*.txt
netstat_*.txt
lsof_*.txt
ip_*.txt
arp.txt
iptables_rules.txt
nft_rules.txt
conntrack.txt
top_procs.txt
crontab_current.txt
cron_dirs.txt
ssh_related_logs_snippet.txt
sudo_related_logs_snippet.txt
varlog_files_listing.txt
df.txt
mounts.txt
# === Malware scan outputs ===
malware_scan_*.txt
suspicious_processes.txt
suspicious_network_connections.txt
abnormal_behaviour.log
unknown_connections.txt
potential_malware.txt
virus_total_results.txt
clamav_scan.log
rkhunter.log
chkrootkit.log
malicious_files_list.txt
malware_report_*.txt
scan_summary.txt
malware_output/
malware_logs/
forensics_scan_output/
# === Windows-specific artifacts ===
wmic_process_list.txt
tasklist.txt
netstat_abnormal.txt
suspicious_autoruns.txt
running_services.txt
firewall_logs.txt
defender_scan_results.txt
event_viewer_export.evtx
registry_dump_*.reg
process_dump_*.dmp
dll_injections.txt
powershell_scan_results.txt
scheduled_tasks.txt
prefetch_list.txt
temp_file_listing.txt
# === Linux-specific artifacts ===
ps_aux_suspicious.txt
netstat_connections.txt
ss_connections.txt
lsof_network.txt
iptables_rules.txt
top_output.txt
chkrootkit.txt
rkhunter.txt
clamav_scan.txt
cron_jobs.txt
suspicious_cron.txt
startup_services.txt
systemd_services.txt
# === Directory exclusions ===
/outputs/
/output/
/logs/
/reports/
/results/
/tmp_scan/
/tmp_malware/
/analysis_output/
/scans/
/investigation/
/dumps/
/suspicious_scan/
/suspicious_scan.zip