Rule Info
Name
Host Information Enumeration Via Vim-Cmd
Author
Nasreddine Bencherchali (Nextron Systems)
Description
Detects the execution of "vim-cmd" with the "hostsvc/hostsummary" flag, in order to get summary information about the ESXi host, such as it's version, cpu model, total memory, etc.
Date
2024-08-14 00:00:00
Modified
None
Id
59767009-c24b-4ee3-9faa-fe54aee8d72d
Tags
attack.execution
Type
Nextron Sigma feed only (private)