青藤HIDS一键安装

0x00 前言

最近文章更新频率低了，因为发现版权保护太差了，有些博主转载我文章发布原创，并给自己的课程或公众号引流，我们这些博主写文章不图赚钱，只为了点流量，到头来却发现流量也被剽窃，遇到几次原文章点举报抄袭系统也没反馈。

0x01 操作

linux 安装：

echo "10.xx.xx.xx sec-hids.yourcompany.com" >> /etc/hosts 
curl -k -s -L 'https://sec-hids.yourcompany.com:port/agent/download?k=e5cdb1f81d685048e9c408d52bd65a5ae2ba3944&group=1&protocol=0&root=true&runAccount=root&userAdd=false' | bash

查找进程： 

ps aux|grep titan

windows 安装：

$URL='https://sec-hids.yourcompany.com:port/plugins/v3.400.2002-win64/TitanAgent_for_All_x86_64.exe'; $FILE=$env:temp + '\TitanAgent_for_All.exe';[System.Net.ServicePointManager]::ServerCertificateValidationCallback={$true};[System.Net.ServicePointManager]::SecurityProtocol=[System.Net.SecurityProtocolType]::Tls12;((New-Object System.Net.WebClient).DownloadFile($URL, $FILE)); $PARAM = " --silent=yes --cover-conf=yes --cover-app=yes --url='https://sec-hids.yourcompany.com:port/agent/winDownloader?k=e5cdb1f81d685048e9c408d52bd65a5ae2ba3944&group=2&protocol=0' --install-path='C:\Program Files\TitanAgent' --agent_name='TitanAgent.exe' --guard_name='titan_guard.exe' --monitor_name='TitanMonitor.exe'"; $ps_obj= New-Object System.Diagnostics.Process; $ps_obj.StartInfo.Arguments = $PARAM; $ps_obj.StartInfo.FileName = $FILE; $ps_obj.Start(); $ps_obj.WaitForExit();