MHaggis/LOLProtocolHandlers.md

Created August 31, 2023 20:30

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/MHaggis/a3ce0575f7e424419d22c14445005d3f.js"></script>
Save MHaggis/a3ce0575f7e424419d22c14445005d3f to your computer and use it in GitHub Desktop.

Download ZIP

Raw

LOLProtocolHandlers.md

Inventory Protocol Handlers

Splunk:

[powershell://LOLProtocolHandlers]
script = Get-Item Registry::HKEY_CLASSES_ROOT\*| Select-Object "Property", "PSChildName"  | ForEach-Object { $_ | ConvertTo-Json; Write-Host "" }
#schedule = 0 0 * * *
schedule = */1 * * * *
sourcetype = PwSh:LOLProtocolHandlers
index=win

Or just run this:

Get-Item Registry::HKEY_CLASSES_ROOT\*| Select-Object "Property", "PSChildName"  | ForEach-Object { $_ | ConvertTo-Json; Write-Host "" }

cyberbuff commented Aug 31, 2023

Mac Protocol Handlers can be found using this

/System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/LaunchServices.framework/Versions/A/Support/lsregister -dump URLSchemeBinding