greysec/phi-scanner
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
master
phi-scanner/results/multi_host_phi_report.html
T
ghstshdw d2d705c41b Initial commit: phi-scanner
2026-05-08 17:44:26 -05:00

57 lines
12 KiB
HTML
Raw Permalink Blame History

<!DOCTYPE html>
<html><head><meta charset="utf-8"><title>GreySec PHI Scanner — Full Pipeline Report</title>
<style>
body{font-family:'Courier New',monospace;background:#1e1e1e;color:#f8f8f2;margin:0;padding:20px}
h1{color:#a6e22e;border-bottom:1px solid #444;padding-bottom:8px}
h2{color:#66d9ef;margin-top:28px}
.summary{background:#2d2d2d;border:1px solid #444;padding:16px;border-radius:4px;margin:16px 0}
.meta{color:#888;font-size:12px;margin-bottom:20px}
table{width:100%;border-collapse:collapse;margin:12px 0}
th{background:#444;color:#a6e22e;text-align:left;padding:8px;border-bottom:2px solid #555}
td{padding:7px 10px;border-bottom:1px solid #333}
tr:hover{background:#2a2a2a}
.high{color:#f92672;font-weight:bold}
.med{color:#e6db74}
.low{color:#888}
.source-section{margin:24px 0;padding:16px;background:#252525;border-left:3px solid #66d9ef}
.filename{color:#a6e22e;font-size:13px}
.lineno{color:#555;font-size:11px}
</style></head><body>
<h1>GreySec PHI Scanner — Full Pipeline Report</h1>
<div class="meta">Generated: 2026-05-04 15:37 | GreySec Security</div>
<div class="summary">
<h2>Executive Summary</h2>
<table>
<tr><th>Source</th><th>Type</th><th>HIGH</th><th>MED</th><th>LOW</th><th>Total</th></tr>
<tr><td>WinServer 2022 (192.168.68.20)</td><td>Windows</td><td class="high">8</td><td class="med">30</td><td>0</td><td>48</td></tr>
<tr><td>Win10 Desktop (192.168.68.15)</td><td>Windows</td><td class="high">4</td><td class="med">384</td><td>0</td><td>2,454</td></tr>
<tr><td>MSSQL GreySecPHI (localhost:14330)</td><td>Database</td><td class="high">9</td><td class="med">5</td><td>0</td><td>14</td></tr>
<tr style="background:#2d2d2a;font-weight:bold"><td>TOTAL</td><td></td><td class="high">21</td><td class="med">419</td><td>0</td><td>2,516</td></tr>
</table>
<p><strong>Note:</strong> Win10 total includes noise (Defender/Chocolatey). Real PHI: 4 SSNs from Patient_Records.txt on Desktop.</p>
</div>
<div class="source-section">
<h2>WinServer 2022 (192.168.68.20) — PHI_seed/ (Seeded)</h2>
<p>5 files: insurance_claims.json, nurse_notes.log, patient_db_export.json, patient_email.txt (+ 1 duplicate)</p>
<table><tr><th>Type</th><th>Value</th><th>File</th><th>Line</th></tr><tr><td class="high">SSN</td><td>573-44-9281</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="high">SSN</td><td>819-77-3341</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="high">SSN</td><td>622-11-0099</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="high">SSN</td><td>441-28-7763</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">MRN</td><td>001881</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">MRN</td><td>001882</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">MRN</td><td>001883</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">MRN</td><td>001884</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>772-441-0091</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>1154998722</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>414) 555-0174</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>992-448-1177</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>1154998722</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>513) 555-2288</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>772-441-9914</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>1154998722</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>214) 555-6610</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>992-441-8817</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>1154998722</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>206) 555-3390</td><td class="filename">C:\phi_test\PHI_seed\insurance_claims.json</td><td class="lineno">?</td></tr><tr><td class="high">SSN</td><td>662-41-0039</td><td class="filename">C:\phi_test\PHI_seed\nurse_notes.log</td><td class="lineno">?</td></tr><tr><td class="med">MRN</td><td>992241</td><td class="filename">C:\phi_test\PHI_seed\nurse_notes.log</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>503) 555-9914</td><td class="filename">C:\phi_test\PHI_seed\nurse_notes.log</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>772-441-0091</td><td class="filename">C:\phi_test\PHI_seed\nurse_notes.log</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>425) 555-8821</td><td class="filename">C:\phi_test\PHI_seed\nurse_notes.log</td><td class="lineno">?</td></tr><tr><td class="med">Email</td><td>beverly.moss@homeemail.net</td><td class="filename">C:\phi_test\PHI_seed\nurse_notes.log</td><td class="lineno">?</td></tr><tr><td class="med">Email</td><td>david.szymanski@microsoft.com</td><td class="filename">C:\phi_test\PHI_seed\nurse_notes.log</td><td class="lineno">?</td></tr><tr><td class="high">SSN</td><td>573-44-9281</td><td class="filename">C:\phi_test\PHI_seed\patient_db_export.json</td><td class="lineno">?</td></tr><tr><td class="high">SSN</td><td>819-77-3341</td><td class="filename">C:\phi_test\PHI_seed\patient_db_export.json</td><td class="lineno">?</td></tr><tr><td class="high">SSN</td><td>622-11-0099</td><td class="filename">C:\phi_test\PHI_seed\patient_db_export.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>414) 555-0174</td><td class="filename">C:\phi_test\PHI_seed\patient_db_export.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>513) 555-2288</td><td class="filename">C:\phi_test\PHI_seed\patient_db_export.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>214) 555-6610</td><td class="filename">C:\phi_test\PHI_seed\patient_db_export.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>1154998722</td><td class="filename">C:\phi_test\PHI_seed\patient_db_export.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>1154998722</td><td class="filename">C:\phi_test\PHI_seed\patient_db_export.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>1154998722</td><td class="filename">C:\phi_test\PHI_seed\patient_db_export.json</td><td class="lineno">?</td></tr><tr><td class="med">Email</td><td>jwhitfield@email.com</td><td class="filename">C:\phi_test\PHI_seed\patient_db_export.json</td><td class="lineno">?</td></tr><tr><td class="med">Email</td><td>jobrien@gmail.com</td><td class="filename">C:\phi_test\PHI_seed\patient_db_export.json</td><td class="lineno">?</td></tr><tr><td class="med">Email</td><td>mrodriguez@texashealth.net</td><td class="filename">C:\phi_test\PHI_seed\patient_db_export.json</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>503) 555-9914</td><td class="filename">C:\phi_test\PHI_seed\patient_email.txt</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>312) 555-9912</td><td class="filename">C:\phi_test\PHI_seed\patient_email.txt</td><td class="lineno">?</td></tr><tr><td class="med">Phone</td><td>312) 555-9913</td><td class="filename">C:\phi_test\PHI_seed\patient_email.txt</td><td class="lineno">?</td></tr><tr><td class="med">Email</td><td>beverly.moss@homeemail.net</td><td class="filename">C:\phi_test\PHI_seed\patient_email.txt</td><td class="lineno">?</td></tr><tr><td class="med">Email</td><td>beverly.moss@homeemail.net</td><td class="filename">C:\phi_test\PHI_seed\patient_email.txt</td><td class="lineno">?</td></tr><tr><td class="med">Email</td><td>records@midwestmed.org</td><td class="filename">C:\phi_test\PHI_seed\patient_email.txt</td><td class="lineno">?</td></tr><tr><td class="med">Email</td><td>records@midwestmed.org</td><td class="filename">C:\phi_test\PHI_seed\patient_email.txt</td><td class="lineno">?</td></tr><tr><td class="med">Email</td><td>beverly.moss@homeemail.net</td><td class="filename">C:\phi_test\PHI_seed\patient_email.txt</td><td class="lineno">?</td></tr></table></div>
<div class="source-section">
<h2>Win10 Desktop (192.168.68.15) — Real PHI (Pre-existing)</h2>
<table><tr><th>Type</th><th>Value</th><th>File</th><th>Line</th></tr><tr><td class="high">SSN</td><td>123-45-6789</td><td class="filename">C:\Users\vagrant\Desktop\Patient_Records.txt</td><td class="lineno">?</td></tr><tr><td class="high">SSN</td><td>987-65-4321</td><td class="filename">C:\Users\vagrant\Desktop\Patient_Records.txt</td><td class="lineno">?</td></tr><tr><td class="high">SSN</td><td>555-12-3456</td><td class="filename">C:\Users\vagrant\Desktop\Patient_Records.txt</td><td class="lineno">?</td></tr><tr><td class="high">SSN</td><td>444-55-6666</td><td class="filename">C:\Users\vagrant\Desktop\Patient_Records.txt</td><td class="lineno">?</td></tr></table></div>
<div class="source-section">
<h2>MSSQL GreySecPHI (localhost:14330) — Seeded PHI in DB</h2>
<table><tr><th>Type</th><th>Value</th><th>Table</th><th>Score</th></tr><tr><td class="high">SSN</td><td>573-44-9281</td><td>Patients</td><td>0.50</td></tr><tr><td class="high">SSN</td><td>819-77-3341</td><td>Patients</td><td>0.50</td></tr><tr><td class="high">SSN</td><td>622-11-0099</td><td>Patients</td><td>0.50</td></tr><tr><td class="high">SSN</td><td>441-28-7763</td><td>Patients</td><td>0.50</td></tr><tr><td class="high">SSN</td><td>662-41-0039</td><td>Patients</td><td>0.50</td></tr><tr><td class="high">SSN</td><td>573-44-9281</td><td>Claims</td><td>0.50</td></tr><tr><td class="high">SSN</td><td>819-77-3341</td><td>Claims</td><td>0.50</td></tr><tr><td class="high">SSN</td><td>622-11-0099</td><td>Claims</td><td>0.50</td></tr><tr><td class="high">SSN</td><td>441-28-7763</td><td>Claims</td><td>0.50</td></tr><tr><td class="med">EMAIL</td><td>jwhitfield@email.com</td><td>Patients</td><td>1.00</td></tr><tr><td class="med">EMAIL</td><td>schen@midwestmed.org</td><td>Patients</td><td>1.00</td></tr><tr><td class="med">EMAIL</td><td>jobrien@gmail.com</td><td>Patients</td><td>1.00</td></tr><tr><td class="med">EMAIL</td><td>mrodriguez@texashealth.net</td><td>Patients</td><td>1.00</td></tr><tr><td class="med">EMAIL</td><td>rwashington@email.com</td><td>Patients</td><td>1.00</td></tr></table></div>
<div class="source-section">
<h2>Deployment Methods</h2>
<table>
<tr><th>Method</th><th>Target</th><th>Credentials</th><th>Status</th></tr>
<tr><td class="med">WinRM NTLM</td><td>WinServer 2022 (.20)</td><td>administrator / vagrant</td><td class="high">WORKING</td></tr>
<tr><td class="med">atsvc DCERPC</td><td>Win10 Desktop (.15)</td><td>labuser / LabPass123!</td><td class="high">WORKING</td></tr>
<tr><td class="med">MSSQL + Presidio</td><td>localhost:14330</td><td>sa / GreySecDBTest1!</td><td class="high">WORKING</td></tr>
<tr><td class="med">PowerShell Script</td><td>C:\phi_test\</td><td>N/A (agentless)</td><td class="high">WORKING</td></tr>
</table>
</div>
</body></html>
Reference in New Issue View Git Blame Copy Permalink