Generated docs from job=generate-docs branch=master [ci skip]

atomics/Indexes/Indexes-CSV/index.csv

@@ -595,6 +595,9 @@ privilege-escalation,T1546,Event Triggered Execution,2,HKLM - Persistence using
 privilege-escalation,T1546,Event Triggered Execution,3,HKCU - Persistence using CommandProcessor AutoRun key (Without Elevation),36b8dbf9-59b1-4e9b-a3bb-36e80563ef01,powershell
 privilege-escalation,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,1,Add command to .bash_profile,94500ae1-7e31-47e3-886b-c328da46872f,sh
 privilege-escalation,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,2,Add command to .bashrc,0a898315-4cfa-4007-bafe-33a4646d115f,sh
+privilege-escalation,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,3,Append to the system shell profile,694b3cc8-6a78-4d35-9e74-0123d009e94b,sh
+privilege-escalation,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,4,Append commands user shell profile,bbdb06bc-bab6-4f5b-8232-ba3fbed51d77,sh
+privilege-escalation,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,5,System shell profile scripts,8fe2ccfd-f079-4c03-b1a9-bd9b362b67d4,sh
 privilege-escalation,T1134.005,Access Token Manipulation: SID-History Injection,1,Injection SID-History with mimikatz,6bef32e5-9456-4072-8f14-35566fb85401,command_prompt
 privilege-escalation,T1547.002,Authentication Package,1,Authentication Package,be2590e8-4ac3-47ac-b4b5-945820f2fbe9,powershell
 privilege-escalation,T1546.015,Event Triggered Execution: Component Object Model Hijacking,1,COM Hijacking - InprocServer32,48117158-d7be-441b-bc6a-d9e36e47b52b,powershell
@@ -867,6 +870,9 @@ persistence,T1546,Event Triggered Execution,2,HKLM - Persistence using CommandPr
 persistence,T1546,Event Triggered Execution,3,HKCU - Persistence using CommandProcessor AutoRun key (Without Elevation),36b8dbf9-59b1-4e9b-a3bb-36e80563ef01,powershell
 persistence,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,1,Add command to .bash_profile,94500ae1-7e31-47e3-886b-c328da46872f,sh
 persistence,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,2,Add command to .bashrc,0a898315-4cfa-4007-bafe-33a4646d115f,sh
+persistence,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,3,Append to the system shell profile,694b3cc8-6a78-4d35-9e74-0123d009e94b,sh
+persistence,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,4,Append commands user shell profile,bbdb06bc-bab6-4f5b-8232-ba3fbed51d77,sh
+persistence,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,5,System shell profile scripts,8fe2ccfd-f079-4c03-b1a9-bd9b362b67d4,sh
 persistence,T1547.002,Authentication Package,1,Authentication Package,be2590e8-4ac3-47ac-b4b5-945820f2fbe9,powershell
 persistence,T1546.015,Event Triggered Execution: Component Object Model Hijacking,1,COM Hijacking - InprocServer32,48117158-d7be-441b-bc6a-d9e36e47b52b,powershell
 persistence,T1546.015,Event Triggered Execution: Component Object Model Hijacking,2,Powershell Execute COM Object,752191b1-7c71-445c-9dbe-21bb031b18eb,powershell

atomics/Indexes/Indexes-CSV/linux-index.csv

@@ -119,6 +119,9 @@ persistence,T1053.006,Scheduled Task/Job: Systemd Timers,2,Create a user level t
 persistence,T1053.006,Scheduled Task/Job: Systemd Timers,3,Create a system level transient systemd service and timer,d3eda496-1fc0-49e9-aff5-3bec5da9fa22,sh
 persistence,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,1,Add command to .bash_profile,94500ae1-7e31-47e3-886b-c328da46872f,sh
 persistence,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,2,Add command to .bashrc,0a898315-4cfa-4007-bafe-33a4646d115f,sh
+persistence,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,3,Append to the system shell profile,694b3cc8-6a78-4d35-9e74-0123d009e94b,sh
+persistence,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,4,Append commands user shell profile,bbdb06bc-bab6-4f5b-8232-ba3fbed51d77,sh
+persistence,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,5,System shell profile scripts,8fe2ccfd-f079-4c03-b1a9-bd9b362b67d4,sh
 persistence,T1037.004,Boot or Logon Initialization Scripts: Rc.common,2,rc.common,c33f3d80-5f04-419b-a13a-854d1cbdbf3a,bash
 persistence,T1037.004,Boot or Logon Initialization Scripts: Rc.common,3,rc.local,126f71af-e1c9-405c-94ef-26a47b16c102,bash
 persistence,T1543.002,Create or Modify System Process: Systemd Service,1,Create Systemd Service,d9e4f24f-aa67-4c6e-bcbf-85622b697a7c,bash
@@ -145,6 +148,9 @@ privilege-escalation,T1053.006,Scheduled Task/Job: Systemd Timers,2,Create a use
 privilege-escalation,T1053.006,Scheduled Task/Job: Systemd Timers,3,Create a system level transient systemd service and timer,d3eda496-1fc0-49e9-aff5-3bec5da9fa22,sh
 privilege-escalation,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,1,Add command to .bash_profile,94500ae1-7e31-47e3-886b-c328da46872f,sh
 privilege-escalation,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,2,Add command to .bashrc,0a898315-4cfa-4007-bafe-33a4646d115f,sh
+privilege-escalation,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,3,Append to the system shell profile,694b3cc8-6a78-4d35-9e74-0123d009e94b,sh
+privilege-escalation,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,4,Append commands user shell profile,bbdb06bc-bab6-4f5b-8232-ba3fbed51d77,sh
+privilege-escalation,T1546.004,Event Triggered Execution: .bash_profile and .bashrc,5,System shell profile scripts,8fe2ccfd-f079-4c03-b1a9-bd9b362b67d4,sh
 privilege-escalation,T1037.004,Boot or Logon Initialization Scripts: Rc.common,2,rc.common,c33f3d80-5f04-419b-a13a-854d1cbdbf3a,bash
 privilege-escalation,T1037.004,Boot or Logon Initialization Scripts: Rc.common,3,rc.local,126f71af-e1c9-405c-94ef-26a47b16c102,bash
 privilege-escalation,T1543.002,Create or Modify System Process: Systemd Service,1,Create Systemd Service,d9e4f24f-aa67-4c6e-bcbf-85622b697a7c,bash

atomics/Indexes/Indexes-Markdown/index.md

@@ -902,6 +902,9 @@
 - [T1546.004 Event Triggered Execution: .bash_profile and .bashrc](../../T1546.004/T1546.004.md)
   - Atomic Test #1: Add command to .bash_profile [macos, linux]
   - Atomic Test #2: Add command to .bashrc [macos, linux]
+  - Atomic Test #3: Append to the system shell profile [linux]
+  - Atomic Test #4: Append commands user shell profile [linux]
+  - Atomic Test #5: System shell profile scripts [linux]
 - [T1134.005 Access Token Manipulation: SID-History Injection](../../T1134.005/T1134.005.md)
   - Atomic Test #1: Injection SID-History with mimikatz [windows]
 - T1548.004 Elevated Execution with Prompt [CONTRIBUTE A TEST](https://github.com/redcanaryco/atomic-red-team/wiki/Contributing)
@@ -1390,6 +1393,9 @@
 - [T1546.004 Event Triggered Execution: .bash_profile and .bashrc](../../T1546.004/T1546.004.md)
   - Atomic Test #1: Add command to .bash_profile [macos, linux]
   - Atomic Test #2: Add command to .bashrc [macos, linux]
+  - Atomic Test #3: Append to the system shell profile [linux]
+  - Atomic Test #4: Append commands user shell profile [linux]
+  - Atomic Test #5: System shell profile scripts [linux]
 - [T1547.002 Authentication Package](../../T1547.002/T1547.002.md)
   - Atomic Test #1: Authentication Package [windows]
 - T1128 Netsh Helper DLL [CONTRIBUTE A TEST](https://github.com/redcanaryco/atomic-red-team/wiki/Contributing)

atomics/Indexes/Indexes-Markdown/linux-index.md

@@ -281,6 +281,9 @@
 - [T1546.004 Event Triggered Execution: .bash_profile and .bashrc](../../T1546.004/T1546.004.md)
   - Atomic Test #1: Add command to .bash_profile [macos, linux]
   - Atomic Test #2: Add command to .bashrc [macos, linux]
+  - Atomic Test #3: Append to the system shell profile [linux]
+  - Atomic Test #4: Append commands user shell profile [linux]
+  - Atomic Test #5: System shell profile scripts [linux]
 - T1168 Local Job Scheduling [CONTRIBUTE A TEST](https://github.com/redcanaryco/atomic-red-team/wiki/Contributing)
 - T1166 Setuid and Setgid [CONTRIBUTE A TEST](https://github.com/redcanaryco/atomic-red-team/wiki/Contributing)
 - T1100 Web Shell [CONTRIBUTE A TEST](https://github.com/redcanaryco/atomic-red-team/wiki/Contributing)
@@ -348,6 +351,9 @@
 - [T1546.004 Event Triggered Execution: .bash_profile and .bashrc](../../T1546.004/T1546.004.md)
   - Atomic Test #1: Add command to .bash_profile [macos, linux]
   - Atomic Test #2: Add command to .bashrc [macos, linux]
+  - Atomic Test #3: Append to the system shell profile [linux]
+  - Atomic Test #4: Append commands user shell profile [linux]
+  - Atomic Test #5: System shell profile scripts [linux]
 - T1166 Setuid and Setgid [CONTRIBUTE A TEST](https://github.com/redcanaryco/atomic-red-team/wiki/Contributing)
 - T1100 Web Shell [CONTRIBUTE A TEST](https://github.com/redcanaryco/atomic-red-team/wiki/Contributing)
 - T1078.002 Domain Accounts [CONTRIBUTE A TEST](https://github.com/redcanaryco/atomic-red-team/wiki/Contributing)

atomics/Indexes/index.yaml

@@ -38512,6 +38512,73 @@ privilege-escalation:
           head -n '-2' ~/.bashrc > /tmp/T1546.004
           mv /tmp/T1546.004 ~/.bashrc
         name: sh
+    - name: Append to the system shell profile
+      auto_generated_guid: 694b3cc8-6a78-4d35-9e74-0123d009e94b
+      description: 'An adversary may wish to establish persistence by executing malicious
+        commands from the systems /etc/profile every time "any" user logs in.
+
+        '
+      supported_platforms:
+      - linux
+      input_arguments:
+        text_to_append:
+          description: Text to append to the /etc/profile file
+          type: String
+          default: "# Hello from Atomic Red Team T1546.004"
+      executor:
+        elevation_required: true
+        name: sh
+        command: 'echo ''#{text_to_append}'' >> /etc/profile
+
+          '
+        cleanup_command: 'sed -i "s/# Atomic Red Team was here! T1546.004//" /etc/profile
+
+          '
+    - name: Append commands user shell profile
+      auto_generated_guid: bbdb06bc-bab6-4f5b-8232-ba3fbed51d77
+      description: 'An adversary may wish to establish persistence by executing malicious
+        commands from the users ~/.profile every time the "user" logs in.
+
+        '
+      supported_platforms:
+      - linux
+      input_arguments:
+        text_to_append:
+          description: Text to append to the ~/.profile file
+          type: String
+          default: "# Hello from Atomic Red Team T1546.004"
+      executor:
+        elevation_required: false
+        name: sh
+        command: 'echo ''#{text_to_append}'' >> ~/.profile
+
+          '
+        cleanup_command: 'sed -i "s/# Atomic Red Team was here! T1546.004//" ~/.profile
+
+          '
+    - name: System shell profile scripts
+      auto_generated_guid: 8fe2ccfd-f079-4c03-b1a9-bd9b362b67d4
+      description: 'An adversary may wish to establish persistence by adding commands
+        into any of the script files in the /etc/profile.d/ directory, which are executed
+        every time "any" user logs in.
+
+        '
+      supported_platforms:
+      - linux
+      input_arguments:
+        text_to_append:
+          description: Text to append to the /etc/profile.d/bash_completion.sh file
+          type: String
+          default: "# Hello from Atomic Red Team T1546.004"
+      executor:
+        elevation_required: true
+        name: sh
+        command: 'echo ''#{text_to_append}'' >> /etc/profile.d/bash_completion.sh
+
+          '
+        cleanup_command: 'sed -i "s/# Atomic Red Team was here! T1546.004//" /etc/profile.d/bash_completion.sh
+
+          '
   T1134.005:
     technique:
       x_mitre_platforms:
@@ -62136,6 +62203,73 @@ persistence:
           head -n '-2' ~/.bashrc > /tmp/T1546.004
           mv /tmp/T1546.004 ~/.bashrc
         name: sh
+    - name: Append to the system shell profile
+      auto_generated_guid: 694b3cc8-6a78-4d35-9e74-0123d009e94b
+      description: 'An adversary may wish to establish persistence by executing malicious
+        commands from the systems /etc/profile every time "any" user logs in.
+
+        '
+      supported_platforms:
+      - linux
+      input_arguments:
+        text_to_append:
+          description: Text to append to the /etc/profile file
+          type: String
+          default: "# Hello from Atomic Red Team T1546.004"
+      executor:
+        elevation_required: true
+        name: sh
+        command: 'echo ''#{text_to_append}'' >> /etc/profile
+
+          '
+        cleanup_command: 'sed -i "s/# Atomic Red Team was here! T1546.004//" /etc/profile
+
+          '
+    - name: Append commands user shell profile
+      auto_generated_guid: bbdb06bc-bab6-4f5b-8232-ba3fbed51d77
+      description: 'An adversary may wish to establish persistence by executing malicious
+        commands from the users ~/.profile every time the "user" logs in.
+
+        '
+      supported_platforms:
+      - linux
+      input_arguments:
+        text_to_append:
+          description: Text to append to the ~/.profile file
+          type: String
+          default: "# Hello from Atomic Red Team T1546.004"
+      executor:
+        elevation_required: false
+        name: sh
+        command: 'echo ''#{text_to_append}'' >> ~/.profile
+
+          '
+        cleanup_command: 'sed -i "s/# Atomic Red Team was here! T1546.004//" ~/.profile
+
+          '
+    - name: System shell profile scripts
+      auto_generated_guid: 8fe2ccfd-f079-4c03-b1a9-bd9b362b67d4
+      description: 'An adversary may wish to establish persistence by adding commands
+        into any of the script files in the /etc/profile.d/ directory, which are executed
+        every time "any" user logs in.
+
+        '
+      supported_platforms:
+      - linux
+      input_arguments:
+        text_to_append:
+          description: Text to append to the /etc/profile.d/bash_completion.sh file
+          type: String
+          default: "# Hello from Atomic Red Team T1546.004"
+      executor:
+        elevation_required: true
+        name: sh
+        command: 'echo ''#{text_to_append}'' >> /etc/profile.d/bash_completion.sh
+
+          '
+        cleanup_command: 'sed -i "s/# Atomic Red Team was here! T1546.004//" /etc/profile.d/bash_completion.sh
+
+          '
   T1547.002:
     technique:
       x_mitre_platforms:

atomics/Indexes/linux-index.yaml

@@ -24795,6 +24795,73 @@ privilege-escalation:
           head -n '-2' ~/.bashrc > /tmp/T1546.004
           mv /tmp/T1546.004 ~/.bashrc
         name: sh
+    - name: Append to the system shell profile
+      auto_generated_guid: 694b3cc8-6a78-4d35-9e74-0123d009e94b
+      description: 'An adversary may wish to establish persistence by executing malicious
+        commands from the systems /etc/profile every time "any" user logs in.
+
+        '
+      supported_platforms:
+      - linux
+      input_arguments:
+        text_to_append:
+          description: Text to append to the /etc/profile file
+          type: String
+          default: "# Hello from Atomic Red Team T1546.004"
+      executor:
+        elevation_required: true
+        name: sh
+        command: 'echo ''#{text_to_append}'' >> /etc/profile
+
+          '
+        cleanup_command: 'sed -i "s/# Atomic Red Team was here! T1546.004//" /etc/profile
+
+          '
+    - name: Append commands user shell profile
+      auto_generated_guid: bbdb06bc-bab6-4f5b-8232-ba3fbed51d77
+      description: 'An adversary may wish to establish persistence by executing malicious
+        commands from the users ~/.profile every time the "user" logs in.
+
+        '
+      supported_platforms:
+      - linux
+      input_arguments:
+        text_to_append:
+          description: Text to append to the ~/.profile file
+          type: String
+          default: "# Hello from Atomic Red Team T1546.004"
+      executor:
+        elevation_required: false
+        name: sh
+        command: 'echo ''#{text_to_append}'' >> ~/.profile
+
+          '
+        cleanup_command: 'sed -i "s/# Atomic Red Team was here! T1546.004//" ~/.profile
+
+          '
+    - name: System shell profile scripts
+      auto_generated_guid: 8fe2ccfd-f079-4c03-b1a9-bd9b362b67d4
+      description: 'An adversary may wish to establish persistence by adding commands
+        into any of the script files in the /etc/profile.d/ directory, which are executed
+        every time "any" user logs in.
+
+        '
+      supported_platforms:
+      - linux
+      input_arguments:
+        text_to_append:
+          description: Text to append to the /etc/profile.d/bash_completion.sh file
+          type: String
+          default: "# Hello from Atomic Red Team T1546.004"
+      executor:
+        elevation_required: true
+        name: sh
+        command: 'echo ''#{text_to_append}'' >> /etc/profile.d/bash_completion.sh
+
+          '
+        cleanup_command: 'sed -i "s/# Atomic Red Team was here! T1546.004//" /etc/profile.d/bash_completion.sh
+
+          '
   T1134.005:
     technique:
       x_mitre_platforms:
@@ -41495,6 +41562,73 @@ persistence:
           head -n '-2' ~/.bashrc > /tmp/T1546.004
           mv /tmp/T1546.004 ~/.bashrc
         name: sh
+    - name: Append to the system shell profile
+      auto_generated_guid: 694b3cc8-6a78-4d35-9e74-0123d009e94b
+      description: 'An adversary may wish to establish persistence by executing malicious
+        commands from the systems /etc/profile every time "any" user logs in.
+
+        '
+      supported_platforms:
+      - linux
+      input_arguments:
+        text_to_append:
+          description: Text to append to the /etc/profile file
+          type: String
+          default: "# Hello from Atomic Red Team T1546.004"
+      executor:
+        elevation_required: true
+        name: sh
+        command: 'echo ''#{text_to_append}'' >> /etc/profile
+
+          '
+        cleanup_command: 'sed -i "s/# Atomic Red Team was here! T1546.004//" /etc/profile
+
+          '
+    - name: Append commands user shell profile
+      auto_generated_guid: bbdb06bc-bab6-4f5b-8232-ba3fbed51d77
+      description: 'An adversary may wish to establish persistence by executing malicious
+        commands from the users ~/.profile every time the "user" logs in.
+
+        '
+      supported_platforms:
+      - linux
+      input_arguments:
+        text_to_append:
+          description: Text to append to the ~/.profile file
+          type: String
+          default: "# Hello from Atomic Red Team T1546.004"
+      executor:
+        elevation_required: false
+        name: sh
+        command: 'echo ''#{text_to_append}'' >> ~/.profile
+
+          '
+        cleanup_command: 'sed -i "s/# Atomic Red Team was here! T1546.004//" ~/.profile
+
+          '
+    - name: System shell profile scripts
+      auto_generated_guid: 8fe2ccfd-f079-4c03-b1a9-bd9b362b67d4
+      description: 'An adversary may wish to establish persistence by adding commands
+        into any of the script files in the /etc/profile.d/ directory, which are executed
+        every time "any" user logs in.
+
+        '
+      supported_platforms:
+      - linux
+      input_arguments:
+        text_to_append:
+          description: Text to append to the /etc/profile.d/bash_completion.sh file
+          type: String
+          default: "# Hello from Atomic Red Team T1546.004"
+      executor:
+        elevation_required: true
+        name: sh
+        command: 'echo ''#{text_to_append}'' >> /etc/profile.d/bash_completion.sh
+
+          '
+        cleanup_command: 'sed -i "s/# Atomic Red Team was here! T1546.004//" /etc/profile.d/bash_completion.sh
+
+          '
   T1547.002:
     technique:
       x_mitre_platforms:

atomics/T1546.004/T1546.004.md

@@ -12,6 +12,12 @@ For macOS, the functionality of this technique is similar but may leverage zsh,
 
 - [Atomic Test #2 - Add command to .bashrc](#atomic-test-2---add-command-to-bashrc)
 
+- [Atomic Test #3 - Append to the system shell profile](#atomic-test-3---append-to-the-system-shell-profile)
+
+- [Atomic Test #4 - Append commands user shell profile](#atomic-test-4---append-commands-user-shell-profile)
+
+- [Atomic Test #5 - System shell profile scripts](#atomic-test-5---system-shell-profile-scripts)
+
 
 <br/>
 
@@ -88,4 +94,115 @@ mv /tmp/T1546.004 ~/.bashrc
 
 
 
+<br/>
+<br/>
+
+## Atomic Test #3 - Append to the system shell profile
+An adversary may wish to establish persistence by executing malicious commands from the systems /etc/profile every time "any" user logs in.
+
+**Supported Platforms:** Linux
+
+
+**auto_generated_guid:** 694b3cc8-6a78-4d35-9e74-0123d009e94b
+
+
+
+
+
+#### Inputs:
+| Name | Description | Type | Default Value |
+|------|-------------|------|---------------|
+| text_to_append | Text to append to the /etc/profile file | String | # Hello from Atomic Red Team T1546.004|
+
+
+#### Attack Commands: Run with `sh`!  Elevation Required (e.g. root or admin) 
+
+
+```sh
+echo '#{text_to_append}' >> /etc/profile
+```
+
+#### Cleanup Commands:
+```sh
+sed -i "s/# Atomic Red Team was here! T1546.004//" /etc/profile
+```
+
+
+
+
+
+<br/>
+<br/>
+
+## Atomic Test #4 - Append commands user shell profile
+An adversary may wish to establish persistence by executing malicious commands from the users ~/.profile every time the "user" logs in.
+
+**Supported Platforms:** Linux
+
+
+**auto_generated_guid:** bbdb06bc-bab6-4f5b-8232-ba3fbed51d77
+
+
+
+
+
+#### Inputs:
+| Name | Description | Type | Default Value |
+|------|-------------|------|---------------|
+| text_to_append | Text to append to the ~/.profile file | String | # Hello from Atomic Red Team T1546.004|
+
+
+#### Attack Commands: Run with `sh`! 
+
+
+```sh
+echo '#{text_to_append}' >> ~/.profile
+```
+
+#### Cleanup Commands:
+```sh
+sed -i "s/# Atomic Red Team was here! T1546.004//" ~/.profile
+```
+
+
+
+
+
+<br/>
+<br/>
+
+## Atomic Test #5 - System shell profile scripts
+An adversary may wish to establish persistence by adding commands into any of the script files in the /etc/profile.d/ directory, which are executed every time "any" user logs in.
+
+**Supported Platforms:** Linux
+
+
+**auto_generated_guid:** 8fe2ccfd-f079-4c03-b1a9-bd9b362b67d4
+
+
+
+
+
+#### Inputs:
+| Name | Description | Type | Default Value |
+|------|-------------|------|---------------|
+| text_to_append | Text to append to the /etc/profile.d/bash_completion.sh file | String | # Hello from Atomic Red Team T1546.004|
+
+
+#### Attack Commands: Run with `sh`!  Elevation Required (e.g. root or admin) 
+
+
+```sh
+echo '#{text_to_append}' >> /etc/profile.d/bash_completion.sh
+```
+
+#### Cleanup Commands:
+```sh
+sed -i "s/# Atomic Red Team was here! T1546.004//" /etc/profile.d/bash_completion.sh
+```
+
+
+
+
+
 <br/>