From 2156972ed04a7933eabf5cf9dfe109a7668588ec Mon Sep 17 00:00:00 2001
From: CircleCI Atomic Red Team doc generator <email>
Date: Mon, 6 Jan 2020 21:14:46 +0000
Subject: [PATCH] Generate docs from job=validate_atomics_generate_docs
 branch=master

---
 atomics/T1217/T1217.md   | 20 ++++++++++----------
 atomics/index.md         |  2 ++
 atomics/index.yaml       | 24 ++++++++++++++++++++++++
 atomics/windows-index.md |  2 ++
 4 files changed, 38 insertions(+), 10 deletions(-)

diff --git a/atomics/T1217/T1217.md b/atomics/T1217/T1217.md
index 5067a4a4..52b9d986 100644
--- a/atomics/T1217/T1217.md
+++ b/atomics/T1217/T1217.md
@@ -14,9 +14,9 @@ Specific storage locations vary based on platform and/or application, but browse
 
 - [Atomic Test #3 - List Google Chrome Bookmark JSON Files on macOS](#atomic-test-3---list-google-chrome-bookmark-json-files-on-macos)
 
-- [Atomic Test #4 - List Google Chrome Bookmarks on Windows with Powershell](#atomic-test-4---list-google-chrome-bookmarks-on-windows-with-powershell)
+- [Atomic Test #4 - List Google Chrome Bookmarks on Windows with powershell](#atomic-test-4---list-google-chrome-bookmarks-on-windows-with-powershell)
 
-- [Atomic Test #5 - List Google Chrome Bookmarks on Windows with Command Prompt](#atomic-test-5---list-google-chrome-bookmarks-on-windows-with-command-prompt)
+- [Atomic Test #5 - List Google Chrome Bookmarks on Windows with command prompt](#atomic-test-5---list-google-chrome-bookmarks-on-windows-with-command-prompt)
 
 
 <br/>
@@ -69,15 +69,15 @@ find / -path "*/Google/Chrome/*/Bookmarks" -exec echo {} >> /tmp/chrome-bookmark
 <br/>
 <br/>
 
-## Atomic Test #4 - List Google Chrome Bookmarks on Windows with Powershell
-Searches for Google Chrome's Bookmark file (on Windows) using powershell.
+## Atomic Test #4 - List Google Chrome Bookmarks on Windows with powershell
+Searches for Google Chromes's Bookmarks file (on Windows distributions) that contains bookmarks.
 
 **Supported Platforms:** Windows
 
 
-#### Run it with `Powershell`! 
+#### Run it with `powershell`! 
 ```
-where.exe /R C:\Users Bookmarks
+where.exe /R C:\Users\ Bookmarks
 ```
 
 
@@ -85,15 +85,15 @@ where.exe /R C:\Users Bookmarks
 <br/>
 <br/>
 
-## Atomic Test #5 - List Google Chrome Bookmarks on Windows with Command Prompt
-Searches for Google Chrome's Bookmark file (on Windows) using cmd.
+## Atomic Test #5 - List Google Chrome Bookmarks on Windows with command prompt
+Searches for Google Chromes's Bookmarks file (on Windows distributions) that contains bookmarks.
 
 **Supported Platforms:** Windows
 
 
-#### Run it with `command prompt`! 
+#### Run it with `command_prompt`! 
 ```
-where /R C:\Users Bookmarks
+where /R C:\Users\ Bookmarks
 ```
 
 
diff --git a/atomics/index.md b/atomics/index.md
index 7e3b0336..77466f74 100644
--- a/atomics/index.md
+++ b/atomics/index.md
@@ -552,6 +552,8 @@
   - Atomic Test #1: List Mozilla Firefox Bookmark Database Files on Linux [linux]
   - Atomic Test #2: List Mozilla Firefox Bookmark Database Files on macOS [macos]
   - Atomic Test #3: List Google Chrome Bookmark JSON Files on macOS [macos]
+  - Atomic Test #4: List Google Chrome Bookmarks on Windows with powershell [windows]
+  - Atomic Test #5: List Google Chrome Bookmarks on Windows with command prompt [windows]
 - T1538 Cloud Service Dashboard [CONTRIBUTE A TEST](https://atomicredteam.io/contributing)
 - T1526 Cloud Service Discovery [CONTRIBUTE A TEST](https://atomicredteam.io/contributing)
 - [T1482 Domain Trust Discovery](./T1482/T1482.md)
diff --git a/atomics/index.yaml b/atomics/index.yaml
index c9c29c2d..0e5fe59c 100644
--- a/atomics/index.yaml
+++ b/atomics/index.yaml
@@ -16809,6 +16809,30 @@ discovery:
         command: 'find / -path "*/Google/Chrome/*/Bookmarks" -exec echo {} >> /tmp/chrome-bookmarks.txt
           \;
 
+'
+    - name: List Google Chrome Bookmarks on Windows with powershell
+      description: 'Searches for Google Chromes''s Bookmarks file (on Windows distributions)
+        that contains bookmarks.
+
+'
+      supported_platforms:
+      - windows
+      executor:
+        name: powershell
+        command: 'where.exe /R C:\Users\ Bookmarks
+
+'
+    - name: List Google Chrome Bookmarks on Windows with command prompt
+      description: 'Searches for Google Chromes''s Bookmarks file (on Windows distributions)
+        that contains bookmarks.
+
+'
+      supported_platforms:
+      - windows
+      executor:
+        name: command_prompt
+        command: 'where /R C:\Users\ Bookmarks
+
 '
   '':
     technique:
diff --git a/atomics/windows-index.md b/atomics/windows-index.md
index 565a938b..a502cd49 100644
--- a/atomics/windows-index.md
+++ b/atomics/windows-index.md
@@ -396,6 +396,8 @@
 - [T1010 Application Window Discovery](./T1010/T1010.md)
   - Atomic Test #1: List Process Main Windows - C# .NET [windows]
 - [T1217 Browser Bookmark Discovery](./T1217/T1217.md)
+  - Atomic Test #4: List Google Chrome Bookmarks on Windows with powershell [windows]
+  - Atomic Test #5: List Google Chrome Bookmarks on Windows with command prompt [windows]
 - [T1482 Domain Trust Discovery](./T1482/T1482.md)
   - Atomic Test #1: Windows - Discover domain trusts with dsquery [windows]
   - Atomic Test #2: Windows - Discover domain trusts with nltest [windows]