Update T1056.001.yaml (#1632)

Why executor name is command prompt ? It should be 'sh' for linux platforms right ?
2021-09-20 21:47:43 +03:00
parent a0edb02b80
commit b8ba7470ca
1 changed files with 3 additions and 3 deletions
@@ -104,7 +104,7 @@ atomic_tests:
      type: String
      default: /tmp/.keyboard.log
  executor:
-    name: command_prompt
+    name: sh
    elevation_required: false 
    command: | 
      trap 'echo "$(date +"%d/%m/%y %H:%M:%S.%s") $USER $BASH_COMMAND" >> #{output_file}' DEBUG
@@ -133,7 +133,7 @@ atomic_tests:
      type: String
      default: ubuntu
  executor:
-    name: command_prompt
+    name: sh
    elevation_required: true 
    command: | 
      cp -v /etc/pam.d/sshd /tmp/
@@ -163,7 +163,7 @@ atomic_tests:
      get_prereq_command: | 
        echo ""
  executor:
-    name: command_prompt
+    name: sh
    elevation_required: true 
    command: | 
      auditctl -a always,exit -F arch=b64 -S execve -k CMDS