From c434c577afab702a00a3556971a90420c5835a69 Mon Sep 17 00:00:00 2001 From: Atomic Red Team doc generator Date: Thu, 27 Oct 2022 20:35:40 +0000 Subject: [PATCH] Generated docs from job=generate-docs branch=master [ci skip] --- atomics/Indexes/index.yaml | 2 ++ atomics/T1546.007/T1546.007.md | 6 +++--- 2 files changed, 5 insertions(+), 3 deletions(-) diff --git a/atomics/Indexes/index.yaml b/atomics/Indexes/index.yaml index 9b40b4c9..fa082ddf 100644 --- a/atomics/Indexes/index.yaml +++ b/atomics/Indexes/index.yaml @@ -41322,6 +41322,7 @@ privilege-escalation: description: Path to DLL type: Path default: PathToAtomicsFolder\T1546.007\bin\NetshHelper.dll + dependency_executor_name: powershell dependencies: - description: 'Helper DLL must exist on disk at specified location (#{helper_file}) @@ -64425,6 +64426,7 @@ persistence: description: Path to DLL type: Path default: PathToAtomicsFolder\T1546.007\bin\NetshHelper.dll + dependency_executor_name: powershell dependencies: - description: 'Helper DLL must exist on disk at specified location (#{helper_file}) diff --git a/atomics/T1546.007/T1546.007.md b/atomics/T1546.007/T1546.007.md index d0166eb7..ba7b208e 100644 --- a/atomics/T1546.007/T1546.007.md +++ b/atomics/T1546.007/T1546.007.md @@ -48,14 +48,14 @@ netsh.exe delete helper #{helper_file} -#### Dependencies: Run with `command_prompt`! +#### Dependencies: Run with `powershell`! ##### Description: Helper DLL must exist on disk at specified location (#{helper_file}) ##### Check Prereq Commands: -```cmd +```powershell if (Test-Path "#{helper_file}") { exit 0} else { exit 1} ``` ##### Get Prereq Commands: -```cmd +```powershell New-Item -Type Directory (split-path #{helper_file}) -ErrorAction ignore | Out-Null Invoke-WebRequest "https://github.com/redcanaryco/atomic-red-team/raw/master/atomics/T1546.007/bin/NetshHelper.dll" -OutFile "#{helper_file}" ```