security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]

Browse Source
This commit is contained in:
CircleCI Atomic Red Team GUID generator
2022-04-05 15:59:31 +00:00
parent cbeebddaa4
commit d758660559
2 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
atomics/T1562.001/T1562.001.yaml
+1
View File
@@ -586,6 +586,7 @@ atomic_tests:
cleanup_command: Set-ItemProperty -Path 'Registry::HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Feature' -name 'TamperData' -value 1
name: powershell
- name: Disable Defender Using NirSoft AdvancedRun
auto_generated_guid: 81ce22fd-9612-4154-918e-8a1f285d214d
description: |
Information on NirSoft AdvancedRun and its creators found here: http://www.nirsoft.net/utils/advanced_run.html
This Atomic will run AdvancedRun.exe with similar behavior identified during the WhisperGate campaign.
atomics/used_guids.txt
+1
View File
@@ -949,3 +949,4 @@ c173c948-65e5-499c-afbe-433722ed5bd4
ca20a3f1-42b5-4e21-ad3f-1049199ec2e0
9c2dd36d-5c8b-4b29-8d72-a11b0d5d7439
4b437357-f4e9-4c84-9fa6-9bcee6f826aa
81ce22fd-9612-4154-918e-8a1f285d214d