security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Generate GUIDs from job=generate-docs branch=master [skip ci]

Browse Source
This commit is contained in:
Atomic Red Team GUID generator
2022-08-02 21:07:30 +00:00
parent 1995744206
commit de4c70570b
2 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
atomics/T1014/T1014.yaml
+2
View File
@@ -87,6 +87,7 @@ atomic_tests:
name: sh
elevation_required: true
- name: dynamic-linker based rootkit (libprocesshider)
auto_generated_guid: 1338bf0c-fd0c-48c0-9e65-329f18e2c0d3
description: |
Uses libprocesshider to simulate rootkit behavior by hiding a specific process name via ls.so.preload (see also T1574.006).
supported_platforms:
@@ -126,6 +127,7 @@ atomic_tests:
name: sh
elevation_required: true
- name: Loadable Kernel Module based Rootkit (Diamorphine)
auto_generated_guid: 0b996469-48c6-46e2-8155-a17f8b6c2247
description: |
Loads Diamorphine kernel module, which hides itself and a processes.
supported_platforms:
atomics/used_guids.txt
+2
View File
@@ -1106,3 +1106,5 @@ a27418de-bdce-4ebd-b655-38f11142bf0c
22d89a2f-d475-4895-b2d4-68626d49c029
93c150f5-ad7b-4ee3-8992-df06dec2ac79
89422c87-b57b-4a04-a12a-802bb11d06121
1338bf0c-fd0c-48c0-9e65-329f18e2c0d3
0b996469-48c6-46e2-8155-a17f8b6c2247