From f178e0054ff4bd4e727f8facbd2da556f5371d21 Mon Sep 17 00:00:00 2001
From: CircleCI Atomic Red Team doc generator <email>
Date: Tue, 27 Jul 2021 19:35:12 +0000
Subject: [PATCH] Generate docs from job=generate_and_commit_guids_and_docs
 branch=master [skip ci]

---
 atomics/Indexes/index.yaml     | 4 ++--
 atomics/T1543.001/T1543.001.md | 5 +++++
 2 files changed, 7 insertions(+), 2 deletions(-)

diff --git a/atomics/Indexes/index.yaml b/atomics/Indexes/index.yaml
index f3f54ae4..18c6d332 100644
--- a/atomics/Indexes/index.yaml
+++ b/atomics/Indexes/index.yaml
@@ -13483,7 +13483,7 @@ privilege-escalation:
           if [ ! -d ~/Library/LaunchAgents ]; then mkdir ~/Library/LaunchAgents; fi;
           sudo cp #{path_malicious_plist} ~/Library/LaunchAgents/#{plist_filename}
           sudo launchctl load -w ~/Library/LaunchAgents/#{plist_filename}
-        cleanup: |
+        cleanup_command: |
           sudo launchctl unload ~/Library/LaunchAgents/#{plist_filename}
           sudo rm ~/Library/LaunchAgents/#{plist_filename}
   T1543.004:
@@ -41558,7 +41558,7 @@ persistence:
           if [ ! -d ~/Library/LaunchAgents ]; then mkdir ~/Library/LaunchAgents; fi;
           sudo cp #{path_malicious_plist} ~/Library/LaunchAgents/#{plist_filename}
           sudo launchctl load -w ~/Library/LaunchAgents/#{plist_filename}
-        cleanup: |
+        cleanup_command: |
           sudo launchctl unload ~/Library/LaunchAgents/#{plist_filename}
           sudo rm ~/Library/LaunchAgents/#{plist_filename}
   T1543.004:
diff --git a/atomics/T1543.001/T1543.001.md b/atomics/T1543.001/T1543.001.md
index 5f572f48..0a1e0514 100644
--- a/atomics/T1543.001/T1543.001.md
+++ b/atomics/T1543.001/T1543.001.md
@@ -39,6 +39,11 @@ sudo cp #{path_malicious_plist} ~/Library/LaunchAgents/#{plist_filename}
 sudo launchctl load -w ~/Library/LaunchAgents/#{plist_filename}
 ```
 
+#### Cleanup Commands:
+```bash
+sudo launchctl unload ~/Library/LaunchAgents/#{plist_filename}
+sudo rm ~/Library/LaunchAgents/#{plist_filename}
+```