762f0548a1
Generated docs from job=generate-docs branch=master [ci skip]
2025-05-01 15:13:41 +00:00
5ede8f21e4
Generated docs from job=generate-docs branch=master [ci skip]
2025-02-13 22:03:40 +00:00
9c842daeb3
Generated docs from job=generate-docs branch=master [ci skip]
2024-05-15 00:48:54 +00:00
1c452cbafb
Adding Netscan test to T1018 ( #2767 )
...
* Adding Netscan test to T1018
* Fixing typo in Netscan test description
---------
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2024-05-10 13:00:34 -05:00
e9b9f2ed7b
Generated docs from job=generate-docs branch=master [ci skip]
2024-02-26 15:24:49 +00:00
edea906548
Implementation of venv into Windows Python atomics ( #2703 )
...
* Improve pip handling (#1 )
* virtual env added to T1018, tested and confirmed working
* virtual env added to T1003.001, tested and confirmed working
* virtual env added to T1555.003, tested and confirmed working
* Removing pip-autoremove installation as not required
* updating atomics count in README.md [ci skip]
---------
Co-authored-by: Hare Sudhan <code@0x6c.dev >
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
Co-authored-by: publish bot <opensource@redcanary.com >
2024-02-26 09:19:26 -06:00
669e685b8d
Generated docs from job=generate-docs branch=master [ci skip]
2024-02-08 21:29:25 +00:00
a4653ac9b5
Updating get_prereq_command to download and install python3 & pip ( #2680 )
...
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2024-02-08 15:28:39 -06:00
e1164d3054
Generated docs from job=generate-docs branch=master [ci skip]
2023-12-27 17:58:55 +00:00
06ebf05785
Added the "-c" option to adfind commands. ( #2645 )
...
* Added the "-c" option to adfind commands. This will cause it to print a
count of the returned objects instead of the actual objects. This is
very useful for large environments and allows it run quicker without
actually exposing any sensitive information.
* Adding the code to allow specifying optional arguments at runtime instead of hardcoding the -c to allow more flexibility per this request:
https://github.com/redcanaryco/atomic-red-team/pull/2645#pullrequestreview-1795339526
---------
Co-authored-by: dwhite <n/a>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
Co-authored-by: dwhite9 <n@a>
2023-12-27 11:58:02 -06:00
ad2d7c8f13
Generated docs from job=generate-docs branch=master [ci skip]
2023-11-06 22:42:54 +00:00
62a85c12b5
FreeBSD changes ( #2585 )
...
* freebsd changes
* renaming freebsd to linux
2023-11-06 17:41:43 -05:00
4d6c4e8e23
Generated docs from job=generate-docs branch=master [ci skip]
2023-11-02 00:56:51 +00:00
16b5287208
Generate GUIDs from job=generate-docs branch=master [skip ci]
2023-11-02 00:56:30 +00:00
2c1db3e4dd
Merge branch 'master' into master
2023-11-01 19:10:13 -04:00
c98b35d245
Generated docs from job=generate-docs branch=master [ci skip]
2023-10-12 14:25:00 +00:00
e73dea5813
catch error and return exit code ( #2566 )
...
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com >
2023-10-12 08:23:41 -06:00
a228ee8656
Generated docs from job=generate-docs branch=master [ci skip]
2023-09-22 19:15:21 +00:00
d4709021fb
Handle spaces in file paths ( #2535 )
...
* updating atomics count in README.md [ci skip]
* wip
* handle spaces in path
* update readme
* fix typo
---------
Co-authored-by: publish bot <opensource@redcanary.com >
2023-09-22 10:47:25 -06:00
2b77bcb303
Generated docs from job=generate-docs branch=master [ci skip]
2023-06-15 22:33:14 +00:00
a8fe2d2d77
mv adfind to bin ( #2465 )
...
* move adfind to external resource
* mv adfind to bin
2023-06-15 16:32:13 -06:00
282a250cc9
Generated docs from job=generate-docs branch=master [ci skip]
2023-06-15 21:42:03 +00:00
32a4415e43
move adfind to external resource ( #2464 )
2023-06-15 15:40:50 -06:00
03aca258ad
Fix validate issues
2023-06-09 11:36:41 -05:00
3b8d0af302
Remove auto_generated_guid lines from new entries
...
Some other tiny modifications
2023-06-09 09:11:41 -05:00
86913f3573
Merge branch 'master' of https://github.com/alonsobsd/atomic-red-team
2023-06-01 22:03:39 -05:00
a59de488ff
Generated docs from job=generate-docs branch=master [ci skip]
2023-05-31 20:51:23 +00:00
65294196d0
Spelling adjustments ( #2448 )
...
Looking over the YAMLs mostly, only changes for readability or accuracy
2023-05-31 15:50:22 -05:00
b1f3c968f2
Generated docs from job=generate-docs branch=master [ci skip]
2023-05-19 17:06:33 +00:00
f1c5a9be03
Add FreeBSD support
2023-05-08 11:06:08 -05:00
d26d95d3f7
Generated docs from job=generate-docs branch=master [ci skip]
2023-03-13 18:57:35 +00:00
04b6a8fbc3
Adfind prereq fixes ( #2360 )
...
* doesn't exfil data as written
* update prereqs
---------
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com >
2023-03-13 12:56:47 -06:00
16594d72c5
Generated docs from job=generate-docs branch=master [ci skip]
2023-02-13 23:11:19 +00:00
a5dd0813cd
fix: Updating atomics YAML file structure to align with the new JSON schema definition ( #2323 )
...
* fix: Updating atomics YAML file structure to align with the new JSON schema definition.
This also fixes some white space issues and general line formatting across all impacted atomics.
* fix: One additional change needed
---------
Co-authored-by: MSAdministrator <MSAdministrator@users.noreply.github.com >
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2023-02-13 16:10:37 -07:00
b86d24fd99
Generated docs from job=generate-docs branch=master [ci skip]
2022-12-14 23:10:06 +00:00
51c59e06d3
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-12-14 23:09:58 +00:00
54cc912687
Remote System Discovery - net group Domain Controller ( #2249 )
...
* Remote System Discovery - net group Domain Controller
Identify remote systems with net.exe querying the Active Directory Domain Controller. Upon successful execution, cmd.exe will execute cmd.exe against Active Directory to list the "Domain Controller" in the domain. Output will be via stdout.
* Update T1018.yaml
* Update T1018.yaml
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-12-14 18:09:24 -05:00
e37f97dd4e
Generated docs from job=generate-docs branch=master [ci skip]
2022-07-15 03:17:25 +00:00
0dadea6454
Update T1018-4 ( #2034 )
...
* Update T1018-4
Update T1018, Test 4
* update input arg descriptions
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-07-14 21:16:46 -06:00
819934cc3f
Generated docs from job=generate-docs branch=master [ci skip]
2022-06-16 22:47:00 +00:00
7091fa8b16
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2022-04-01 14:37:00 +00:00
1209d7b0f6
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2022-03-14 17:32:56 +00:00
5e47dae27b
Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2022-03-14 17:32:49 +00:00
687da9235b
AD Enumeration - user/groups, pw policy ( #1807 )
...
* More AD
* fix conflict resolution mistake
* add powershell
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-03-14 11:32:18 -06:00
4c019a8936
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2022-03-14 16:44:03 +00:00
b52281c4cd
Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2022-03-14 16:43:54 +00:00
d1e3e11730
AD Searching and powerview ( #1806 )
...
* ADSI
* new atomics
2022-03-14 10:43:19 -06:00
fa8b76090a
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2022-02-08 16:35:03 +00:00
05248d675d
Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2022-02-08 16:34:58 +00:00
5bcd254baa
Adding T1018 Test 15 - DirectorySearcher ( #1769 )
...
* Adding T1018 Test 15 - DirectorySearcher
This test is designed to search for computers within an Active Directory domain through use of the DirectorySearcher .NET class in Powershell.
* small update to description
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-02-08 10:34:30 -06:00
Atomic Red Team doc generator