security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,538 Commits 47 Branches 0 Tags
python_conversion
Commit Graph

164 Commits

Author SHA1 Message Date
Atomic Red Team doc generator 762f0548a1 Generated docs from job=generate-docs branch=master [ci skip] 2025-05-01 15:13:41 +00:00
Atomic Red Team doc generator 5ede8f21e4 Generated docs from job=generate-docs branch=master [ci skip] 2025-02-13 22:03:40 +00:00
Atomic Red Team doc generator b0f5fc12dd Generated docs from job=generate-docs branch=master [ci skip] 2024-07-24 02:31:35 +00:00
abhijose09 19fbe0f994 Update T1112.yaml (#2870) 
Added New Test : Adding custom paths for application execution

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2024-07-23 21:29:27 -05:00
Atomic Red Team doc generator 2d3c1652a4 Generated docs from job=generate-docs branch=master [ci skip] 2024-07-24 02:17:35 +00:00
abhijose09 3bc01cabb5 3 new tests added (#2863) 
3 new Tests added :
Abusing MyComputer Disk Backup Path for Persistence
Abusing MyComputer Disk Cleanup Path for Persistence
Abusing MyComputer Disk Fragmentation Path for Persistence

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2024-07-23 21:16:20 -05:00
Atomic Red Team doc generator 162921f9e7 Generated docs from job=generate-docs branch=master [ci skip] 2024-07-23 22:08:10 +00:00
abhijose09 d4aa5c432e New Test - Modify RDP-Tcp Initial Program Registry Entry (#2861) 
* Update T1112.yaml

Modify RDP-Tcp Initial Program Registry Entry

* Update T1112.yaml

added cleanup commands

* Update T1112.yaml

* Update T1112.yaml

* Update T1112.yaml

---------

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2024-07-23 17:06:54 -05:00
Atomic Red Team doc generator 7512f4a78b Generated docs from job=generate-docs branch=master [ci skip] 2024-07-17 02:56:47 +00:00
abhijose09 ef6b0358f9 Update T1112.yaml (#2862) 
New Test : Abusing Windows TelemetryController Registry Key for Persistence

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2024-07-16 21:55:36 -05:00
Atomic Red Team doc generator 9cc823410d Generated docs from job=generate-docs branch=master [ci skip] 2024-07-10 13:55:40 +00:00
Hare Sudhan c8a70997da Adding more YAML validations (#2837) 
* Update T1202.yaml

* fix all atomics

* changing to macos to fix pytest issue

* changing to macos to fix pytest issue

* adding gitignore
 2024-07-10 08:54:26 -05:00
Atomic Red Team doc generator adb1f314bf Generated docs from job=generate-docs branch=master [ci skip] 2024-07-03 00:32:46 +00:00
Br3akp0int a3014001a9 ShrinkLocker PIN,TPM Bitlocker Registry Modification (#2817) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2024-07-02 19:31:31 -05:00
Atomic Red Team doc generator 05d3123aa5 Generated docs from job=generate-docs branch=master [ci skip] 2024-06-18 18:41:54 +00:00
nish221b-bs b84afa7c76 Update T1112.yaml (#2809) 
Added new Atomic "Flush ShimCache"

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2024-06-18 13:40:42 -05:00
Atomic Red Team doc generator c816622770 Generated docs from job=generate-docs branch=master [ci skip] 2024-05-29 23:42:13 +00:00
nish221b-bs 5175bbc392 Update T1112.yaml (#2785) 
* Update T1112.yaml

Adding a new atomic test for registry modification for shadow key in terminal services

* Update T1112.yaml

Make reference a link, remove empty guid

---------

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2024-05-29 18:39:11 -05:00
Atomic Red Team doc generator 9c842daeb3 Generated docs from job=generate-docs branch=master [ci skip] 2024-05-15 00:48:54 +00:00
abhijose09 5f866ca451 Update T1112.yaml (#2774) 
* Update T1112.yaml

Add new test Disable Windows Prefetch Through Registry

* fix spacing

---------

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2024-05-10 13:36:54 -05:00
Atomic Red Team doc generator f64434da24 Generated docs from job=generate-docs branch=master [ci skip] 2024-04-27 17:50:49 +00:00
CyberBilly7 5c50c4409d Adding T1112 Test 69 (#2748) 
* Update T1112.yaml

* Update T1112.yaml

---------

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2024-04-27 12:44:00 -05:00
Atomic Red Team doc generator 936ac00f52 Generated docs from job=generate-docs branch=master [ci skip] 2024-04-06 02:13:59 +00:00
Carrie Roberts 8059a7fc39 force delete (#2728) 2024-03-28 02:55:34 -04:00
Atomic Red Team doc generator cc2ac1e0c1 Generated docs from job=generate-docs branch=master [ci skip] 2024-02-29 01:20:49 +00:00
Atomic Red Team GUID generator d017a40f10 Generate GUIDs from job=generate-docs branch=master [skip ci] 2024-02-29 01:20:32 +00:00
Matt Anderson af587464f6 Update T1112.yaml (#2709) 
* Update T1112.yaml

Added Powershell method to modify Wdigest registry setting to store cleartext credentials.

* remove redundant powershell.exe

---------

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2024-02-28 19:19:52 -06:00
Atomic Red Team doc generator 1e4d33d15a Generated docs from job=generate-docs branch=master [ci skip] 2024-02-08 21:23:17 +00:00
Jake H 694d2c0778 Removing REM from 95b25212-91a7-42ff-9613-124aca6845a8 due to incorrect execution (#2681) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2024-02-08 15:22:25 -06:00
Atomic Red Team doc generator d7c45a052d Generated docs from job=generate-docs branch=master [ci skip] 2023-12-07 02:56:57 +00:00
tccontre de8f541aaa T1112 - DarkGate Registry Modification (#2633) 
* T1112 - DarkGate Registry Modification

* Update T1112.yaml

* Update T1112.yaml

---------

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-12-06 21:56:04 -05:00
Atomic Red Team doc generator b2bc904f4c Generated docs from job=generate-docs branch=master [ci skip] 2023-12-04 18:56:01 +00:00
Atomic Red Team GUID generator cc6a655d63 Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-12-04 18:55:44 +00:00
PhyoPaingHtun ChiLai bb601df2f8 Update T1112.yaml (Scarab Ransomware Defense Evasion Activities & Me… (#2625) 
* Update T1112.yaml (Scarab Ransomware Defense Evasion Activities  & Merdoor Backdoor Persistence Activities)

Scarab Ransomware Defense Evasion Activities 
Merdoor Backdoor Persistence Activities

* Update T1112.yaml (Update Merdoor Backdoor article)

* Update T1112.yaml (Update Syntax Error)

* Update T1112.yaml (Update Syntax Error)

* Update T1112.yaml

---------

Co-authored-by: PhyoPaingHtun ChiLai <83696447+PhyoPaing777@users.noreply.github.com>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-12-04 12:55:07 -06:00
Atomic Red Team doc generator e6fb2beca0 Generated docs from job=generate-docs branch=master [ci skip] 2023-12-04 18:31:49 +00:00
Atomic Red Team GUID generator d46b0d874e Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-12-04 18:31:36 +00:00
PhyoPaingHtun ChiLai 0e7356bccb Update T1112.yaml (Update Disable FIDO Authentication) (#2626) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-12-04 12:30:59 -06:00
Atomic Red Team doc generator b16ca202be Generated docs from job=generate-docs branch=master [ci skip] 2023-11-28 16:24:17 +00:00
Atomic Red Team GUID generator f132339bf6 Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-11-28 16:24:01 +00:00
PhyoPaingHtun ChiLai 8d981c0488 Update T1112.yaml (Activities To Disable Secondary Authentication Detected) (#2619) 
* Update T1112.yaml 

Disable Secondary Authentication Detected

* Update T1112.yaml

Added reference link in description

---------

Co-authored-by: PhyoPaingHtun ChiLai <83696447+PhyoPaing777@users.noreply.github.com>
Co-authored-by: Hare Sudhan <code@0x6c.dev>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-11-28 10:23:25 -06:00
Atomic Red Team doc generator fc49b11d8e Generated docs from job=generate-docs branch=master [ci skip] 2023-09-19 19:41:40 +00:00
Atomic Red Team GUID generator d604c832de Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-09-19 19:41:22 +00:00
Swachchhanda Shrawan Poudel f62d4c157c Modify Internet Zone Protocol Defaults in Current User Registry through PowerShell (#2534) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-09-19 13:40:44 -06:00
Atomic Red Team doc generator b76b49523e Generated docs from job=generate-docs branch=master [ci skip] 2023-09-13 01:31:11 +00:00
Atomic Red Team GUID generator 2ce6565ace Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-09-13 01:30:53 +00:00
Nasreddine Bencherchali 39534eb4ed Update T1112.yaml (#2522) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-09-12 19:30:08 -06:00
Atomic Red Team doc generator eec95b5b86 Generated docs from job=generate-docs branch=master [ci skip] 2023-08-02 03:24:15 +00:00
tccontre 711586d258 Tccontre max connection per server (#2503) 
* updating atomics count in README.md [ci skip]

* Update T1112.yaml

---------

Co-authored-by: publish bot <opensource@redcanary.com>
 2023-08-01 13:22:35 -06:00
Atomic Red Team doc generator a77383047f Generated docs from job=generate-docs branch=master [ci skip] 2023-07-12 02:38:27 +00:00
frack113 a7e5260a93 Add reg.exe force swith (#2477) 
Signed-off-by: frack113 <62423083+frack113@users.noreply.github.com>
 2023-07-11 20:36:53 -06:00