* Update T1552.001.yaml
New Test Added : List Credential Files via PowerShell
* Update T1552.001.yaml
Added Test List Credential Files via PowerShell , List Credential Files via Command Prompt
* Updated command lines
Updated command lines
* feat: Adding atomic-red-team JSON Schema defintions
* feat: Adding validate.py script to validate all atomics against the defined schema
* feat: Adding validate-schema GitHub Workflow action to validate on every push to the repo
* ci: Updated the validate-schema workflow to support and use Ruby instead of python
* fix: Updated schema to remove schema draft version (not necessarily needed) and update to remove elevation_required as a required defined property
* fix: Removed the yaml schema version
* docs: Adding start of README
* fix: Adding an updated/better version of the python validation but may ultimately be removed
* feat: Adding Ruby version of validate.rb script
* fix: Removing files not needed since we are changing to github action and using the new validation code
* fix: Adding the yaml schema file back and removed the json version
* docs: Updated README with documentation
* fix: Updating schema to use new format validator
* fix: Updated validate.rb to verify that the Technique IDs are in the correct format.
* fix: Upating validate.rb to raise execptions so that failures flow up to the GitHub Action workflow
* fix: Updated all tests that have input_arguments not conformaing to schema defintion for type value of path
* fix: Updating the Validaton README for typos
* fixL: Minor updates to the schema
* minor schema changes
* github actions fix
* schema changes
---------
Co-authored-by: MSAdministrator <MSAdministrator@users.noreply.github.com>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
Co-authored-by: Hare Sudhan <code@0x6c.dev>
* fix: Updating atomics YAML file structure to align with the new JSON schema definition.
This also fixes some white space issues and general line formatting across all impacted atomics.
* fix: One additional change needed
---------
Co-authored-by: MSAdministrator <MSAdministrator@users.noreply.github.com>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
Loot local Credentials - AWS, Microsoft Azure, and Google Compute credentials technique via function of WinPwn
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
* Adding Tests for creation and modification of systemd service
* Update T0137.004.md Markdown to Match T1037.004.yaml
* Adding Atomic Test for Finding and Accessing Unsecured Github Credentials along with Updated Markdown Version T1552.001.md
* Adding Checks whether OS is Ubuntu, CentOS OR Kali
* T1110.004 : Credential Stuffing From Linux & macOS
* T1110.004 : Credential Stuffing From Linux & macOS
* T1110.004 : Credential Stuffing From Linux & macOS
* Fetch Upstream
* Fetch From Upstream
* Fetch From Upstream
* Atomic Test For GCP Service Account
* Atomic Test For GCP Service Account
* Adding CleanUp Commands
* Typo in YAML file
* Google Cloud Shell to Google-Workspace
* changing upper case to lower case
* modified executor and dependecy name
* Adding missing tests from master
* Typo
Co-authored-by: Madhav Bhatt <madhavbhatt@kali.local>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
* Fix macOS tests
* Fix typo in T1574.006
* Replaced zsh with bash, add prereq_command
* Fix test name in T1053.004
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
Atomic Red Team doc generator