security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,538 Commits 47 Branches 0 Tags
python_conversion
Commit Graph

79 Commits

Author SHA1 Message Date
Atomic Red Team doc generator b2eb35d1c3 Generated docs from job=generate-docs branch=master [ci skip] 2025-02-25 04:28:04 +00:00
Carrie Roberts 07b95063b7 avoid command hanging (#3066) 
Co-authored-by: Bhavin Patel <bhavin.j.patel91@gmail.com>
 2025-02-24 20:27:13 -08:00
Atomic Red Team doc generator 5ede8f21e4 Generated docs from job=generate-docs branch=master [ci skip] 2025-02-13 22:03:40 +00:00
Atomic Red Team doc generator d10a13eb17 Generated docs from job=generate-docs branch=master [ci skip] 2025-01-28 05:03:31 +00:00
Hare Sudhan bfdd702717 Remove unused variable (#3040) 2025-01-28 00:02:41 -05:00
Atomic Red Team doc generator 936ac00f52 Generated docs from job=generate-docs branch=master [ci skip] 2024-04-06 02:13:59 +00:00
TrentonTait 19e82555c6 Update BrowserCollector to use Firefox (#2724) 2024-03-21 08:18:25 -05:00
Atomic Red Team doc generator e9b9f2ed7b Generated docs from job=generate-docs branch=master [ci skip] 2024-02-26 15:24:49 +00:00
Jake H edea906548 Implementation of venv into Windows Python atomics (#2703) 
* Improve pip handling (#1)

* virtual env added to T1018, tested and confirmed working

* virtual env added to T1003.001, tested and confirmed working

* virtual env added to T1555.003, tested and confirmed working

* Removing pip-autoremove installation as not required

* updating atomics count in README.md [ci skip]

---------

Co-authored-by: Hare Sudhan <code@0x6c.dev>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
Co-authored-by: publish bot <opensource@redcanary.com>
 2024-02-26 09:19:26 -06:00
Atomic Red Team doc generator 2dcdc27df7 Generated docs from job=generate-docs branch=master [ci skip] 2023-12-14 04:47:22 +00:00
AJ King 8bca554bc8 Update T1555.003.yaml - typo fix (#2637) 2023-12-13 21:46:31 -07:00
Atomic Red Team doc generator 6607ee34b6 Generated docs from job=generate-docs branch=master [ci skip] 2023-12-04 18:35:28 +00:00
Atomic Red Team GUID generator 966bf4b50d Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-12-04 18:35:11 +00:00
Leo Verlod b9ff7d2f85 Adding T1555.003 Test - Dump Chrome Login Data with esentutl (#2628) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-12-04 12:34:29 -06:00
Atomic Red Team doc generator 842e8f825e Generated docs from job=generate-docs branch=master [ci skip] 2023-10-24 23:44:08 +00:00
ywliang f29a5f8b35 Fix check dependency command 2023-10-11 10:20:15 +08:00
Atomic Red Team doc generator ccdf46f389 Generated docs from job=generate-docs branch=master [ci skip] 2023-09-29 14:41:30 +00:00
Antonio Piazza f68822b349 Added ExternalPayloads directory (#2545) 
* Added ExternalPayloads dir creation

* Created ExternaPayloads Dir

Created ExternaPayloads Directory using powershell command

* Added External Payloads Dir

Added External Payloads Directory using a powershell command for all Procedures.

* Fixed ExternalPayload directory creation

Fixed ExternalPayload directory creation.  Got rid of the Split path

* Created External Payloads directory

Created External Payloads directory for procedure 14d55ca0-920e-4b44-8425-37eedd72b173

* Update T1003.002.yaml

Added ExternalPayloads directory creation PowerShell command for procedure 804f28fc-68fc-40da-b5a2-e9d0bce5c193

* Update T1110.004.yaml

Added Powershell Command to creat ExternalPayloads dir for the second prereq for procedure 4852c630-87a9-409b-bb5e-5dc12c9ebcde.

* Update T1110.001.yaml

Added ExrernalPayload directory creation PowerShell command for procedure 59dbeb1a-79a7-4c2a-baf4-46d0f4c761c4
prereq 2

* Added ExternalPayloads Dir

Added Powershell command to create new ExternalPayloads dir for procedure fad04df1-5229-4185-b016-fb6010cd87ac

* Add ExternalPayloads Dir

Added PowerShell Command to create new ExternalPayloads directory for procedure c6f25ec3-6475-47a9-b75d-09ac593c5ecb

* Added prereq download directories

Added powershell command to create prereq download directories for procedure 6f2c5c87-a4d5-4898-9bd1-47a55ecaf1dd

---------

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-09-29 08:40:27 -06:00
Atomic Red Team doc generator 78204c6965 Generated docs from job=generate-docs branch=master [ci skip] 2023-09-22 21:07:21 +00:00
final five three fantasy 31713d27c6 updated lazagne URL (#2536) 
* Repair path error

* Repair path error

* Update dependency URL

* Update T1555.003.yaml

---------

Co-authored-by: ywliang <ywliang@Hillstonenet.com>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-09-22 15:06:06 -06:00
Atomic Red Team doc generator a228ee8656 Generated docs from job=generate-docs branch=master [ci skip] 2023-09-22 19:15:21 +00:00
Carrie Roberts d4709021fb Handle spaces in file paths (#2535) 
* updating atomics count in README.md [ci skip]

* wip

* handle spaces in path

* update readme

* fix typo

---------

Co-authored-by: publish bot <opensource@redcanary.com>
 2023-09-22 10:47:25 -06:00
Atomic Red Team doc generator cef46e4479 Generated docs from job=generate-docs branch=master [ci skip] 2023-06-15 16:17:12 +00:00
Carrie Roberts 068d32b1ea use ExternalPayloads directory (#2460) 
* use ExternalPayloads directory

* use ExternalPayloads directory

* use ExternalPayloads directory
 2023-06-15 10:16:12 -06:00
Atomic Red Team doc generator b1f3c968f2 Generated docs from job=generate-docs branch=master [ci skip] 2023-05-19 17:06:33 +00:00
Paul 9da60cf675 Update T1555.003.yaml (#2414) 
Update the version of LaZagne to 2.4.5

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-05-09 10:30:06 -06:00
Atomic Red Team doc generator 16594d72c5 Generated docs from job=generate-docs branch=master [ci skip] 2023-02-13 23:11:19 +00:00
Josh Rickard a5dd0813cd fix: Updating atomics YAML file structure to align with the new JSON schema definition (#2323) 
* fix: Updating atomics YAML file structure to align with the new JSON schema definition.

This also fixes some white space issues and general line formatting across all impacted atomics.

* fix: One additional change needed

---------

Co-authored-by: MSAdministrator <MSAdministrator@users.noreply.github.com>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-02-13 16:10:37 -07:00
Atomic Red Team doc generator d0dad62dbc Generated docs from job=generate-docs branch=master [ci skip] 2022-09-23 22:57:18 +00:00
Atomic Red Team doc generator 0189add39f Generated docs from job=generate-docs branch=master [ci skip] 2022-08-25 19:09:53 +00:00
Atomic Red Team GUID generator f8ea3fad88 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-08-25 19:09:46 +00:00
lucasRiley d969f13385 T1555.003 Browser stealer (#2090) 
* T1555.003 Browser stealer

* Update T1555.003.yaml

* Update T1555.003.yaml

Co-authored-by: Riley <lriley@NTI.local>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-08-25 13:09:12 -06:00
Atomic Red Team doc generator 4189c61800 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-12 14:53:38 +00:00
Atomic Red Team GUID generator 0e597a89bd Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-12 14:53:32 +00:00
arames13 dd2d946f1c T1555.003-update (#2026) 
* T1555.003-update

* Update T1555.003.yaml

* Delete T1555.003.yaml

* Create T1555.003.yaml

* Rename atomics/T1555.003/src/WebBrowserPassView.cfg to atomics/T1555.003/bin/WebBrowserPassView.cfg

* Delete atomics/T1555.003/src directory

* Add files via upload

adding 'WebBrowserPassView.exe' file to bin

Co-authored-by: anupama ramesh <aramesh@nti.local>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-12 08:53:02 -06:00
Atomic Red Team doc generator 819934cc3f Generated docs from job=generate-docs branch=master [ci skip] 2022-06-16 22:47:00 +00:00
Atomic Red Team doc generator 989bef284b Generated docs from job=generate-docs branch=master [ci skip] 2022-05-17 00:07:30 +00:00
Atomic Red Team GUID generator 351ee2e429 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-05-17 00:07:25 +00:00
Leo Verlod f949628243 Adding T1555.003 Test 14 - Chrome Login Data Access (MacOS) (#1965) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-05-16 18:07:01 -06:00
Atomic Red Team doc generator ef93c45591 Generated docs from job=generate-docs branch=master [ci skip] 2022-05-13 01:57:09 +00:00
Atomic Red Team GUID generator db49bd847c Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-05-13 01:57:04 +00:00
tlor89 73f3c752a4 Update T1555.003.yaml (#1949) 
* Update T1555.003.yaml

Loot local Credentials - Invoke-WCMDump technique via function of WinPwn

* Update T1555.003.yaml

added mimi-kittenz for extracting juicy info from memory and Sharpweb gathering Browser Credentials

* Update T1555.003.yaml

update

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-05-12 19:56:38 -06:00
Atomic Red Team doc generator 619f364ed4 Generated docs from job=generate-docs branch=master [ci skip] 2022-05-10 16:34:44 +00:00
Atomic Red Team GUID generator 249c34e97a Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-05-10 16:34:39 +00:00
dwhite9 c2527d32f1 Added BrowserPwn test sourced from WinPwn script. (#1937) 
**Details**
https://github.com/S3cur3Th1sSh1t/WinPwn/

**Testing**
Tested on Windows 10 VM

Co-authored-by: Daniel White <d0w019h@homeoffice.wal-mart.com>
 2022-05-10 10:34:11 -06:00
Atomic Red Team doc generator 7a85db6711 Generated docs from job=generate-docs branch=master [ci skip] 2022-05-10 14:42:00 +00:00
Atomic Red Team GUID generator 30a8f42824 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-05-10 14:41:55 +00:00
Leo Verlod 852fb8fda7 Adding T1555.003 Test 10 - Stage Popular Credential Files for Exfiltration (#1921) 
* Adding T1555.003 Test 10 - Stage Popular Credential Files for Exfiltration

* make hyperlinks via markdown syntax

* Making requested changes to T1555.003 Test 10

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-05-10 08:41:27 -06:00
Atomic Red Team doc generator ffb8cda982 Generated docs from job=generate-docs branch=master [ci skip] 2022-05-01 05:11:40 +00:00
Atomic Red Team GUID generator 0bf889be40 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-05-01 05:11:34 +00:00