atomic-red-team

Author	SHA1	Message	Date
Carl	68f1fb6b84	Merge branch 'master' into T1135_test1_split	2021-05-21 13:38:54 -06:00
Will Urbanski	72cfa24ea4	add prereqs	2021-05-20 12:38:51 -06:00
Will Urbanski	41d83e93f1	update enterprise att&ck and build docs	2021-05-20 12:29:56 -06:00
Will Urbanski	a464b3e144	update ATT&CK IDs	2021-05-20 12:16:51 -06:00
Will Urbanski	563b0cea66	update supported platforms for test 2 in t8062	2021-05-20 10:20:36 -06:00
Will Urbanski	e62fe31e9a	update for tests	2021-05-20 10:18:51 -06:00
Will Urbanski	92d460266b	add k8s tests	2021-05-20 10:08:45 -06:00
CircleCI Atomic Red Team doc generator	bc03931ed3	Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-05-20 05:04:27 +00:00
tlor89	434c998df2	T1222.001 Test 5 prereq and cleanup (#1442 ) * T1222.001 Test 5 prereq and cleanup * Update T1222.001.yaml * variable name correction Co-authored-by: Toua Lor <tlor@nti.local> Co-authored-by: Carrie Roberts <clr2of8@gmail.com>	2021-05-19 23:04:01 -06:00
CircleCI Atomic Red Team doc generator	e04077bfe6	Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-05-20 04:59:49 +00:00
Isaac Sikkema	a86a906ee8	Fix platform incompatible executors in T1553.004 and T1518 (#1474 ) * Fix platform incompatible executors for T1553.004 * Fix platform incompatible executor for T1518	2021-05-19 22:59:28 -06:00
Travis Lowe	a228373942	bash script for docker install prereq	2021-05-19 15:06:52 -05:00
Travis Lowe	5aad980a94	more tweaks	2021-05-19 13:58:33 -05:00
Travis Lowe	e6c4db95ff	typo fix	2021-05-19 13:54:30 -05:00
Travis Lowe	48390130cb	more K8s things	2021-05-19 12:29:37 -05:00
Travis Lowe	3256279d28	kubernetes-token	2021-05-19 11:48:39 -05:00
Carl	94bfa95d65	Merge branch 'master' into T1135_test1_split	2021-05-19 09:42:04 -06:00
Brian Thacker	5a39c2c7f6	Update T1562.001.yaml Added prereq commands to test 1	2021-05-19 08:31:29 -05:00
Brian Thacker	6aba5d3ef8	Update T1562.001.yaml Test 1: changed commands to be executed via input arguments to account for different flavors of Linux. Added cleanup commands based on the same principle.	2021-05-18 15:10:05 -05:00
Brian Thacker	201459202f	Update T1562.004.yaml Test 1 edits: Simplified name, put commands into input variables to make test more versatile and not just for CentOS. Added cleanup commands using same method.	2021-05-18 13:40:29 -05:00
CircleCI Atomic Red Team doc generator	e1989f2bec	Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-05-18 15:24:18 +00:00
CircleCI Atomic Red Team GUID generator	da2dd2b06b	Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-05-18 15:24:12 +00:00
Alex Flores	bba82c0d5e	adds additional lsass dump test (#1467 ) Co-authored-by: Carrie Roberts <clr2of8@gmail.com>	2021-05-18 09:23:39 -06:00
CircleCI Atomic Red Team doc generator	6a570c2a46	Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-05-18 14:52:23 +00:00
tjgeorgen	7d494dcbce	Fix file path for PowerDump Import (#1466 ) seemed to download the module to $Env:Temp then run from .\, so I changed both to $Env:Temp	2021-05-18 08:51:47 -06:00
Brian Thacker	b473355eaa	Merge branch 'master' into T1135_test1_split	2021-05-16 16:22:13 -05:00
CircleCI Atomic Red Team doc generator	65510577ca	Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-05-14 11:34:42 +00:00
CircleCI Atomic Red Team GUID generator	4578cb3549	Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-05-14 11:34:35 +00:00
Wesley Cesar	d4c78db8c4	Update T1082.yaml (#1435 )	2021-05-14 05:34:01 -06:00
CircleCI Atomic Red Team doc generator	1186af54a7	Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-05-13 20:44:17 +00:00
CircleCI Atomic Red Team GUID generator	5f57e740fb	Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-05-13 20:44:10 +00:00
Ján Trenčanský	a7a1e69bda	WMI create process using indirect Win32_Process call (#1461 ) * Win32_Process obfuscate * T1047-8 cleanup command * T1047-8 add process_to_execute argument Co-authored-by: Carrie Roberts <clr2of8@gmail.com>	2021-05-13 14:43:37 -06:00
Geoff Galitz	ce9f8f63ba	Fix minor typo Specigy -> Specify (#1462 ) Co-authored-by: woodyhacker <cesarholz497@gmail.com> Co-authored-by: Carrie Roberts <clr2of8@gmail.com>	2021-05-13 14:42:06 -06:00
Brian Thacker	a0a56474ae	Update T1135.yaml Split test 1 into two tests one for macos and one for Linux. Linux test added prereq commands and used a different tool.	2021-05-09 17:43:33 -05:00
CircleCI Atomic Red Team doc generator	03ee9ef29b	Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-05-08 18:03:02 +00:00
CircleCI Atomic Red Team GUID generator	ef116ab4e0	Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-05-08 18:02:55 +00:00
inc0gnit0	c6d8941307	Added T1560.002, T1486, T1059.006 - Blackbot Inc. (#1438 ) * Added T1486 * Added T1560.002 * Added T1059.006 Co-authored-by: ryang <ryang@blackbot.io> Co-authored-by: SpookySec <anonymousbot100110@gmail.com>	2021-05-08 12:02:28 -06:00
tlor89	cf2250b19c	T1046_Update (#1460 ) Co-authored-by: Toua Lor <tlor@nti.local>	2021-05-07 09:26:27 -06:00
CircleCI Atomic Red Team doc generator	1b7cc49d63	Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-05-03 22:58:57 +00:00
Brian Thacker	ef179339ab	Update T1562.001 Test 3 (#1456 ) Added cleanup commands. Added elevation required	2021-05-03 16:58:37 -06:00
CircleCI Atomic Red Team doc generator	5fc22afd72	Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-04-30 20:56:30 +00:00
monoors	b43b7a6f07	Update T1056.004.yaml (#1453 ) This parameter is required on systems where no internet explorer is installed, otherwise a parsing error will occur: curl : The response content cannot be parsed because the Internet Explorer engine is not available, or Internet Explorer's first-launch configuration is not complete. Specify the UseBasicParsing parameter and try again. At line:2 char:1 + curl https://www.example.com} + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + CategoryInfo : NotImplemented: (:) [Invoke-WebRequest], NotSupportedException + FullyQualifiedErrorId : WebCmdletIEDomNotSupportedException,Microsoft.PowerShell.Commands.InvokeWebRequestCommand Co-authored-by: Carrie Roberts <clr2of8@gmail.com>	2021-04-30 14:55:54 -06:00
CircleCI Atomic Red Team doc generator	6bd8fc68e7	Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-04-30 20:53:20 +00:00
tlor89	6b724298f1	T1562.002_Update (#1451 ) Co-authored-by: Toua Lor <tlor@nti.local> Co-authored-by: Carrie Roberts <clr2of8@gmail.com>	2021-04-30 14:53:00 -06:00
CircleCI Atomic Red Team doc generator	5dd066ec61	Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-04-30 20:50:27 +00:00
CircleCI Atomic Red Team GUID generator	50f1ea7a06	Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-04-30 20:50:22 +00:00
Ján Trenčanský	731a7c9ed6	T1053.005 create SchduledTask using WMI class (#1434 ) * ScheduledTask via WMI * Fix typos and XML load * Fix wrong cmdlet name in test name Co-authored-by: Carrie Roberts <clr2of8@gmail.com>	2021-04-30 14:49:42 -06:00
CircleCI Atomic Red Team doc generator	513b2f7cc9	Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-04-30 20:42:42 +00:00
Michael Boman	0379f23997	Take 2 on making psexec a configurable dependency. (#1450 ) Co-authored-by: Carrie Roberts <clr2of8@gmail.com>	2021-04-30 14:41:57 -06:00
CircleCI Atomic Red Team doc generator	f9d21d9a0e	Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]	2021-04-29 22:44:57 +00:00

... 65 66 67 68 69 ...

5173 Commits