security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,538 Commits 47 Branches 0 Tags
python_conversion
Commit Graph

6538 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Zac Brown be2c99fb3a Add a .gitignore to ignore generated files in this directory. 
Signed-off-by: Zac Brown <zacbrown@users.noreply.github.com>
 2018-08-30 11:42:14 -07:00
Zac Brown 511388ad2c Fix issue using colons (:) in file paths on Windows. This syntax (colon) is used for alternative data streams (https://en.wikipedia.org/wiki/NTFS#Alternate_data_streams_.28ADS.29). 
Signed-off-by: Zac Brown <zacbrown@users.noreply.github.com>
 2018-08-30 11:40:35 -07:00
CircleCI Atomic Red Team doc generator 73caddcd1f Generate docs from job=validate_atomics_generate_docs branch=T1055-mh 2018-08-30 18:19:59 +00:00
Michael Haag eacf221901 Updated T1055 
Added reference link for Incoke-DLLInjection
 2018-08-30 14:19:45 -04:00
Michael Haag 754d9ac33a Merge pull request #314 from redcanaryco/users/zacbrown/templates 
Create issue and pull request templates.
 2018-08-29 20:14:17 -04:00
Zac Brown a7e8f17a35 Create issue and pull request templates. 
Signed-off-by: Zac Brown <zacbrown@users.noreply.github.com>
 2018-08-29 17:11:27 -07:00
CircleCI Atomic Red Team doc generator 7981a20763 Generate docs from job=validate_atomics_generate_docs branch=rootkit-T1014-Windows 2018-08-29 03:27:54 +00:00
caseysmithrc 3820ae1da8 Merge branch 'master' into rootkit-T1014-Windows 2018-08-28 21:27:37 -06:00
CircleCI Atomic Red Team doc generator 11af281209 Generate docs from job=validate_atomics_generate_docs branch=rootkit-T1014-Windows 2018-08-29 03:22:28 +00:00
caseysmithrc d30572c00c Merge branch 'rootkit-T1014-Windows' of https://github.com/redcanaryco/atomic-red-team into rootkit-T1014-Windows 2018-08-28 21:22:16 -06:00
caseysmithrc 237a9f2f67 T1014 Windows Rootkit Update 2018-08-28 21:22:12 -06:00
CircleCI Atomic Red Team doc generator ca8f85ad5c Generate docs from job=validate_atomics_generate_docs branch=rootkit-T1014-Windows 2018-08-29 03:10:53 +00:00
CircleCI Atomic Red Team doc generator 7478f29dc3 Generate docs from job=validate_atomics_generate_docs branch=master 2018-08-29 03:08:56 +00:00
caseysmithrc 24a3f301a1 Merge branch 'master' of https://github.com/redcanaryco/atomic-red-team 2018-08-28 21:08:30 -06:00
caseysmithrc a066585755 Revert "CapCom Driver Exploit Rootkit" 
This reverts commit a732b873f4.
 2018-08-28 21:08:22 -06:00
CircleCI Atomic Red Team doc generator e40e3d9e0a Generate docs from job=validate_atomics_generate_docs branch=master 2018-08-29 03:06:09 +00:00
caseysmithrc a732b873f4 CapCom Driver Exploit Rootkit 2018-08-28 21:05:54 -06:00
CircleCI Atomic Red Team doc generator abb3b58255 Generate docs from job=validate_atomics_generate_docs branch=master 2018-08-23 00:39:07 +00:00
Michael Haag afe9f07a22 Merge pull request #307 from nikseetharaman/t1191-uacbypass 
T1191 uacbypass
 2018-08-22 20:38:47 -04:00
CircleCI Atomic Red Team doc generator 0b3543c2c1 Generate docs from job=validate_atomics_generate_docs branch=master 2018-08-23 00:37:54 +00:00
Michael Haag 7878afe96c Merge pull request #301 from swelcher/T1069temp 
Added Windows Group Enumeration
 2018-08-22 20:37:37 -04:00
Michael Haag 534840b818 Merge pull request #310 from ForensicITGuy/fixReadme 
Fix Quick Start and add a Slack Invite link
 2018-08-22 20:36:04 -04:00
Tony M Lambert af56b2e6af Fix and add a link in README 
Fix quick start link and add a link for Slack invitations
 2018-08-22 18:36:20 -05:00
Keith McCammon 6f80c53eab Merge pull request #308 from redcanaryco/example-ruby-execution-framework 
Example ruby execution framework
 2018-07-31 23:03:50 -06:00
Nik Seetharaman ea477fa9e8 Fix t1191.yaml 2018-07-27 08:40:28 -05:00
Nik Seetharaman dbae21ab77 Add test for T1191 UAC Bypass 2018-07-27 02:59:47 -05:00
CircleCI Atomic Red Team doc generator 58fc9342e4 Generate docs from job=validate_atomics_generate_docs branch=master 2018-07-26 22:31:58 +00:00
Austin Robertson 5cb3fed680 General YAML cleanup (#305) 
* Fix string interpolation from ${foo} to #{foo} across all atomics

* remove non-ASCII characters from atomics YAML

* fix erroneous input_arguments
 2018-07-26 16:31:50 -06:00
CircleCI Atomic Red Team doc generator 2e9c9c4aa1 Generate docs from job=validate_atomics_generate_docs branch=master 2018-07-26 17:53:34 +00:00
Keith McCammon d1a5f97ecf Merge pull request #304 from aus/patch-2 
T1140 - Fix string interpolation from ${foo} to #{foo}
 2018-07-26 11:53:21 -06:00
Austin Robertson 69cd89be91 Fix string interpolation from ${foo} to #{foo} 2018-07-26 11:25:08 -05:00
CircleCI Atomic Red Team doc generator 7c946955b7 Generate docs from job=validate_atomics_generate_docs branch=master 2018-07-25 16:39:20 +00:00
Michael Haag 259a0ff7e0 Merge pull request #303 from vector-sec/master 
Added T1165 Startup Items emond rules test
 2018-07-25 12:38:48 -04:00
Eric 9b1db5906e Additional identity crisis 2018-07-21 22:22:17 -04:00
Eric 2edde3688a Identity crisis 2018-07-21 22:16:44 -04:00
vector-sec 88bc32c778 Added T1165 emond rule test 2018-07-21 22:15:11 -04:00
Swelc 77d4a3c956 Added Windows Group Enumeration 2018-07-19 19:52:31 -05:00
CircleCI Atomic Red Team doc generator 9c278eba0d Generate docs from job=validate_atomics_generate_docs branch=master 2018-07-16 18:54:03 +00:00
Michael Haag 81b6d0ce6a Merge pull request #299 from ForensicITGuy/RC13378-tl 
Systemd Service Creation Test
 2018-07-16 14:52:20 -04:00
Michael Haag 5f734f7dda Merge pull request #298 from vector-sec/t1031-modifying-a-service 
T1031 modifying a service
 2018-07-16 13:56:03 -04:00
CircleCI Atomic Red Team doc generator 6f86b3ef5d Generate docs from job=validate_atomics_generate_docs branch=master 2018-07-16 17:55:18 +00:00
Michael Haag 982f8aca2c Merge pull request #297 from timfrazier1/master 
Substituted variable in T1127.yaml
 2018-07-16 13:54:05 -04:00
Michael Haag 178ab165b6 Merge pull request #296 from nicholasaleks/T1074/collect-n-compress-file-types 
T1074/collect n compress file types
 2018-07-16 13:30:32 -04:00
Tony M Lambert 04ebe02152 Systemd Service Creation Test 2018-07-13 16:27:15 -05:00
Tim Frazier 5b72734e90 Moving csproj file to src folder 2018-07-12 20:39:25 -04:00
timfrazier1 65025fe84c Update T1127.yaml 
Substitute variable for hard coded filename
 2018-07-12 20:13:57 -04:00
timfrazier1 ec58b50b2b Merge pull request #3 from redcanaryco/master 
Merging in latest changes
 2018-07-12 20:12:56 -04:00
Eric Turpin 0f76c98adb Updated T1031 Modify Existing Service Test 2018-07-12 16:53:35 -04:00
Eric Turpin 9488f53dc5 Added T1031 Modify Existing Service Test 2018-07-12 16:40:46 -04:00
nicholasaleks 8634293566 T1074/collect-n-compress-file-types: Updated typos in atomic test #2 2018-07-12 00:33:42 -04:00