security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,538 Commits 47 Branches 0 Tags
python_conversion
Commit Graph

6538 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Stuart Tyne 80c12f6c4e fixing typo in Space After Filename technique 2018-02-19 15:06:48 +11:00
Dan Bourke 258d7c83d5 fix formatting issue 2018-02-19 14:32:10 +11:00
Dan Bourke 1ad74772b7 mac and linux example setuid binary 2018-02-19 14:29:52 +11:00
Dan Bourke f2203aaf2b add probably-harmless c program 2018-02-19 13:57:07 +11:00
Stuart Tyne 5ba88dfa61 Adding Space After Filename technique 2018-02-19 10:42:31 +11:00
Stuart Tyne 172bee8a4c Adding Space After Filename technique 2018-02-19 10:38:02 +11:00
Stuart Tyne 396172559d Adding Space After Filename technique 2018-02-19 10:31:08 +11:00
atmathis 5e494127ac Add Ranged Chain Reaction (Mac/Linux) 
Adding POSIX Chain Reaction that is platform aware and runs different
checks for each platform. Simulates Discovery, Collection, and
Exfiltration phases.
 2018-02-15 17:53:13 -05:00
atmathis e9f6914998 Merge remote-tracking branch 'redcanaryco/master' 2018-02-15 17:51:56 -05:00
caseysmithrc 23e904b898 Merge pull request #79 from ForensicITGuy/master 
Added ART tests for Linux signal trap functions
 2018-02-13 14:25:58 -07:00
Tony M Lambert cba719ea81 Merge pull request #2 from ForensicITGuy/linux-goodness 
Linux goodness
 2018-02-13 15:14:54 -06:00
Tony M Lambert 03bcfd5c04 Delete Discovery.sh 2018-02-13 15:13:32 -06:00
Tony M Lambert 6e445c7d65 Merge pull request #1 from redcanaryco/master 
Updating
 2018-02-13 15:12:10 -06:00
Tony M Lambert bb5a0181f2 Adding Persistence and Execution tests for Trap 2018-02-13 15:10:47 -06:00
Michael Haag 5023dafa17 Merge pull request #78 from redcanaryco/Haag 
Removing Detections
 2018-02-13 11:53:00 -06:00
Michael Haag 60f7be8223 Removing Detections 
Removing detections until further notice
 2018-02-13 09:57:20 -06:00
caseysmithrc c75ac6abd5 Merge pull request #77 from redcanaryco/Haag 
ARTifacts - Detections
 2018-02-13 08:36:57 -07:00
Michael Haag 760b7ad679 Merge pull request #75 from danbourke/mac-persistence-emond 
Mac persistence -  emond
 2018-02-13 09:35:27 -06:00
Michael Haag 71789328c1 Merge pull request #76 from danbourke/72 
resolves #72
 2018-02-13 09:33:57 -06:00
Dan Bourke d1eaf4454d resolves #72 2018-02-13 14:46:47 +11:00
Dan Bourke b73f61c5dc minor consistency edit 2018-02-13 14:39:08 +11:00
Dan Bourke 99db88ff0d add emond persistence mechanism 2018-02-13 14:36:59 +11:00
Michael Haag 6db90fe788 Merge pull request #74 from redcanaryco/atomic-dev-cs 
Update Payload
 2018-02-12 08:48:34 -06:00
caseysmithrc af7be36230 Update Payload 2018-02-11 21:19:46 -07:00
Tony M Lambert 80bdcf5f10 Work in progress Linux discovery payload 2018-02-08 17:31:39 -06:00
caseysmithrc e12345ed46 Merge pull request #73 from danbourke/mac-exfil 
Mac/Linux SSH exfil
 2018-02-08 06:09:21 -07:00
Michael Haag 5930ef5161 Update Exfiltration_Over_Alternative_Protocol.md 2018-02-08 06:53:06 -06:00
Michael Haag 7dbbb68677 Update Exfiltration_Over_Alternative_Protocol.md 2018-02-08 06:52:43 -06:00
Dan Bourke b047c5575f update readme, update linux example path 2018-02-08 17:05:23 +11:00
Dan Bourke 809b85b2a2 add first pass at SSH exfiltration 2018-02-08 17:01:34 +11:00
Michael Haag d01d1f149f Merge pull request #70 from mgreen27/patch-1 
Add_remote_task
 2018-02-06 08:18:32 -07:00
Matthew Green ece7cf1537 Add_remote_task 
Couple of additional inputs for testing remote task creation
 2018-02-06 16:05:23 +11:00
Michael Haag 901d2275c4 ARTifacts - Detections 
Adding a few detections for some Chain Reactions.
 2018-02-01 15:46:25 -06:00
Michael Haag eb56e8216f Merge pull request #69 from redcanaryco/Haag 
Reactor - Detection - Collection
 2018-01-31 09:29:58 -06:00
Michael Haag dc0e511d12 Reactor - Detection - Collection 
Added Collection
 2018-01-31 09:29:11 -06:00
caseysmithrc b010fc6205 Merge pull request #68 from redcanaryco/Haag 
Reactor Detection
 2018-01-31 08:23:32 -07:00
Michael Haag d943fa1315 Reactor - Detection 
Detection for Reactor Chain Reaction
 2018-01-31 09:17:08 -06:00
atmathis f4a0a8af83 Merge remote-tracking branch 'redcanaryco/master' 2018-01-30 14:26:56 -05:00
Michael Haag 0588f4f38a Quick Fix 2018-01-29 13:09:50 -06:00
caseysmithrc b5c4d940ef Merge pull request #67 from redcanaryco/Haag 
Final Reactor
 2018-01-29 10:19:11 -05:00
Michael Haag a091f57f94 Final Reactor 
Completion of the Reactor Chain Reaction
 2018-01-18 13:40:31 -07:00
caseysmithrc 3e7dda54bd Merge pull request #65 from redcanaryco/Haag 
Mac - Linux Matrix Update
 2018-01-17 09:17:22 -07:00
Michael Haag 5e9b720ecf Windows Matrix 
Added bitsadmin and cleanup
 2018-01-16 11:51:16 -07:00
Michael Haag 58c0b63bc6 Updated Linux Matrix 
Updated Matrix
 2018-01-16 11:47:24 -07:00
Michael Haag 9a5128a7da Mac Matrix Update 
Updated Mac Matrix and technique names
 2018-01-16 11:00:21 -07:00
caseysmithrc d36664c5c7 Merge pull request #64 from redcanaryco/Haag 
Matrix Update + CR
 2018-01-16 10:24:47 -07:00
Michael Haag a5d7e40120 Mshta Add 2018-01-16 10:22:36 -07:00
Michael Haag 94f729c684 Merge branch 'master' into Haag 2018-01-16 10:22:25 -07:00
Michael Haag d01ed9c636 Merge pull request #63 from redcanaryco/atomic-dev-cs 
Atomic dev cs
 2018-01-16 10:21:19 -07:00
caseysmithrc 4c01f9eca6 mshta T1170 2018-01-16 10:19:15 -07:00