security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,538 Commits 47 Branches 0 Tags
python_conversion
Commit Graph

6538 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
final five three fantasy 31713d27c6 updated lazagne URL (#2536) 
* Repair path error

* Repair path error

* Update dependency URL

* Update T1555.003.yaml

---------

Co-authored-by: ywliang <ywliang@Hillstonenet.com>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-09-22 15:06:06 -06:00
Atomic Red Team doc generator a228ee8656 Generated docs from job=generate-docs branch=master [ci skip] 2023-09-22 19:15:21 +00:00
Antonio Piazza e3b45b7b30 Added ExternalPayloads dir creation (#2537) 
* Added ExternalPayloads dir creation

* Created ExternaPayloads Dir

Created ExternaPayloads Directory using powershell command

* Added External Payloads Dir

Added External Payloads Directory using a powershell command for all Procedures.

* Fixed ExternalPayload directory creation

Fixed ExternalPayload directory creation.  Got rid of the Split path

* Created External Payloads directory

Created External Payloads directory for procedure 14d55ca0-920e-4b44-8425-37eedd72b173
 2023-09-22 13:14:23 -06:00
Carrie Roberts d4709021fb Handle spaces in file paths (#2535) 
* updating atomics count in README.md [ci skip]

* wip

* handle spaces in path

* update readme

* fix typo

---------

Co-authored-by: publish bot <opensource@redcanary.com>
 2023-09-22 10:47:25 -06:00
publish bot 5e9e3d2273 updating atomics count in README.md [ci skip] 2023-09-19 19:54:14 +00:00
sidahmed-malaoui 5a5f05362b Add backslash to path to make it valid (#2530) 
Co-authored-by: Hare Sudhan <code@0x6c.dev>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-09-19 13:53:28 -06:00
Atomic Red Team doc generator 429bad7d5b Generated docs from job=generate-docs branch=master [ci skip] 2023-09-19 19:51:19 +00:00
Atomic Red Team GUID generator 9cb101bde7 Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-09-19 19:51:00 +00:00
Maskit Ariely 33fa790c25 T1005 (#2532) 
* final test

* final test

* remove auto_generated_guid:

---------

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-09-19 13:50:16 -06:00
Atomic Red Team doc generator fc49b11d8e Generated docs from job=generate-docs branch=master [ci skip] 2023-09-19 19:41:40 +00:00
Atomic Red Team GUID generator d604c832de Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-09-19 19:41:22 +00:00
Swachchhanda Shrawan Poudel f62d4c157c Modify Internet Zone Protocol Defaults in Current User Registry through PowerShell (#2534) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-09-19 13:40:44 -06:00
Atomic Red Team doc generator ac64299bcc Generated docs from job=generate-docs branch=master [ci skip] 2023-09-19 19:37:14 +00:00
final five three fantasy e1fa1bfd42 fixed some path errors (#2533) 
* Repair path error

* Repair path error

---------

Co-authored-by: ywliang <ywliang@Hillstonenet.com>
 2023-09-19 13:35:57 -06:00
Atomic Red Team doc generator 980f3f83fd Generated docs from job=generate-docs branch=master [ci skip] 2023-09-14 13:27:41 +00:00
Atomic Red Team GUID generator 9c8e0a75aa Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-09-14 13:27:17 +00:00
Ryan Plas a297bbc206 T1564.003 - Headless Browser Mockbin (#2529) 
* T1564.003 - Headless Browser Mockbin

* Update T1564.003.yaml

---------

Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com>
 2023-09-14 07:26:24 -06:00
Atomic Red Team doc generator b76b49523e Generated docs from job=generate-docs branch=master [ci skip] 2023-09-13 01:31:11 +00:00
Atomic Red Team GUID generator 2ce6565ace Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-09-13 01:30:53 +00:00
Nasreddine Bencherchali 39534eb4ed Update T1112.yaml (#2522) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-09-12 19:30:08 -06:00
Atomic Red Team doc generator 205e8b3149 Generated docs from job=generate-docs branch=master [ci skip] 2023-09-13 01:28:09 +00:00
Atomic Red Team GUID generator c973f6a07c Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-09-13 01:27:43 +00:00
Maskit Ariely 6dd26cd1f3 T1567.003 (#2523) 
* init

* finished test

---------

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-09-12 19:26:54 -06:00
Atomic Red Team doc generator 5d76ff7aa1 Generated docs from job=generate-docs branch=master [ci skip] 2023-09-13 01:22:52 +00:00
Atomic Red Team GUID generator bd99b04a31 Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-09-13 01:22:34 +00:00
Thomas Meng d2562f763a T1055.002 Process Injection: (Fileless) Portable Executable Injection (#2524) 
* Add new T1055 process injection test named dirty vanity

* Fix typos

* Update build.bat

* Delete atomics/T1055/T1055.yaml.bak

* T1055.002 Process Injection: Portable Executable Injection implemented and tested on both Windows 10 and 11. Bypassed Windows defender. A messagebox spawned with message Atomic Red Team

* Update T1055.002 proc privilege level

* Fix some small issues related to code compliation with different compilers in different archs

* Update T1055.002.md

Update documentation for T1055.002

* Update T1055.002.md

Update clean up command

---------

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-09-12 19:21:55 -06:00
Atomic Red Team doc generator 53f605e142 Generated docs from job=generate-docs branch=master [ci skip] 2023-09-12 19:14:33 +00:00
Carrie Roberts 5dc57a112a handle spaces in file path (#2527) 2023-09-12 15:13:14 -04:00
Atomic Red Team doc generator 4624b2c995 Generated docs from job=generate-docs branch=master [ci skip] 2023-09-12 02:52:27 +00:00
Atomic Red Team GUID generator a68b2cfabe Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-09-12 02:52:08 +00:00
art-labs 0c57c49f1b Update T1055.yaml (#2526) 
removing invalid guid. a new one will be automatically assigned by github actions
 2023-09-11 20:51:30 -06:00
publish bot 122d6a448a updating atomics count in README.md [ci skip] 2023-09-11 18:36:59 +00:00
Bhavin Patel 458d8a9731 Merge pull request #2519 from cyberbuff/T1021.005 
T1021.005 Apple Remote Desktop
 2023-09-11 11:36:06 -07:00
Bhavin Patel edf3453ac2 Merge branch 'master' into T1021.005 2023-09-11 11:35:06 -07:00
publish bot 01b2dda043 updating atomics count in README.md [ci skip] 2023-09-11 18:35:04 +00:00
Bhavin Patel 4f03ef6917 Merge pull request #2515 from blueteam0ps/T1098.003-2 
Adding Simulate - Post BEC persistence via user password reset follow…
 2023-09-11 11:34:22 -07:00
Bhavin Patel d597a5e021 Merge branch 'master' into T1098.003-2 2023-09-11 11:33:15 -07:00
publish bot 5c3b23002d updating atomics count in README.md [ci skip] 2023-09-06 18:29:08 +00:00
Thomas Meng 886ede1606 Process injection dirty vanity (#2520) 
* Add new T1055 process injection test named dirty vanity

* Fix typos

* Update build.bat

* Delete atomics/T1055/T1055.yaml.bak

---------

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-09-06 12:28:11 -06:00
Atomic Red Team doc generator 9eeb1cd6f0 Generated docs from job=generate-docs branch=master [ci skip] 2023-09-06 17:24:36 +00:00
Atomic Red Team GUID generator f902e6d232 Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-09-06 17:24:18 +00:00
Scoubi 7f2a7db461 Update T1564.004.yaml (#2521) 
Include a test to test twitter.com/pfiatde/status/1681977680688738305
It creates a directory that you can only access by specifying '::$index_allocation' even if not shown in the name of the folder. It then create a file called 'secrets.txt' to hide information/payloads
 2023-09-06 11:23:30 -06:00
Atomic Red Team doc generator 38368fe078 Generated docs from job=generate-docs branch=master [ci skip] 2023-09-02 01:36:39 +00:00
Atomic Red Team GUID generator 81d3e7889a Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-09-02 01:36:21 +00:00
IntelScott 947edecd81 Update T1021.001.yaml (#2517) 
Add new test (Disable NLA for RDP via Command Prompt)
 2023-09-01 19:35:35 -06:00
Hare Sudhan 65fe70a420 adding T1021.005 
adding T1021.005
 2023-08-31 12:20:43 -04:00
publish bot b4841b32e5 updating atomics count in README.md [ci skip] 2023-08-30 03:43:58 +00:00
Kyaw-Pyiyt-Htet-Mikoyan 5562068aa2 Update T1082.yaml (#2516) 2023-08-29 21:43:06 -06:00
blueteam0ps 48702a9d62 Adding Simulate - Post BEC persistence via user password reset followed by user added to company administrator role 2023-08-26 05:44:16 -07:00
publish bot 51f01c9695 updating atomics count in README.md [ci skip] 2023-08-24 16:59:15 +00:00