691982bbdb
T1486-update ( #1536 )
...
Co-authored-by: Chong <lchong@NTI.local >
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2021-06-28 09:46:45 -06:00
4a3e27a7a3
T1562.004 deleted 1 added 9
2021-06-28 16:16:27 +01:00
2b4cf3f6a4
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-28 14:57:33 +00:00
f85d4a0d65
Update T1135.yaml ( #1533 )
...
Updated and confirmed operational. #1441
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2021-06-28 08:56:57 -06:00
1e812e17d8
added xxd dependency
2021-06-24 17:33:19 -06:00
24eda7e352
added hex decoding tests
2021-06-24 17:32:01 -06:00
d89b22cff9
added printf to shell obfuscation
2021-06-24 16:54:45 -06:00
6fd2ab5e38
Merge pull request #1534 from redcanaryco/T1218
...
Update Infdefaultinstall.inf
2021-06-24 16:42:14 -05:00
d6e0adbfff
Update Infdefaultinstall.inf
...
Updated and good to go! Resolving #1449
2021-06-24 15:36:34 -06:00
9da2cce734
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-24 21:05:35 +00:00
96e68a6e42
Merge pull request #1532 from redcanaryco/t1110
...
Update T1110.001.yaml
2021-06-24 16:05:13 -05:00
248d2ed9cc
Update T1110.001.yaml
...
Resolving #1423
2021-06-24 15:01:42 -06:00
ca1e5786ed
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-24 20:45:11 +00:00
c77595d359
Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-24 20:45:04 +00:00
fd47161006
AWS Cloud atomics ( #1457 )
...
* cloud atomics
* adding new platform names
* text and variable updates
* minor
* Update T1136.003.yaml
Co-authored-by: bpatel <bpatel@splunk.com >
Co-authored-by: Jose Enrique Hernandez <josehelps@gmail.com >
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com >
2021-06-24 14:44:35 -06:00
36d49de4c8
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-24 17:04:33 +00:00
390bcd3796
Merge pull request #1531 from redcanaryco/clr2of8-patch-6
...
move guid under description in MD file and make bold
2021-06-24 13:03:53 -04:00
f16364ebf5
Merge branch 'master' into clr2of8-patch-6
2021-06-24 13:02:56 -04:00
bedaf8bbd5
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-24 15:32:29 +00:00
d5c5979247
adding url md file for each atomic as a comment ( #1530 )
2021-06-24 09:31:51 -06:00
157af0ce47
move guid under description in MD file and make bold
2021-06-24 09:24:23 -06:00
575b36a8e6
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-24 15:16:54 +00:00
221f3a6027
adding auto generated guids to the md files, closes issue 1501 ( #1529 )
2021-06-24 09:16:09 -06:00
8825813c53
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-23 16:31:41 +00:00
ee20a80a3d
Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-23 16:31:35 +00:00
262f16a69f
T1072 ( #1527 )
...
Co-authored-by: Toua Lor <tlor@nti.local >
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2021-06-23 10:31:11 -06:00
08412f4ec1
added file tests to python and perl too
2021-06-22 17:51:47 -06:00
57e18e6c84
T1140 added python, perl and sh base64 tests
2021-06-22 17:15:36 -06:00
e591a6b43b
Merge branch 'master' into T1552.004_add_gnupg
2021-06-22 12:02:31 -06:00
722cc9a292
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-22 15:46:20 +00:00
5b6f89f30f
safer cleanup, correct filename ( #1526 )
2021-06-22 09:46:01 -06:00
103efec49d
added GnuPG to T1552.004_& tidyup
2021-06-22 16:33:13 +01:00
795d6fee54
added GnuPG to T1552.004_& tidyup
2021-06-22 16:00:26 +01:00
8ecc20c992
added GnuPG to T1552.004_& tidyup
2021-06-22 14:34:01 +01:00
a0e012ee09
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-17 13:11:19 +00:00
7a17072dd3
don't disable rdp during cleanup by default ( #1523 )
...
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com >
2021-06-17 07:10:51 -06:00
e7e5779025
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-17 13:08:27 +00:00
358d58bad5
add note about secure boot ( #1524 )
2021-06-17 07:07:56 -06:00
7e428d79d0
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-16 21:38:51 +00:00
388f671d93
name update ( #1521 )
...
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com >
2021-06-16 15:38:19 -06:00
532f4dc882
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-16 20:28:57 +00:00
2710d10531
T1566.001-1 download bugfixes ( #1522 )
...
* T1566.001-1 download bugfixes
* comment update
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2021-06-16 14:28:41 -06:00
88ad3fd322
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-16 18:41:22 +00:00
42799b033d
added TLS/SSL v1.2 enabling commands to any atomic test utilizing IWR ( #1519 )
...
* Update T1204.002.md
Added lines to each test using IWR for invoke-webrequest to set the acceptable TLS versions for the commands to complete successfully by prepending the tests with
```[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12```
* Update T1555.yaml
added line to set ssl/tls version
* Update T1134.001.yaml
updated IWR lines to allow ssl/tls version 1.2
* Update T1069.002.yaml
added lines to every IWR instance to set ssl/tls version to 1.2
* Update T1558.003.yaml
added line to allow TLS/SSL 1.2
* Update T1033.yaml
added command to enable SSL/TLS v1.2
* Update T1055.012.yaml
added command to enable TLS/SSL v1.2
* Update T1115.yaml
Added command to enable SSL/TLS v1.2
* Update T1070.001.yaml
added command enabling SSL/TLS v 1.2
* Update T1564.yaml
added commands to enable SSL/TLS v 1.2
* Update T1566.001.yaml
added command to enable SSL/TLS V1.2
* Update T1135.yaml
added command to enable SSL/TLS v1.2
* Update T1055.yaml
added commands to enable TLS/SSL v 1.2
* Update T1110.003.yaml
added command to enable TLS/SSL v1.2
* Update T1003.yaml
Added command to enable TLS/SSL v1.2
* Update T1053.005.yaml
added command to enable TLS/SSL v1.2
* Update T1003.001.yaml
added commands to enable TLS/SSL v1.2 for any command using invoke-webrequest
* Update T1069.002.yaml
syntax correction
* Update T1134.001.yaml
syntax correction
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2021-06-16 12:41:04 -06:00
7e86e9a781
T1566.001-1 using default Browser via explorer.exe instead of chrome PhishingAttachment.xlsm ( #1520 )
2021-06-16 12:38:40 -06:00
1219378ebd
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-16 15:08:12 +00:00
78bb39a82d
Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-16 15:08:05 +00:00
ae4cea452f
Merge pull request #1510 from rctgardner/t1105_whois
...
Added 'whois file download' test to T1105
2021-06-16 09:07:38 -06:00
d0c0fe03dd
Merge branch 'master' into t1105_whois
2021-06-16 09:07:07 -06:00
c7125ac307
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-06-16 04:39:47 +00:00
lexiechong