security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,538 Commits 47 Branches 0 Tags
python_conversion
Commit Graph

6538 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Andrew Beers 3f9b647b29 Update descriptions (#915) 2020-03-30 20:40:23 -06:00
CircleCI Atomic Red Team doc generator 51c0b3af71 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-30 19:09:42 +00:00
Carrie Roberts b23f570d8a added Dump LSASS.exe Memory using comsvcs.dll to T1003 (#912) 
* added Dump LSASS.exe Memory using comsvcs.dll

* Updated filemod path

* Re-fixed path.

Co-authored-by: Michael Haag <mike@redcanary.com>
 2020-03-30 12:56:59 -06:00
CircleCI Atomic Red Team doc generator 2ad2ad0ffd Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-27 20:02:20 +00:00
dwhite9 647222638f T1086 - Added cleanup command for BloodHound Test (#911) 
* Added cleanup command for BloodHound Test

* Fixed executer and syntax for powershell.

* fixed typo in executor.

Co-authored-by: Daniel White <d0w019h@homeoffice.wal-mart.com>
 2020-03-27 14:01:24 -06:00
CircleCI Atomic Red Team doc generator 9bc3004501 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-27 18:00:15 +00:00
tlor89 685c9d1bfa T1220_Update (#910) 2020-03-27 11:55:23 -06:00
CircleCI Atomic Red Team doc generator a064b611bb Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-27 14:29:27 +00:00
ckaadic 6944366c06 Typo in prereq_command (#909) 
There are two " in the prereq_command in T1035 leading to an error when running the CheckPrereqs flag.
 2020-03-27 08:29:04 -06:00
CircleCI Atomic Red Team doc generator 537ce077f9 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-24 23:14:40 +00:00
san-gwea 4e3e9c8096 T1208 documentation (#908) 
* updated success indicator and changed the way to get invoke-kerberoast script in memory

* updated success indicator description

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-03-24 17:14:21 -06:00
CircleCI Atomic Red Team doc generator 2bccc88206 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-24 23:12:50 +00:00
Zhang e7aa7226e4 Fix T1028 T1032 tests issue. (#906) 
T1028 Test2 should run with powershell.
T1032 Test1 missing quoters.
 2020-03-24 17:12:31 -06:00
CircleCI Atomic Red Team doc generator 0cf3fa2e43 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-23 23:50:56 +00:00
san-gwea f9aee9e255 updated success indicatior on tests and fixed part of test1 (#905) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-03-23 17:50:15 -06:00
CircleCI Atomic Red Team doc generator fb702afdef Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-23 20:57:21 +00:00
Andrew Beers 1e601b4b9c Fix description, remove broken test (#904) 
* start work

* fix test to run 64 bit version

* delete broken test

* fix merge conflicts

* merge

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-03-23 14:56:18 -06:00
CircleCI Atomic Red Team doc generator 4c7feb56ca Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-23 15:12:03 +00:00
Tyler Bennett 685c735ebc lastlog is not supported in OSX, at least not in 10.14.6 (#902) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-03-23 09:11:27 -06:00
CircleCI Atomic Red Team doc generator 9476a6348d Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-21 22:22:22 +00:00
dwhite9 617c32ac8e Changed the executor for all windows test to powershell. Modified (#901) 
windows test to actually create  file to modify permissions as it
otherwise just fails unless input arguments are specified. Also added
cleanup commands to the windows tests.

Co-authored-by: Daniel White <d0w019h@homeoffice.wal-mart.com>
 2020-03-21 16:21:51 -06:00
Michael Haag ab0b391ac0 Updated Descriptions (#899) 
* Updated Descriptions

Batch of description updates to assist with understand what a test will do.

* Update T1055.yaml

* Update T1055.yaml

Trying to fix this...

* Update T1055.yaml

fixing again

* Update T1055.yaml

* spacing fix

* Generate docs from job=validate_atomics_generate_docs branch=descriptions

* wording updates

* Generate docs from job=validate_atomics_generate_docs branch=descriptions

* remove cmd.exe /c prefix

* Generate docs from job=validate_atomics_generate_docs branch=descriptions

* wording update

* Generate docs from job=validate_atomics_generate_docs branch=descriptions

* add back tick

* Generate docs from job=validate_atomics_generate_docs branch=descriptions

* hashtag stuff

* Generate docs from job=validate_atomics_generate_docs branch=descriptions

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
Co-authored-by: CircleCI Atomic Red Team doc generator <email>
 2020-03-20 16:48:58 -06:00
CircleCI Atomic Red Team doc generator a18c66e61d Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-20 20:35:45 +00:00
tlor89 cbdafbd3a9 T1219_Update (#900) 
Co-authored-by: Toua Lor <tlor@nti.local>
 2020-03-20 14:35:18 -06:00
TVqQAAMA 2fd64aed80 Update T1191.inf (#898) 
Changed to correct URL for T1191.sct
 2020-03-20 10:29:56 -06:00
Michael Haag e4ce60f9f2 Updated Descriptions (#897) 
* Updated Descriptions

Updated descriptions with what to expect from successful execution.

* Update T1028.yaml

* Update T1028.yaml

* Generate docs from job=validate_atomics_generate_docs branch=description-updates

* move text to description

* Generate docs from job=validate_atomics_generate_docs branch=description-updates

* typo fix

* Generate docs from job=validate_atomics_generate_docs branch=description-updates

Co-authored-by: CircleCI Atomic Red Team doc generator <email>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-03-19 21:23:10 -06:00
CircleCI Atomic Red Team doc generator 94f2071b59 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-19 22:15:53 +00:00
san-gwea e42f1f27ab T1047 documentation (#896) 
* Added descriptions to indicate when the commands works, replaced default host , exe and output format

* removing cleanup test 1,2,3

* fixed platform specific info

* added documentation on test 4

* typo correction

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-03-19 16:15:33 -06:00
CircleCI Atomic Red Team doc generator 30f4bc0401 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-19 22:03:11 +00:00
Andrew Beers 6469c41198 Success Descriptions 3rd Batch (#895) 
* Success Descriptions 3rd Batch

* typo fix

* wording

* typo fix

* improve description

* remove update for now

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-03-19 16:02:55 -06:00
CircleCI Atomic Red Team doc generator 8a99c40601 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-19 19:17:26 +00:00
Andrew Beers 1f74427802 Add completion description and fixes 2nd batch (#894) 
* Add completion description and fixed

* fix spelling

* wording update

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-03-19 13:17:08 -06:00
CircleCI Atomic Red Team doc generator c429ff1f08 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-18 21:46:56 +00:00
tlor89 74e33cac01 T1218-5_Updatefix (#892) 
* T1218-5_Updatefix

* T1218-5_Updatefix

* wording update

Co-authored-by: Toua Lor <tlor@nti.local>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-03-18 15:46:22 -06:00
CircleCI Atomic Red Team doc generator 5448f13d66 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-18 19:11:17 +00:00
Andrew Beers 49e0553d98 Successful execution documentation (#891) 
* start work

* more fixes
 2020-03-18 13:10:33 -06:00
tlor89 8af7925347 T1218-4_Updatefix (#890) 
Co-authored-by: Toua Lor <tlor@nti.local>
 2020-03-18 10:58:09 -06:00
CircleCI Atomic Red Team doc generator 56b945afd7 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-18 14:46:37 +00:00
Carrie Roberts b6998868dc unique test names for OS (#889) 2020-03-18 08:46:16 -06:00
CircleCI Atomic Red Team doc generator 79911e0400 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-18 13:28:12 +00:00
Carrie Roberts 74e0f641a8 More verbose descriptions to describe what success looks like (plus some little improvements) (#888) 
* corrections to T1002 windows tests

* success descriptions
 2020-03-18 07:27:47 -06:00
CircleCI Atomic Red Team doc generator 92949d4515 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-17 16:23:35 +00:00
san-gwea 9330f18cdb Deleted T1134 atomic files (#887) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-03-17 10:23:19 -06:00
san-gwea e9d17b1839 delete the file , case sensitive EXE (#886) 2020-03-17 10:15:54 -06:00
CircleCI Atomic Red Team doc generator f1bcfda48a Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-16 21:33:02 +00:00
Matt Graeber c6788c5736 Atomic test bug fixes/consistency improvements (#884) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-03-16 15:32:25 -06:00
CircleCI Atomic Red Team doc generator 269db956d9 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-16 21:26:55 +00:00
san-gwea 634f529e59 T1117 atomics23 (#885) 
* working on test 3 , removed quotations

* added compilled dll to a T1117/bin

Co-authored-by: Sangwa <ASangwa@nti.local>
 2020-03-16 15:26:19 -06:00
CircleCI Atomic Red Team doc generator 414186e290 Generate docs from job=validate_atomics_generate_docs branch=master 2020-03-16 14:51:08 +00:00
Carrie Roberts 71223b2514 backslash fix for markdown (#881) 2020-03-16 08:50:43 -06:00