security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,615 Commits 47 Branches 0 Tags
remove_ruby
Commit Graph

6615 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Atomic Red Team GUID generator dc7e22ac62 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-08-02 01:21:07 +00:00
Bhavin Patel fa14d8f057 Merge pull request #2054 from redcanaryco/staratus_defense_evasion 
3 new aws stratus atomics
 2022-08-01 18:20:38 -07:00
Leo Verlod 329a9d75b6 Adding T1552.005 Test 2 - Azure - Dump Azure Instance Metadata from Virtual Machines 2022-08-01 20:14:13 -05:00
Michael Haag b4e15fbd86 fixes 2022-08-01 18:42:31 -06:00
patel-bhavin c0a4b9d05a more uuid 2022-08-01 15:34:06 -07:00
patel-bhavin 23c376e20c ugh 2022-08-01 15:29:34 -07:00
patel-bhavin b830b6df56 uid 2022-08-01 15:08:30 -07:00
patel-bhavin 40ceeff8d9 uuid 2022-08-01 15:05:19 -07:00
patel-bhavin 4ca10f3e5f Merge branch 'staratus_defense_evasion' of github.com:redcanaryco/atomic-red-team into staratus_defense_evasion 2022-08-01 15:01:16 -07:00
patel-bhavin 77a5db8ead vaslidate atomics 2022-08-01 15:01:08 -07:00
Bhavin Patel 9c43327f23 Merge branch 'master' into staratus_defense_evasion 2022-08-01 14:50:20 -07:00
patel-bhavin 6a1b554579 naming 2022-08-01 14:45:09 -07:00
patel-bhavin d888deb5a0 conflicts 2022-08-01 14:43:49 -07:00
Atomic Red Team doc generator 75d1f18790 Generated docs from job=generate-docs branch=master [ci skip] 2022-08-01 21:38:41 +00:00
Atomic Red Team GUID generator 93133c0fc5 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-08-01 21:38:34 +00:00
Bhavin Patel 76f08b5351 Merge pull request #2061 from gowthamarajr/atomics_T1562_008 
Add 2 New Atomics - T2562.008
 2022-08-01 14:38:00 -07:00
patel-bhavin 89019ac27e uuid 2022-08-01 14:37:29 -07:00
Bhavin Patel e482e532bf Merge branch 'master' into atomics_T1562_008 2022-08-01 14:29:02 -07:00
Atomic Red Team doc generator 423d25021b Generated docs from job=generate-docs branch=master [ci skip] 2022-08-01 21:14:26 +00:00
tenillekay a6edd37f05 Update T1021.006.yaml (#2063) 
Updated Test #2 to make it more complete.
 2022-08-01 15:13:53 -06:00
Atomic Red Team doc generator 4e0637e706 Generated docs from job=generate-docs branch=master [ci skip] 2022-08-01 16:52:24 +00:00
Atomic Red Team GUID generator e3b3dc6c03 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-08-01 16:52:17 +00:00
Panos Moullotos 4ab943e73b New T1105 test based on open issue (#2060) 
* Create T1105-download-file.vbs

* Added 2 tests to T1105 based on open issue

* Update T1105.yaml

* remove duplicate

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-08-01 10:51:46 -06:00
George Allen 5a33670733 update libprocesshider; adds diamorphine 2022-08-01 16:14:06 +00:00
gowthamarajr 614a715da8 Update 1562.008.yml 2022-07-30 17:37:06 -04:00
gowthamarajr b33bcb6cd4 Update T1562.008 2022-07-30 17:28:51 -04:00
gowthamarajr 7ac7517321 Update T1562.008 
Update T1562.008 by adding AWS CloudWatch Log Group Deletes & AWS CloudWatch Log Stream Deletes
 2022-07-30 17:18:08 -04:00
Atomic Red Team doc generator 3a5209a4fc Generated docs from job=generate-docs branch=master [ci skip] 2022-07-29 22:32:00 +00:00
Atomic Red Team GUID generator 023e149ac5 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-29 22:31:53 +00:00
lucasRiley e712150c21 T1218.011 Improvement (#2058) 
Co-authored-by: Riley <lriley@NTI.local>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-29 16:31:23 -06:00
Atomic Red Team doc generator 6f92864b88 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-29 15:14:22 +00:00
Atomic Red Team GUID generator 5849c1516b Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-29 15:14:16 +00:00
tccontre f6b385f860 Update T1529.yaml (#2055) 
* Update T1529.yaml

* add malware example to description

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-29 09:13:53 -06:00
Atomic Red Team doc generator 8d57cd72e5 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-29 15:07:16 +00:00
Atomic Red Team GUID generator 0b80c61208 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-29 15:07:10 +00:00
Jacques Decarie c343036e0c T1546.015 COM hijacking via TreatAs (#2050) 
* adding TreatAs

* removing sct_path

* fixing executor name

* fixing references

* fixing references

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-29 09:06:38 -06:00
tccontre b05d6193da Windows camera info gathering (#2056) 
* Create T1592.001.md

* Create T1592.001.yml
 2022-07-29 09:02:55 -06:00
patel-bhavin 11ebaedddf uuid 2022-07-28 17:22:54 -07:00
patel-bhavin 0e99122ced update to cleaanup 2022-07-28 16:28:20 -07:00
Atomic Red Team doc generator b13fb3c35e Generated docs from job=generate-docs branch=master [ci skip] 2022-07-28 21:29:24 +00:00
TaintedHorizon a43555eab0 update dependencies (#2053) 
Test does not currently execute remotely because ppid-spoof.ps1 does not get copied remotely.
 2022-07-28 15:28:41 -06:00
patel-bhavin e88796c915 rm stratus 2022-07-28 13:12:08 -07:00
George Allen 1a74f3c8fd adds libprocesshider.so for ld.so.preload rootkit behavior test 2022-07-28 16:26:12 +00:00
patel-bhavin 0b298b2188 3 new aws stratus atomics 2022-07-27 16:36:03 -07:00
Atomic Red Team doc generator 8a226086a6 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-27 20:15:26 +00:00
Atomic Red Team GUID generator 983626faae Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-27 20:15:20 +00:00
Bhavin Patel db6284063a Merge pull request #2048 from Leomon5/patch-5 
Adding T1526 Test 1 - Azure - Dump Subscription Data with MicroBurst
 2022-07-27 13:14:51 -07:00
Bhavin Patel 9601cdbf58 Merge branch 'master' into patch-5 2022-07-27 13:09:33 -07:00
Atomic Red Team doc generator dfebe2e36e Generated docs from job=generate-docs branch=master [ci skip] 2022-07-27 19:45:08 +00:00
Atomic Red Team GUID generator 93d582a214 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-27 19:45:02 +00:00