security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,550 Commits 47 Branches 0 Tags
use-basic-parsing
Commit Graph

3 Commits

Author SHA1 Message Date
Ama Smuggle Avocados 43fc8a3516 Extractmemory (#1318) 
* initial push for T1005 (Extract Memory via VBA)

* updates

* updates

* update

* update

* moved to T1059.005

Co-authored-by: avocado <avocados@smuggler.com>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-12-11 07:52:24 -07:00
Ama Smuggle Avocados 23da9127e3 Encodedvbs (#1314) 
* initial import of T1059.005 (Encoded VBS code execution)

* updates

* refactor module

* updates

* updates

* updates

Co-authored-by: avocado <avocados@smuggler.com>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-12-09 07:04:10 -07:00
harml3ss 84416dfdb3 Create sys_info.vbs (#1182) 
* Create sys_info.vbs

This file is to be used with a new atomic I am writing for T1059.005.

* Create sys_info.vbs

Moved vbscript to /src directory.

* Create T1059.005.yaml

Added yaml file for T1059.005

* Delete sys_info.vbs

* Update T1059.005.yaml

* Update T1059.005.yaml

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-08-07 17:31:18 -06:00