security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2,164 Commits 47 Branches 0 Tags
02ac2deb4f58d6a67f714fdf6330787b17fe08a9
Commit Graph

2164 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Hare Sudhan Muthusamy 02ac2deb4f Cleanup fixes (#1108) 
* Cleanup Fixes

* Wrong executor name and missing $ sign in T1553

* Cleanup fixes

* File checks added

* File path error check changed
 2020-07-08 15:15:52 -06:00
Brian 91d71a722e Update testing.md (#1110) 
The "which are located here" hyperlink and the content of the actual test in the "Execute a Test" section are both broken due to the sub-techniques update.
 2020-07-08 10:11:26 -06:00
Matt Graeber 2ed307fdd4 Merge pull request #1099 from redcanaryco/clr2of8-patch-1 
more descriptive test name
 2020-07-07 11:36:48 -04:00
Matt Graeber 45b8cb064f Merge branch 'master' into clr2of8-patch-1 2020-07-07 11:36:08 -04:00
CircleCI Atomic Red Team doc generator d852e8b845 Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-07 15:25:19 +00:00
Andrew Beers e5fe0a3266 T1059.001 - PowerShell Session Creation and Use (#1010) 
* write test

* fix variable

* add completion description

* small fix

* fix executor

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-07-07 09:24:40 -06:00
CircleCI Atomic Red Team doc generator b95eaea644 Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-07 15:17:35 +00:00
P4T12ICK abc575eb2e New atomic T1574.009 (#1103) 
* new atomic test

* new atomic test

* new atomics

* new atomics

* new atomics

* new atomics

* new atomics

Co-authored-by: Patrick Bareiss <pbareib@splunk.com>
 2020-07-07 09:16:59 -06:00
Matt Graeber c4b5f3a9ea Merge pull request #1100 from redcanaryco/clr2of8-patch-2 
more descriptive test name
 2020-07-07 11:02:08 -04:00
Matt Graeber a7d96ce769 Merge branch 'master' into clr2of8-patch-2 2020-07-07 11:01:07 -04:00
Matt Graeber c19400b846 Merge pull request #1101 from redcanaryco/clr2of8-patch-3 
typo fix
 2020-07-07 10:58:59 -04:00
Matt Graeber 95661b0052 Merge branch 'master' into clr2of8-patch-3 2020-07-07 10:58:06 -04:00
Matt Graeber 7fdcfa49d6 Merge pull request #1102 from redcanaryco/clr2of8-patch-4 
add -Force to avoid error when redownloading
 2020-07-07 10:57:18 -04:00
Matt Graeber cd8884f7c1 Merge branch 'master' into clr2of8-patch-4 2020-07-07 10:56:34 -04:00
Matt Graeber f783c9042a Merge pull request #1104 from redcanaryco/clr2of8-patch-5 
remove essentially duplicated test
 2020-07-07 10:55:32 -04:00
CircleCI Atomic Red Team doc generator eb69c4972b Generate docs from job=validate_atomics_generate_docs branch=clr2of8-patch-5 2020-07-03 15:53:59 +00:00
Carrie Roberts 3fb8f3acfa remove essentially duplicated test 2020-07-03 09:53:36 -06:00
CircleCI Atomic Red Team doc generator 157b6288a8 Generate docs from job=validate_atomics_generate_docs branch=clr2of8-patch-4 2020-07-02 23:37:48 +00:00
Carrie Roberts 4ed14355ed add -Force to avoid error when redownloading 2020-07-02 17:37:28 -06:00
CircleCI Atomic Red Team doc generator ea304302e3 Generate docs from job=validate_atomics_generate_docs branch=clr2of8-patch-3 2020-07-02 23:20:18 +00:00
Carrie Roberts 0450aa2edd typo fix 2020-07-02 17:19:33 -06:00
CircleCI Atomic Red Team doc generator 06ea87f94f Generate docs from job=validate_atomics_generate_docs branch=clr2of8-patch-3 2020-07-02 23:17:39 +00:00
Carrie Roberts b9b3b42742 typo fix 2020-07-02 17:17:02 -06:00
CircleCI Atomic Red Team doc generator 2c1fb808f2 Generate docs from job=validate_atomics_generate_docs branch=clr2of8-patch-2 2020-07-02 22:45:12 +00:00
Carrie Roberts 814c61af27 more descriptive test name 2020-07-02 16:44:40 -06:00
CircleCI Atomic Red Team doc generator c1fe2e3644 Generate docs from job=validate_atomics_generate_docs branch=clr2of8-patch-1 2020-07-02 22:32:26 +00:00
Carrie Roberts 0f3d78d032 more descriptive test name 2020-07-02 16:31:53 -06:00
CircleCI Atomic Red Team doc generator 5f4b9dba55 Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-01 18:49:48 +00:00
Andrew Beers 8b8da4b8d4 T1110.003-Password-Spray-(DomainPasswordSpray) (#1009) 
* write test

* add execution description

* fix test to use one password, add option to specify domain

* move test

* Delete passwords.txt

* fix change

* fix executor

* fix executor

* remove line
 2020-07-01 12:48:56 -06:00
CircleCI Atomic Red Team doc generator 9978cf2e80 Generate docs from job=validate_atomics_generate_docs branch=master 2020-06-30 14:34:26 +00:00
P4T12ICK f7efbc9d6a new atomics (#1098) 
Co-authored-by: Patrick Bareiss <pbareib@splunk.com>
 2020-06-30 08:34:07 -06:00
CircleCI Atomic Red Team doc generator 2435846063 Generate docs from job=validate_atomics_generate_docs branch=master 2020-06-29 22:46:36 +00:00
Clément Notin d7f38267d5 T1055: tech 1, launch visible notepad (#1035) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-06-29 16:46:15 -06:00
CircleCI Atomic Red Team doc generator 9a145066e8 Generate docs from job=validate_atomics_generate_docs branch=master 2020-06-29 22:44:19 +00:00
Clément Notin e1d1141689 T1197: reorder and fix bitsadmin commands (#1048) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-06-29 16:43:29 -06:00
CircleCI Atomic Red Team doc generator 191a28d946 Generate docs from job=validate_atomics_generate_docs branch=master 2020-06-29 22:39:07 +00:00
san-gwea da5324fd74 Update T1562.004.yaml (#1096) 
fixed typo, reference
 2020-06-29 16:38:32 -06:00
CircleCI Atomic Red Team doc generator 7362a8c427 Generate docs from job=validate_atomics_generate_docs branch=master 2020-06-29 22:20:08 +00:00
san-gwea 529631d8b0 added test for opening ports on firewall for proxy - T1562.004 (#1094) 
* added test for opening ports on firewall for proxy

* remove extra blank lines and fix typo

Co-authored-by: san-gwea <sheartlet01@gmail.com>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-06-29 16:19:47 -06:00
CircleCI Atomic Red Team doc generator a9be66581c Generate docs from job=validate_atomics_generate_docs branch=master 2020-06-29 22:15:08 +00:00
JrOrOneEquals1 2eac9311b4 Update T1059.002.yaml (#1095) 2020-06-29 16:14:29 -06:00
CircleCI Atomic Red Team doc generator 2f760a3ff0 Generate docs from job=validate_atomics_generate_docs branch=master 2020-06-26 19:14:22 +00:00
Matt Graeber f96c775c4d Merge pull request #1083 from clr2of8/password-spray 
Add Password spray atomic to T1110.003
 2020-06-26 15:13:48 -04:00
Matt Graeber 43fed8bcc1 Merge branch 'master' into password-spray 2020-06-26 15:11:13 -04:00
CircleCI Atomic Red Team doc generator 01f44d4333 Generate docs from job=validate_atomics_generate_docs branch=master 2020-06-26 19:00:18 +00:00
Clément Notin bdb98ff77b T1053.005: in remote schtasks, we need username and password for authentication (#1093) 
/RU and /RP are credentials for "runas" when running the task, not for remote auth when creating it

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-06-26 12:59:54 -06:00
CircleCI Atomic Red Team doc generator 3066499851 Generate docs from job=validate_atomics_generate_docs branch=master 2020-06-26 18:54:43 +00:00
Hare Sudhan Muthusamy 968a3122ac Pre Requisites added for T1069.002 (#1090) 
* Fixed execution issue and added cleanup command

* Cleanup command added

* Added cleanup command

* CheckPreReqs added

* GetPreReqs added

* Minor bug fix

* Update T1069.002.yaml

* Description change

* Dependencies change.

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-06-26 12:53:35 -06:00
CircleCI Atomic Red Team doc generator ee6524f61a Generate docs from job=validate_atomics_generate_docs branch=master 2020-06-26 18:22:49 +00:00
Clément Notin e0d9f79ea8 T1003.003: create empty folder for ntdsutil output and add cleanup command (#1089) 2020-06-26 12:21:54 -06:00