security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,363 Commits 47 Branches 0 Tags
1663bf7d524b6fc8a9a39104feb2949b36368dfc
Commit Graph

1363 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
caseysmithrc e12345ed46 Merge pull request #73 from danbourke/mac-exfil 
Mac/Linux SSH exfil
 2018-02-08 06:09:21 -07:00
Michael Haag 5930ef5161 Update Exfiltration_Over_Alternative_Protocol.md 2018-02-08 06:53:06 -06:00
Michael Haag 7dbbb68677 Update Exfiltration_Over_Alternative_Protocol.md 2018-02-08 06:52:43 -06:00
Dan Bourke b047c5575f update readme, update linux example path 2018-02-08 17:05:23 +11:00
Dan Bourke 809b85b2a2 add first pass at SSH exfiltration 2018-02-08 17:01:34 +11:00
Michael Haag d01d1f149f Merge pull request #70 from mgreen27/patch-1 
Add_remote_task
 2018-02-06 08:18:32 -07:00
Matthew Green ece7cf1537 Add_remote_task 
Couple of additional inputs for testing remote task creation
 2018-02-06 16:05:23 +11:00
Michael Haag 901d2275c4 ARTifacts - Detections 
Adding a few detections for some Chain Reactions.
 2018-02-01 15:46:25 -06:00
Michael Haag eb56e8216f Merge pull request #69 from redcanaryco/Haag 
Reactor - Detection - Collection
 2018-01-31 09:29:58 -06:00
Michael Haag dc0e511d12 Reactor - Detection - Collection 
Added Collection
 2018-01-31 09:29:11 -06:00
caseysmithrc b010fc6205 Merge pull request #68 from redcanaryco/Haag 
Reactor Detection
 2018-01-31 08:23:32 -07:00
Michael Haag d943fa1315 Reactor - Detection 
Detection for Reactor Chain Reaction
 2018-01-31 09:17:08 -06:00
atmathis f4a0a8af83 Merge remote-tracking branch 'redcanaryco/master' 2018-01-30 14:26:56 -05:00
Michael Haag 0588f4f38a Quick Fix 2018-01-29 13:09:50 -06:00
caseysmithrc b5c4d940ef Merge pull request #67 from redcanaryco/Haag 
Final Reactor
 2018-01-29 10:19:11 -05:00
Michael Haag a091f57f94 Final Reactor 
Completion of the Reactor Chain Reaction
 2018-01-18 13:40:31 -07:00
caseysmithrc 3e7dda54bd Merge pull request #65 from redcanaryco/Haag 
Mac - Linux Matrix Update
 2018-01-17 09:17:22 -07:00
Michael Haag 5e9b720ecf Windows Matrix 
Added bitsadmin and cleanup
 2018-01-16 11:51:16 -07:00
Michael Haag 58c0b63bc6 Updated Linux Matrix 
Updated Matrix
 2018-01-16 11:47:24 -07:00
Michael Haag 9a5128a7da Mac Matrix Update 
Updated Mac Matrix and technique names
 2018-01-16 11:00:21 -07:00
caseysmithrc d36664c5c7 Merge pull request #64 from redcanaryco/Haag 
Matrix Update + CR
 2018-01-16 10:24:47 -07:00
Michael Haag a5d7e40120 Mshta Add 2018-01-16 10:22:36 -07:00
Michael Haag 94f729c684 Merge branch 'master' into Haag 2018-01-16 10:22:25 -07:00
Michael Haag d01ed9c636 Merge pull request #63 from redcanaryco/atomic-dev-cs 
Atomic dev cs
 2018-01-16 10:21:19 -07:00
caseysmithrc 4c01f9eca6 mshta T1170 2018-01-16 10:19:15 -07:00
Michael Haag 382d6313a3 Windows Matrix Update 
Windows Matrix update
+ also fixed Dir names/paths
 2018-01-16 10:10:52 -07:00
Michael Haag 1cf1cdd279 Reactor Chain Reaction 
Chain Reaction - Reactor
 2018-01-16 08:59:22 -07:00
caseysmithrc 3ac9834f38 mshta 2018-01-16 08:56:26 -07:00
caseysmithrc 1b087c7e2a Update Program.cs 2018-01-13 12:28:33 -07:00
Michael Haag 66c8240afa Merge pull request #61 from atmathis/master 
Mac Linux adds
 2018-01-11 15:25:54 -07:00
atmathis 89513673d7 Linux Discovery 
* Added several Linux Discovery tactics and updated grid
 2018-01-11 16:56:58 -05:00
atmathis d0cf8c4542 Update Process Discovery 
* Made a change to Process Discovery (added saving the output for exfil)
* Added Process Discovery to Linux and updated grid
 2018-01-11 16:09:12 -05:00
atmathis 0e877849ef Fixing .bash_profile 
* Removed commands not related to this technique, and replaced them
with legitimate ones.
* Added .bash_profile page to Mac
 2018-01-11 15:54:20 -05:00
atmathis 4cd236a438 Adding tree command to File and Directory Discovery 
Added the “tree” command, which is useful at showing a “graphical”
hierarchy of files and folders on a drive.
 2018-01-11 15:33:27 -05:00
atmathis be3a018733 Merge remote-tracking branch 'redcanaryco/master' 2018-01-11 15:32:32 -05:00
caseysmithrc 776fc6b954 Merge pull request #60 from redcanaryco/Haag 
Fixes
 2018-01-11 11:15:57 -07:00
Michael Haag 1499c4be3f Fixes 
Updated and fixed some mistakes over time.
 2018-01-11 11:00:46 -07:00
atmathis 9c9c27ddd1 Merge remote-tracking branch 'redcanaryco/master' 
# Conflicts:
#	Mac/README.md
 2018-01-11 09:58:01 -05:00
Michael Haag 5b4a8b9c0b Merge pull request #59 from infosecn1nja/patch-3 
Update File_and_Directory_Discovery.md
 2018-01-11 07:24:31 -07:00
rahmatnurfauzi 9c8137a56a Update File_and_Directory_Discovery.md 
Adding more commands taken from Waterbug/Turla
 2018-01-11 17:12:09 +07:00
caseysmithrc dcccde9adc Merge pull request #57 from redcanaryco/Haag 
Mac - Discovery Techniques
 2018-01-09 15:11:42 -07:00
Michael Haag 29cf36761a Mac Discovery 
Added many techniques to Discovery for Mac
 2018-01-09 14:53:47 -07:00
Michael Haag 533e27193f Update chain_reaction_Fission.bat 2018-01-09 10:52:57 -07:00
caseysmithrc 72a010b9b1 Merge pull request #56 from redcanaryco/Haag 
Mac - Credential Access
 2018-01-09 10:07:55 -07:00
Michael Haag c4bbef438a Mac Credential Access 
Added two Credential Access
 2018-01-09 10:01:11 -07:00
caseysmithrc f4fe0d67d6 Merge pull request #53 from infosecn1nja/patch-1 
Persistence .bashrc / .bash_profile
 2018-01-09 09:26:41 -07:00
caseysmithrc ee4d1f9e22 Merge pull request #54 from redcanaryco/Haag 
Mac Persistence
 2018-01-09 09:26:15 -07:00
Michael Haag 3c84c659f5 Mac Persistence 
Added many mac persistence items and updated readme
 2018-01-09 09:07:41 -07:00
Michael Haag 4480d4d11d Cron Job name fix 
Removed incorrect name and made it proper.
 2018-01-09 07:08:46 -07:00
Michael Haag 8f10054683 Update Mac ReadMe 
Added all the missing pieces to the puzzle
 2018-01-09 07:03:47 -07:00