security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
3,339 Commits 47 Branches 0 Tags
17d151ba0cd2ec1daabb73d37c70ef4cb4b5a08f
Commit Graph

3339 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
CircleCI Atomic Red Team doc generator 17d151ba0c Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-08 19:05:10 +00:00
Carrie Roberts 0681f97a82 type fixes per issue 1683 (#1684) 2021-12-08 12:04:34 -07:00
CircleCI Atomic Red Team doc generator d1789b5bfc Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-08 16:57:20 +00:00
hackeT 5b360eb744 T1550.003 pass the ticket by mimikatz patch (#1682) 
* Update T1550.003.md

To avoid mimikatz failure and more useful argument description

* Update T1550.003.yaml

To avoid to fail mimikatz  kerberos::ptt and be more easier to understand about argument.

* Update T1550.003.yaml

* Update T1550.003.md

* Update T1550.003.md

* Update T1550.003.yaml
 2021-12-08 09:56:45 -07:00
CircleCI Atomic Red Team doc generator d07703afe0 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-07 17:20:49 +00:00
CircleCI Atomic Red Team GUID generator eabee62e93 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-07 17:20:43 +00:00
Michael Haag 9ac016f0e6 DISM (#1681) 
DISM removal of Defender.

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2021-12-07 10:20:27 -07:00
CircleCI Atomic Red Team doc generator 87dd1295e6 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-07 17:18:10 +00:00
CircleCI Atomic Red Team GUID generator 820418c73d Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-07 17:18:04 +00:00
Carl ed54325185 Merge pull request #1676 from glallen/T1027.004 
T1027.004 - Adds Linux compile tests for C, C++, and Go
 2021-12-07 10:17:42 -07:00
Carl 39432ead47 Merge branch 'master' into T1027.004 2021-12-07 10:16:01 -07:00
CircleCI Atomic Red Team doc generator 6ebd4669ad Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-07 17:15:26 +00:00
CircleCI Atomic Red Team GUID generator 53dc13c016 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-07 17:15:21 +00:00
Carl eba59274db Merge branch 'master' into T1027.004 2021-12-07 10:15:13 -07:00
Carl 2ff951e359 Merge pull request #1671 from Danvele/T1048.002 
T1048.002
 2021-12-07 10:15:03 -07:00
Carl ca09bb0565 Merge branch 'master' into T1048.002 2021-12-07 10:13:35 -07:00
Carrie Roberts 33b6df39ec Merge branch 'master' into T1027.004 2021-12-07 10:12:57 -07:00
CircleCI Atomic Red Team doc generator cf0bb081ef Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-07 17:01:53 +00:00
Carl 19a7881cab Merge branch 'master' into T1048.002 2021-12-07 10:01:18 -07:00
Carl c0a387fb65 Merge pull request #1675 from glallen/T1069.001 
T1069.001 - update existing test with: id, getent, cat group
 2021-12-07 10:01:07 -07:00
Carl fa49ec472e Merge branch 'master' into T1048.002 2021-12-07 09:55:55 -07:00
Carl 35d7f4739e Merge branch 'master' into T1069.001 2021-12-07 09:55:05 -07:00
CircleCI Atomic Red Team doc generator 37ea965727 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-07 16:27:21 +00:00
Carl 2f7d25c7b9 Merge branch 'master' into T1027.004 2021-12-07 09:26:56 -07:00
Carl 72c7517bea Merge pull request #1677 from glallen/T1036.006 
T1036.006 Adds an automated test for space after filename.
 2021-12-07 09:26:51 -07:00
Carl e66d81e45c Merge branch 'master' into T1036.006 2021-12-07 09:24:44 -07:00
Carl 5a1033bad6 Merge branch 'master' into T1036.006 2021-12-07 09:23:42 -07:00
CircleCI Atomic Red Team doc generator 2e0b4540be Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-07 16:23:41 +00:00
Carl a657de47ac Merge pull request #1678 from glallen/T1003.008 
T1003.008
 2021-12-07 09:23:12 -07:00
Carl d731ff90f6 Merge branch 'master' into T1003.008 2021-12-07 09:21:58 -07:00
CircleCI Atomic Red Team doc generator 6dc53a3a72 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-07 16:21:33 +00:00
Carl 728fa3ce9e Merge pull request #1679 from glallen/T1485-fix-dd 
T1485 - constrains dd to write the original file size when overwriting
 2021-12-07 09:20:54 -07:00
Danvele 3ecfab37f7 Merge branch 'redcanaryco:master' into T1048.002 2021-11-24 10:03:25 +01:00
George Allen 1b2cbdba8d T1485 - constrains dd to write the original file size when overwriting 2021-11-23 22:39:51 +00:00
glallen 4cf57b9ec8 spec.yaml should be singular to match working yaml (#1674) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2021-11-23 10:38:03 -07:00
George Allen 9a304d3485 T1003.008 - tweak test to move arg off cmdline 2021-11-23 14:19:38 +00:00
Jose Enrique Hernandez b7c8fe4b7d Merge pull request #1672 from mboman/CVE-2021-28834 
CVE 2021 28834
 2021-11-22 11:43:40 -05:00
Jose Enrique Hernandez 5dd580ed67 Merge branch 'master' into CVE-2021-28834 2021-11-22 11:43:00 -05:00
George Allen e96ce08275 T1003.008: set elevation_required 2021-11-22 03:29:56 +00:00
George Allen 3468842c02 T1003.008 - fix guids (again) 
the previous guid fix attempt was done by deleting the auto_generated_guid
field, then running bin/generate-guids.rb. But I deleted the field under the
wrong, existing test. Swapped the new guid back under the new test, since this
didn't hit the jsons yet.
 2021-11-22 03:23:39 +00:00
George Allen 1c28bb0384 T1003.008 - fix copy/pasted guids 2021-11-22 03:19:29 +00:00
George Allen 50bb3347e2 T1036.006: adds the actual masquerading part 
Added execution, confirmed that the process name shows as `init ` via htop.

Between ART, echo, yaml, bash, &c, I could not just `echo '...' > file` with the
required escaping and had to resort to more drastic measures with `ed`
 2021-11-22 03:11:40 +00:00
George Allen 974334e776 T1036.006: tweak based on testing 2021-11-22 01:20:43 +00:00
George Allen 2e055a11b9 T1036.006 generate-guids 2021-11-22 01:05:59 +00:00
George Allen 56f162be2f T1027.004 generate-guids 2021-11-22 00:57:11 +00:00
George Allen 19011b569a T1069.001 - update existing test with: id, getent, cat group 2021-11-21 17:16:54 +00:00
George Allen ba45698be7 T1036.006 - add test for space after filename 2021-11-21 17:13:14 +00:00
George Allen d190d830db T1003.008 - additional tests 2021-11-21 17:11:37 +00:00
George Allen a0ba29cd43 adds new tests for compiling C,CC,Go 2021-11-21 17:01:26 +00:00
CircleCI Atomic Red Team doc generator 4b1bc4557e Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-19 18:43:15 +00:00