security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,092 Commits 47 Branches 0 Tags
257a326599fab945d5d337ddb40b14099f2bdfe9
Commit Graph

5092 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Bhavin Patel 257a326599 Merge branch 'master' into master 2023-04-10 14:27:36 -05:00
Atomic Red Team doc generator fbdc0c4669 Generated docs from job=generate-docs branch=master [ci skip] 2023-04-10 19:23:51 +00:00
Atomic Red Team GUID generator c548de6bfc Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-04-10 19:23:28 +00:00
Bhavin Patel fde75669ff Merge pull request #2375 from well123cs/t1612-1 
T1612 1
 2023-04-10 14:21:29 -05:00
well123cs adc544c95f Merge branch 'master' into t1612-1 2023-04-09 11:31:18 -07:00
well123cs 745c40d22e Merge branch 'master' into master 2023-04-09 11:30:59 -07:00
Atomic Red Team doc generator 52abfcde40 Generated docs from job=generate-docs branch=master [ci skip] 2023-04-05 02:34:59 +00:00
Jose Enrique Hernandez f604928f8f updating the atomic (#2397) 
* updating the atomic

* removing incorrectly added file
 2023-04-04 20:32:47 -06:00
well123cs 4a88d86da6 Update T1069.001.yaml 2023-04-02 19:21:34 -07:00
well123cs 09bfb24ffd Update T1069.001.yaml 2023-04-02 19:20:44 -07:00
well123cs 45fdf3f615 Create test.sh 2023-04-02 19:13:42 -07:00
well123cs 1b00162178 Create Dockerfile 2023-04-02 19:13:12 -07:00
well123cs 7ff7030e75 Update T1069.001.yaml 2023-04-02 19:12:05 -07:00
well123cs 63145c41f8 Update T1612.yaml 2023-03-29 18:33:10 -07:00
Bhavin Patel 04f1320e2d Merge branch 'master' into t1612-1 2023-03-29 20:28:10 -05:00
Jose Enrique Hernandez 77ee1faed2 Update generate-counter.yml (#2392) 
ci was failing due to wrong python version
 2023-03-29 08:42:05 -06:00
Jose Enrique Hernandez 0f385304fb Add total count (#2390) 
* add counter parts

* adding readme updated

* updating counter
 2023-03-28 08:38:27 -06:00
Atomic Red Team doc generator 63bd86ad84 Generated docs from job=generate-docs branch=master [ci skip] 2023-03-28 12:52:06 +00:00
Atomic Red Team GUID generator 09bf62f3e6 Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-03-28 12:51:44 +00:00
Paul a7863b2d41 Merge pull request #2391 from 0xzeta/patch-1 
Added new test - Enabling Remote Desktop Protocol via Remote Registry (T1112)
 2023-03-28 08:50:20 -04:00
Zeta ff51371575 Update T1112 
Added new technique "Enabling Remote Desktop Protocol via Remote Registry"
 2023-03-28 14:28:40 +07:00
Jose Enrique Hernandez eff6370693 add counter parts (#2389) 2023-03-27 16:23:55 -06:00
well123cs 5adba74cbe Merge branch 'master' into t1612-1 2023-03-25 22:51:30 -07:00
Atomic Red Team doc generator b68a0b6cd7 Generated docs from job=generate-docs branch=master [ci skip] 2023-03-23 23:27:28 +00:00
Ari-Weinberg 49e69856a0 T1070.006 create prereqs for mac/linux timestomp (#2387) 2023-03-23 17:26:37 -06:00
Atomic Red Team doc generator 004e042089 Generated docs from job=generate-docs branch=master [ci skip] 2023-03-23 14:47:57 +00:00
Atomic Red Team GUID generator 869420c151 Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-03-23 14:47:38 +00:00
Michael Haag 844d2be02b Two Atomics and a Pear Tree (#2384) 
Co-authored-by: Paul <78918118+burning-pm@users.noreply.github.com>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-03-23 08:47:03 -06:00
Atomic Red Team doc generator 0c153fd334 Generated docs from job=generate-docs branch=master [ci skip] 2023-03-23 14:42:04 +00:00
Ari-Weinberg e1a9f47d8d T1070.004 add prereqs for linux/mac file/folder (#2383) 
Co-authored-by: Ari-Weinberg <ariweinberg326@gmail.comm>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-03-23 08:41:17 -06:00
Atomic Red Team doc generator 7e1e98a425 Generated docs from job=generate-docs branch=master [ci skip] 2023-03-23 14:34:18 +00:00
Paul 5ed527744c Update T1087.002 Test 17 (#2386) 
* Update T1087.002.yaml

* Update T1087.002.yaml

fix cleanup command from Get-Item to Remove-Item
 2023-03-23 08:33:18 -06:00
Atomic Red Team doc generator b96d64bfd8 Generated docs from job=generate-docs branch=master [ci skip] 2023-03-22 22:58:34 +00:00
Atomic Red Team GUID generator 935bc9dd9d Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-03-22 22:58:18 +00:00
Jose Enrique Hernandez 26453dc7f0 Merge pull request #2334 from D4rkCiph3r/patch-3 
Added new tests (T1562) - macOS
 2023-03-22 18:57:48 -04:00
Jose Enrique Hernandez 0b76900b8a Merge branch 'master' into patch-3 2023-03-22 18:57:05 -04:00
Atomic Red Team doc generator a1aaef3294 Generated docs from job=generate-docs branch=master [ci skip] 2023-03-22 22:32:09 +00:00
Atomic Red Team GUID generator 517271c38f Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-03-22 22:31:53 +00:00
Jose Enrique Hernandez 98c87c0925 Merge pull request #2333 from D4rkCiph3r/patch-2 
Added new tests - T1070.002 (macOS and Linux)
 2023-03-22 18:31:22 -04:00
Jose Enrique Hernandez 8a39735611 Merge branch 'master' into patch-2 2023-03-22 18:30:40 -04:00
Atomic Red Team doc generator 59f8c86459 Generated docs from job=generate-docs branch=master [ci skip] 2023-03-22 22:30:32 +00:00
Jose Enrique Hernandez 972860b5b6 Merge branch 'master' into patch-2 2023-03-22 18:30:18 -04:00
Atomic Red Team GUID generator 2de9b1aa45 Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-03-22 22:30:15 +00:00
Jose Enrique Hernandez 8c45fa1a75 Merge pull request #2332 from D4rkCiph3r/patch-1 
Added new test case - T1027.001
 2023-03-22 18:29:43 -04:00
Jose Enrique Hernandez 4fbe3256d8 Merge branch 'master' into patch-1 2023-03-22 18:28:49 -04:00
Atomic Red Team doc generator e9ea0880cb Generated docs from job=generate-docs branch=master [ci skip] 2023-03-20 22:21:10 +00:00
Atomic Red Team GUID generator 8c4cb3229c Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-03-20 22:20:55 +00:00
zaicurity 74f69e9797 Added test "Discover Specific Process - tasklist" (#2373) 
* Added test "Discover Specific Process - tasklist"

This test is meant to simulate process discovery activity that targets specific process names. The default process here is lsass to simulate what is seen in https://www.whiteoaksecurity.com/blog/attacks-defenses-dumping-lsass-no-mimikatz/.

* Update T1057.yaml

removed guid

---------

Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-03-20 16:20:28 -06:00
Atomic Red Team doc generator 41355dea4e Generated docs from job=generate-docs branch=master [ci skip] 2023-03-20 19:39:02 +00:00
Atomic Red Team GUID generator 8a83c877bb Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-03-20 19:38:46 +00:00