security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,646 Commits 47 Branches 0 Tags
2e802c737d1ad24f0e628dcdfd12f56491c45f65
Commit Graph

5646 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Swachchhanda Shrawan Poudel 2e802c737d Added new test that tampers with windows defender registry (#2599) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-11-17 09:32:08 -08:00
Atomic Red Team doc generator cfb9321b8d Generated docs from job=generate-docs branch=master [ci skip] 2023-11-17 17:29:19 +00:00
Atomic Red Team GUID generator e76abe6a90 Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-11-17 17:28:59 +00:00
Hare Sudhan 2f26d9917a Duplicate guid fix (#2609) 
* duplicate guid fix

* duplicate guid fix
 2023-11-17 09:28:12 -08:00
Atomic Red Team doc generator c3dc8abb84 Generated docs from job=generate-docs branch=master [ci skip] 2023-11-13 21:46:56 +00:00
Hare Sudhan 7dfdc97d79 FreeBSD Cleanup (#2603) 
* FreeBSD Cleanup

* cleanup

* fix t1016

* reducing multiline if else to single line

* fix t1037.003

* ignore T1003.007

* fix t1003.007

* more fixes
 2023-11-13 16:45:43 -05:00
Atomic Red Team doc generator 8961c1692c Generated docs from job=generate-docs branch=master [ci skip] 2023-11-09 04:06:12 +00:00
Atomic Red Team GUID generator bd938f584f Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-11-09 04:05:54 +00:00
Biological Robot 07225ec592 T1005 Find and dump sqlite databases (Linux) (#2402) 2023-11-08 23:05:07 -05:00
Atomic Red Team doc generator 0287e7561a Generated docs from job=generate-docs branch=master [ci skip] 2023-11-09 04:03:31 +00:00
Carrie Roberts ab79beb982 ignore certificate (#2595) 2023-11-08 23:02:43 -05:00
Atomic Red Team doc generator 2a6bbc2a2b Generated docs from job=generate-docs branch=master [ci skip] 2023-11-09 04:00:38 +00:00
Carrie Roberts 8fa4b4cbeb revert changes kernel info (#2598) 2023-11-08 22:59:50 -05:00
Atomic Red Team doc generator 08a8183910 Generated docs from job=generate-docs branch=master [ci skip] 2023-11-08 15:29:28 +00:00
Panos Moullotos 2b365242a1 Update T1218.yaml (#2597) 
Dependency Executor Needs to be explicitly defined
 2023-11-08 07:28:25 -08:00
Atomic Red Team doc generator b31fc6e66a Generated docs from job=generate-docs branch=master [ci skip] 2023-11-08 14:20:11 +00:00
Panos Moullotos f9f938d5f8 Update T1218.yaml (#2596) 
Added prereqs to T1218#12 so it can be executed remotely with invoke-atomictest
 2023-11-08 06:19:21 -08:00
Atomic Red Team doc generator b01f3864d2 Generated docs from job=generate-docs branch=master [ci skip] 2023-11-08 01:59:27 +00:00
Atomic Red Team GUID generator 0a1c27c01b Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-11-08 01:59:13 +00:00
Jose Enrique Hernandez bf2251b4ab Merge pull request #2582 from tsale/master 
New Atomic - Excel Application Object for LM
 2023-11-07 20:58:38 -05:00
Jose Enrique Hernandez 154f17daff Merge branch 'master' into master 2023-11-07 20:56:50 -05:00
Atomic Red Team doc generator da6a0516db Generated docs from job=generate-docs branch=master [ci skip] 2023-11-08 00:29:16 +00:00
Atomic Red Team GUID generator 717f5941fd Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-11-08 00:28:55 +00:00
Micah Babinski dfb25a02e3 Add Test for Registry-Only "Ghost Tasks" Procedure within T1053.005 (#2588) 
* Added ghost task test

* Minor improvements to documentation and test design.

---------

Co-authored-by: Hare Sudhan <code@0x6c.dev>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-11-07 19:28:14 -05:00
Atomic Red Team doc generator 323c12d348 Generated docs from job=generate-docs branch=master [ci skip] 2023-11-07 22:02:39 +00:00
Thomas Meng d133634d49 Process injection RWX injection / Mockingjay local injection (#2587) 
* This should be a short message describing what changed.

* The new process injection technique: RWX injection AKA Mockingjay under T1055

---------

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-11-07 14:01:21 -08:00
Atomic Red Team doc generator 11e3355467 Generated docs from job=generate-docs branch=master [ci skip] 2023-11-07 00:34:32 +00:00
art-labs 18955ff270 fix link (#2593) 2023-11-06 19:33:38 -05:00
Atomic Red Team doc generator 157de65031 Generated docs from job=generate-docs branch=master [ci skip] 2023-11-07 00:28:51 +00:00
Atomic Red Team GUID generator d7ba80b533 Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-11-07 00:28:24 +00:00
0-etep 02b6a5a050 New Atomic - T1654 Log Enumeration (#2584) 
* Create T1654.yml

* Rename T1654.yml to T1654.yaml

* add link to dfir report

* Update T1654.yaml

---------

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-11-06 19:27:32 -05:00
Carrie Roberts 1c965f637d latest mitre attack info (#2592) 
* updating atomics count in README.md [ci skip]

* updating atomics count in README.md [ci skip]

* latest enterprise attack data

---------

Co-authored-by: publish bot <opensource@redcanary.com>
 2023-11-06 19:25:22 -05:00
Hare Sudhan 8baabb4d9b Merge branch 'master' into master 2023-11-06 17:43:37 -05:00
Atomic Red Team doc generator ad2d7c8f13 Generated docs from job=generate-docs branch=master [ci skip] 2023-11-06 22:42:54 +00:00
Hare Sudhan 62a85c12b5 FreeBSD changes (#2585) 
* freebsd changes

* renaming freebsd to linux
 2023-11-06 17:41:43 -05:00
publish bot 446c2d5d05 updating atomics count in README.md [ci skip] 2023-11-06 21:46:51 +00:00
dependabot[bot] c3108c7b1b Bump jsonschema from 4.19.1 to 4.19.2 (#2589) 
Bumps [jsonschema](https://github.com/python-jsonschema/jsonschema) from 4.19.1 to 4.19.2.
- [Release notes](https://github.com/python-jsonschema/jsonschema/releases)
- [Changelog](https://github.com/python-jsonschema/jsonschema/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/python-jsonschema/jsonschema/compare/v4.19.1...v4.19.2)

---
updated-dependencies:
- dependency-name: jsonschema
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-11-06 16:46:08 -05:00
Kostas 60fe9e1b3f Update T1021.003.yaml 2023-11-02 20:22:49 -07:00
Kostas ab386927c8 Update T1021.003.yaml 
Changed hostname field name to computer_name
 2023-11-02 11:33:59 -07:00
Jose Enrique Hernandez 4e38b6d876 Update T1021.003.yaml 2023-11-02 13:07:02 -04:00
Jose Enrique Hernandez 31e7842166 Update T1021.003.yaml 
removing auto-generated UUID
 2023-11-02 12:59:54 -04:00
Jose Enrique Hernandez 85eefc4349 Delete atomics/T1021.003/T1021.003.md 2023-11-02 12:57:03 -04:00
Jose Enrique Hernandez 2b5f7b7d0f Merge branch 'master' into master 2023-11-02 11:25:58 -04:00
Kostas f3e33ee0b4 Update T1021.003.yaml 
Fixing yaml error
 2023-11-02 00:18:17 -07:00
Atomic Red Team doc generator 4d6c4e8e23 Generated docs from job=generate-docs branch=master [ci skip] 2023-11-02 00:56:51 +00:00
Atomic Red Team GUID generator 16b5287208 Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-11-02 00:56:30 +00:00
Jose Enrique Hernandez 3ae4cec49f Merge pull request #2450 from alonsobsd/master 
Add FreeBSD support
 2023-11-01 20:53:32 -04:00
Alonso Cárdenas f355273f8a Update T1059.004.yaml 
Add executor
 2023-11-01 19:16:09 -05:00
Hare Sudhan 0c13f29a1f fix validate.py 2023-11-01 20:10:27 -04:00
Alonso Cárdenas d8fdd49b90 Update T1059.004.yaml 2023-11-01 19:02:30 -05:00