37ea965727
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-12-07 16:27:21 +00:00
e66d81e45c
Merge branch 'master' into T1036.006
2021-12-07 09:24:44 -07:00
5a1033bad6
Merge branch 'master' into T1036.006
2021-12-07 09:23:42 -07:00
2e0b4540be
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-12-07 16:23:41 +00:00
d731ff90f6
Merge branch 'master' into T1003.008
2021-12-07 09:21:58 -07:00
6dc53a3a72
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-12-07 16:21:33 +00:00
1b2cbdba8d
T1485 - constrains dd to write the original file size when overwriting
2021-11-23 22:39:51 +00:00
9a304d3485
T1003.008 - tweak test to move arg off cmdline
2021-11-23 14:19:38 +00:00
e96ce08275
T1003.008: set elevation_required
2021-11-22 03:29:56 +00:00
3468842c02
T1003.008 - fix guids (again)
...
the previous guid fix attempt was done by deleting the auto_generated_guid
field, then running bin/generate-guids.rb. But I deleted the field under the
wrong, existing test. Swapped the new guid back under the new test, since this
didn't hit the jsons yet.
2021-11-22 03:23:39 +00:00
1c28bb0384
T1003.008 - fix copy/pasted guids
2021-11-22 03:19:29 +00:00
50bb3347e2
T1036.006: adds the actual masquerading part
...
Added execution, confirmed that the process name shows as `init ` via htop.
Between ART, echo, yaml, bash, &c, I could not just `echo '...' > file` with the
required escaping and had to resort to more drastic measures with `ed`
2021-11-22 03:11:40 +00:00
974334e776
T1036.006: tweak based on testing
2021-11-22 01:20:43 +00:00
2e055a11b9
T1036.006 generate-guids
2021-11-22 01:05:59 +00:00
ba45698be7
T1036.006 - add test for space after filename
2021-11-21 17:13:14 +00:00
d190d830db
T1003.008 - additional tests
2021-11-21 17:11:37 +00:00
4b1bc4557e
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-19 18:43:15 +00:00
4a5881e343
Linux prereq updates ( #1673 )
...
* T1070.003-9 update (get_)prereq_commmand
- moved system changes to the get_prereq(s)
- ubuntu `passwd` didn't accept `--stdin`
- updated get_prereqs for both ubuntu/centos
* T1016 - update prereq
* T1018 - update prereq
* T1562.001 - update rsyslog prereq
* T1560.001 updates dep check/install, update default likely to exist
switch to /var/log/wtmp and /var/log/btmp vs ${HOME}/*.txt, since those will
always be present
tests for zip in the prereq
adds deb/rpm install for zip
* T1486 - update getprereqs
* T1135 - update prereqs
* T1046 - update prereqs
* T1040 - update prereqs
2021-11-19 11:42:46 -07:00
9d99436432
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-16 16:09:02 +00:00
3101f0225d
Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-16 16:08:57 +00:00
64b06bc2dc
Add lsass dump via NanoDump atomic ( #1670 )
...
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com >
2021-11-16 09:08:26 -07:00
6146dbfa24
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-16 16:04:07 +00:00
274fa5584b
Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-16 16:04:02 +00:00
8fdb9ba016
Add golden ticket attack with Rubeus tool ( #1668 )
...
* Add golden ticket attack with Rubeus tool
* update spacing
* clarify input arg desc
2021-11-16 09:03:23 -07:00
22dd2fba1b
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-15 17:27:38 +00:00
7c386fea12
Removed key from yaml - auto_generate_guid ( #1669 )
2021-11-15 10:27:01 -07:00
e058cc65aa
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-15 17:01:26 +00:00
2b19a51db5
Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-15 17:01:21 +00:00
6c76a479aa
Merge branch 'master' into T1053.006
2021-11-15 10:00:01 -07:00
acbc93f04b
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-15 16:56:25 +00:00
74bc0631de
Merge branch 'master' into fix_python_test
2021-11-15 09:55:08 -07:00
c75738380e
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-15 16:55:05 +00:00
0e54e4cb93
Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-15 16:55:00 +00:00
6fd073f2b0
Merge branch 'master' into fix_python_test
2021-11-15 09:54:49 -07:00
3e8b87aa40
Merge branch 'master' into t1124
2021-11-15 09:53:12 -07:00
45a72df216
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-15 16:40:52 +00:00
3f34e8322f
set domain programatically ( #1667 )
...
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com >
2021-11-15 09:40:21 -07:00
9ebf782b2f
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-15 16:38:44 +00:00
66f06f62d9
set domain programatically ( #1666 )
...
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com >
2021-11-15 09:38:13 -07:00
e9f25c654a
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-15 16:09:56 +00:00
080294af8e
Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-15 16:09:51 +00:00
df76fb17bd
Curl - Upload a file ( #1665 )
...
* T1105 - Curl for Windows
* Update T1105.yaml
* T1105 - Upload with Curl
* Update T1105.yaml
* Removed cleanup
2021-11-15 09:09:21 -07:00
f76dce59fa
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-10 00:55:10 +00:00
41edb9d581
T-1110.001-Update ( #1664 )
...
* T-1110.001-Update
* Update T1110.001.yaml
Co-authored-by: Toua Lor <tlor@nti.local >
2021-11-09 17:54:45 -07:00
3426113b0b
T1053.006 added two transient systemd tests
2021-11-09 16:41:47 +00:00
39981d6ae9
This one is even better, no need for ln -s /usr/bin/python3 /usr/bin/python
...
taken from T1003.007-2
2021-11-04 14:21:47 +01:00
e17fea0cb5
fix T1059.006 tests 1-3
...
which_python is only set in the prereq_command, but not in the
actual command to run the test, therefore it doesn't find python
2021-11-04 12:57:05 +01:00
717757d539
Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-03 18:57:08 +00:00
50a76a233c
Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci]
2021-11-03 18:57:03 +00:00
ed2b816a10
Merge branch 'master' into pr-domain-trust-modif
2021-11-03 11:56:08 -07:00
CircleCI Atomic Red Team doc generator