security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
3,414 Commits 47 Branches 0 Tags
40b97048889cef7e423090eccd70f89f2bda4e6f
Commit Graph

3414 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Carrie Roberts 40b9704888 making test manual to avoid execution errors (#1727) 
* making test manual to avoid execution errors

* Update T1027.yaml

* Update T1027.yaml
 2022-01-18 07:13:23 -07:00
CircleCI Atomic Red Team doc generator ecdd11f7f9 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-15 02:59:50 +00:00
Carrie Roberts 34cf223454 add UseBasicParsing flag (#1724) 
* add UseBasicParsing flag

* Update T1056.004.yaml
 2022-01-14 20:59:20 -06:00
Carrie Roberts 52a09fad88 issue #1705 updates (#1723) 
issue #1705 updates
 2022-01-14 20:56:22 -06:00
Carrie Roberts 0d5638a202 description update and code to match (#1722) 
updated as per issue #1712
 2022-01-14 20:53:36 -06:00
CircleCI Atomic Red Team doc generator 000b4343d6 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-15 02:51:36 +00:00
Carrie Roberts ac9b676c7a remove broken puppetsrings test (#1725) 2022-01-14 20:51:10 -06:00
Carrie Roberts ced385127c Delete puppetstrings (atomic removed) (#1726) 2022-01-14 20:48:06 -06:00
CircleCI Atomic Red Team doc generator 41eb22e4d8 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-14 22:05:33 +00:00
frack113 a34cc9dd57 fix reg in T1547.002 (#1720) 
* fix reg

* add blog link for more info

* Update T1547.002.yaml

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-14 15:04:59 -07:00
CircleCI Atomic Red Team doc generator 98a114b7ab Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-14 21:58:31 +00:00
frack113 8f7c3c34f6 Fix prereq_command (#1721) 2022-01-14 14:58:09 -07:00
Adam Mashinchi 2d4011d961 Update atomic-red-team.gemspec (#1719) 
Updating email addresses to more relevant ones.
 2022-01-12 14:45:52 -07:00
CircleCI Atomic Red Team doc generator c8c20df839 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 20:27:25 +00:00
shamanth0912 7669b73daf Modify T1041.yaml (#1716) 
* Modify T1041.yaml

Adding cleanup command and prereq command to Base command

* Update T1041.yaml

Modified a bit to only create the file if it doesn't already exist and choosing not to delete since it is only one small file being added to the temp directory without any sensitive information in it.

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-12 14:26:26 -06:00
CircleCI Atomic Red Team doc generator 026d71f702 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 20:25:34 +00:00
frack113 09ac7374a9 T1021.006 Fix prereq error (#1710) 
* Fix prereq error

* Update T1021.006.yaml

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-12 14:24:58 -06:00
CircleCI Atomic Red Team doc generator 73a615693b Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 20:17:07 +00:00
CircleCI Atomic Red Team GUID generator 17c6d08894 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 20:17:02 +00:00
Carl d52425fa8c Merge pull request #1689 from chdd-ltd/T1018 
T1018 added three ip utility tests
 2022-01-12 13:16:27 -07:00
Carl 2b7f9a381d Merge branch 'master' into T1018 2022-01-12 13:13:35 -07:00
CircleCI Atomic Red Team doc generator 8c07547d65 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 20:13:02 +00:00
CircleCI Atomic Red Team GUID generator ad0d097ec0 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 20:12:56 +00:00
Carl 3f1fb3c121 Merge pull request #1713 from chdd-ltd/T1110.001_sudo_bruteforce 
T1110.001 - Added two Linux local SUDO bruteforce tests
 2022-01-12 13:12:31 -07:00
Carl 1b5d789a7b Merge branch 'master' into T1110.001_sudo_bruteforce 2022-01-12 13:11:43 -07:00
Marrelle Bailey (She/Her) 2019d6c993 Updated version of the CoC (#1718) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-12 07:40:27 -06:00
CircleCI Atomic Red Team doc generator 4bffef03dd Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 13:39:32 +00:00
CircleCI Atomic Red Team GUID generator 35acd81273 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 13:39:27 +00:00
Vincent N b9750ef5cd Extend T1550.003 with new PTT attack (#1717) 
* Extend T1550.003 with new PTT attack

* Applying Carrie's suggestion
 2022-01-12 07:39:00 -06:00
CircleCI Atomic Red Team doc generator dfea108f00 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-10 19:36:25 +00:00
CircleCI Atomic Red Team GUID generator 56d6fec8db Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-10 19:36:19 +00:00
Leo Verlod 12e9da546c Create T1091.yaml (#1715) 
Creating a directory for T1091 and corresponding YAML file so that a new test can be submitted for this technique. The proposed test is designed to detect removable drives connected to a Windows system and then create a file named "T1091Test1.txt" on them to simulate USB spread.
 2022-01-10 12:35:48 -07:00
biot e8c33dcbb5 T1110.001_sudo_bruteforce 2022-01-08 17:47:55 +00:00
CircleCI Atomic Red Team doc generator 957ca44e55 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-07 22:29:03 +00:00
CircleCI Atomic Red Team GUID generator ef47d419f1 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-07 22:28:59 +00:00
frack113 6221a181ab Fix windows test (#1711) 2022-01-07 15:28:30 -07:00
CircleCI Atomic Red Team doc generator 1351165d33 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-06 17:23:26 +00:00
CircleCI Atomic Red Team GUID generator 7abf7fe918 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-06 17:23:20 +00:00
tr4cefl0w 153f4aa939 adding T1547.002 (#1697) 
* adding T1547.002

* removing auto_generated_guid

* fixing payloads

* updating cleanup cmd and description

* removing submodules, adding payload source

* removing submodule, adding payloads src

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-06 11:22:52 -06:00
CircleCI Atomic Red Team doc generator c7cfd2cac0 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-05 21:42:39 +00:00
frack113 c45170dcaa fix test (#1709) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-05 14:42:06 -07:00
CircleCI Atomic Red Team doc generator 0097ce4b39 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-05 21:39:28 +00:00
Leo Verlod b83ffcf37c Updating T1217 Test 4 to include Opera (#1708) 
Upon attempting to develop an atomic for Opera bookmark discovery and testing T1217 Test 4, found that this test also detects Opera bookmarks in addition to Chrome's. Modifying name/description of this test to outline that it finds Opera bookmarks too.

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-05 14:38:55 -07:00
CircleCI Atomic Red Team doc generator 131febbcdb Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-05 21:35:39 +00:00
CircleCI Atomic Red Team GUID generator 9446159b59 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-05 21:35:34 +00:00
Leo Verlod 4b8a21d4d7 Adding T1497.001 Test 4 (#1706) 
This test is a second method of detecting virtualization within Windows by querying the WMI manufacturer/model.
 2022-01-05 14:35:05 -07:00
CircleCI Atomic Red Team doc generator 715ee2f7bf Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-30 20:08:23 +00:00
CircleCI Atomic Red Team GUID generator 6d0d802558 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-30 20:08:18 +00:00
Leo Verlod aa6cab9772 Adding T1555.003 Test 5 - Simulating Access to Opera Login Data (#1698) 
* Adding Test 5 - Simulating Access to Opera Login Data

Adding a 5th test that simulates access to Opera Login Data within Windows.

* Update T1555.003.yaml

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2021-12-30 13:07:54 -07:00
CircleCI Atomic Red Team doc generator 16f8bfd71c Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-30 19:21:54 +00:00