security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4,206 Commits 47 Branches 0 Tags
40ceeff8d9d953cdc41e9c924e0ec00a20609a47
Commit Graph

88 Commits

Author SHA1 Message Date
Atomic Red Team doc generator 4e0637e706 Generated docs from job=generate-docs branch=master [ci skip] 2022-08-01 16:52:24 +00:00
Atomic Red Team GUID generator e3b3dc6c03 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-08-01 16:52:17 +00:00
Panos Moullotos 4ab943e73b New T1105 test based on open issue (#2060) 
* Create T1105-download-file.vbs

* Added 2 tests to T1105 based on open issue

* Update T1105.yaml

* remove duplicate

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-08-01 10:51:46 -06:00
Atomic Red Team doc generator d63433c2c7 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-25 20:45:40 +00:00
Atomic Red Team GUID generator 7cfc9b3bef Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-25 20:45:34 +00:00
Panos Moullotos 2e852f836a Updated T1105.yaml with new certreq test (#2044) 
Inspired by https://lolbas-project.github.io/lolbas/Binaries/Certreq/

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-25 14:45:05 -06:00
Atomic Red Team doc generator 819934cc3f Generated docs from job=generate-docs branch=master [ci skip] 2022-06-16 22:47:00 +00:00
Atomic Red Team doc generator a888e0e7c9 Generated docs from job=generate-docs branch=master [ci skip] 2022-05-25 04:12:17 +00:00
Atomic Red Team GUID generator a8f00eb241 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-05-25 04:12:12 +00:00
frack113 af529da1e5 Add lolbin (#1979) 2022-05-24 22:11:43 -06:00
Atomic Red Team doc generator 48b5977afd Generated docs from job=generate-docs branch=master [ci skip] 2022-05-10 20:43:59 +00:00
Atomic Red Team GUID generator 81681bd735 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-05-10 20:43:54 +00:00
frack113 9a3d6d4b5e Add lolbin test (#1933) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-05-10 14:43:25 -06:00
Atomic Red Team doc generator 985fc5a85a Generated docs from job=generate-docs branch=master [ci skip] 2022-05-10 14:38:48 +00:00
Atomic Red Team GUID generator a0ca031612 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-05-10 14:38:43 +00:00
Leo Verlod 7ca06f5892 Adding T1105 Test 21 - MAZE Propagation (#1918) 
* Adding T1105 Test 21 - MAZE Propagation

* Making requested changes to T1105 MAZE Propagation Script

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-05-10 08:38:16 -06:00
David McKennirey 5d7a0e7939 T1105: Update timeout to ping (#1867) 2022-04-14 10:50:25 -06:00
CircleCI Atomic Red Team doc generator 51e66c9ab6 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-29 19:20:49 +00:00
CircleCI Atomic Red Team GUID generator 8863882725 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-29 19:20:42 +00:00
Jay_darknight 8abff96c87 Added a new test for T1105 - cmdl32 LolBins (#1744) 
* Added a new test for T1105 - cmdl32 LolBins

* Added references

* chaning the bin folder to src based on suggesstion from clr2of8

* deleted bin

* changed the path for input arguments

Co-authored-by: Jayaram Rajamurugan <jrajamurugan@nti.local>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-29 13:20:16 -06:00
CircleCI Atomic Red Team doc generator 8985aaf0f0 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-09 18:42:48 +00:00
Carrie Roberts 5bb5878e62 Cleaning up the Cleanup commands (#1685) 
* cleanup fixes

* cleanup fixes

* cleanup fixes
 2021-12-09 11:42:14 -07:00
CircleCI Atomic Red Team doc generator e9f25c654a Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-15 16:09:56 +00:00
CircleCI Atomic Red Team GUID generator 080294af8e Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-15 16:09:51 +00:00
Michael Haag df76fb17bd Curl - Upload a file (#1665) 
* T1105 - Curl for Windows

* Update T1105.yaml

* T1105 - Upload with Curl

* Update T1105.yaml

* Removed cleanup
 2021-11-15 09:09:21 -07:00
CircleCI Atomic Red Team doc generator 1bd61011ca Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-10-21 20:42:25 +00:00
CircleCI Atomic Red Team GUID generator 008a484545 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-10-21 20:42:20 +00:00
Michael Haag 5906bbec70 T1105 - Curl for Windows (#1653) 
* T1105 - Curl for Windows

* Update T1105.yaml

* ignore cleanup errors

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2021-10-21 14:41:48 -06:00
CircleCI Atomic Red Team doc generator ba0b1a3c35 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-09-09 18:02:46 +00:00
CircleCI Atomic Red Team GUID generator 356a8bbe88 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-09-09 18:02:40 +00:00
Brian Thacker 6d46517d6f T1105 add test download with imewdbld (#1621) 
* Add test "Download a file with IMEWDBLD.exe"

IMEWDBLD.exe can be used to download files from third party websites. This will throw an error for an invalid dictionary but the file will still be downloaded.
Commands to execute this activity and cleanup commands added.
Cleanup commands call on cmd.exe because PowerShell by default would not remove those files.
Disclosed by https://twitter.com/notwhickey
https://twitter.com/notwhickey/status/136749340683504026

* Update T1105.yaml

fixed typo test 17

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2021-09-09 12:02:26 -06:00
CircleCI Atomic Red Team doc generator bc21f59ff0 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-09-04 00:21:31 +00:00
Josh Rickard 1513717eb2 Updating atomics to conform to standard (#1619) 
* Updated format of input_argument types for Url

* Updated type for input_arguments to Url (missed)

* Updating Path type for input_arguments

* Updated String type for input_arguments

* Missed a few Strings and Url types

* Updated default values for input_arguments to align with their types

* Updated Integer type for input_arguments

* Updated formatting and spacing of atomics
 2021-09-03 18:20:46 -06:00
CircleCI Atomic Red Team doc generator 6bd522644a Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-07-28 22:27:19 +00:00
CircleCI Atomic Red Team GUID generator fa11adb617 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-07-28 22:27:13 +00:00
lexiechong 63d97dad98 Update T1105 to include file download using finger (#1578) 2021-07-28 16:26:54 -06:00
CircleCI Atomic Red Team doc generator 5956ac532b Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-07-27 14:42:34 +00:00
Adam Mashinchi e8899b4df6 Additional PowerShell Download in T1105 2021-07-26 13:00:42 -07:00
CircleCI Atomic Red Team doc generator 36d49de4c8 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-06-24 17:04:33 +00:00
CircleCI Atomic Red Team doc generator 575b36a8e6 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-06-24 15:16:54 +00:00
CircleCI Atomic Red Team doc generator 1219378ebd Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-06-16 15:08:12 +00:00
CircleCI Atomic Red Team GUID generator 78bb39a82d Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-06-16 15:08:05 +00:00
rctgardner 1531e9d3f0 fix t1105 indent 2021-06-11 15:26:30 -06:00
rctgardner b7eee5a06d preserving exit code if whois ends early 2021-06-09 16:02:14 -06:00
rctgardner 1a3c693394 added 'whois file download' test to T1005 2021-06-09 13:28:07 -06:00
CircleCI Atomic Red Team doc generator 910a2a764a Generate docs from job=validate_atomics_generate_docs branch=master 2020-09-29 13:53:28 +00:00
CircleCI Atomic Red Team doc generator 115bb861b7 Generate docs from job=validate_atomics_generate_docs branch=master 2020-09-04 17:21:36 +00:00
Jesse Moore ef53a91332 T1105.002 mp cmd run (#1214) 
* Update T1105.yaml

Add MpCmdRun Windows Defender LOLB

* Update T1105.yaml

Corrected input and yaml spacing

* Update T1105.yaml

Added PreReq exit else
And better description with URL

* Update T1105.yaml

Carrie added enhancements. Thank you Carrie!

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-09-04 11:21:08 -06:00
CircleCI Atomic Red Team doc generator 7e4580a1e8 Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-08 21:16:22 +00:00
Hare Sudhan Muthusamy 02ac2deb4f Cleanup fixes (#1108) 
* Cleanup Fixes

* Wrong executor name and missing $ sign in T1553

* Cleanup fixes

* File checks added

* File path error check changed
 2020-07-08 15:15:52 -06:00