security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4,206 Commits 47 Branches 0 Tags
40ceeff8d9d953cdc41e9c924e0ec00a20609a47
Commit Graph

4206 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
CircleCI Atomic Red Team doc generator 41eb22e4d8 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-14 22:05:33 +00:00
frack113 a34cc9dd57 fix reg in T1547.002 (#1720) 
* fix reg

* add blog link for more info

* Update T1547.002.yaml

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-14 15:04:59 -07:00
CircleCI Atomic Red Team doc generator 98a114b7ab Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-14 21:58:31 +00:00
frack113 8f7c3c34f6 Fix prereq_command (#1721) 2022-01-14 14:58:09 -07:00
Adam Mashinchi 2d4011d961 Update atomic-red-team.gemspec (#1719) 
Updating email addresses to more relevant ones.
 2022-01-12 14:45:52 -07:00
CircleCI Atomic Red Team doc generator c8c20df839 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 20:27:25 +00:00
shamanth0912 7669b73daf Modify T1041.yaml (#1716) 
* Modify T1041.yaml

Adding cleanup command and prereq command to Base command

* Update T1041.yaml

Modified a bit to only create the file if it doesn't already exist and choosing not to delete since it is only one small file being added to the temp directory without any sensitive information in it.

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-12 14:26:26 -06:00
CircleCI Atomic Red Team doc generator 026d71f702 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 20:25:34 +00:00
frack113 09ac7374a9 T1021.006 Fix prereq error (#1710) 
* Fix prereq error

* Update T1021.006.yaml

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-12 14:24:58 -06:00
CircleCI Atomic Red Team doc generator 73a615693b Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 20:17:07 +00:00
CircleCI Atomic Red Team GUID generator 17c6d08894 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 20:17:02 +00:00
Carl d52425fa8c Merge pull request #1689 from chdd-ltd/T1018 
T1018 added three ip utility tests
 2022-01-12 13:16:27 -07:00
Carl 2b7f9a381d Merge branch 'master' into T1018 2022-01-12 13:13:35 -07:00
CircleCI Atomic Red Team doc generator 8c07547d65 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 20:13:02 +00:00
CircleCI Atomic Red Team GUID generator ad0d097ec0 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 20:12:56 +00:00
Carl 3f1fb3c121 Merge pull request #1713 from chdd-ltd/T1110.001_sudo_bruteforce 
T1110.001 - Added two Linux local SUDO bruteforce tests
 2022-01-12 13:12:31 -07:00
Carl 1b5d789a7b Merge branch 'master' into T1110.001_sudo_bruteforce 2022-01-12 13:11:43 -07:00
Marrelle Bailey (She/Her) 2019d6c993 Updated version of the CoC (#1718) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-12 07:40:27 -06:00
CircleCI Atomic Red Team doc generator 4bffef03dd Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 13:39:32 +00:00
CircleCI Atomic Red Team GUID generator 35acd81273 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-12 13:39:27 +00:00
Vincent N b9750ef5cd Extend T1550.003 with new PTT attack (#1717) 
* Extend T1550.003 with new PTT attack

* Applying Carrie's suggestion
 2022-01-12 07:39:00 -06:00
CircleCI Atomic Red Team doc generator dfea108f00 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-10 19:36:25 +00:00
CircleCI Atomic Red Team GUID generator 56d6fec8db Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-10 19:36:19 +00:00
Leo Verlod 12e9da546c Create T1091.yaml (#1715) 
Creating a directory for T1091 and corresponding YAML file so that a new test can be submitted for this technique. The proposed test is designed to detect removable drives connected to a Windows system and then create a file named "T1091Test1.txt" on them to simulate USB spread.
 2022-01-10 12:35:48 -07:00
biot e8c33dcbb5 T1110.001_sudo_bruteforce 2022-01-08 17:47:55 +00:00
CircleCI Atomic Red Team doc generator 957ca44e55 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-07 22:29:03 +00:00
CircleCI Atomic Red Team GUID generator ef47d419f1 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-07 22:28:59 +00:00
frack113 6221a181ab Fix windows test (#1711) 2022-01-07 15:28:30 -07:00
CircleCI Atomic Red Team doc generator 1351165d33 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-06 17:23:26 +00:00
CircleCI Atomic Red Team GUID generator 7abf7fe918 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-06 17:23:20 +00:00
tr4cefl0w 153f4aa939 adding T1547.002 (#1697) 
* adding T1547.002

* removing auto_generated_guid

* fixing payloads

* updating cleanup cmd and description

* removing submodules, adding payload source

* removing submodule, adding payloads src

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-06 11:22:52 -06:00
CircleCI Atomic Red Team doc generator c7cfd2cac0 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-05 21:42:39 +00:00
frack113 c45170dcaa fix test (#1709) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-05 14:42:06 -07:00
CircleCI Atomic Red Team doc generator 0097ce4b39 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-05 21:39:28 +00:00
Leo Verlod b83ffcf37c Updating T1217 Test 4 to include Opera (#1708) 
Upon attempting to develop an atomic for Opera bookmark discovery and testing T1217 Test 4, found that this test also detects Opera bookmarks in addition to Chrome's. Modifying name/description of this test to outline that it finds Opera bookmarks too.

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-05 14:38:55 -07:00
CircleCI Atomic Red Team doc generator 131febbcdb Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-05 21:35:39 +00:00
CircleCI Atomic Red Team GUID generator 9446159b59 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-05 21:35:34 +00:00
Leo Verlod 4b8a21d4d7 Adding T1497.001 Test 4 (#1706) 
This test is a second method of detecting virtualization within Windows by querying the WMI manufacturer/model.
 2022-01-05 14:35:05 -07:00
CircleCI Atomic Red Team doc generator 715ee2f7bf Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-30 20:08:23 +00:00
CircleCI Atomic Red Team GUID generator 6d0d802558 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-30 20:08:18 +00:00
Leo Verlod aa6cab9772 Adding T1555.003 Test 5 - Simulating Access to Opera Login Data (#1698) 
* Adding Test 5 - Simulating Access to Opera Login Data

Adding a 5th test that simulates access to Opera Login Data within Windows.

* Update T1555.003.yaml

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2021-12-30 13:07:54 -07:00
CircleCI Atomic Red Team doc generator 16f8bfd71c Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-30 19:21:54 +00:00
MrOrOneEquals1 b9ee00896b Update T1202.yaml (#1704) 
* Update T1202.yaml

Update executor for Windows Indirect Command Execution

* Update T1202.yaml

* Update T1202.yaml

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2021-12-30 12:21:38 -07:00
CircleCI Atomic Red Team doc generator 4c36b9b772 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-30 19:08:33 +00:00
MrOrOneEquals1 e0f2a76114 Update T1003.yaml (#1702) 
* Update T1003.yaml

Add -UseBasicParsing to line 41

* Update T1003.yaml

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2021-12-30 12:08:06 -07:00
CircleCI Atomic Red Team doc generator a65adae62d Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-30 19:05:18 +00:00
MrOrOneEquals1 f2da872a35 Update T1137.006.yaml (#1703) 
Update default xll_url. Fixes issue #1700 , thx @frack13
 2021-12-30 12:04:52 -07:00
CircleCI Atomic Red Team doc generator d39dc66fa1 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-23 19:00:45 +00:00
CircleCI Atomic Red Team GUID generator 73a44d8b8f Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-23 19:00:40 +00:00
shamanth0912 60d6849173 Added a New Test in T1070.005 - Disable Administrative Share Creation at Startup (#1694) 
* Update T1003.yaml

Cleared a space liner from command line for Atomic guid : d400090a-d8ca-4be0-982e-c70598a23de9

* Update T1070.005.yaml

Added a new test to disable Admin Share and clean up command

* Update T1003.yaml

* update desc

* update desc

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2021-12-23 12:00:12 -07:00