security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
3,290 Commits 47 Branches 0 Tags
4cf57b9ec86a4564df6f6fec2fdd280e95260eaa
Commit Graph

3290 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
glallen 4cf57b9ec8 spec.yaml should be singular to match working yaml (#1674) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2021-11-23 10:38:03 -07:00
Jose Enrique Hernandez b7c8fe4b7d Merge pull request #1672 from mboman/CVE-2021-28834 
CVE 2021 28834
 2021-11-22 11:43:40 -05:00
Jose Enrique Hernandez 5dd580ed67 Merge branch 'master' into CVE-2021-28834 2021-11-22 11:43:00 -05:00
CircleCI Atomic Red Team doc generator 4b1bc4557e Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-19 18:43:15 +00:00
glallen 4a5881e343 Linux prereq updates (#1673) 
* T1070.003-9 update (get_)prereq_commmand

- moved system changes to the get_prereq(s)
- ubuntu `passwd` didn't accept `--stdin`
- updated get_prereqs for both ubuntu/centos

* T1016 - update prereq

* T1018 - update prereq

* T1562.001 - update rsyslog prereq

* T1560.001 updates dep check/install, update default likely to exist

switch to /var/log/wtmp and /var/log/btmp vs ${HOME}/*.txt, since those will
always be present

tests for zip in the prereq

adds deb/rpm install for zip

* T1486 - update getprereqs

* T1135 - update prereqs

* T1046 - update prereqs

* T1040 - update prereqs
 2021-11-19 11:42:46 -07:00
Michael Boman f6557adf99 Update the ruby dependencies to more recent versions to close the CVE-2021-28834 vulnerability. 2021-11-18 21:04:40 +00:00
Michael Boman 3ed39e3599 Fixed CVE-2021-28834 notified by Dependabot 2021-11-18 20:26:52 +00:00
CircleCI Atomic Red Team doc generator 9d99436432 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-16 16:09:02 +00:00
CircleCI Atomic Red Team GUID generator 3101f0225d Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-16 16:08:57 +00:00
Carrie Roberts 64b06bc2dc Add lsass dump via NanoDump atomic (#1670) 
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com>
 2021-11-16 09:08:26 -07:00
CircleCI Atomic Red Team doc generator 6146dbfa24 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-16 16:04:07 +00:00
CircleCI Atomic Red Team GUID generator 274fa5584b Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-16 16:04:02 +00:00
Carrie Roberts 8fdb9ba016 Add golden ticket attack with Rubeus tool (#1668) 
* Add golden ticket attack with Rubeus tool

* update spacing

* clarify input arg desc
 2021-11-16 09:03:23 -07:00
CircleCI Atomic Red Team doc generator 22dd2fba1b Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-15 17:27:38 +00:00
Josh Rickard 7c386fea12 Removed key from yaml - auto_generate_guid (#1669) 2021-11-15 10:27:01 -07:00
CircleCI Atomic Red Team doc generator e058cc65aa Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-15 17:01:26 +00:00
CircleCI Atomic Red Team GUID generator 2b19a51db5 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-15 17:01:21 +00:00
Carl b8f7603562 Merge pull request #1662 from chdd-ltd/T1053.006 
T1053.006 added two transient systemd tests
 2021-11-15 10:00:58 -07:00
Carl 6c76a479aa Merge branch 'master' into T1053.006 2021-11-15 10:00:01 -07:00
CircleCI Atomic Red Team doc generator acbc93f04b Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-15 16:56:25 +00:00
Carl 3a8659a344 Merge pull request #1660 from buzzdeee/fix_python_test 
fix T1059.006 tests 1-3
 2021-11-15 09:55:54 -07:00
Carl 74bc0631de Merge branch 'master' into fix_python_test 2021-11-15 09:55:08 -07:00
CircleCI Atomic Red Team doc generator c75738380e Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-15 16:55:05 +00:00
CircleCI Atomic Red Team GUID generator 0e54e4cb93 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-15 16:55:00 +00:00
Carl 6fd073f2b0 Merge branch 'master' into fix_python_test 2021-11-15 09:54:49 -07:00
Carl 1afc604de9 Merge pull request #1657 from arunppsg/t1124 
T1124 - Get system date time in macOS using shell
 2021-11-15 09:54:40 -07:00
Carl 3e8b87aa40 Merge branch 'master' into t1124 2021-11-15 09:53:12 -07:00
CircleCI Atomic Red Team doc generator 45a72df216 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-15 16:40:52 +00:00
Carrie Roberts 3f34e8322f set domain programatically (#1667) 
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com>
 2021-11-15 09:40:21 -07:00
CircleCI Atomic Red Team doc generator 9ebf782b2f Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-15 16:38:44 +00:00
Carrie Roberts 66f06f62d9 set domain programatically (#1666) 
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com>
 2021-11-15 09:38:13 -07:00
CircleCI Atomic Red Team doc generator e9f25c654a Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-15 16:09:56 +00:00
CircleCI Atomic Red Team GUID generator 080294af8e Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-15 16:09:51 +00:00
Michael Haag df76fb17bd Curl - Upload a file (#1665) 
* T1105 - Curl for Windows

* Update T1105.yaml

* T1105 - Upload with Curl

* Update T1105.yaml

* Removed cleanup
 2021-11-15 09:09:21 -07:00
CircleCI Atomic Red Team doc generator f76dce59fa Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-10 00:55:10 +00:00
tlor89 41edb9d581 T-1110.001-Update (#1664) 
* T-1110.001-Update

* Update T1110.001.yaml

Co-authored-by: Toua Lor <tlor@nti.local>
 2021-11-09 17:54:45 -07:00
chris 3426113b0b T1053.006 added two transient systemd tests 2021-11-09 16:41:47 +00:00
Sebastian Reitenbach 39981d6ae9 This one is even better, no need for ln -s /usr/bin/python3 /usr/bin/python 
taken from T1003.007-2
 2021-11-04 14:21:47 +01:00
Sebastian Reitenbach e17fea0cb5 fix T1059.006 tests 1-3 
which_python is only set in the prereq_command, but not in the
actual command to run the test, therefore it doesn't find python
 2021-11-04 12:57:05 +01:00
CircleCI Atomic Red Team doc generator 717757d539 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-03 18:57:08 +00:00
CircleCI Atomic Red Team GUID generator 50a76a233c Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-03 18:57:03 +00:00
Bhavin Patel b4e74a260a Merge pull request #1607 from piaconsigny/pr-domain-trust-modif 
T1484.002: Azure AD - Domain Trust Modification
 2021-11-03 11:56:44 -07:00
Bhavin Patel ed2b816a10 Merge branch 'master' into pr-domain-trust-modif 2021-11-03 11:56:08 -07:00
CircleCI Atomic Red Team doc generator 89a486294b Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-01 15:00:11 +00:00
Carrie Roberts 8b443270f5 Use environment variable to resolve domain (#1654) 2021-11-01 08:59:26 -06:00
CircleCI Atomic Red Team doc generator 276f5e6fc9 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-01 14:33:32 +00:00
Matt Graeber 3d96a60cc6 Merge pull request #1659 from JoustingZebra/master 
T1220.yaml dependency fix
 2021-11-01 10:33:04 -04:00
JoustingZebra decc37d1dc Fix for MSXSL dependency issues 
Added:

Fixes for "MSXSL Bypass using remote files"
T1220/bin/ folder for default msxsl.exe filepath.
Input argument for filepath to msxls.exe
Cleanup command to remove msxls.exe 
Capitalization fixes for "-ErrorAction Ignore"
Fixed spelling "successfully" on line 10, 60, and 121.
Split line 57 to get length under 150 characters.
 2021-10-29 18:18:18 -04:00
JoustingZebra acd76a17a3 Create .gitignore 
gitignore for /bin/ folder
 2021-10-29 16:54:25 -04:00
JoustingZebra 2ae946496a Delete .gitignore 2021-10-29 16:53:02 -04:00