security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2,199 Commits 47 Branches 0 Tags
5d59fdbce108bf3d146bf04f52fdd3e52ca7cd40
Commit Graph

2199 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
CircleCI Atomic Red Team doc generator 5d59fdbce1 Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-17 15:13:28 +00:00
Brandon Morgan 6b04e9421e Update T1003.002.yaml (#1135) 
initial esentutl-copy-sam commit
 2020-07-17 09:12:47 -06:00
CircleCI Atomic Red Team doc generator e8d091ea67 Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-17 13:08:48 +00:00
Matt Graeber 2e56123db3 Merge pull request #1124 from clr2of8/pipe 
correct multi-line yaml indicator
 2020-07-17 09:03:44 -04:00
Matt Graeber 7b6b975054 Merge branch 'master' into pipe 2020-07-17 09:03:01 -04:00
Matt Graeber 785bdcf343 Merge pull request #1114 from redcanaryco/clr2of8-patch-6 
Update description of input argument
 2020-07-17 09:02:52 -04:00
Matt Graeber d46eb469cc Merge branch 'master' into clr2of8-patch-6 2020-07-17 09:01:26 -04:00
Matt Graeber b98da5e2ee Merge branch 'master' into pipe 2020-07-17 09:00:31 -04:00
CircleCI Atomic Red Team doc generator 5b5a60d418 Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-17 01:10:39 +00:00
san-gwea 67e3776d7c T1562 exclude objects (#1131) 
* added a test for evading detection by excluding path from scanning

* added tests for evading process and extesnion scanning

* fixed syntax

* description correction

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-07-16 19:09:55 -06:00
CircleCI Atomic Red Team doc generator 6ad699f378 Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-17 00:12:19 +00:00
san-gwea 3f52420dfe T1087.002 a dfind (#1130) 
* This test uses the ad find tool for reconnaissance in Active directory

* including the src folder
 2020-07-16 18:11:32 -06:00
CircleCI Atomic Red Team doc generator 09c6e7451c Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-16 22:01:44 +00:00
Brandon Morgan 0d12480041 T1018 adidns cmd (#1129) 
* Update T1018.yaml

initial adidnsdump commit

* Update T1018.yaml

update for correct slash in domain\user

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-07-16 16:01:26 -06:00
Keith McCammon 8297931ae0 No need to shout (#1128) 
* Create new_atomic.md

* Add link to "how to submit a test" docs

* Update new_atomic.md
 2020-07-16 09:10:35 -06:00
Keith McCammon bc8f5c5958 Add link to "how to submit a test" documentation (#1127) 
* Create new_atomic.md

* Add link to "how to submit a test" docs
 2020-07-16 09:07:38 -06:00
Keith McCammon 49d9e27540 Create new_atomic.md (#1123) 2020-07-16 09:00:30 -06:00
CircleCI Atomic Red Team doc generator 72496da590 Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-15 20:04:33 +00:00
Danil Karandin 9c42adfa8f T1020 (#1125) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-07-15 14:03:55 -06:00
clr2of8 0cb2588b37 correct multi-line yaml indicator 2020-07-15 12:51:36 -06:00
Keith McCammon a42a1a6339 Improve issue templates via title prefixes (#1121) 
* Update and rename feature_request.md to idea.md

* Update problem_report.md

* Update website_change.md

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-07-15 11:38:11 -06:00
CircleCI Atomic Red Team doc generator f3799322c7 Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-14 14:51:13 +00:00
Scoubi f5665eafea Update T1003.yaml (#1120) 
Add a line to include/force TLS1.2 in order for the prereq function to work on win2k16
All the credit to clr2of8 for sending me the string

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-07-14 08:50:50 -06:00
CircleCI Atomic Red Team doc generator 9c2c157c3a Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-14 14:49:56 +00:00
Scoubi aedffd8f65 Update T1095.yaml (#1119) 
Add a line to include/force TLS1.2 in order for the prereq function to work on win2k16
All the credit to clr2of8 for sending me the string

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-07-14 08:49:37 -06:00
CircleCI Atomic Red Team doc generator c91c70bd67 Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-14 14:36:02 +00:00
Scoubi 1611d8fd07 Update T1027.yaml (#1118) 
Add a line to include/force TLS1.2 in order for the prereq function to work on win2k16
All the credit to clr2of8 for sending me the string
 2020-07-14 08:35:30 -06:00
Carrie Roberts d7b30dbcfb add link to PR tutorial (#1117) 2020-07-13 20:00:42 -06:00
Keith McCammon 2d74ac130e Letters matter. 2020-07-11 13:12:02 -06:00
Keith McCammon e0b8a878e4 Update issue templates 2020-07-11 13:07:58 -06:00
Keith McCammon b7361a6fbd Create issue templates (#1113) 
* Create feature_request.md

* Update and rename .github/issue_template.md to .github/ISSUE_TEMPLATES/problem_report.md

* Create website_change.md
 2020-07-11 13:06:02 -06:00
CircleCI Atomic Red Team doc generator 789e8acd67 Generate docs from job=validate_atomics_generate_docs branch=clr2of8-patch-6 2020-07-09 19:12:01 +00:00
Carrie Roberts 438b1f2fd4 Update description 2020-07-09 13:11:39 -06:00
Keith McCammon 46c5fe836e Create maintainers.md (#1107) 
* Create maintainers.md

* Update maintainers.md
 2020-07-09 11:43:55 -06:00
CircleCI Atomic Red Team doc generator 7e4580a1e8 Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-08 21:16:22 +00:00
Hare Sudhan Muthusamy 02ac2deb4f Cleanup fixes (#1108) 
* Cleanup Fixes

* Wrong executor name and missing $ sign in T1553

* Cleanup fixes

* File checks added

* File path error check changed
 2020-07-08 15:15:52 -06:00
Brian 91d71a722e Update testing.md (#1110) 
The "which are located here" hyperlink and the content of the actual test in the "Execute a Test" section are both broken due to the sub-techniques update.
 2020-07-08 10:11:26 -06:00
Matt Graeber 2ed307fdd4 Merge pull request #1099 from redcanaryco/clr2of8-patch-1 
more descriptive test name
 2020-07-07 11:36:48 -04:00
Matt Graeber 45b8cb064f Merge branch 'master' into clr2of8-patch-1 2020-07-07 11:36:08 -04:00
CircleCI Atomic Red Team doc generator d852e8b845 Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-07 15:25:19 +00:00
Andrew Beers e5fe0a3266 T1059.001 - PowerShell Session Creation and Use (#1010) 
* write test

* fix variable

* add completion description

* small fix

* fix executor

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2020-07-07 09:24:40 -06:00
CircleCI Atomic Red Team doc generator b95eaea644 Generate docs from job=validate_atomics_generate_docs branch=master 2020-07-07 15:17:35 +00:00
P4T12ICK abc575eb2e New atomic T1574.009 (#1103) 
* new atomic test

* new atomic test

* new atomics

* new atomics

* new atomics

* new atomics

* new atomics

Co-authored-by: Patrick Bareiss <pbareib@splunk.com>
 2020-07-07 09:16:59 -06:00
Matt Graeber c4b5f3a9ea Merge pull request #1100 from redcanaryco/clr2of8-patch-2 
more descriptive test name
 2020-07-07 11:02:08 -04:00
Matt Graeber a7d96ce769 Merge branch 'master' into clr2of8-patch-2 2020-07-07 11:01:07 -04:00
Matt Graeber c19400b846 Merge pull request #1101 from redcanaryco/clr2of8-patch-3 
typo fix
 2020-07-07 10:58:59 -04:00
Matt Graeber 95661b0052 Merge branch 'master' into clr2of8-patch-3 2020-07-07 10:58:06 -04:00
Matt Graeber 7fdcfa49d6 Merge pull request #1102 from redcanaryco/clr2of8-patch-4 
add -Force to avoid error when redownloading
 2020-07-07 10:57:18 -04:00
Matt Graeber cd8884f7c1 Merge branch 'master' into clr2of8-patch-4 2020-07-07 10:56:34 -04:00
Matt Graeber f783c9042a Merge pull request #1104 from redcanaryco/clr2of8-patch-5 
remove essentially duplicated test
 2020-07-07 10:55:32 -04:00