security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
324 Commits 47 Branches 0 Tags
5f848fe2c19d948c3ef18f2becedf335fdff3c8e
Commit Graph

36 Commits

Author SHA1 Message Date
Michael Haag 5078248ca1 Merge pull request #95 from TacoRocket/master 
Added Screen Capture from Keylogger to Collection
 2018-03-06 09:20:01 -06:00
ahogue-atlassian 3aa4c528d9 Merge branch 'master' into master 2018-03-06 09:05:52 +11:00
Colby Farley fd1e413566 Adds a method to detect when extended attributes are used to hide files and folders. 2018-03-01 16:11:28 -06:00
Chris Long 96ce9fbbbf Adding Mac rc.common persistence 2018-03-01 00:57:54 -08:00
JeremyNGalloway 75145a2766 updated readme with link to Credential_Access/Credentials_in_Files.md 2018-02-28 16:44:33 -06:00
Colby Farley dea84864fa Added screen capture discovery for Mac 2018-02-28 11:30:41 -06:00
Colby Farley 18a1a5521c Added a method to download and install PowerShell on Mac 2018-02-27 12:23:53 -06:00
ahogue-atlassian fb99ca3f6f Merge branch 'master' into master 2018-02-27 14:04:13 +11:00
Dan Bourke e52c8a8980 finishing mac bits 2018-02-26 13:08:47 +11:00
ahogue-atlassian 1347bc88dd Merge branch 'master' into master 2018-02-26 09:49:23 +11:00
Alexander Hogue 1ea5a9aaa8 Add Custom C2 Protocol - Bitbucket Snippets 2018-02-22 13:47:47 +11:00
caseysmithrc ec226ab392 Merge pull request #85 from JeremyNGalloway/master 
PR to add Logon_Scripts.md entry and update the Mac ReadMe.md to include links
 2018-02-21 11:24:36 -07:00
caseysmithrc dcf4d09ce1 Merge pull request #84 from sdtyne/space_after_filename 
Space after filename
 2018-02-21 11:24:09 -07:00
JeremyNGalloway 14d31eba11 added Logon_Scripts.md link 2018-02-21 12:03:35 -06:00
Dan Bourke 1ad74772b7 mac and linux example setuid binary 2018-02-19 14:29:52 +11:00
Stuart Tyne 396172559d Adding Space After Filename technique 2018-02-19 10:31:08 +11:00
Dan Bourke b047c5575f update readme, update linux example path 2018-02-08 17:05:23 +11:00
Michael Haag 9a5128a7da Mac Matrix Update 
Updated Mac Matrix and technique names
 2018-01-16 11:00:21 -07:00
atmathis 0e877849ef Fixing .bash_profile 
* Removed commands not related to this technique, and replaced them
with legitimate ones.
* Added .bash_profile page to Mac
 2018-01-11 15:54:20 -05:00
atmathis 9c9c27ddd1 Merge remote-tracking branch 'redcanaryco/master' 
# Conflicts:
#	Mac/README.md
 2018-01-11 09:58:01 -05:00
Michael Haag 29cf36761a Mac Discovery 
Added many techniques to Discovery for Mac
 2018-01-09 14:53:47 -07:00
Michael Haag c4bbef438a Mac Credential Access 
Added two Credential Access
 2018-01-09 10:01:11 -07:00
Michael Haag 3c84c659f5 Mac Persistence 
Added many mac persistence items and updated readme
 2018-01-09 09:07:41 -07:00
Michael Haag 8f10054683 Update Mac ReadMe 
Added all the missing pieces to the puzzle
 2018-01-09 07:03:47 -07:00
atmathis 42d3c51ed9 Fix Mac Grid 
* Updated Mac grid to add “.md” on Indicator_Removal_On_Host to resolve
404.
 2018-01-03 23:11:30 -05:00
Michael Haag 6160fd756e Readme 
Boring readme update
 2018-01-03 09:07:53 -07:00
atmathis 3ef9e7a62c Mac Defense Evasion/Launchctl 
* Added Mac Defense Evasion/Launchctl and updated Matrix
 2018-01-01 17:18:54 -05:00
atmathis 5802bb2df8 Mac Indicator Removal on Host 
* Added Mac Defense Evasion / Indicator Removal on Host and updated
Matrix
 2018-01-01 17:07:42 -05:00
atmathis a9b36650cd Mac Hidden Users 
* Added Defense Evasion/Hidden Users and updated Matrix
 2018-01-01 16:38:43 -05:00
atmathis 0ddc31b336 Mac/Linux HISTCONTROL 
* Added HISTCONTROL for Mac and Linux, and updated Matrices
* Corrected Gatekeeper Bypass title
 2018-01-01 16:02:52 -05:00
atmathis 232d5eea29 Add Mac Defense Evasion/Disabling Security Tools 
* Added Disabling_Security_Tools under Mac Defense Evasion and added to
Matrix
* Added existing GateKeeper Bypass page to Matrix
 2018-01-01 15:10:44 -05:00
atmathis cac4566d2c Revert "Revert "Linux/Mac Command Clear"" 
This reverts commit 6439416b26.
 2018-01-01 14:30:45 -05:00
atmathis 6439416b26 Revert "Linux/Mac Command Clear" 
This reverts commit a0c6b2953c.
 2018-01-01 14:29:48 -05:00
atmathis a0c6b2953c Linux/Mac Command Clear 
* Updated title on Clear Command History
* Replicated Clear Command History from Mac to Linux
* Added links to both matrices
 2018-01-01 14:27:09 -05:00
atmathis dce29fd24d Add/Change Mac and All the Things cleanup 
Created Mac/Credential_Access/Input_Prompt
Added AppleScript password prompt to Credential Access/Input Prompt
Cleanup Mac/Execution/AppleScript
Updated Mac Grid
Updated formatting on AllTheThings test.bat
 2017-12-29 12:12:54 -05:00
Brian Beyer 9668bf2c24 Rename Mac.md to README.md 2017-11-04 15:36:59 -04:00