security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4,157 Commits 47 Branches 0 Tags
7efbda6972bca4a45efffb5e93844f6a91a4dab2
Commit Graph

4157 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Leo Verlod 7efbda6972 Adding T1526 Test 1 2022-07-26 03:54:34 -05:00
Atomic Red Team doc generator ea2ebf426b Generated docs from job=generate-docs branch=master [ci skip] 2022-07-25 20:57:48 +00:00
Atomic Red Team GUID generator c13f88d9b7 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-25 20:57:41 +00:00
masonharrell f42dc76aba T1574.008 (#2038) 
Co-authored-by: Mason Harrell <mharrell@nti.local>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-25 14:57:13 -06:00
Atomic Red Team doc generator c42913486b Generated docs from job=generate-docs branch=master [ci skip] 2022-07-25 20:56:32 +00:00
Dan cf612cdfa9 Update T1552.004.yaml, Linux tests (#2042) 
redirect find errors

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-25 14:56:04 -06:00
Atomic Red Team doc generator 5ec9b7c317 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-25 20:54:13 +00:00
Atomic Red Team GUID generator e935cc7fe5 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-25 20:54:06 +00:00
dwhite9 e4945a7c50 T1569.002 - Added Atomic to emulate BlackCat malware using embedded PsExec binary (#2043) 
* Added Atomic to emulate BlackCat malware using embedded PsExec binary
(placed in /bin dir)

* add blog links

Co-authored-by: Daniel White <d0w019h@homeoffice.wal-mart.com>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-25 14:53:35 -06:00
Atomic Red Team doc generator d63433c2c7 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-25 20:45:40 +00:00
Atomic Red Team GUID generator 7cfc9b3bef Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-25 20:45:34 +00:00
Panos Moullotos 2e852f836a Updated T1105.yaml with new certreq test (#2044) 
Inspired by https://lolbas-project.github.io/lolbas/Binaries/Certreq/

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-25 14:45:05 -06:00
alireza 27482c6076 fix: broken urls for embedded files and test script (#2045) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-25 14:02:10 -06:00
Atomic Red Team doc generator bad4792e43 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-25 19:59:44 +00:00
Felipe Bueno 0aac37a7b9 Update T1647.yaml (#2047) 
Attack_technique name is incorrect in the T1647 archive
 2022-07-25 13:59:02 -06:00
Atomic Red Team doc generator a500e57f94 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-21 21:26:05 +00:00
Atomic Red Team GUID generator 3e0522595a Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-21 21:25:58 +00:00
Bhavin Patel 52f2ebf1f6 Merge pull request #2039 from redcanaryco/mofcomp 
Adding MOFComp to T1546.003
 2022-07-21 14:25:18 -07:00
Bhavin Patel 2e87e75909 Merge branch 'master' into mofcomp 2022-07-21 14:21:12 -07:00
Atomic Red Team doc generator 03c1726b43 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-21 13:28:25 +00:00
Atomic Red Team GUID generator 2dae5d65cc Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-21 13:28:18 +00:00
Paul 71f344e3d7 T1059.003 Read CMD from file and execute (#2041) 
Simulate Raspberry Robin using the "standard-in" command prompt feature cmd `/R <` to read and execute a file via cmd.exe
 2022-07-21 06:27:44 -07:00
Michael Haag f230160f64 Update T1546.003.mof 2022-07-19 07:58:51 -07:00
Michael Haag 76ef8e6e11 Adding MOFComp to T1546.003 2022-07-19 07:47:26 -06:00
Atomic Red Team doc generator 28ecaa135f Generated docs from job=generate-docs branch=master [ci skip] 2022-07-18 18:12:45 +00:00
Atomic Red Team GUID generator 8f73aa18f5 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-18 18:12:38 +00:00
Jose Enrique Hernandez 82b8bc5f4b Merge pull request #2016 from RoundBunny/T1222.002 
Added C file test to T1222.002
 2022-07-18 14:11:22 -04:00
Jose Enrique Hernandez 021484afb7 Merge branch 'master' into T1222.002 2022-07-18 13:00:15 -04:00
Atomic Red Team doc generator 768a631ee3 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-15 16:16:09 +00:00
Atomic Red Team GUID generator 0fb72b25fb Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-15 16:16:03 +00:00
Michael Haag e2c6554dd9 Update T1562.001.yaml (#2036) 
* Update T1562.001.yaml

* guid
 2022-07-15 10:15:28 -06:00
Atomic Red Team doc generator a9deea5eba Generated docs from job=generate-docs branch=master [ci skip] 2022-07-15 03:19:33 +00:00
Dan d98de27058 Update T1082-3,4 (#2035) 
Remove semicolons from end of if statements

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-14 21:19:00 -06:00
Atomic Red Team doc generator e37f97dd4e Generated docs from job=generate-docs branch=master [ci skip] 2022-07-15 03:17:25 +00:00
Dan 0dadea6454 Update T1018-4 (#2034) 
* Update T1018-4

Update T1018, Test 4

* update input arg descriptions

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-14 21:16:46 -06:00
Atomic Red Team doc generator 659e4e2db0 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-14 16:47:13 +00:00
Atomic Red Team GUID generator de862ad9af Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-14 16:47:06 +00:00
Michael Haag 86780832bf Use SpecialAccounts to Hide User on Windows (#2033) 
* Use SpecialAccounts to Hide User on Windows

* Update T1564.002.yaml

* guid
 2022-07-14 10:46:33 -06:00
Jose Enrique Hernandez 5dc5bd0d9a Merge branch 'master' into T1222.002 2022-07-14 12:37:27 -04:00
Atomic Red Team doc generator 95e59bf6cd Generated docs from job=generate-docs branch=master [ci skip] 2022-07-14 16:04:27 +00:00
Martin Rothe 10cd46849f Corrected github url to raw powershell from html (#2032) 2022-07-14 10:03:49 -06:00
Atomic Red Team doc generator 726c223308 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-13 20:10:17 +00:00
Atomic Red Team GUID generator a04ddfd5d1 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-13 20:10:12 +00:00
Bhavin Patel 14c68b403c Merge pull request #2018 from Leomon5/patch-3 
Adding T1082 Test - Azure Security Scan with SkyArk
 2022-07-13 13:09:44 -07:00
Bhavin Patel f1ea602ba7 Merge branch 'master' into patch-3 2022-07-13 13:08:18 -07:00
Atomic Red Team doc generator 9c46e34eb0 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-13 16:55:34 +00:00
Jacques Decarie 4c7988bbfc T1546.002 (#2030) 
* attempt to stop service first, in case its already running

* adding reg backup and the cleanup commands to T1546.002

* adding reg backup and the cleanup commands to T1546.002

* adding reg backup and the cleanup commands to T1546.002

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-13 10:54:57 -06:00
Atomic Red Team doc generator 4189c61800 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-12 14:53:38 +00:00
Atomic Red Team GUID generator 0e597a89bd Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-12 14:53:32 +00:00
arames13 dd2d946f1c T1555.003-update (#2026) 
* T1555.003-update

* Update T1555.003.yaml

* Delete T1555.003.yaml

* Create T1555.003.yaml

* Rename atomics/T1555.003/src/WebBrowserPassView.cfg to atomics/T1555.003/bin/WebBrowserPassView.cfg

* Delete atomics/T1555.003/src directory

* Add files via upload

adding 'WebBrowserPassView.exe' file to bin

Co-authored-by: anupama ramesh <aramesh@nti.local>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-12 08:53:02 -06:00