c8a70997da
Adding more YAML validations ( #2837 )
...
* Update T1202.yaml
* fix all atomics
* changing to macos to fix pytest issue
* changing to macos to fix pytest issue
* adding gitignore
2024-07-10 08:54:26 -05:00
99e7f006f1
T1055.011 - Process Injection: Extra Window Memory Injection ( #2539 )
...
* Updated .gitignore with more files to be ignored
* Working T1055.011 x64 payload. WIP x86
* Fixed a bug executing from Invoke-AtomicTest. x86 WIP
* Update T1055.011.yaml
Removed autogenerated_guid
---------
Co-authored-by: Hare Sudhan <code@0x6c.dev >
2023-10-03 07:05:41 -04:00
3e4e817aa4
Add ExternalPayloads folder for downloaded prerequisites ( #2459 )
...
* use ExternalPayloads folder for prereqs
* git ignore ExternalPayloads folder
* move External folder up one directory
2023-06-14 14:24:03 -06:00
e563055a69
(enhancement) CI validations ( #2419 )
...
* more validations added
* rename bin
* fnmatch fix
2023-05-15 09:36:19 -06:00
e2ae7513d1
cleanup
2023-01-23 03:24:19 -05:00
3000742f7d
reorg terraform files
2022-11-10 10:10:17 -05:00
6841c430cb
poc added
2022-10-13 23:42:40 -04:00
fd47161006
AWS Cloud atomics ( #1457 )
...
* cloud atomics
* adding new platform names
* text and variable updates
* minor
* Update T1136.003.yaml
Co-authored-by: bpatel <bpatel@splunk.com >
Co-authored-by: Jose Enrique Hernandez <josehelps@gmail.com >
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com >
2021-06-24 14:44:35 -06:00
61fab9a7c6
remove markdown files from gitignore ( #1058 )
2020-06-17 19:19:57 -06:00
24549e3866
Convert to Mitre ATT&CK sub-technique schema ( #1056 )
...
* Initial transfer of atomics to MITRE subtechniques
* Add GUIDs back in, attack_technique to string (#1019 )
* technique to string and add guids back in
* technique to string and add guids back in
* technique to string and add guids back in
* technique to string and add guids back in
* Subtechnique transfer T1220-T1546.005 (#1020 )
* Create T1222.001.yaml
* Create T1222.002.yaml
* Create T1505.002.yaml
* Update T1543.003.yaml
* Update AtomicService.cs
* Update T1546.005.yaml
* Delete T1222.yaml
* Update T1482.yaml
* Update T1485.yaml
* Update T1220.yaml
* Update T1489.yaml
* Update T1490.yaml
* Update T1496.yaml
* Update T1505.003.yaml
* Update T1505.yaml
* Update T1518.001.yaml
* Update T1518.yaml
* Update T1529.yaml
* Update T1543.004.yaml
* Update T1546.001.yaml
* Update T1546.002.yaml
* Update T1546.002.yaml
* Update T1546.001.yaml
* Update T1543.004.yaml
* Update T1543.002.yaml
* Update T1543.001.yaml
* Update T1518.001.yaml
* Update T1546.004.yaml
* Update T1546.003.yaml
* Update T1531.yaml
* Update T1222.001.yaml
* Update T1222.002.yaml
* Update T1505.002.yaml
* Update T1505.003.yaml
* Update T1518.001.yaml
* Update T1543.001.yaml
* Update T1546.005.yaml
* Update T1546.004.yaml
* Update T1546.003.yaml
* Update T1546.002.yaml
* Update T1546.001.yaml
* Update T1543.004.yaml
* Update T1543.003.yaml
* Update T1543.002.yaml
* added auto_generated_guid 1220
* added T1222.001 auto_generated_guid
* Update T1222.002.yaml
added auto_generated_guid entries
* Update T1482.yaml
auto_generated_guid added
* Update T1485.yaml
added auto_generated_guids
* Update T1489.yaml
added auto_generated_guids
* Update T1490.yaml
added auto_generated_guids
* Update T1496.yaml
added auto_generated_guid
* Update T1505.002.yaml
added auto_generated_guid from old T1505 same atomic
* Update T1505.003.yaml
added auto_generated_guid from previous atomic 1100
* Delete T1505.yaml
no longer needed, moved to 1505.002
* Update T1518.yaml
added auto_generated_guids
* Update T1529.yaml
added auto_generated_guids
* Update T1531.yaml
added auto_generated_guids
* Update T1543.001.yaml
added auto_generated_guid
* Update T1543.002.yaml
added auto_generated_guid
* Update T1543.004.yaml
added auto_generated_guid
* Update T1546.001.yaml
added auto_generated_guid
* Update T1546.002.yaml
added auto_generated_guid
* Update T1546.003.yaml
* Update T1546.004.yaml
added auto_generated_guid
* Update T1546.005.yaml
added auto_generated_guid
* add guids back in
* fix spacing issue
* fix spacing
* fix spacing
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
* Sub-techniques T1053-T1113 - Updates (#1022 )
* Sub-techniques T1053-T1113 - Updates
Updated techniques for sub-techniques.
* minor fixes
format fixing
* Added GUIDs
- Added GUIDs back
- Fixed typo (T1054)
- Fixed attack_technique from an array to a string
* Sub-technique updates T1546.008 through T1574.011 (#1024 )
* sub technique updates
* sub technique updates
* sub technique updates
* Carrie updates (#1017 )
* updated T1110,12,13
* updated T1114
* updated T1114
* updated T1115
* updated T1119
* updated T1123,24
* updated T1127
* updated T1114
* updated T1127
* updated T1132
* T1134.004
* T1134.004
* updated T1135
* updated T1136
* updated T1137
* updated T1140
* remove depracted T1153
* updated T1176
* updated T1197
* updated T1201
* updated T1202
* updated T1204
* updated T1207
* updated T1216
* updated T1204
* updated T1217
* updated T1218
* updated T1218
* updated T1219
* updated T1218
* attack_technique to string
* Subtechnique transfer (#1025 )
* T1003 review
* T1005 manual review changes
* T1027.002 sub-technique review
* T1027.004 sub-technique review
* T1036 sub-technique review
* T1037 sub-technique review
* T1048 sub-technique review
* YAML bugfixes
* Adding auto-generated GUIDs back to tests
* merging with Mike's PR
* Merging with Carrie's PR
* fix spacing
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
* Subtechnique fix (#1026 )
* add atomic_tests: element
* add atomic_tests: element
* more fixes
* more fixes
* more fixes
* sub technique minor fixes 1 (#1027 )
* fixes
* fixes
* more fixes
* more fixes
* display name fix (#1028 )
* remove some deprecated stuff. reorganize a little (#1031 )
* Gendocs fix (#1033 )
* gendocs updates for subtechniques
* add folders
* ignore auto generated markdown files
* remove tmp files
* add tmp files
* Generate docs from job=validate_atomics_generate_docs branch=subtechnique_transfer
* navigator layer v3.0
* Generate docs from job=validate_atomics_generate_docs branch=subtechnique_transfer
Co-authored-by: Matt Graeber <60448025+mgraeber-rc@users.noreply.github.com >
Co-authored-by: Tsora-Pop <35981510+Tsora-Pop@users.noreply.github.com >
Co-authored-by: Michael Haag <mike@redcanary.com >
Co-authored-by: CircleCI Atomic Red Team doc generator <email>
2020-06-17 12:55:46 -06:00
9b73020cee
add T1122 COM Hijacking leveraging .NET profiler dll ( #969 )
...
* t1122 first blood
* add T1122 COM Hijacking leveraging .NET profiler dll
* update gitignore an cleanup
* a little more clean up :D and gitignores
* remove precopiled objs
2020-05-01 18:36:27 -06:00
57197a9a6f
T1009, T1014, T1055, T1215: Added dependencies ( #958 )
...
Co-authored-by: hypnoticpattern <>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2020-04-28 11:03:53 -06:00
96d882444d
Write test execution details to log file ( #539 )
2019-08-30 12:16:53 -06:00
0bcf6746c1
Add microsite ( #250 )
...
* first cut of microsite pages
* fix a bunch of stuff to clean up look and feel
* Initial checkin.
* add header
* add philosophy and images
* add favicon
2018-06-13 19:33:59 -06:00
2b93d42acf
Fix .gitignore to actually ignore .DS_Store.
...
Also remove .DS_Store from the repository.
2018-06-11 08:06:13 +02:00
3d6198cc99
update git ignore so we dont accidentally check this in
2018-05-11 06:54:19 +02:00
b45069814f
update git ignore so we dont accidentally check this in
2018-05-11 06:50:54 +02:00
8e016a90d2
Add gitignore
2017-11-04 14:37:08 -04:00
Hare Sudhan