8c45fa1a75
Merge pull request #2332 from D4rkCiph3r/patch-1
...
Added new test case - T1027.001
2023-03-22 18:29:43 -04:00
4fbe3256d8
Merge branch 'master' into patch-1
2023-03-22 18:28:49 -04:00
e9ea0880cb
Generated docs from job=generate-docs branch=master [ci skip]
2023-03-20 22:21:10 +00:00
8c4cb3229c
Generate GUIDs from job=generate-docs branch=master [skip ci]
2023-03-20 22:20:55 +00:00
74f69e9797
Added test "Discover Specific Process - tasklist" ( #2373 )
...
* Added test "Discover Specific Process - tasklist"
This test is meant to simulate process discovery activity that targets specific process names. The default process here is lsass to simulate what is seen in https://www.whiteoaksecurity.com/blog/attacks-defenses-dumping-lsass-no-mimikatz/ .
* Update T1057.yaml
removed guid
---------
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com >
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2023-03-20 16:20:28 -06:00
41355dea4e
Generated docs from job=generate-docs branch=master [ci skip]
2023-03-20 19:39:02 +00:00
8a83c877bb
Generate GUIDs from job=generate-docs branch=master [skip ci]
2023-03-20 19:38:46 +00:00
29063f5306
Added RemCom to execute a command on a remote host ( #2380 )
...
* Added RemCom to execute a command on a remote host
* Update T1569.002.yaml
---------
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com >
2023-03-20 13:38:17 -06:00
62307f5d7b
Generated docs from job=generate-docs branch=master [ci skip]
2023-03-20 15:12:10 +00:00
f0a94f763b
Update T1564.yaml ( #2379 )
2023-03-20 09:07:47 -06:00
9171dda6f3
Merge branch 'master' into patch-1
2023-03-18 08:27:30 +05:30
4b2ddac423
Update T1027.001.yaml
...
Updated the test descriptions for atomic test #1 and #2 .
2023-03-18 08:22:10 +05:30
c967af1060
Generated docs from job=generate-docs branch=master [ci skip]
2023-03-17 20:40:08 +00:00
cc36afc188
Generate GUIDs from job=generate-docs branch=master [skip ci]
2023-03-17 20:39:52 +00:00
0496bcb379
Merge pull request #2362 from m4nbat/gk-atomic-red-team-T1531-Account-Deletion
...
Gk atomic red team t1531 account deletion
2023-03-17 15:38:50 -05:00
bd9dde39e2
Merge branch 'master' into gk-atomic-red-team-T1531-Account-Deletion
2023-03-17 15:37:18 -05:00
8ec8bb8d24
Generated docs from job=generate-docs branch=master [ci skip]
2023-03-17 20:01:43 +00:00
b46cedacdd
Merge pull request #2374 from redcanaryco/T1033-Cleanup-Fix
...
Fix-Cleanup-Command
2023-03-17 16:00:11 -04:00
198b2c3fcc
Merge branch 'master' into T1033-Cleanup-Fix
2023-03-17 15:58:40 -04:00
aaf94f9b37
Generated docs from job=generate-docs branch=master [ci skip]
2023-03-17 19:58:12 +00:00
d9ad3781d6
Generate GUIDs from job=generate-docs branch=master [skip ci]
2023-03-17 19:57:57 +00:00
db6e360cc3
Merge branch 'master' into T1033-Cleanup-Fix
2023-03-17 15:57:18 -04:00
8e27dbe2b1
Merge pull request #2365 from iai-rsa/T1012
...
update T1012 with more commands
2023-03-17 15:56:57 -04:00
ae0f02b079
Merge branch 'master' into T1012
2023-03-17 15:55:29 -04:00
26aa690d68
Update T1012.yaml
...
fix guid
2023-03-17 13:53:52 -06:00
96d11e0592
Generated docs from job=generate-docs branch=master [ci skip]
2023-03-17 19:48:14 +00:00
07deaa02b1
Generate GUIDs from job=generate-docs branch=master [skip ci]
2023-03-17 19:47:58 +00:00
7356f2eb55
Merge pull request #2336 from biot-2131/T1110.001_II
...
T1110.001 updated two tests
2023-03-17 15:46:56 -04:00
278a7d5a6d
Merge branch 'master' into T1110.001_II
2023-03-17 15:43:41 -04:00
8815d0821f
Merge branch 'master' into T1012
2023-03-17 15:41:46 -04:00
9c6e2bae53
Merge branch 'master' into T1033-Cleanup-Fix
2023-03-17 13:28:25 -06:00
27770715fb
Generated docs from job=generate-docs branch=master [ci skip]
2023-03-17 19:20:24 +00:00
7f8676c6b9
Merge pull request #2364 from cnotin/pr-fix-upn-confusion
...
T098: accept UserPrincipalName for the "user_principal_name" argument
2023-03-17 14:18:53 -05:00
d87f86a4d6
Merge branch 'master' into pr-fix-upn-confusion
2023-03-17 14:11:42 -05:00
c3675964f8
Generated docs from job=generate-docs branch=master [ci skip]
2023-03-17 19:00:35 +00:00
fa1e708682
Generate GUIDs from job=generate-docs branch=master [skip ci]
2023-03-17 19:00:19 +00:00
0f79569e2d
Merge pull request #2321 from D4rkCiph3r/T1078.003
...
Added 3 new tests T1078.003 - macOS
2023-03-17 14:59:16 -04:00
29aa3f07bf
Merge branch 'master' into T1078.003
2023-03-17 12:38:36 -04:00
4ca92ab6b6
Merge branch 'master' into patch-1
2023-03-17 11:29:18 -04:00
67afbfe15c
Fix-Cleanup-Command
...
Fix the cleanup command to pass the output_path input argument instead of being hardcoded.
2023-03-17 06:53:35 -07:00
171d9d5e72
Merge branch 'master' into gk-atomic-red-team-T1531-Account-Deletion
2023-03-17 08:34:04 +00:00
8025353c3d
Generated docs from job=generate-docs branch=master [ci skip]
2023-03-16 23:41:15 +00:00
d62766548b
Generate GUIDs from job=generate-docs branch=master [skip ci]
2023-03-16 23:40:55 +00:00
73a144caa6
T1033-whoami-simplification ( #2370 )
...
* Variation on system/user discovery
Slight variation on Test 1: System Owner/User Discovery. This is meant to be a stripped down version.
* Update T1033.yaml
---------
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2023-03-16 17:39:46 -06:00
077f0ac288
Generated docs from job=generate-docs branch=master [ci skip]
2023-03-16 23:36:29 +00:00
824eb46e08
Generate GUIDs from job=generate-docs branch=master [skip ci]
2023-03-16 23:36:12 +00:00
011e512d29
add Cobalt Strike named pipe atomics ( #2372 )
2023-03-16 17:35:10 -06:00
809970561a
Generated docs from job=generate-docs branch=master [ci skip]
2023-03-16 15:51:28 +00:00
9fed5b2315
remove unused input arg ( #2368 )
...
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com >
2023-03-16 09:50:15 -06:00
7db6b229bd
Generated docs from job=generate-docs branch=master [ci skip]
2023-03-16 15:48:11 +00:00
Jose Enrique Hernandez