security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4,478 Commits 47 Branches 0 Tags
8d9e66adf968dd824d91a005bd6fb052d6cf7ee8
Commit Graph

100 Commits

Author SHA1 Message Date
Atomic Red Team doc generator 7e1529fbca Generated docs from job=generate-docs branch=master [ci skip] 2022-10-03 15:43:49 +00:00
Atomic Red Team GUID generator 5e91e948fc Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-10-03 15:43:42 +00:00
sourabhsharmasourabh d081d1dc33 New Atomic test 29 - iwr download (#2172) 
* New Atomic test 29 - iwr download

iwr or Invoke Web-Request download. Use 'iwr' or "Invoke-WebRequest" -URI argument to download a file from the web. Note: without -URI also works in some versions.

* Update T1105.yaml

* Update T1105.yaml

at 793 added line for elevation required : true, as it was missed to include earlier

* Update T1105.yaml

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-10-03 09:43:01 -06:00
Atomic Red Team doc generator ca93f4bfd9 Generated docs from job=generate-docs branch=master [ci skip] 2022-09-07 11:44:55 +00:00
Carrie Roberts df43a95da6 better prereq (#2116) 
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com>
 2022-09-07 05:44:24 -06:00
Atomic Red Team doc generator 4aec314bf0 Generated docs from job=generate-docs branch=master [ci skip] 2022-08-29 16:24:25 +00:00
frack113 521378f17e Fix prereg test nimgrab (#2100) 2022-08-29 10:23:40 -06:00
Atomic Red Team doc generator 7cf4a7ba78 Generated docs from job=generate-docs branch=master [ci skip] 2022-08-22 16:51:58 +00:00
Kyaw-Pyiyt-Htet-Mikoyan baae936580 Mikoyan dee patch 1 (#2095) 
* Update T1105.yaml

nimgrab.exe from nim programming package for windows can be used to download file.

* Update T1105.yaml

Update on nimgrab.exe execution information

* Update T1105.yaml

update the adjustment of nimgrab.exe block structure

* Update T1105.yaml

error fixed, nimgrab.exe

* Update T1105.yaml

error fixed, nimgrab.exe

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-08-22 10:51:28 -06:00
Atomic Red Team doc generator d8c6b653b4 Generated docs from job=generate-docs branch=master [ci skip] 2022-08-17 21:30:09 +00:00
Atomic Red Team GUID generator bf0c945de8 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-08-17 21:30:01 +00:00
Michael Haag a93030e394 Linux and Windows (#2085) 
* Linux and Windows

* Update T1115.yaml
 2022-08-17 15:29:33 -06:00
Atomic Red Team doc generator 4e0637e706 Generated docs from job=generate-docs branch=master [ci skip] 2022-08-01 16:52:24 +00:00
Atomic Red Team GUID generator e3b3dc6c03 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-08-01 16:52:17 +00:00
Panos Moullotos 4ab943e73b New T1105 test based on open issue (#2060) 
* Create T1105-download-file.vbs

* Added 2 tests to T1105 based on open issue

* Update T1105.yaml

* remove duplicate

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-08-01 10:51:46 -06:00
Atomic Red Team doc generator d63433c2c7 Generated docs from job=generate-docs branch=master [ci skip] 2022-07-25 20:45:40 +00:00
Atomic Red Team GUID generator 7cfc9b3bef Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-07-25 20:45:34 +00:00
Panos Moullotos 2e852f836a Updated T1105.yaml with new certreq test (#2044) 
Inspired by https://lolbas-project.github.io/lolbas/Binaries/Certreq/

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-07-25 14:45:05 -06:00
Atomic Red Team doc generator 819934cc3f Generated docs from job=generate-docs branch=master [ci skip] 2022-06-16 22:47:00 +00:00
Atomic Red Team doc generator a888e0e7c9 Generated docs from job=generate-docs branch=master [ci skip] 2022-05-25 04:12:17 +00:00
Atomic Red Team GUID generator a8f00eb241 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-05-25 04:12:12 +00:00
frack113 af529da1e5 Add lolbin (#1979) 2022-05-24 22:11:43 -06:00
Atomic Red Team doc generator 48b5977afd Generated docs from job=generate-docs branch=master [ci skip] 2022-05-10 20:43:59 +00:00
Atomic Red Team GUID generator 81681bd735 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-05-10 20:43:54 +00:00
frack113 9a3d6d4b5e Add lolbin test (#1933) 
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-05-10 14:43:25 -06:00
Atomic Red Team doc generator 985fc5a85a Generated docs from job=generate-docs branch=master [ci skip] 2022-05-10 14:38:48 +00:00
Atomic Red Team GUID generator a0ca031612 Generate GUIDs from job=generate-docs branch=master [skip ci] 2022-05-10 14:38:43 +00:00
Leo Verlod 7ca06f5892 Adding T1105 Test 21 - MAZE Propagation (#1918) 
* Adding T1105 Test 21 - MAZE Propagation

* Making requested changes to T1105 MAZE Propagation Script

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-05-10 08:38:16 -06:00
David McKennirey 5d7a0e7939 T1105: Update timeout to ping (#1867) 2022-04-14 10:50:25 -06:00
CircleCI Atomic Red Team doc generator 51e66c9ab6 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-29 19:20:49 +00:00
CircleCI Atomic Red Team GUID generator 8863882725 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2022-01-29 19:20:42 +00:00
Jay_darknight 8abff96c87 Added a new test for T1105 - cmdl32 LolBins (#1744) 
* Added a new test for T1105 - cmdl32 LolBins

* Added references

* chaning the bin folder to src based on suggesstion from clr2of8

* deleted bin

* changed the path for input arguments

Co-authored-by: Jayaram Rajamurugan <jrajamurugan@nti.local>
Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2022-01-29 13:20:16 -06:00
CircleCI Atomic Red Team doc generator 8985aaf0f0 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-12-09 18:42:48 +00:00
Carrie Roberts 5bb5878e62 Cleaning up the Cleanup commands (#1685) 
* cleanup fixes

* cleanup fixes

* cleanup fixes
 2021-12-09 11:42:14 -07:00
CircleCI Atomic Red Team doc generator e9f25c654a Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-15 16:09:56 +00:00
CircleCI Atomic Red Team GUID generator 080294af8e Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-11-15 16:09:51 +00:00
Michael Haag df76fb17bd Curl - Upload a file (#1665) 
* T1105 - Curl for Windows

* Update T1105.yaml

* T1105 - Upload with Curl

* Update T1105.yaml

* Removed cleanup
 2021-11-15 09:09:21 -07:00
CircleCI Atomic Red Team doc generator 1bd61011ca Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-10-21 20:42:25 +00:00
CircleCI Atomic Red Team GUID generator 008a484545 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-10-21 20:42:20 +00:00
Michael Haag 5906bbec70 T1105 - Curl for Windows (#1653) 
* T1105 - Curl for Windows

* Update T1105.yaml

* ignore cleanup errors

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2021-10-21 14:41:48 -06:00
CircleCI Atomic Red Team doc generator ba0b1a3c35 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-09-09 18:02:46 +00:00
CircleCI Atomic Red Team GUID generator 356a8bbe88 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-09-09 18:02:40 +00:00
Brian Thacker 6d46517d6f T1105 add test download with imewdbld (#1621) 
* Add test "Download a file with IMEWDBLD.exe"

IMEWDBLD.exe can be used to download files from third party websites. This will throw an error for an invalid dictionary but the file will still be downloaded.
Commands to execute this activity and cleanup commands added.
Cleanup commands call on cmd.exe because PowerShell by default would not remove those files.
Disclosed by https://twitter.com/notwhickey
https://twitter.com/notwhickey/status/136749340683504026

* Update T1105.yaml

fixed typo test 17

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2021-09-09 12:02:26 -06:00
CircleCI Atomic Red Team doc generator bc21f59ff0 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-09-04 00:21:31 +00:00
Josh Rickard 1513717eb2 Updating atomics to conform to standard (#1619) 
* Updated format of input_argument types for Url

* Updated type for input_arguments to Url (missed)

* Updating Path type for input_arguments

* Updated String type for input_arguments

* Missed a few Strings and Url types

* Updated default values for input_arguments to align with their types

* Updated Integer type for input_arguments

* Updated formatting and spacing of atomics
 2021-09-03 18:20:46 -06:00
CircleCI Atomic Red Team doc generator 6bd522644a Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-07-28 22:27:19 +00:00
CircleCI Atomic Red Team GUID generator fa11adb617 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-07-28 22:27:13 +00:00
lexiechong 63d97dad98 Update T1105 to include file download using finger (#1578) 2021-07-28 16:26:54 -06:00
CircleCI Atomic Red Team doc generator 5956ac532b Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] 2021-07-27 14:42:34 +00:00
Adam Mashinchi e8899b4df6 Additional PowerShell Download in T1105 2021-07-26 13:00:42 -07:00