security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,302 Commits 47 Branches 0 Tags
d22b91cde8f83d9cfdf8a825fedd4fa172959c68
Commit Graph

5302 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Hare Sudhan d22b91cde8 Merge branch 'master' into am_args 2023-06-10 01:15:53 -04:00
Atomic Red Team doc generator 49e9c5e04e Generated docs from job=generate-docs branch=master [ci skip] 2023-06-09 22:36:42 +00:00
Bhavin Patel d025cb21db Merge pull request #2451 from cnotin/pr-remove-pfx-export 
No need to export the PFX to get the public certificate, so removed it
 2023-06-09 15:35:48 -07:00
Bhavin Patel 0d9659b915 Merge branch 'master' into pr-remove-pfx-export 2023-06-09 15:34:37 -07:00
Alex M 546ed5ea1e backout changes to log -f 2023-06-09 13:05:25 -07:00
Hare Sudhan 43ee8b0926 Merge branch 'master' into am_args 2023-06-09 01:22:19 -04:00
Atomic Red Team doc generator 05fbaf32c9 Generated docs from job=generate-docs branch=master [ci skip] 2023-06-09 05:20:32 +00:00
Atomic Red Team GUID generator d0660c50b6 Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-06-09 05:20:12 +00:00
Hare Sudhan f1d348c75f Merge branch 'master' into am_args 2023-06-09 01:20:06 -04:00
Hare Sudhan 0884a9ea9e Merge pull request #2455 from traceflow/master 
adding new test in T1176 - Load unpacked extension with command line
 2023-06-09 01:19:18 -04:00
Hare Sudhan d8580af708 Fix indentation 2023-06-09 01:15:22 -04:00
Hare Sudhan 5c0e27d906 Merge branch 'master' into am_args 2023-06-09 00:40:10 -04:00
traceflow dab845d335 adding new test in T1176 - Load unpacked extension with command line 2023-06-08 19:37:24 +00:00
traceflow 5428e3bf1e adding new test in T1176 - Load unpacked extension with command line 2023-06-06 18:55:08 +00:00
traceflow cee7f2ab5e adding new test in T1176 - Load unpacked extension with command line 2023-06-06 18:51:22 +00:00
traceflow aa3e4cea3e adding new test in T1176 - Load unpacked extension with command line 2023-06-06 17:48:05 +00:00
Alex M a7cc448291 arg types lowercase string 2023-06-05 20:32:06 -07:00
Atomic Red Team doc generator 4a36531a81 Generated docs from job=generate-docs branch=master [ci skip] 2023-06-05 20:03:18 +00:00
Bhavin Patel 0d6f954bf4 Merge pull request #2437 from cyberbuff/t1078_tf 
Update T1078.004
 2023-06-05 13:02:18 -07:00
Bhavin Patel 880da0b732 Merge branch 'master' into t1078_tf 2023-06-05 13:01:15 -07:00
Atomic Red Team doc generator 4fc3b697d1 Generated docs from job=generate-docs branch=master [ci skip] 2023-06-05 19:58:44 +00:00
Atomic Red Team GUID generator 9743e496f6 Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-06-05 19:58:27 +00:00
Bhavin Patel e5accaadb2 Merge pull request #2432 from blueteam0ps/patch-10 
Update T1562.008.yaml
 2023-06-05 12:57:40 -07:00
Bhavin Patel 8d54f69b37 Update T1562.008.yaml 2023-06-05 12:56:36 -07:00
Alex M 40fe1f7cf7 change defaults to system_log_name2 and 3 2023-06-04 13:25:12 -07:00
Alex M 211101b319 fix elevation required on a couple 2023-06-04 13:16:43 -07:00
Alex M 2f0b0d79c1 fix default for system.log in 989cc1b1 2023-06-04 12:56:50 -07:00
Alex M a0e412b702 fix syntax 2023-06-04 09:10:55 -07:00
Alex M 96d3881149 parameterize T1070.002 tests for optional non-destructive runs 2023-06-04 09:01:22 -07:00
BlueTeamOps 31c61d70ef Merge branch 'redcanaryco:master' into patch-10 2023-06-03 23:04:37 +10:00
Clément Notin f5ce8af9a4 No need to export the PFX to get the public certificate, so removed it 2023-06-02 17:28:23 +02:00
Atomic Red Team doc generator f51b61321b Generated docs from job=generate-docs branch=master [ci skip] 2023-06-02 01:16:22 +00:00
Atomic Red Team GUID generator 992ce5a4ce Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-06-02 01:16:02 +00:00
Jose Enrique Hernandez bee33f444a Merge pull request #2369 from iai-rsa/T1562.004 
update T1562.004 with more commands
 2023-06-01 21:15:13 -04:00
Jose Enrique Hernandez 1663919f61 removed unecessary field 2023-06-01 21:11:47 -04:00
Jose Enrique Hernandez be7294e5bc removed extra guid field 2023-06-01 21:06:22 -04:00
Jose Enrique Hernandez 6e1d414a6e Merge branch 'master' into T1562.004 2023-06-01 21:03:56 -04:00
Atomic Red Team doc generator 215898b25a Generated docs from job=generate-docs branch=master [ci skip] 2023-06-01 20:25:44 +00:00
Atomic Red Team GUID generator 53bb17be7c Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-06-01 20:25:27 +00:00
Hare Sudhan 22150beff8 Merge pull request #2427 from aranhams/patch-1 
Add new atomic test to T1140.yaml
 2023-06-01 16:24:41 -04:00
Hare Sudhan 5b570a0f4d Merge branch 'master' into patch-1 2023-06-01 13:53:52 -04:00
Atomic Red Team doc generator 210485a6d3 Generated docs from job=generate-docs branch=master [ci skip] 2023-05-31 21:17:38 +00:00
Carrie Roberts af9378c9f3 update executor (#2444) 
* update executor

* Update T1016.yaml

---------

Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com>
 2023-05-31 15:16:42 -06:00
Atomic Red Team doc generator cb29aa596f Generated docs from job=generate-docs branch=master [ci skip] 2023-05-31 21:08:41 +00:00
Carrie Roberts 35c539e776 move PS1 to src (#2443) 
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com>
 2023-05-31 15:07:35 -06:00
Atomic Red Team doc generator 03e04d3994 Generated docs from job=generate-docs branch=master [ci skip] 2023-05-31 21:04:38 +00:00
Carrie Roberts bf2a19d672 handle null value in prereq (#2442) 
Co-authored-by: Michael Haag <5632822+MHaggis@users.noreply.github.com>
 2023-05-31 15:03:42 -06:00
Atomic Red Team doc generator a95bc62be4 Generated docs from job=generate-docs branch=master [ci skip] 2023-05-31 20:57:54 +00:00
Atomic Red Team GUID generator d7191cd8b1 Generate GUIDs from job=generate-docs branch=master [skip ci] 2023-05-31 20:57:30 +00:00
KillrBunn3 f19429af8c New test under T1027: Executing zipped JavaScript using WScript (#2447) 
* Update T1027.yaml

This test is intended to closely emulate Gootloader's patterns of execution - launching a js file through wscript after being unpacked from a .zip.

* leave prereq files in place

---------

Co-authored-by: Carrie Roberts <clr2of8@gmail.com>
 2023-05-31 15:56:36 -05:00