da6c2b191b
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-12 23:32:41 +00:00
9b66e99946
Update T1082.yaml ( #1962 )
...
* Update T1082.yaml
PowerSharpPack - Sharpup checking common Privesc vectors technique via function of WinPwn
* Update T1082.yaml
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-05-12 17:32:15 -06:00
bcd4726426
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-12 22:54:51 +00:00
e6e2b750d4
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-12 22:54:46 +00:00
04edc6cdc1
Update T1562.001.yaml ( #1956 )
...
Kill the event log services for stealth via function of WinPwn
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-05-12 16:54:22 -06:00
d2501a2832
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-12 22:48:37 +00:00
c288ca084b
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-12 22:48:32 +00:00
70c82b2c4a
Update T1082.yaml ( #1958 )
...
PowerSharpPack - Watson searching for missing windows patches technique via function of WinPwn
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-05-12 16:48:10 -06:00
90fab673fc
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-12 22:47:25 +00:00
6b768e8e12
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-12 22:47:20 +00:00
2fd693ca91
Update T1187.yaml ( #1960 )
...
Added PowerSharpPack - Retrieving NTLM Hashes without Touching LSASS technique via function of WinPwn
2022-05-12 16:46:53 -06:00
e7611b652c
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-12 22:44:51 +00:00
1a55e429f4
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-12 22:44:46 +00:00
e7d9f85159
T1620 - Reflective Code Loading ( #1959 )
...
* Create T1620.yaml
* Update T1620.yaml
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-05-12 16:44:05 -06:00
0a82610b35
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-12 22:15:17 +00:00
05cc0bcec9
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-12 22:15:12 +00:00
8508499839
T1106 ( #1944 )
...
Co-authored-by: Toua Lor <tlor@nti.local >
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-05-12 16:14:44 -06:00
b0a71062ef
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-12 22:12:16 +00:00
3e9f3e5c6a
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-12 22:12:11 +00:00
7f1a2652a5
T1078.003 ( #1942 )
...
Co-authored-by: Toua Lor <tlor@nti.local >
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-05-12 16:10:23 -06:00
a971545b2a
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-12 00:45:32 +00:00
f45cfaa33a
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-12 00:45:27 +00:00
ff1f81472c
WinPwn Bypass UAC ( #1941 )
...
Co-authored-by: Toua Lor <tlor@nti.local >
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-05-11 18:45:03 -06:00
a9530210e6
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-10 20:50:31 +00:00
2ff5833042
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-10 20:50:25 +00:00
f2314c292d
Added discovery atomic to collect general domain information including ( #1940 )
...
users. Sourced from WinPwn script.
**Details**
https://github.com/S3cur3Th1sSh1t/WinPwn/
**Testing**
Tested on Windows 10 VM
Co-authored-by: Daniel White <d0w019h@homeoffice.wal-mart.com >
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-05-10 14:49:59 -06:00
5e6fa6feda
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-10 20:45:56 +00:00
870f1a51d8
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-10 20:45:52 +00:00
d622ff63b0
Added printercheck test sourced from WinPwn script. ( #1939 )
...
**Details**
https://github.com/S3cur3Th1sSh1t/WinPwn/
**Testing**
Tested on Windows 10 VM
Co-authored-by: Daniel White <d0w019h@homeoffice.wal-mart.com >
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-05-10 14:45:30 -06:00
48b5977afd
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-10 20:43:59 +00:00
81681bd735
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-10 20:43:54 +00:00
9a3d6d4b5e
Add lolbin test ( #1933 )
...
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-05-10 14:43:25 -06:00
03f3e8392a
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-10 16:36:40 +00:00
adb646ae82
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-10 16:36:35 +00:00
7a915d3af1
Added network share enumeration test sourced from WinPwn script. ( #1938 )
...
**Details**
https://github.com/S3cur3Th1sSh1t/WinPwn/
**Testing**
Tested on Windows 10 VM
Co-authored-by: Daniel White <d0w019h@homeoffice.wal-mart.com >
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-05-10 10:36:08 -06:00
619f364ed4
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-10 16:34:44 +00:00
249c34e97a
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-10 16:34:39 +00:00
c2527d32f1
Added BrowserPwn test sourced from WinPwn script. ( #1937 )
...
**Details**
https://github.com/S3cur3Th1sSh1t/WinPwn/
**Testing**
Tested on Windows 10 VM
Co-authored-by: Daniel White <d0w019h@homeoffice.wal-mart.com >
2022-05-10 10:34:11 -06:00
7a85db6711
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-10 14:42:00 +00:00
30a8f42824
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-10 14:41:55 +00:00
852fb8fda7
Adding T1555.003 Test 10 - Stage Popular Credential Files for Exfiltration ( #1921 )
...
* Adding T1555.003 Test 10 - Stage Popular Credential Files for Exfiltration
* make hyperlinks via markdown syntax
* Making requested changes to T1555.003 Test 10
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-05-10 08:41:27 -06:00
985fc5a85a
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-10 14:38:48 +00:00
a0ca031612
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-10 14:38:43 +00:00
7ca06f5892
Adding T1105 Test 21 - MAZE Propagation ( #1918 )
...
* Adding T1105 Test 21 - MAZE Propagation
* Making requested changes to T1105 MAZE Propagation Script
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-05-10 08:38:16 -06:00
a304d713a3
Update CODE_OF_CONDUCT.md ( #1934 )
...
Remove Slack from CoC contacts.
2022-05-10 08:31:53 -06:00
8283dad675
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-08 02:06:14 +00:00
17193e89b9
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-08 02:06:09 +00:00
2a482919b8
Added GPO Discovery tests sourced from WinPwn script. ( #1931 )
...
Details:
https://github.com/S3cur3Th1sSh1t/WinPwn/
Testing:
Tested on Windows 10 VM
Co-authored-by: dwhite9 <d0w019h@wal-mart.com >
Co-authored-by: Carrie Roberts <clr2of8@gmail.com >
2022-05-07 20:05:39 -06:00
5289ef6887
Generated docs from job=generate-docs branch=master [ci skip]
2022-05-08 02:04:19 +00:00
e39bbd9a3d
Generate GUIDs from job=generate-docs branch=master [skip ci]
2022-05-08 02:04:13 +00:00
Atomic Red Team GUID generator