security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
602 Commits 47 Branches 0 Tags
fc495c1192fda69bd1ed33a13d7590ef055eee09
Commit Graph

171 Commits

Author SHA1 Message Date
benjaminkoffel c4560e01ff Update bitsadmin.md with powershell equivalent. 2018-04-22 18:38:47 +10:00
Olaf Hartong 78db0eb25f Added Attack Navigator layer 2018-04-18 15:14:58 +02:00
Olaf Hartong 5b38e14206 Added Attack Navigator layer 2018-04-18 15:12:30 +02:00
caseysmithrc f409af6dfa Merge pull request #117 from api0cradle/master 
Created T1191 and T1183, added technique to T1060
 2018-04-17 04:12:29 -06:00
api0cradle 92ab19d773 Created T1191 and T1183, added technique to T1060 2018-04-17 11:58:38 +02:00
Brian Beyer 55d9b37b22 start yamlizing a bunch of techniques 2018-04-17 00:13:12 -07:00
Ye Yint @ Rolan 7c58727dff updated link for Mitre April update 2018-04-16 16:19:46 +08:00
Ye Yint @ Rolan 7ffbd63d28 updated link for April update 2018-04-16 16:08:36 +08:00
Ye Yint @ Rolan 4e228bdf9d updated link for April update 2018-04-16 16:05:34 +08:00
Ye Yint @ Rolan 253995967d updated link for April update 2018-04-16 16:05:01 +08:00
Ye Yint @ Rolan 960f294333 changed as april update 2018-04-16 15:22:25 +08:00
Ye Yint @ Rolan d7d25a182c added Initial access column 2018-04-16 14:26:35 +08:00
Lee Holmes 9ddffd1b17 Adding starter implementation of Atomic Red Team Automation Framework, as well as Atomic Red Team testing framework 2018-04-15 17:54:49 -07:00
Rahmat Nurfauzi ec5af82e6e Update Disabling_Security_Tools.md 2018-04-13 20:29:22 +07:00
caseysmithrc 165607d242 Merge pull request #113 from redcanaryco/03082018 
How to Contrib and Lateral Movement
 2018-04-10 12:39:03 -06:00
Michael Haag 0bfdcfa480 Lateral Movement 
+ PtH
+ RDP
 2018-04-06 08:21:28 -04:00
caseysmithrc eced20df46 Merge pull request #108 from llandeilocymro/patch-1 
Create psexec
 2018-03-26 08:39:57 -06:00
llandeilocymro 5fd733a3ed psexec for lateral movement 2018-03-26 14:44:21 +01:00
Michael Haag e10be818ef Update Credential_Dumping.md 2018-03-21 14:13:10 -04:00
llandeilocymro c3bda067e2 cred dumping using the registry 2018-03-16 14:24:17 +00:00
llandeilocymro 1b3361896f Create psexec 2018-03-16 14:00:33 +00:00
caseysmithrc c5ed6a89f9 Update AtomicRedTeam.sct 2018-03-13 14:11:24 -06:00
Michael Haag 27cb5a75c6 Fix 
updated
 2018-03-08 14:28:13 -06:00
Michael Haag 8ba1dc8a19 Technique Adds 
Private Keys
- Find them

DDE
- Reference: https://sensepost.com/blog/2017/macro-less-code-exec-in-msword/

Data Staged
 2018-03-08 14:26:18 -06:00
Michael Haag a6134b19c0 Techniques and Readme 
Technique: Hidden Files and Directories

Technique: Logon Scripts
- Source: https://github.com/NextronSystems/APTSimulator/blob/1c9048e834f0adabd18c8871d587fda42315575b/test-sets/persistence/userinit-mpr-logonscript.bat

Readme updates
 2018-03-08 08:11:24 -06:00
caseysmithrc d58a87f670 Merge pull request #91 from danbourke/browser_extension 
Browser extension
 2018-02-26 08:23:51 -07:00
caseysmithrc c3d8a53edf Merge pull request #90 from infosecn1nja/patch-6 
Update README.md
 2018-02-26 08:20:56 -07:00
Dan Bourke 3e4ba89cf4 adding actually published extension details 2018-02-26 16:26:56 +11:00
Dan Bourke 24412945ce add instructions for Firefox 2018-02-26 15:16:12 +11:00
Dan Bourke f5c852b834 add windows browser extension docs and payload 2018-02-26 13:14:07 +11:00
rahmatnurfauzi 31a7a268f1 Update README.md 2018-02-25 17:04:36 +07:00
rahmatnurfauzi 82f4f6078b Create Disabling_Security_Tools.md 2018-02-25 17:01:31 +07:00
Dan Bourke d1eaf4454d resolves #72 2018-02-13 14:46:47 +11:00
caseysmithrc af7be36230 Update Payload 2018-02-11 21:19:46 -07:00
Matthew Green ece7cf1537 Add_remote_task 
Couple of additional inputs for testing remote task creation
 2018-02-06 16:05:23 +11:00
Michael Haag 5e9b720ecf Windows Matrix 
Added bitsadmin and cleanup
 2018-01-16 11:51:16 -07:00
Michael Haag a5d7e40120 Mshta Add 2018-01-16 10:22:36 -07:00
Michael Haag 94f729c684 Merge branch 'master' into Haag 2018-01-16 10:22:25 -07:00
caseysmithrc 4c01f9eca6 mshta T1170 2018-01-16 10:19:15 -07:00
Michael Haag 382d6313a3 Windows Matrix Update 
Windows Matrix update
+ also fixed Dir names/paths
 2018-01-16 10:10:52 -07:00
Michael Haag 1cf1cdd279 Reactor Chain Reaction 
Chain Reaction - Reactor
 2018-01-16 08:59:22 -07:00
caseysmithrc 3ac9834f38 mshta 2018-01-16 08:56:26 -07:00
caseysmithrc 1b087c7e2a Update Program.cs 2018-01-13 12:28:33 -07:00
atmathis 89513673d7 Linux Discovery 
* Added several Linux Discovery tactics and updated grid
 2018-01-11 16:56:58 -05:00
atmathis 4cd236a438 Adding tree command to File and Directory Discovery 
Added the “tree” command, which is useful at showing a “graphical”
hierarchy of files and folders on a drive.
 2018-01-11 15:33:27 -05:00
Michael Haag 1499c4be3f Fixes 
Updated and fixed some mistakes over time.
 2018-01-11 11:00:46 -07:00
rahmatnurfauzi 9c8137a56a Update File_and_Directory_Discovery.md 
Adding more commands taken from Waterbug/Turla
 2018-01-11 17:12:09 +07:00
Michael Haag 29cf36761a Mac Discovery 
Added many techniques to Discovery for Mac
 2018-01-09 14:53:47 -07:00
Michael Haag 976b27a683 Merge branch 'master' into Haag 2018-01-02 14:54:44 -07:00
Michael Haag 6dea66bdec Defense Evastion 
+ Added method to stop event logs
 2018-01-02 14:54:21 -07:00