atomic-red-team

security-tools/atomic-red-team

Fork 0

Commit Graph

Select branches

Hide Pull Requests

APT28

AutoSUID_linux

ProcessHolllowingT1093

T1016_fix

T1218.005-powershell-without-network-call

T1553.001_fix

add_codeowners

admin-guide

atoms

attack-v19-migration

cloudlfare-tunnel

clr2of8-patch-14

clr2of8-patch-16

clr2of8-patch-3

clr2of8-patch-32

clr2of8-patch-35

clr2of8-patch-43

clr2of8-patch-44

clr2of8-patch-8

cyberbuff-patch-2

dependabot/pip/hypothesis-6.152.4

dependabot/pip/pydantic-2.13.3

dependabot/pip/typer-0.25.1

external_payloads

fix_T1562.001

fix_attack_nav

insecure-curl

io-update

issue_template_fix

linpeas_linux

markdown_changes

master

npm_simulate

oscd

pre-commit

python_conversion

remove-unused-static-dir

remove_bin

remove_ruby

remove_users_launch_daemon

revert-1530-adding_comments_to_navigator

sysmon_fix

t1547008

testest

update-PSDocs

use-basic-parsing

yamlfix

8aedc6cdd9 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-03-09 21:03:01 +00:00
4e7a2ed599 fix prereq for screenshot test (#1805) Carrie Roberts 2022-03-09 14:02:31 -07:00
82df99e7c8 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-03-09 16:16:04 +00:00
455cd5837e Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-03-09 16:15:58 +00:00
5148b9db57 Adding T1003.007 Test 3 - MimiPenguin Usage (#1804) Leo Verlod 2022-03-09 10:15:17 -06:00
af719c41d2 udpated azure eventhub deletion scenario Araveti Esanya Reddy 2022-03-08 17:57:22 +05:30
6052b5118a Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-03-08 01:33:09 +00:00
42dd141032 Fixing Blackbyte Cleanup Commands (#1802) SecWilson 2022-03-07 19:32:31 -06:00
9186e32eb2 Merge branch 'master' into master Carrie Roberts 2022-03-07 11:35:13 -06:00
682d8d732b Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-03-07 17:34:07 +00:00
03c3400af9 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-03-07 17:34:02 +00:00
43fa5fb8a0 Blackbyte privilege escalation via Powershell (#1796) SecWilson 2022-03-07 11:33:31 -06:00
7dd9d481b5 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-03-07 17:18:44 +00:00
a38b68f067 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-03-07 17:18:39 +00:00
5388982089 Adding T1059.003 Test 4 - BlackByte Print Bombing (#1799) Leo Verlod 2022-03-07 11:18:20 -06:00
c81858120b Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-03-07 16:39:15 +00:00
999d18a36d T1059.005 Fix Cleanup and Prereq (#1798) lucasRiley 2022-03-07 10:38:41 -06:00
54f98b9930 Added one more newline :) WojciechLesicki 2022-03-06 19:15:00 +01:00
eb50e5b1e0 Adding new lines WojciechLesicki 2022-03-06 18:59:52 +01:00
2be981e92d I added another atomic related to adding permission to the application in AzureAD. WojciechLesicki 2022-03-06 18:49:31 +01:00
a3717a8c52 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-03-04 04:34:08 +00:00
b355887a3c Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-03-04 04:34:02 +00:00
4ace9f41d2 Update T1036.005.yaml (#1795) Adam Mashinchi 2022-03-03 20:33:27 -08:00
6b9b55ff88 Automated o365 Exchange Audit Log disabled scenario Araveti Esanya Reddy 2022-03-03 16:27:56 +05:30
0e616b34b3 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-03-02 22:00:09 +00:00
28e7237bc1 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-03-02 22:00:03 +00:00
b62ba2e548 Atomic that mimics recent Qakbot behavior (#1793) SecWilson 2022-03-02 15:59:28 -06:00
9d17172d5b Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-03-02 20:37:37 +00:00
150d0db325 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-03-02 20:37:30 +00:00
a24baaf6da Adding T1217 Test 8 - List Safari Bookmarks (#1794) Leo Verlod 2022-03-02 14:36:51 -06:00
021449e282 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-28 19:20:26 +00:00
a1f4a9b8e2 move uacme.zip into RC repo (#1790) Carrie Roberts 2022-02-28 13:19:52 -06:00
e6dcefa095 Bump nokogiri from 1.12.5 to 1.13.3 (#1791) dependabot[bot] 2022-02-26 14:58:50 -06:00
74bdf86845 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-24 21:32:47 +00:00
3ebf9c41ff Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-24 21:32:42 +00:00
c01fece41f Adding T1090.003 Test 4 - Tor Proxy Usage on MacOS (#1789) Leo Verlod 2022-02-24 15:32:16 -06:00
1693f83068 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-22 23:58:21 +00:00
66ecac79c7 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-22 23:58:16 +00:00
285db746a7 Initial creation of BlackByte Ransomware Registry Changes atomic (#1787) BigPint 2022-02-22 17:57:54 -06:00
021fe46502 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-22 15:39:03 +00:00
319908bbc5 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-22 15:38:58 +00:00
a50772cdf6 Adding T1090.003 Test 3 - Tor Usage on Debian/Ubuntu (#1786) Leo Verlod 2022-02-22 09:38:30 -06:00
6bacc32286 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-21 17:35:33 +00:00
79ff4f08bc Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-21 17:35:27 +00:00
771a4fba70 Sigma sysmon_susp_mic_cam_access (#1785) $frack113$ frack113 2022-02-21 18:34:57 +01:00
2f802d60e7 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-18 18:00:32 +00:00
2a1fa2498c Merge pull request #1784 from clr2of8/giturl Bhavin Patel 2022-02-18 09:59:58 -08:00
daa211f444 github perm url Carrie Roberts 2022-02-17 15:56:26 -07:00
a917a6fe3e Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-17 21:58:24 +00:00
fad941ace9 update script link (#1783) Carrie Roberts 2022-02-17 15:57:50 -06:00
5b25ad7bc6 minnor updates linpeas_linux patel-bhavin 2022-02-17 13:20:14 -08:00
1259433119 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-17 18:55:02 +00:00
ef2792b098 T1046 2 fix prerequisites (#1781) Eloy 2022-02-17 19:54:29 +01:00
89ff9a817f Create T1003.005.yaml (#1780) IntelScott 2022-02-17 12:54:23 -05:00
53a3876091 new test for linpeas patel-bhavin 2022-02-16 16:50:47 -08:00
822dcbdb0e Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-15 20:23:40 +00:00
1bdc7b2855 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-15 20:23:35 +00:00
a4ef8ea382 DiskShadow Execution of script (#1778) Lou Stella 2022-02-15 14:23:09 -06:00
cb88319f98 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-15 13:56:29 +00:00
eed223eecd Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-15 13:56:23 +00:00
391c790aa4 Adding T1090.003 Test 1 - Tor Usage (Windows) (#1779) Leo Verlod 2022-02-15 07:55:54 -06:00
1792b93448 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-15 13:15:07 +00:00
284f07af70 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-15 13:15:02 +00:00
a3ead89e7c Psiphon (#1771) CyberBilly7 2022-02-15 07:14:43 -06:00
f01c461021 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-14 19:20:25 +00:00
2a77160edf T1546.004: changes default command, adds cleanup command (#1777) glallen 2022-02-14 14:19:38 -05:00
40da3cb699 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-12 20:02:51 +00:00
8ef1fbdcf9 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-12 20:02:45 +00:00
cd6ed162eb Add T1564.006 Virtualbox (#1775) $frack113$ frack113 2022-02-12 21:02:22 +01:00
b9445cf19e Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-10 14:40:10 +00:00
a83e73fbe4 adds prereq for lsof/T1087.001, fixes other broken prereq cmds (#1774) glallen 2022-02-10 09:39:32 -05:00
5f5b2d23d5 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-09 16:57:44 +00:00
ac50cbfaae Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-09 16:57:39 +00:00
c07e64a941 Rundll32 with Control_RunDLL (#1773) Sittikorn S 2022-02-09 23:57:19 +07:00
4f16aad6f9 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-09 15:14:59 +00:00
0c6399feb1 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-09 15:14:54 +00:00
54d59022c8 New technique "Create Volume Shadow Copy remotely (WMI) with esentutl" (#1772) Clément Notin 2022-02-09 16:14:25 +01:00
9e92f29f6b Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-08 17:38:57 +00:00
c559c7f176 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-08 17:38:52 +00:00
c600d56ced Rundll32 ordinal (#1770) Michael Haag 2022-02-08 10:38:36 -07:00
fa8b76090a Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-08 16:35:03 +00:00
05248d675d Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-08 16:34:58 +00:00
5bcd254baa Adding T1018 Test 15 - DirectorySearcher (#1769) Leo Verlod 2022-02-08 10:34:30 -06:00
66db0f61c0 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-08 03:36:52 +00:00
486d16b8fc reverting uuid (#1768) Bhavin Patel 2022-02-07 19:36:20 -08:00
2dd769d9be revert_id AutoSUID_linux patel-bhavin 2022-02-07 16:23:02 -08:00
d7042ac308 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-07 22:00:24 +00:00
433c20fecb Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-07 22:00:20 +00:00
1d75fda8df Command and Scripting Interpreter: Bash - 2 new atomics (#1766) Bhavin Patel 2022-02-07 13:59:53 -08:00
27f3e17155 Merge branch 'AutoSUID_linux' of github.com:redcanaryco/atomic-red-team into AutoSUID_linux patel-bhavin 2022-02-07 12:28:24 -08:00
72b3e05233 remove uuid patel-bhavin 2022-02-07 12:28:09 -08:00
a47bc9f742 Merge branch 'master' into AutoSUID_linux Bhavin Patel 2022-02-07 12:23:51 -08:00
d18666e8f8 uuid patel-bhavin 2022-02-07 12:23:34 -08:00
aa504f2b42 minor patel-bhavin 2022-02-07 12:15:12 -08:00
ccb98851fe Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-07 15:33:54 +00:00
872d256108 Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-07 15:33:49 +00:00
58ecf3b2c0 Adding T1562.001 Test 27 - Disable Defender with Defender Control (#1765) Leo Verlod 2022-02-07 09:33:33 -06:00
da23e1e4b3 Generate docs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team doc generator 2022-02-07 15:30:23 +00:00
0e2c45bc4a Generate GUIDs from job=generate_and_commit_guids_and_docs branch=master [skip ci] CircleCI Atomic Red Team GUID generator 2022-02-07 15:30:15 +00:00
20bb31380d Addition of T1546.015 (#1764) Kelsey Seymour 2022-02-07 10:29:34 -05:00

... 30 31 32 33 34 ...