atomic-red-team

security-tools/atomic-red-team

Fork 0

Commit Graph

Select branches

Hide Pull Requests

APT28

AutoSUID_linux

ProcessHolllowingT1093

T1016_fix

T1218.005-powershell-without-network-call

T1553.001_fix

add_codeowners

admin-guide

atoms

attack-v19-migration

cloudlfare-tunnel

clr2of8-patch-14

clr2of8-patch-16

clr2of8-patch-3

clr2of8-patch-32

clr2of8-patch-35

clr2of8-patch-43

clr2of8-patch-44

clr2of8-patch-8

cyberbuff-patch-2

dependabot/pip/hypothesis-6.152.4

dependabot/pip/pydantic-2.13.3

dependabot/pip/typer-0.25.1

external_payloads

fix_T1562.001

fix_attack_nav

insecure-curl

io-update

issue_template_fix

linpeas_linux

markdown_changes

master

npm_simulate

oscd

pre-commit

python_conversion

remove-unused-static-dir

remove_bin

remove_ruby

remove_users_launch_daemon

revert-1530-adding_comments_to_navigator

sysmon_fix

t1547008

testest

update-PSDocs

use-basic-parsing

yamlfix

1ea8c4616c Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-17 00:00:29 +00:00
6defb7663c Improve More Tests (#723) Andrew Beers 2019-12-16 18:00:10 -06:00
4016e55313 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-16 23:57:19 +00:00
e57e2065e5 Add test for T1093 that performs Process Hollowing (#722) Mr B0b 2019-12-17 00:56:48 +01:00
9643ba9969 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-16 23:54:21 +00:00
f39c39b29a Batch of improvements (#721) Andrew Beers 2019-12-16 17:54:01 -06:00
86759f1971 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-16 23:51:26 +00:00
9006f3c581 Added WCE executable to test 3 (#720) blackburnjrb 2019-12-16 17:51:04 -06:00
e396eb9f63 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-16 21:20:43 +00:00
de8df502af T1518 software discovery added test, cleanup (#718) Micheal Fleck 2019-12-16 15:20:02 -06:00
b85fe323b8 fix default PathToAtomicsFolder (#719) Carrie Roberts 2019-12-11 19:20:00 -07:00
b5224846d5 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-10 22:22:06 +00:00
23d49d8108 Add test for T1502 that performs Parent PID Spoofing (#708) Mr B0b 2019-12-10 23:21:34 +01:00
e11b77f02f Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-10 18:22:55 +00:00
3293e54771 New test, spelling fix (#717) Micheal Fleck 2019-12-10 10:22:30 -08:00
fbda422009 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-10 18:19:40 +00:00
0c5bcef840 Batch of improvements (#716) Andrew Beers 2019-12-10 12:19:19 -06:00
890099be35 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-10 14:18:39 +00:00
0544e5e777 add psexec test (#713) Andrew Beers 2019-12-10 08:18:26 -06:00
bf4c7559d0 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-10 13:51:22 +00:00
48ef8edee0 Improve tests (#715) Andrew Beers 2019-12-10 07:51:01 -06:00
7eca6e24e4 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-09 23:08:11 +00:00
b943e4435e Corrected typo T1087 (#709) Brian Thacker 2019-12-09 17:07:54 -06:00
dc9b9e60dd Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-09 23:02:14 +00:00
5256d3ada1 Update Syntax T1040 (#710) Brian Thacker 2019-12-09 17:01:56 -06:00
08dc1f0066 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-09 23:00:45 +00:00
0c18a6ce98 T1069 Typo correction (#711) Brian Thacker 2019-12-09 17:00:30 -06:00
dbb75a50e1 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-05 20:17:37 +00:00
5996ff29dc Update to T1053 to add Register-ScheduledTask (#707) JimmyAstle 2019-12-05 15:17:18 -05:00
8b61643f7f Python framework: Fix multiline powershell scripts (#706) Fabricio Brunetti 2019-12-03 16:49:57 -03:00
9a7998a576 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-03 19:48:22 +00:00
b69ad5f987 T1500 compile after delivery (#700) Mr B0b 2019-12-03 20:48:04 +01:00
7232ea1789 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-03 19:45:46 +00:00
01757e0df0 Added cleanup commands to cleanup hive files created. (#703) Micheal Fleck 2019-12-03 11:45:22 -08:00
00972d1fc7 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-02 16:54:49 +00:00
da80cf8259 fix tests (#701) Andrew Beers 2019-12-02 10:54:21 -06:00
34b28a50d4 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-02 16:52:03 +00:00
c2e01cdb48 Fix Path To Document (#702) Andrew Beers 2019-12-02 10:51:51 -06:00
7ea2f1e0a0 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-02 16:39:23 +00:00
bb945c8d61 T1088 mocking trusted directories - New Atomic (#704) dwhite9 2019-12-02 10:39:07 -06:00
380a113809 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-12-02 16:37:13 +00:00
42280e035a T1088- Added cleanup commands (#705) dwhite9 2019-12-02 10:36:43 -06:00
0b96ad46c7 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-27 16:07:50 +00:00
128f6054e4 recon trickbot style (#696) Carrie Roberts 2019-11-27 09:07:33 -07:00
6d76b77fc4 T1089 Disable AMSI & Script Block Logging (#695) Tony M Lambert 2019-11-26 19:06:03 -06:00
6d1229ee56 T1027 Execution of base64 PowerShell (#694) Tony M Lambert 2019-11-26 19:03:20 -06:00
20563e42ed T1112 Registry Modification to Store PowerShell Code (#693) Tony M Lambert 2019-11-26 18:59:41 -06:00
979695d818 T1018 Discovery with net.exe for Domain Computers (#692) Tony M Lambert 2019-11-26 18:44:32 -06:00
3d06083dbe -ShowDetails without adding '-InformationAction Continue' (#686) Carrie Roberts 2019-11-25 10:28:08 -07:00
24415af3bb Python execution framework fix: use any value type (#691) Fabricio Brunetti 2019-11-25 14:10:55 -03:00
0954cf3e57 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-25 17:06:20 +00:00
396cdf4d92 fix duplicate key in yaml issues (#690) Carrie Roberts 2019-11-25 10:05:55 -07:00
088081e033 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-25 16:55:57 +00:00
abefc468d2 T1137 - Word spawned a command shell and used an IP address in the command line (#610) Andrew Beers 2019-11-25 10:55:38 -06:00
1b05ec3b29 Added Hostname to ExecutionLog (#688) Andras32 2019-11-22 13:57:29 -06:00
389c115caa removing dead links (#687) Carrie Roberts 2019-11-22 12:51:22 -07:00
8b64037681 remove atomic-red-team-master folder from install (#689) Carrie Roberts 2019-11-22 11:57:30 -07:00
5f087ec34d Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-21 03:07:05 +00:00
5bf01b6c2c T1482 query ad/domain info (#676) Andrew Beers 2019-11-20 21:06:47 -06:00
802b693f29 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-20 22:55:45 +00:00
31151185e5 T1122 - Update to use PathToAtomicsFolder (#681) Fabricio Brunetti 2019-11-20 19:55:28 -03:00
10a52d388b T1077 Redirect output to Admin Share (#685) Tony M Lambert 2019-11-20 16:46:24 -06:00
ccb4a26407 T1082 Add Hostname and MachineGUID tests (#683) Tony M Lambert 2019-11-20 16:42:33 -06:00
0afc5beb6f T1016 Firewall Rule Enumeration with Netsh (#682) Tony M Lambert 2019-11-20 16:38:52 -06:00
9c68146ff9 T1057 Process discovery via tasklist (#680) Tony M Lambert 2019-11-20 16:37:48 -06:00
8eb281faa6 T1047 - Wmic process create tests (#679) Tony M Lambert 2019-11-20 16:36:42 -06:00
4c3e2c3d83 T1018 Test for DC discovery with nltest (#678) Tony M Lambert 2019-11-20 16:34:54 -06:00
713215eaf7 Added T1064 Scripting test for Windows (#677) Tony M Lambert 2019-11-20 16:33:52 -06:00
947627a84d T1105 PowerShell download test (#684) Tony M Lambert 2019-11-20 16:32:40 -06:00
586684d308 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-19 22:24:59 +00:00
c5b2c92ad3 cleanup tests (#673) Andrew Beers 2019-11-19 16:24:45 -06:00
a49e529a34 Leverage PathToAtomicsFolder in Python framework (#675) Fabricio Brunetti 2019-11-19 19:20:59 -03:00
24ff7c7173 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-19 22:14:12 +00:00
934aaa1435 T1023 LNK file to launch CMD placed in startup folders (#674) Andrew Beers 2019-11-19 14:13:45 -08:00
b5db6b26fb Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-18 23:27:24 +00:00
ea619c49a3 create scheduled tasks a couple way to run on startup (#672) Andrew Beers 2019-11-18 15:27:09 -08:00
69834f6b88 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-18 20:46:06 +00:00
826abe638e windows and powershell tests to recon data and write it to temp file for export (#671) Andrew Beers 2019-11-18 12:45:33 -08:00
a684542241 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-18 20:40:16 +00:00
3c9704117d T1135 recon avalaible share drives (#670) Andrew Beers 2019-11-18 12:39:58 -08:00
9658da76bc Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-18 15:50:50 +00:00
aeeba08bbc Reach out to C2 Pointer URLs via command line (#644) Andrew Beers 2019-11-18 07:50:36 -08:00
08fddb3940 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-18 15:44:19 +00:00
e9e93b3907 T1208 kerberoasting with invoke kerberoast (#548) Jeff Ong 2019-11-18 23:43:47 +08:00
b3917a661f Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-18 15:31:37 +00:00
cf3e90ec91 T1075 new test added and other test t1023 t1044 t1058 (#625) valen 2019-11-18 22:01:16 +06:30
8c7e1fcb9d Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-18 15:29:04 +00:00
65d0f6dc5d Zip a folder with PowerShell (#640) Andrew Beers 2019-11-18 07:28:44 -08:00
232fb47eda Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-18 15:19:08 +00:00
942ca94244 T1173 execute power shell script via word ddeauto (#643) Andrew Beers 2019-11-18 07:18:56 -08:00
26bdd49b8c Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-18 15:17:52 +00:00
6635e0cb36 Switched executor to powershell. Fixed commandline to run correctly and (#669) dwhite9 2019-11-18 09:17:34 -06:00
275eaa9f59 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-16 00:22:19 +00:00
12518d69c4 T1504 powershell profile (#668) Brandon Morgan 2019-11-15 18:21:59 -06:00
6bc3ec3edc Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-15 15:42:59 +00:00
80d06be3a8 Added UAC Bypass using ComputerDefaults.exe and cleanup commands (#667) blackburnjrb 2019-11-15 09:42:38 -06:00
abc2f2e563 added documentation of unix-like, clean directory structure (all files in /bin or /src besides .yaml or .md) (#664) JB 2019-11-15 09:39:01 -06:00
c86cb7ddbf a little bug fix (#665) Carrie Roberts 2019-11-15 07:05:02 -07:00
59f2b264e9 Generate docs from job=validate_atomics_generate_docs branch=master CircleCI Atomic Red Team doc generator 2019-11-15 05:02:01 +00:00
5aed1f0210 moving .ps1 source in T1056 to /src folder (#663) JB 2019-11-14 23:01:43 -06:00

... 51 52 53 54 55 ...