security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
3c17d14b37492b68099ae4fc0ec7e9325b4a237e
atomic-red-team/Windows/Collection/Automated_Collection.md
T
Michael Haag 34dd80d94b Initial Commit 
+ Audio Capture
+ Automated Collection
+ Input Capture
+ collection bat
+ Payload
+ Updated Matrix
2017-10-12 15:05:28 -07:00

386 B
Raw Blame History

Automated Collection

MITRE ATT&CK Technique: T1119

cmd.exe

find:

Input:

 dir c: /b /s .docx | findstr /e .docx

copy:

Input:

for /R c: %f in (*.docx) do copy %f c:\temp\

PowerShell

Find and copy

Input:

powershell Get-ChildItem -Recurse -Include *.doc | % {Copy-Item $_.FullName -destination c:\temp}
Reference in New Issue View Git Blame Copy Permalink