security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
5f848fe2c19d948c3ef18f2becedf335fdff3c8e
atomic-red-team/Windows/Defense_Evasion/Timestomp.md
T
Michael Haag 382d6313a3 Windows Matrix Update 
Windows Matrix update
+ also fixed Dir names/paths
2018-01-16 10:10:52 -07:00

386 B
Raw Blame History

Timestomp

MITRE ATT&CK Technique: T1099

Timestomp with PowerShell

Source: https://gist.github.com/obscuresec/7b0cf71d7a8dd5e7b54c

echo "Atomic Test File" > test.txt
PowerShell.exe -com {$file=(gi test.txt);$date='06/06/2006 12:12 pm';$file.LastWriteTime=$date;$file.LastAccessTime=$date;$file.CreationTime=$date}
Reference in New Issue View Git Blame Copy Permalink