security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
f6c6cb2e281892238bbe353f4e9d55803d53f037
atomic-red-team/execution-frameworks/Invoke-AtomicRedTeam
T
History
Zac Brown f6c6cb2e28 Remove spurious spaces.
2018-09-05 10:56:55 -07:00
..
Invoke-AtomicRedTeam.ps1
Remove spurious spaces.
2018-09-05 10:56:55 -07:00
README.md
fix dem spaces
2018-09-04 19:55:55 -06:00

README.md

Requires Installation of PowerShell-Yaml

Install-Module powershell-yaml

For Additional Details: PowerShell-Yaml

Basic usage Examples:

  • Load PowerShell Script: . C:\AtomicRedTeam\execution-frameworks\Invoke-AtomicRedTeam\Invoke-AtomicRedTeam.ps1

  • Execute Single Test:

    $T1117 = Get-AtomicTechnique -Path ..\..\atomics\T1117\T1117.yaml
    Invoke-AtomicTest $T1117

  • Generate All Tests

    [System.Collections.HashTable]$AllAtomicTests = @{};
    $AtomicFilePath = 'C:\AtomicRedTeam\atomics\';
    Get-Childitem $AtomicFilePath -Recurse -Filter *.yaml -File | ForEach-Object {
    $currentTechnique = [System.IO.Path]::GetFileNameWithoutExtension($_.FullName);
    $parsedYaml = (ConvertFrom-Yaml (Get-Content $_.FullName -Raw ));
    $AllAtomicTests.Add($currentTechnique, $parsedYaml);
    $AllAtomicTests.GetEnumerator() | %{ Invoke-Atomic $_.Value -GenerateOnly}

  • Feedback Welcome

Reference in New Issue View Git Blame Copy Permalink