Commit Graph

Select branches

Hide Pull Requests

ChainReactions

Readme-mh

atomic-dev-cs

mac-defense-evasion

master

patch-1

patch-2

patch-3

patch-4

patch-5

patch-6

patch-7

patch-8

readmes

Mono Color

• ec5af82e6e
  Update Disabling_Security_Tools.md patch-8 Rahmat Nurfauzi 2018-04-13 20:29:22 +0700
• 165607d242
  Merge pull request #113 from redcanaryco/03082018 caseysmithrc 2018-04-10 12:39:03 -0600
• 0bfdcfa480 Lateral Movement Michael Haag 2018-04-06 08:21:28 -0400
• eced20df46
  Merge pull request #108 from llandeilocymro/patch-1 caseysmithrc 2018-03-26 08:39:57 -0600
• 5d0a121142
  Merge pull request #111 from llandeilocymro/patch-3 caseysmithrc 2018-03-26 08:39:33 -0600
• 5fd733a3ed
  psexec for lateral movement llandeilocymro 2018-03-26 14:44:21 +0100
• e71d08b5a6
  Merge pull request #109 from llandeilocymro/patch-2 Michael Haag 2018-03-21 14:13:50 -0400
• e10be818ef
  Update Credential_Dumping.md Michael Haag 2018-03-21 14:13:10 -0400
• 6b3d5a1c69
  Merge pull request #107 from ForensicITGuy/http-exfiltration Michael Haag 2018-03-20 12:33:45 -0400
• c3bda067e2
  cred dumping using the registry llandeilocymro 2018-03-16 14:24:17 +0000
• 1b3361896f
  Create psexec llandeilocymro 2018-03-16 14:00:33 +0000
• e9f7a6c9ed Added test to exfil data over HTTP ForensicITGuy 2018-03-15 17:03:14 -0500
• 0320871e3c
  Adding Office Test and Excel XLL Persistence patch-7 rahmatnurfauzi 2018-03-15 21:45:30 +0700
• fdde68b5e7
  Merge pull request #104 from ForensicITGuy/linux-root-ca caseysmithrc 2018-03-14 21:47:32 -0600
• 2869a65cde
  Merge pull request #105 from ForensicITGuy/linux-file-deletion-etc caseysmithrc 2018-03-14 21:47:22 -0600
• c5ed6a89f9
  Update AtomicRedTeam.sct caseysmithrc 2018-03-13 14:11:24 -0600
• 376512f6e2 Added File Deletion, Data Compression/Encryption, Data splitting tests Tony M Lambert 2018-03-12 01:32:55 -0500
• 779f2c71cc Added test to generate and trust root CA on Linux. Updated README. Tony M Lambert 2018-03-10 01:27:49 -0600
• cbc36697f0
  Merge pull request #103 from ForensicITGuy/disable-defenses caseysmithrc 2018-03-09 22:22:32 -0700
• 8346a7a1f5 Added tests for disable of firewall, syslog, Cb daemon, SELinux Tony M Lambert 2018-03-09 22:25:46 -0600
• 4f65330559 Added Remote File Copy tests on Linux and relevant README Tony M Lambert 2018-03-09 21:54:34 -0600
• 80a9487da3 Added test for timestomping on Linux with relevant README changes. Tony M Lambert 2018-03-09 19:51:46 -0600
• a023d346cb Contributions Michael Haag 2018-03-09 12:19:07 -0600
• 82c57914fd
  Merge pull request #100 from ForensicITGuy/master caseysmithrc 2018-03-08 22:57:25 -0700
• 8b8d6059ee Added Hidden Files and Directories checks for Linux Tony M Lambert 2018-03-08 23:52:30 -0600
• 4874dbc78c
  Merge pull request #99 from redcanaryco/03082018 caseysmithrc 2018-03-08 13:31:55 -0700
• 27cb5a75c6 Fix Michael Haag 2018-03-08 14:28:13 -0600
• 8ba1dc8a19 Technique Adds Michael Haag 2018-03-08 14:26:18 -0600
• a6134b19c0 Techniques and Readme Michael Haag 2018-03-08 08:11:24 -0600
• 5078248ca1
  Merge pull request #95 from TacoRocket/master Michael Haag 2018-03-06 09:20:01 -0600
• c3377e74d6
  Merge pull request #86 from ahogue-atlassian/master caseysmithrc 2018-03-06 07:45:05 -0700
• e6622d0021
  Updated title Michael Haag 2018-03-06 08:43:51 -0600
• 3aa4c528d9
  Merge branch 'master' into master ahogue-atlassian 2018-03-06 09:05:52 +1100
• fd1e413566 Adds a method to detect when extended attributes are used to hide files and folders. Colby Farley 2018-03-01 16:11:28 -0600
• 41801d14ed
  Merge pull request #98 from clong/persistence_rc.common caseysmithrc 2018-03-01 07:48:59 -0700
• 96ce9fbbbf Adding Mac rc.common persistence Chris Long 2018-03-01 00:57:54 -0800
• 05a16f250d
  Merge pull request #97 from JeremyNGalloway/master caseysmithrc 2018-02-28 16:52:24 -0700
• 75145a2766
  updated readme with link to Credential_Access/Credentials_in_Files.md JeremyNGalloway 2018-02-28 16:44:33 -0600
• 21cdce9777
  initial upload JeremyNGalloway 2018-02-28 16:43:07 -0600
• a7ee6830f7 Removed PowerShell payload Colby Farley 2018-02-28 11:32:07 -0600
• dea84864fa Added screen capture discovery for Mac Colby Farley 2018-02-28 11:30:41 -0600
• ed1dd3cea0
  Merge pull request #93 from JeremyNGalloway/master caseysmithrc 2018-02-27 13:21:49 -0700
• ac4762e283 Changed filename and fixed remaining markdown issue Colby Farley 2018-02-27 12:30:32 -0600
• 28ac11f0a1 Should fix Markdown issue Colby Farley 2018-02-27 12:26:54 -0600
• 18a1a5521c Added a method to download and install PowerShell on Mac Colby Farley 2018-02-27 12:23:53 -0600
• 7ff3fb1ee1
  Update README.md JeremyNGalloway 2018-02-27 11:14:56 -0600
• 56ed971cdd
  Update README.md JeremyNGalloway 2018-02-27 11:14:29 -0600
• ee8b642728
  updated README with links to Rootkits JeremyNGalloway 2018-02-27 11:13:15 -0600
• 08de1f2ead
  Initial upload JeremyNGalloway 2018-02-27 11:07:04 -0600
• 4353a6719e Merge branch 'master' of github.com:ahogue-atlassian/atomic-red-team Alexander Hogue 2018-02-27 14:26:46 +1100
• 1cdbdc51bf Move scripts to Payloads directory Alexander Hogue 2018-02-27 14:23:41 +1100
• 8613767ee0 Merge branch 'master' of github.com:redcanaryco/atomic-red-team Alexander Hogue 2018-02-27 14:17:30 +1100
• fb99ca3f6f
  Merge branch 'master' into master ahogue-atlassian 2018-02-27 14:04:13 +1100
• d58a87f670
  Merge pull request #91 from danbourke/browser_extension caseysmithrc 2018-02-26 08:23:51 -0700
• c3d8a53edf
  Merge pull request #90 from infosecn1nja/patch-6 caseysmithrc 2018-02-26 08:20:56 -0700
• dc61cbb18e
  Merge pull request #89 from infosecn1nja/patch-5 caseysmithrc 2018-02-26 08:20:14 -0700
• 3e4ba89cf4 adding actually published extension details Dan Bourke 2018-02-26 16:26:56 +1100
• 24412945ce add instructions for Firefox Dan Bourke 2018-02-26 15:16:12 +1100
• 5dc3e36666 typo in README.md Dan Bourke 2018-02-26 13:16:16 +1100
• f5c852b834 add windows browser extension docs and payload Dan Bourke 2018-02-26 13:14:07 +1100
• e4b8cdb9c2 add linux browser extension docs and payload Dan Bourke 2018-02-26 13:13:39 +1100
• e52c8a8980 finishing mac bits Dan Bourke 2018-02-26 13:08:47 +1100
• e99ab35460 can't markdown Dan Bourke 2018-02-26 12:55:34 +1100
• d203930a36 can't markdown Dan Bourke 2018-02-26 12:54:52 +1100
• d9f9154cdf Merge branch 'browser_extension' of github.com:danbourke/atomic-red-team into browser_extension Dan Bourke 2018-02-26 12:53:09 +1100
• 9d247c281d add a 'minimum viable malicious extension' payload + collection notes for Mac Dan Bourke 2018-02-26 12:46:47 +1100
• 5d20c6b6dc add a 'minimum viable malicious extension' payload + collection notes for Mac Dan Bourke 2018-02-26 12:46:47 +1100
• 1347bc88dd
  Merge branch 'master' into master ahogue-atlassian 2018-02-26 09:49:23 +1100
• 31a7a268f1
  Update README.md patch-6 rahmatnurfauzi 2018-02-25 17:04:36 +0700
• 82f4f6078b
  Create Disabling_Security_Tools.md patch-5 rahmatnurfauzi 2018-02-25 17:01:31 +0700
• 797ee54f1a
  Merge pull request #87 from ForensicITGuy/master caseysmithrc 2018-02-22 13:12:05 -0700
• b86511e2a9 Added Linux Execution CLI Test CURL/WGET to bash ForensicITGuy 2018-02-22 00:45:59 -0600
• 1ea5a9aaa8 Add Custom C2 Protocol - Bitbucket Snippets Alexander Hogue 2018-02-22 13:47:47 +1100
• ec226ab392
  Merge pull request #85 from JeremyNGalloway/master caseysmithrc 2018-02-21 11:24:36 -0700
• dcf4d09ce1
  Merge pull request #84 from sdtyne/space_after_filename caseysmithrc 2018-02-21 11:24:09 -0700
• 14d31eba11
  added Logon_Scripts.md link JeremyNGalloway 2018-02-21 12:03:35 -0600
• bb6265128b
  initial upload JeremyNGalloway 2018-02-21 11:56:35 -0600
• f2b4008d28 Modifying space_after_filename to execute python hello world Stuart Tyne 2018-02-21 15:37:11 +1100
• 7089e48a7f
  Merge pull request #83 from atmathis/master Michael Haag 2018-02-20 15:33:39 -0600
• ea5933e4c6 Stickers! atmathis 2018-02-20 16:31:29 -0500
• 1c6cacfcae Merge remote-tracking branch 'redcanaryco/master' atmathis 2018-02-20 16:14:17 -0500
• d4dd7b931c
  Merge pull request #82 from danbourke/setuid caseysmithrc 2018-02-20 07:58:10 -0700
• 75e3d08a72
  Merge pull request #80 from atmathis/master Michael Haag 2018-02-19 07:44:32 -0600
• 80c12f6c4e fixing typo in Space After Filename technique Stuart Tyne 2018-02-19 15:06:48 +1100
• 258d7c83d5 fix formatting issue Dan Bourke 2018-02-19 14:32:10 +1100
• 1ad74772b7 mac and linux example setuid binary Dan Bourke 2018-02-19 14:29:52 +1100
• f2203aaf2b add probably-harmless c program Dan Bourke 2018-02-19 13:57:07 +1100
• 5ba88dfa61 Adding Space After Filename technique Stuart Tyne 2018-02-19 10:42:31 +1100
• 172bee8a4c Adding Space After Filename technique Stuart Tyne 2018-02-19 10:38:02 +1100
• 396172559d Adding Space After Filename technique Stuart Tyne 2018-02-19 10:31:08 +1100
• 5e494127ac Add Ranged Chain Reaction (Mac/Linux) atmathis 2018-02-15 17:53:13 -0500
• e9f6914998 Merge remote-tracking branch 'redcanaryco/master' atmathis 2018-02-15 17:51:56 -0500
• 23e904b898
  Merge pull request #79 from ForensicITGuy/master caseysmithrc 2018-02-13 14:25:58 -0700
• cba719ea81
  Merge pull request #2 from ForensicITGuy/linux-goodness Tony M Lambert 2018-02-13 15:14:54 -0600
• 03bcfd5c04
  Delete Discovery.sh Tony M Lambert 2018-02-13 15:13:32 -0600
• 6e445c7d65
  Merge pull request #1 from redcanaryco/master Tony M Lambert 2018-02-13 15:12:10 -0600
• bb5a0181f2 Adding Persistence and Execution tests for Trap Tony M Lambert 2018-02-13 15:10:47 -0600
• 5023dafa17
  Merge pull request #78 from redcanaryco/Haag Michael Haag 2018-02-13 11:53:00 -0600
• 60f7be8223 Removing Detections Michael Haag 2018-02-13 09:57:20 -0600
• c75ac6abd5
  Merge pull request #77 from redcanaryco/Haag caseysmithrc 2018-02-13 08:36:57 -0700