Skip to content

Commit

Permalink
Generated docs from job=generate-docs branch=master [ci skip]
Browse files Browse the repository at this point in the history
  • Loading branch information
Atomic Red Team doc generator committed Sep 24, 2024
1 parent 4304f06 commit 48887f4
Show file tree
Hide file tree
Showing 3 changed files with 104 additions and 62 deletions.
60 changes: 38 additions & 22 deletions atomics/Indexes/index.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8608,19 +8608,27 @@ defense-evasion:
'
supported_platforms:
- linux
dependencies:
- description: 'Create dummy file in /var/spool/mail/ if no files exist

'
prereq_command: 'if [ -z "$(ls -A /var/spool/mail/)" ]; then exit 1; else
exit 0; fi

'
get_prereq_command: 'if [ -z "$(ls -A /var/spool/mail/)" ]; then touch /var/spool/mail/temp;
fi

'
executor:
command: |
mkdir -p /var/spool/mail/copy
for file in /var/spool/mail/*; do
if [ "$(basename "$file")" != "copy" ]
then
cp -R "$file" /var/spool/mail/copy/
fi
done
rm -rf /var/spool/mail/copy/*
cleanup_command: 'rm -rf /var/spool/mail/copy
command: 'mkdir -p /var/spool/mail/copy && for file in /var/spool/mail/*;
do if [ "$(basename "$file")" != "copy" ]; then cp -R "$file" /var/spool/mail/copy/;
fi; done && rm -rf /var/spool/mail/copy/*

'
cleanup_command: |
rm -rf /var/spool/mail/copy
if [ -f "$(ls -A /var/spool/mail/temp)" ]; then rm /var/spool/mail/temp; fi
name: bash
elevation_required: true
- name: Copy and Delete Mailbox Data on macOS
Expand Down Expand Up @@ -8665,21 +8673,29 @@ defense-evasion:
'
supported_platforms:
- linux
dependencies:
- description: 'Create dummy file in /var/spool/mail/ if no files exist

'
prereq_command: 'if [ -z "$(ls -A /var/spool/mail/)" ]; then exit 1; else
exit 0; fi

'
get_prereq_command: 'if [ -z "$(ls -A /var/spool/mail/)" ]; then touch /var/spool/mail/temp;
fi

'
executor:
command: |
mkdir -p /var/spool/mail/copy
for file in /var/spool/mail/*; do
if [ "$(basename "$file")" != "copy" ]
then
cp -R "$file" /var/spool/mail/copy/
if [ -f "/var/spool/mail/copy/$(basename "$file")" ]; then
echo "Modification for Atomic Red Test" >> "/var/spool/mail/copy/$(basename "$file")"
fi
fi
done
cleanup_command: 'rm -rf /var/spool/mail/copy
command: 'mkdir -p /var/spool/mail/copy; for file in /var/spool/mail/*; do
if [ "$(basename "$file")" != "copy" ]; then cp -R "$file" /var/spool/mail/copy/;
if [ -f "/var/spool/mail/copy/$(basename "$file")" ]; then echo "Modification
for Atomic Red Test" >> "/var/spool/mail/copy/$(basename "$file")"; fi;
fi; done

'
cleanup_command: |
rm -rf /var/spool/mail/copy
if [ -f "$(ls -A /var/spool/mail/temp)" ]; then rm /var/spool/mail/temp; fi
name: bash
elevation_required: true
- name: Copy and Modify Mailbox Data on macOS
Expand Down
60 changes: 38 additions & 22 deletions atomics/Indexes/linux-index.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5242,19 +5242,27 @@ defense-evasion:
'
supported_platforms:
- linux
dependencies:
- description: 'Create dummy file in /var/spool/mail/ if no files exist

'
prereq_command: 'if [ -z "$(ls -A /var/spool/mail/)" ]; then exit 1; else
exit 0; fi

'
get_prereq_command: 'if [ -z "$(ls -A /var/spool/mail/)" ]; then touch /var/spool/mail/temp;
fi

'
executor:
command: |
mkdir -p /var/spool/mail/copy
for file in /var/spool/mail/*; do
if [ "$(basename "$file")" != "copy" ]
then
cp -R "$file" /var/spool/mail/copy/
fi
done
rm -rf /var/spool/mail/copy/*
cleanup_command: 'rm -rf /var/spool/mail/copy
command: 'mkdir -p /var/spool/mail/copy && for file in /var/spool/mail/*;
do if [ "$(basename "$file")" != "copy" ]; then cp -R "$file" /var/spool/mail/copy/;
fi; done && rm -rf /var/spool/mail/copy/*

'
cleanup_command: |
rm -rf /var/spool/mail/copy
if [ -f "$(ls -A /var/spool/mail/temp)" ]; then rm /var/spool/mail/temp; fi
name: bash
elevation_required: true
- name: Copy and Modify Mailbox Data on Linux
Expand All @@ -5264,21 +5272,29 @@ defense-evasion:
'
supported_platforms:
- linux
dependencies:
- description: 'Create dummy file in /var/spool/mail/ if no files exist

'
prereq_command: 'if [ -z "$(ls -A /var/spool/mail/)" ]; then exit 1; else
exit 0; fi

'
get_prereq_command: 'if [ -z "$(ls -A /var/spool/mail/)" ]; then touch /var/spool/mail/temp;
fi

'
executor:
command: |
mkdir -p /var/spool/mail/copy
for file in /var/spool/mail/*; do
if [ "$(basename "$file")" != "copy" ]
then
cp -R "$file" /var/spool/mail/copy/
if [ -f "/var/spool/mail/copy/$(basename "$file")" ]; then
echo "Modification for Atomic Red Test" >> "/var/spool/mail/copy/$(basename "$file")"
fi
fi
done
cleanup_command: 'rm -rf /var/spool/mail/copy
command: 'mkdir -p /var/spool/mail/copy; for file in /var/spool/mail/*; do
if [ "$(basename "$file")" != "copy" ]; then cp -R "$file" /var/spool/mail/copy/;
if [ -f "/var/spool/mail/copy/$(basename "$file")" ]; then echo "Modification
for Atomic Red Test" >> "/var/spool/mail/copy/$(basename "$file")"; fi;
fi; done

'
cleanup_command: |
rm -rf /var/spool/mail/copy
if [ -f "$(ls -A /var/spool/mail/temp)" ]; then rm /var/spool/mail/temp; fi
name: bash
elevation_required: true
T1055:
Expand Down
46 changes: 28 additions & 18 deletions atomics/T1070.008/T1070.008.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -74,23 +74,29 @@ Copies and deletes mail data on Linux


```bash
mkdir -p /var/spool/mail/copy
for file in /var/spool/mail/*; do
if [ "$(basename "$file")" != "copy" ]
then
cp -R "$file" /var/spool/mail/copy/
fi
done
rm -rf /var/spool/mail/copy/*
mkdir -p /var/spool/mail/copy && for file in /var/spool/mail/*; do if [ "$(basename "$file")" != "copy" ]; then cp -R "$file" /var/spool/mail/copy/; fi; done && rm -rf /var/spool/mail/copy/*
```

#### Cleanup Commands:
```bash
rm -rf /var/spool/mail/copy
if [ -f "$(ls -A /var/spool/mail/temp)" ]; then rm /var/spool/mail/temp; fi
```



#### Dependencies: Run with `bash`!
##### Description: Create dummy file in /var/spool/mail/ if no files exist
##### Check Prereq Commands:
```bash
if [ -z "$(ls -A /var/spool/mail/)" ]; then exit 1; else exit 0; fi
```
##### Get Prereq Commands:
```bash
if [ -z "$(ls -A /var/spool/mail/)" ]; then touch /var/spool/mail/temp; fi
```




<br/>
Expand Down Expand Up @@ -181,25 +187,29 @@ Copies and modifies mail data on Linux


```bash
mkdir -p /var/spool/mail/copy
for file in /var/spool/mail/*; do
if [ "$(basename "$file")" != "copy" ]
then
cp -R "$file" /var/spool/mail/copy/
if [ -f "/var/spool/mail/copy/$(basename "$file")" ]; then
echo "Modification for Atomic Red Test" >> "/var/spool/mail/copy/$(basename "$file")"
fi
fi
done
mkdir -p /var/spool/mail/copy; for file in /var/spool/mail/*; do if [ "$(basename "$file")" != "copy" ]; then cp -R "$file" /var/spool/mail/copy/; if [ -f "/var/spool/mail/copy/$(basename "$file")" ]; then echo "Modification for Atomic Red Test" >> "/var/spool/mail/copy/$(basename "$file")"; fi; fi; done
```

#### Cleanup Commands:
```bash
rm -rf /var/spool/mail/copy
if [ -f "$(ls -A /var/spool/mail/temp)" ]; then rm /var/spool/mail/temp; fi
```



#### Dependencies: Run with `bash`!
##### Description: Create dummy file in /var/spool/mail/ if no files exist
##### Check Prereq Commands:
```bash
if [ -z "$(ls -A /var/spool/mail/)" ]; then exit 1; else exit 0; fi
```
##### Get Prereq Commands:
```bash
if [ -z "$(ls -A /var/spool/mail/)" ]; then touch /var/spool/mail/temp; fi
```




<br/>
Expand Down

0 comments on commit 48887f4

Please sign in to comment.