Welcome to the October edition of the Atomic Newsletter, a monthly email in which we will summarize the updates and news about Atomic Red Team™ and its related projects such as Atomic Friday, MITRE ATT&CK®, Invoke-AtomicRedTeam, AtomicTestHarnesses, and more!

Test Showcase

Highlighting new & novel atomics

This month the Atomic Red Team maintainers wanted to showcase a couple of noteworthy new atomic tests that caught their eye!

T1562.002:
Wevtutil Event Log Disable

There is no doubt that ransomware is a serious and pervasive problem today; but it can be easy to forget to test for behaviors outside of the lateral movement, encryption, and exfiltration of these events.

First-time contributor lucasRiley recently added an Atomic Red Team test demonstrating how the RansomEXX threat disables logging.

SEE THE PR

PR #1619:
Updating atomics to conform to standard

Although not a new test, Atomic Red Team received a significant update this month from long-time contributor Josh Rickard!

In this pull request, Josh took the existing human-readable atomic test specification and created a machine-readable spec file.

With this spec file Josh then made some sweeping updates to bring conformity and clarity to over a hundred files!

SEE THE PR

Want to work on Atomic Red Team full time?

We're hiring a Community Manager to support Atomic Red Team's users, contributors, and maintainers. We’re looking for a strong communicator who is passionate about building both relationships and resources.

Job Posting

Video for your queue

A visual history of Atomic Red Team

Here's a fun visualization of the first four years of Atomic Red Team GitHub activity. See if you can spot major milestones including The YAML’ing, execution frameworks graduating to become projects of their own, as well as your own contributions.

Watch on Youtube

We are always looking for more Linux tests!

Reply on Twitter

Atomic Red Team community updates

Atomic Red Team cannot continue to be the amazing library it is without the time, effort, and contributions from the community and the project maintainers. We wanted to showcase some of the individuals who have taken the time to contribute changes and additions to Atomic Red Team!

New & top contributors in September

Top contributors:

bnt1006
clr2of8
Corellios
lucasRiley
MHaggis
Raislin
tlor89

Huge thanks to everyone who contributed to Atomic Red Team, and a special shout out to all of the first-time contributors:

Raislin
Corellios
CaptanMoss
lucasRiley

We are here to help!

Atomic Red Team maintainers

Meet our amazing team of maintainers, who create new tests, manage pull requests, mentor new contributors, and do so much more.

Bhavin Patel

Slack: Bhavin Patel

GitHub: patel-bhavin

Carl Petty

Slack: Carl Petty

GitHub: rc-grey

Carrie Roberts

Slack: OrOneEqualsOne

GitHub: clr2of8

Jose Hernandez

Slack: Jose Hernandez

GitHub: d1vious

Matt Graeber

Slack: mattifestation

GitHub: mattifestation

Mike Haag

Slack: Mike Haag

GitHub: MHaggis

On-demand

Check out the 1-hour webcast "Atomic Red Team: Hands-on Getting Started Guide" with Carrie and Darin Roberts.

VIEW WEBCAST

Hands-on learning

Join us!

Atomic Red Team depends on community contributions to increase technique coverage across platforms.

GET STARTED

Be a part of the Atomic community

Atomic Red Team is developed by a community of thousands of computer security advocates, practitioners, and enthusiasts. Come say hi on the Atomic Red Team Slack!

Join Us On Slack

©2024 Red Canary All rights reserved.
1601 19th Street, Suite 900, Denver, CO 80202
https://redcanary.com | Unsubscribe

You received this email as a promotion of Red Canary. Click to adjust your preferences.