Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- set-location C:\atomic-red-team\atomics
- Invoke-AtomicTest T1562.001 -TestName 'Uninstall Sysmon' -ShowDetailsBrief
- Invoke-AtomicTest T1562.002 -TestNames 'Kill Event Log Service Threads' -ShowDetailsBrief
- Invoke-AtomicTest T1562.001 -TestNames 'Tamper with Windows Defender Command Prompt' -ShowDetailsBrief
- Invoke-AtomicTest T1562.001 -TestNames 'AMSI Bypass - AMSI InitFailed' -ShowDetailsBrief
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
