Skip to content

Commit 3375b11

Browse files
nasbenchnasbench
authored
Merge pull request #1047 from splunk/pipe-to-exec
add dataset for download-to-pipe
2 parents e91cea1 + e8a9a3c commit 3375b11

2 files changed

Lines changed: 16 additions & 0 deletions

File tree

datasets/attack_techniques/T1105/download_to_pipe_exec/download_to_pipe_exec.log

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,3 @@
1+
version https://git-lfs.github.com/spec/v1
2+
oid sha256:00816cd9278f3eab0fcb1596d284da35a15dbef9db15a8b4973fac10ebd5dbf3
3+
size 35886

datasets/attack_techniques/T1105/download_to_pipe_exec/download_to_pipe_exec.yml

Lines changed: 13 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,13 @@
1+
author: Nasreddine Bencherchali, Splunk
2+
id: f25b05ae-99d7-4f67-917d-5db3d219fcbb
3+
date: '2025-10-17'
4+
description: Dataset generated in attack range for the attack technique of download to pipe execution.
5+
environment: attack_range
6+
directory: atomic_red_team
7+
mitre_technique:
8+
- T1105
9+
datasets:
10+
- name: windows-sysmon_curl_upload
11+
path: /datasets/attack_techniques/T1105/download_to_pipe_exec/download_to_pipe_exec.log
12+
sourcetype: XmlWinEventLog
13+
source: XmlWinEventLog:Microsoft-Windows-Sysmon/Operational

0 commit comments

Comments
 (0)