Skip to content

SecurityRiskAdvisors/invoke-atomic-attire-logger

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
.gitignore
.gitignore
 
 
Attire-ExecutionLogger.psm1
Attire-ExecutionLogger.psm1
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Attire-ExecutionLogger

This is a PowerShell module that conforms to the logger API used by Invoke-AtomicRedTeam and generates ATTiRe logs that can be imported into VECTR.

More information on the ATTiRe format and how to import logs into VECTR is available here: https://github.com/SecurityRiskAdvisors/ATTiRe

To use the ATTiRe logger, first you must:

  1. Import Invoke-AtomicRedTeam
  2. Import Attire-ExecutionLogger
  3. Run Invoke-AtomicTest and pass in the ATTiRe logger as an argument

The example below runs Invoke-AtomicTest and generates an ATTiRe log for the T1087.001 test cases.

Import-Module ".\Invoke-AtomicRedTeam.psd1" -Force
Import-Module ".\Loggers\Attire-ExecutionLogger.psm1" -Force
Invoke-AtomicTest T1087.001 -LoggingModule "Attire-ExecutionLogger" -ExecutionLogPath "./attireLog.json"

About

ATTiRe logging for Invoke-Atomicredteam

Resources

Readme

License

MIT license

Security policy

Security policy
Activity
Custom properties

Stars

8 stars

Watchers

5 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages