performing-purple-team-atomic-testing
Pass
Audited by Gen Agent Trust Hub on Jun 20, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches the installation script for the Atomic Red Team framework from the official Red Canary GitHub repository.
- [REMOTE_CODE_EXECUTION]: Employs
Invoke-Expression(IEX) to run theinstall-atomicredteam.ps1script directly from the remote URL to set up the environment. - [COMMAND_EXECUTION]: Executes simulated attack techniques mapped to the MITRE ATT&CK framework, which involves running various system commands and modifying system state as part of the intended purple team exercises.
- [COMMAND_EXECUTION]: Requires administrative or root privileges to execute security tests that require high-level access to system resources and logs.
Audit Metadata