diff --git a/datasets/attack_techniques/T1185/chrome_allow_list/chrome_allow_list.yml b/datasets/attack_techniques/T1185/chrome_allow_list/chrome_allow_list.yml
new file mode 100644
index 00000000..cd4ee1b7
--- /dev/null
+++ b/datasets/attack_techniques/T1185/chrome_allow_list/chrome_allow_list.yml
@@ -0,0 +1,13 @@
+author: Teoderick Contreras, Splunk
+id: a48c7e9c-db4f-11f0-a898-629be3538069
+date: '2025-12-17'
+description: Generated datasets for chrome allow list in attack range.
+environment: attack_range
+directory: chrome_allow_list
+mitre_technique:
+- T1185
+datasets:
+- name: chrome_extension_allow_list.log
+  path: /datasets/attack_techniques/T1185/chrome_allow_list/chrome_extension_allow_list.log
+  sourcetype: 'XmlWinEventLog'
+  source: 'XmlWinEventLog:Microsoft-Windows-Sysmon/Operational'
\ No newline at end of file
diff --git a/datasets/attack_techniques/T1185/chrome_allow_list/chrome_extension_allow_list.log b/datasets/attack_techniques/T1185/chrome_allow_list/chrome_extension_allow_list.log
new file mode 100644
index 00000000..4b429829
--- /dev/null
+++ b/datasets/attack_techniques/T1185/chrome_allow_list/chrome_extension_allow_list.log
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:49a050f421ad3007dd5783ebc999fc27c167b7f976b85e6e815ea9049ae6aa05
+size 14295
diff --git a/datasets/attack_techniques/T1185/chrome_load_extensions/chrome_load_extension.log b/datasets/attack_techniques/T1185/chrome_load_extensions/chrome_load_extension.log
new file mode 100644
index 00000000..36a55a95
--- /dev/null
+++ b/datasets/attack_techniques/T1185/chrome_load_extensions/chrome_load_extension.log
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:c34b0e4b20f1920ccf7f573246ddd96f1c9ffe33a58a170222e75f2109888030
+size 4244
diff --git a/datasets/attack_techniques/T1185/chrome_load_extensions/chrome_load_extensions.yml b/datasets/attack_techniques/T1185/chrome_load_extensions/chrome_load_extensions.yml
new file mode 100644
index 00000000..fb0c4d75
--- /dev/null
+++ b/datasets/attack_techniques/T1185/chrome_load_extensions/chrome_load_extensions.yml
@@ -0,0 +1,13 @@
+author: Teoderick Contreras, Splunk
+id: 7b328a46-db4f-11f0-a898-629be3538069
+date: '2025-12-17'
+description: Generated datasets for chrome load extensions in attack range.
+environment: attack_range
+directory: chrome_load_extensions
+mitre_technique:
+- T1185
+datasets:
+- name: chrome_load_extension.log
+  path: /datasets/attack_techniques/T1185/chrome_load_extensions/chrome_load_extension.log
+  sourcetype: 'XmlWinEventLog'
+  source: 'XmlWinEventLog:Microsoft-Windows-Sysmon/Operational'
\ No newline at end of file
diff --git a/datasets/attack_techniques/T1185/disable_chrome_update/disable_chrome_update.log b/datasets/attack_techniques/T1185/disable_chrome_update/disable_chrome_update.log
new file mode 100644
index 00000000..48fc6986
--- /dev/null
+++ b/datasets/attack_techniques/T1185/disable_chrome_update/disable_chrome_update.log
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:399a1f134928d5586631f43ff495e9bc8a87c042a4b9f9803b05c825bf1f4899
+size 6426
diff --git a/datasets/attack_techniques/T1185/disable_chrome_update/disable_chrome_update.yml b/datasets/attack_techniques/T1185/disable_chrome_update/disable_chrome_update.yml
new file mode 100644
index 00000000..e23b7b26
--- /dev/null
+++ b/datasets/attack_techniques/T1185/disable_chrome_update/disable_chrome_update.yml
@@ -0,0 +1,13 @@
+author: Teoderick Contreras, Splunk
+id: ba339474-db4f-11f0-a898-629be3538069
+date: '2025-12-17'
+description: Generated datasets for disable chrome update in attack range.
+environment: attack_range
+directory: disable_chrome_update
+mitre_technique:
+- T1185
+datasets:
+- name: disable_chrome_update.log
+  path: /datasets/attack_techniques/T1185/disable_chrome_update/disable_chrome_update.log
+  sourcetype: 'XmlWinEventLog'
+  source: 'XmlWinEventLog:Microsoft-Windows-Sysmon/Operational'
\ No newline at end of file