Small and highly portable detection tests based on MITRE's ATT&CK.
-
Updated
Nov 26, 2024 - C
Small and highly portable detection tests based on MITRE's ATT&CK.
Automated Adversary Emulation Platform
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
Utilities for MITRE™ ATT&CK
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
A PowerShell script to interact with the MITRE ATT&CK Framework via its own API
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.
Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads
MITRE Caldera™ for OT Plugins & Capabilities
The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines
attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
A simple, fully python ransomware PoC using AES-CTR and RSA. Supports Windows, Linux and macOS
This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)
Collection of CVEs from Sick Codes, or collaborations on https://sick.codes security research & advisories.
Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
Add a description, image, and links to the mitre topic page so that developers can more easily learn about it.
To associate your repository with the mitre topic, visit your repo's landing page and select "manage topics."