Small and highly portable detection tests based on MITRE's ATT&CK.
-
Updated
Jun 8, 2024 - C
Small and highly portable detection tests based on MITRE's ATT&CK.
Automated Adversary Emulation Platform
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
Utilities for MITRE™ ATT&CK
A PowerShell script to interact with the MITRE ATT&CK Framework via its own API
Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines
Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.
A simple, fully python ransomware PoC using AES-CTR and RSA. Supports Windows, Linux and macOS
attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
MITRE Caldera™ for OT Plugins & Capabilities
🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)
This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
Collection of CVEs from Sick Codes, or collaborations on https://sick.codes security research & advisories.
Add a description, image, and links to the mitre topic page so that developers can more easily learn about it.
To associate your repository with the mitre topic, visit your repo's landing page and select "manage topics."