Repository navigation

#

mitre

redcanaryco / atomic-red-team 

Small and highly portable detection tests based on MITRE's ATT&CK.

mitremitre-attack
C
11056
6 小时前
mitre/caldera
mitre / caldera 

Automated Adversary Emulation Platform

adversary-emulationcalderasecurity-automationred-teammitremitre-attacksecurity-testingmitre-corporationCybersecurityHackingHacktoberfest
Python
6454
5 天前
OTRF / ThreatHunter-Playbook 

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

threat-huntingsysmonhunting-campaignshypothesishuntingdfirhuntermitre-attack-dbmitre
Python
4354
2 年前
rabbitstack / fibratus 

Adversary tradecraft detection, protection, and hunting

Windowswindows-kernelInstrumentationPythonGo安全edradversaryblueteametwmitre
Go
2378
5 天前
opencve / opencve 

Vulnerability Intelligence Platform

Common Vulnerabilities and Exposures (CVE)vulnerabilities安全nvdPythonDjangomitreCybersecurityvulnerability-management
Python
2281
4 天前
austinsonger/Incident-Playbook
austinsonger / Incident-Playbook 

GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]

Cybersecurityplaybookcybersecurity-playbookincident-responseincident-managementincidentsmitre-attackmitrecontributions-welcomecontributors-welcomecatalog
1509
1 年前
infosecB / awesome-detection-engineering 

Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.

detection-engineeringsplunkmitreAwesome ListsCybersecuritythreat-detection
1064
3 个月前
nshalabi / ATTACK-Tools 

Utilities for MITRE™ ATT&CK

mitre-attackmitreadversary-emulationredteamingredteam
HTML
1040
13 天前
vectra-ai-research / MAAD-AF 

MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).

adversary-emulationMicrosoftPowerShell安全cloud-securitymitrered-teamsecurity-testingazureadmicrosoft365microsoft-graphttp
PowerShell
405
1 年前
Cyb3rWard0g / Invoke-ATTACKAPI 

A PowerShell script to interact with the MITRE ATT&CK Framework via its own API

PowerShellmitre-attack-dbmitre
PowerShell
369
7 年前
redcanaryco / chain-reactor 

Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.

Linuxmitremitre-attackadversary-simulationelf安全security-testing
C
320
6 个月前
op7ic / EDR-Testing-Script 

Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads

edrmitre安全incident-response
Batchfile
307
4 年前
mitre / caldera-ot 

MITRE Caldera™ for OT Plugins & Capabilities

adversary-emulationbacnetcalderaCybersecuritymitremitre-attackmitre-corporationmodbus
225
2 个月前
Yamato-Security / hayabusa-rules 

Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.

Windowsdfireventloganalysissigmahayabusamitreattack
Python
204
2 天前
AzureArchitecture / threat-model-templates 

Templates for the Microsoft Threat Modeling Tool

threat-modelingstride安全Simple DirectMedia LayerattackCybersecurityFabricMCmitremitre-attack
169
2 个月前
mitre / saf 

The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines

mitre-corporationcompliance安全security-automationdevsecopsJSONmitre
TypeScript
163
1 天前
jimmy-ly00 / Ransomware-PoC 

A simple, fully python ransomware PoC using AES-CTR and RSA. Supports Windows, Linux and macOS

ransomwaremitremitre-attackPython
Python
130
5 年前
blueteam0ps / AllthingsTimesketch 

This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.

mitremitre-attackforensicsrapidnode-red
Shell
114
2 年前
mvelazc0 / attack2jira 

attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage

mitre-attackdetection-engineeringmitre
Python
114
3 年前
qeeqbox / mitre-visualizer 

🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)

mitrenetwork-graphMalware工具attack
Python
98
3 年前